Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/RJZoVOSPa7NIiLTZ8pNpYhWqlLg.roa
File: RJZoVOSPa7NIiLTZ8pNpYhWqlLg.roa (raw, json)
Hash identifier: uGj6O8KYCa12zocvilml4XqcXcfLw1zdjcKyQ2fXgIc=
Subject key identifier: 44:96:68:54:E4:8F:6B:B3:48:88:B4:D9:F2:93:69:62:15:AA:94:B8
Certificate issuer: /CN=08d381ce24231061815f32043c652266adbbd865
Certificate serial: 01856BF7DCF0CFBAF1FF52A23CE572AF3FB0
Authority key identifier: 08:D3:81:CE:24:23:10:61:81:5F:32:04:3C:65:22:66:AD:BB:D8:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNOBziQjEGGBXzIEPGUiZq272GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/RJZoVOSPa7NIiLTZ8pNpYhWqlLg.roa
Signing time: Sun 01 Jan 2023 06:14:44 +0000
ROA not before: Sun 01 Jan 2023 06:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48173
IP address blocks: 176.117.104.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:f7:dc:f0:cf:ba:f1:ff:52:a2:3c:e5:72:af:3f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d381ce24231061815f32043c652266adbbd865
Validity
Not Before: Jan 1 06:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44966854e48f6bb34888b4d9f293696215aa94b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e0:d3:73:4c:d7:3a:6d:24:a6:fc:63:10:af:
2e:6e:07:58:ae:e2:56:08:dd:eb:ab:db:af:c1:eb:
ef:84:c8:7e:ff:be:7b:ce:a3:b5:8c:60:23:df:d9:
fd:91:76:6f:63:b1:c4:be:26:de:27:ae:b2:e5:fa:
78:1f:ba:a2:6e:0c:ed:06:cc:b6:a0:b8:ad:ca:99:
9b:ee:2a:ab:45:17:82:47:04:32:12:60:16:80:d1:
e6:a8:08:bc:0b:88:72:f3:af:8f:e1:15:d8:df:2b:
94:9c:f1:a3:b3:53:7b:80:bc:5b:8f:86:57:23:ae:
b9:4f:1b:9b:0b:f5:8b:ac:a6:9b:cf:7d:c0:c9:d9:
00:08:78:d0:8a:12:b5:05:71:d7:fc:e6:6d:cb:e3:
c5:66:8f:e6:69:6d:b8:18:d8:2a:c3:f9:56:00:5c:
01:69:4b:bd:c8:e1:67:6d:ce:6c:5c:31:d8:c7:2e:
43:89:aa:d4:aa:9d:00:5f:2f:d0:05:ad:81:bd:07:
d7:9a:31:9c:d9:e8:11:1c:50:8d:40:ea:d1:a1:6f:
be:9f:a9:15:93:4f:f7:5a:bb:48:2d:44:82:51:c9:
58:98:14:27:2b:68:59:80:6a:9e:c5:fd:a1:40:f1:
7f:e2:8c:16:3d:b9:1f:78:6c:14:0b:ca:01:bd:65:
f2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:96:68:54:E4:8F:6B:B3:48:88:B4:D9:F2:93:69:62:15:AA:94:B8
X509v3 Authority Key Identifier:
keyid:08:D3:81:CE:24:23:10:61:81:5F:32:04:3C:65:22:66:AD:BB:D8:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNOBziQjEGGBXzIEPGUiZq272GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/RJZoVOSPa7NIiLTZ8pNpYhWqlLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.104.0/21
Signature Algorithm: sha256WithRSAEncryption
76:fa:06:58:05:5c:8e:d1:d9:73:22:3a:20:5f:63:d8:3b:4b:
58:1d:5d:f1:b1:a2:c5:6c:3a:94:6a:91:20:7b:54:d6:ba:85:
9c:05:d5:4c:5b:62:fc:aa:92:2f:d1:57:85:a3:5c:1e:ef:b9:
d0:3a:bc:12:86:c3:de:d0:c4:3b:c7:dc:4c:97:ec:28:72:57:
14:e3:3a:c7:2a:75:94:c9:e8:56:5b:96:9f:4a:9d:f6:b0:a4:
fd:4c:fd:a4:ed:2d:72:df:f3:42:14:aa:f0:6b:bb:ff:f7:01:
73:f2:5f:37:ea:5a:57:ae:5a:ba:c5:ff:5a:eb:ed:15:10:a6:
e0:19:1a:24:8b:0d:44:1e:5a:63:9d:6c:e5:e8:a1:00:a2:f3:
96:49:db:15:8d:88:a9:5c:3c:80:89:15:03:b8:1a:57:07:51:
5a:a7:bb:b4:d6:6b:0b:bc:2e:e8:b4:5e:ad:11:ff:39:de:c3:
a4:1a:1b:d5:c0:50:3d:42:f5:df:89:ec:5b:25:38:09:c7:82:
f7:54:a6:8f:67:ad:ca:12:83:8c:89:2d:85:7f:39:5a:f7:a6:
fc:b1:42:e3:d9:81:23:7d:f9:c5:5e:20:7e:bf:6f:7b:ed:4c:
15:40:01:48:45:96:2c:02:96:23:76:99:da:49:e9:af:6b:8f:
37:96:6d:25
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr99zwz7rx/1KiPOVyrz+wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4ZDM4MWNlMjQyMzEwNjE4MTVmMzIwNDNjNjUyMjY2YWRi
YmQ4NjUwHhcNMjMwMTAxMDYxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDk2Njg1NGU0OGY2YmIzNDg4OGI0ZDlmMjkzNjk2MjE1YWE5NGI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+DTc0zXOm0kpvxjEK8ubgdYruJW
CN3rq9uvwevvhMh+/757zqO1jGAj39n9kXZvY7HEvibeJ66y5fp4H7qibgztBsy2
oLitypmb7iqrRReCRwQyEmAWgNHmqAi8C4hy86+P4RXY3yuUnPGjs1N7gLxbj4ZX
I665TxubC/WLrKabz33AydkACHjQihK1BXHX/OZty+PFZo/maW24GNgqw/lWAFwB
aUu9yOFnbc5sXDHYxy5DiarUqp0AXy/QBa2BvQfXmjGc2egRHFCNQOrRoW++n6kV
k0/3WrtILUSCUclYmBQnK2hZgGqexf2hQPF/4owWPbkfeGwUC8oBvWXy3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFESWaFTkj2uzSIi02fKTaWIVqpS4MB8GA1UdIwQY
MBaAFAjTgc4kIxBhgV8yBDxlImatu9hlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ05PQnppUWpFR0dCWHpJRVBHVWlacTI3MkdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS81YjdlZjgtZTcxZi00MjllLWFhZGYt
NmNiNzhlOTVhYjQ0LzEvUkpab1ZPU1BhN05JaUxUWjhwTnBZaFdxbExnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS81YjdlZjgtZTcxZi00MjllLWFhZGYtNmNiNzhlOTVhYjQ0
LzEvQ05PQnppUWpFR0dCWHpJRVBHVWlacTI3MkdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDsHVoMA0G
CSqGSIb3DQEBCwUAA4IBAQB2+gZYBVyO0dlzIjogX2PYO0tYHV3xsaLFbDqUapEg
e1TWuoWcBdVMW2L8qpIv0VeFo1we77nQOrwShsPe0MQ7x9xMl+woclcU4zrHKnWU
yehWW5afSp32sKT9TP2k7S1y3/NCFKrwa7v/9wFz8l836lpXrlq6xf9a6+0VEKbg
GRokiw1EHlpjnWzl6KEAovOWSdsVjYipXDyAiRUDuBpXB1Fap7u01msLvC7otF6t
Ef853sOkGhvVwFA9QvXfiexbJTgJx4L3VKaPZ63KEoOMiS2Ffzla96b8sULj2YEj
ffnFXiB+v2977UwVQAFIRZYsApYjdpnaSemva483lm0l
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:49 2024 by rpki-client on console-fra.rpki-client.org