Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/07359GaD-5zQL_2kW88y9Npe02I.roa
File: 07359GaD-5zQL_2kW88y9Npe02I.roa (raw, json)
Hash identifier: emTELe7HlUfiFxiI4vzype7EWCbul7eWzI4+P/5PSCQ=
Subject key identifier: D3:BD:F9:F4:66:83:FB:9C:D0:2F:FD:A4:5B:CF:32:F4:DA:5E:D3:62
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0186C595C9CD88012436AF6C0834F2C902E9
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/07359GaD-5zQL_2kW88y9Npe02I.roa
Signing time: Thu 09 Mar 2023 08:56:13 +0000
ROA not before: Thu 09 Mar 2023 08:56:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135752
IP address blocks: 89.251.21.0/24 maxlen: 24
89.251.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Apr 2023 12:34:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:95:c9:cd:88:01:24:36:af:6c:08:34:f2:c9:02:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Mar 9 08:56:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3bdf9f46683fb9cd02ffda45bcf32f4da5ed362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bc:6f:be:12:21:0f:79:dd:a8:d3:61:6b:2b:
74:61:6c:f7:94:fa:0e:c2:67:4f:c5:c3:11:06:7f:
6b:72:47:ca:9d:92:9a:b2:0b:db:44:1e:98:fa:44:
67:96:33:71:b7:24:ff:63:27:94:a2:7e:0f:95:52:
31:4a:ec:ec:9d:38:4b:42:4b:2f:0b:28:fe:51:28:
9e:1c:1d:5d:0b:2b:7f:e6:e8:e7:0b:e4:dd:64:f3:
0d:55:69:73:b3:c4:9c:6b:16:27:19:93:8e:87:0a:
57:36:d9:cb:e8:50:0b:11:a1:97:60:01:d6:c7:0c:
8c:e0:d4:32:73:8a:cd:2c:5c:f0:4d:15:54:8a:a8:
80:d0:da:2d:11:f8:67:b9:73:ec:1a:bb:17:89:e8:
17:49:d7:b5:5a:b9:c9:1d:e4:15:3e:86:e7:8a:b9:
33:5a:fa:22:7c:64:9a:78:5e:9e:f6:2d:6b:fd:aa:
41:ba:6e:19:50:00:76:c7:10:b8:82:35:bf:28:c1:
29:1f:08:91:4f:c6:d8:2d:df:7f:e0:76:b4:d9:1b:
6c:68:93:ff:e9:d4:c4:40:b2:bf:b8:87:68:08:21:
06:a0:e3:58:80:6d:66:43:20:d6:9c:e2:e9:f4:30:
33:ad:fc:69:19:eb:42:48:89:3c:ce:e0:bf:ac:30:
ac:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BD:F9:F4:66:83:FB:9C:D0:2F:FD:A4:5B:CF:32:F4:DA:5E:D3:62
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/07359GaD-5zQL_2kW88y9Npe02I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.21.0/24
89.251.25.0/24
Signature Algorithm: sha256WithRSAEncryption
74:6a:9d:21:59:04:35:96:93:cc:80:1c:43:33:d6:42:57:6f:
c5:42:8e:1b:3a:68:49:32:65:f7:fb:93:85:f3:5c:50:a7:dd:
e3:2d:6a:34:2f:67:4c:c9:28:3a:de:fe:47:33:36:3e:f1:02:
67:88:ef:61:bf:83:f8:fa:f4:f3:12:19:40:72:c7:2f:5a:96:
7a:e0:81:ad:e7:1b:fb:53:11:ab:b7:80:3b:64:99:df:b1:da:
94:44:08:03:b4:c6:c2:b8:fd:01:bc:34:f4:7c:ac:51:b9:dc:
7c:31:a0:29:0e:85:82:35:91:47:cf:39:ca:72:64:82:7e:f1:
2f:dd:8f:61:84:02:63:a2:7c:0f:60:c8:3d:7a:46:6f:33:1d:
03:be:5f:37:6e:42:0b:26:40:4c:37:a4:fd:14:58:96:3d:8e:
88:f3:d0:c1:ac:13:08:07:dd:79:a2:60:80:6d:05:2c:e5:b5:
c3:8e:8c:b4:44:bf:90:7e:10:77:78:d5:29:6d:ce:81:7c:a9:
a6:b1:1c:91:00:c0:a5:75:3a:d3:aa:e5:c6:0a:a6:5d:a7:80:
dd:53:5c:d4:ab:49:ab:69:e6:0c:c6:8d:f7:c3:97:6a:48:c7:
fe:23:37:3c:8f:9c:f0:80:fb:c7:51:33:8d:44:8c:44:1c:8c:
92:6f:f6:0c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYbFlcnNiAEkNq9sCDTyyQLpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjMwMzA5MDg1NjEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkM2JkZjlmNDY2ODNmYjljZDAyZmZkYTQ1YmNmMzJmNGRhNWVkMzYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLxvvhIhD3ndqNNhayt0YWz3lPoO
wmdPxcMRBn9rckfKnZKasgvbRB6Y+kRnljNxtyT/YyeUon4PlVIxSuzsnThLQksv
Cyj+USieHB1dCyt/5ujnC+TdZPMNVWlzs8ScaxYnGZOOhwpXNtnL6FALEaGXYAHW
xwyM4NQyc4rNLFzwTRVUiqiA0NotEfhnuXPsGrsXiegXSde1WrnJHeQVPobnirkz
WvoifGSaeF6e9i1r/apBum4ZUAB2xxC4gjW/KMEpHwiRT8bYLd9/4Ha02RtsaJP/
6dTEQLK/uIdoCCEGoONYgG1mQyDWnOLp9DAzrfxpGetCSIk8zuC/rDCs9QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNO9+fRmg/uc0C/9pFvPMvTaXtNiMB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvMDczNTlHYUQtNXpRTF8ya1c4OHk5TnBlMDJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWfsVAwQA
WfsZMA0GCSqGSIb3DQEBCwUAA4IBAQB0ap0hWQQ1lpPMgBxDM9ZCV2/FQo4bOmhJ
MmX3+5OF81xQp93jLWo0L2dMySg63v5HMzY+8QJniO9hv4P4+vTzEhlAcscvWpZ6
4IGt5xv7UxGrt4A7ZJnfsdqURAgDtMbCuP0BvDT0fKxRudx8MaApDoWCNZFHzznK
cmSCfvEv3Y9hhAJjonwPYMg9ekZvMx0Dvl83bkILJkBMN6T9FFiWPY6I89DBrBMI
B915omCAbQUs5bXDjoy0RL+QfhB3eNUpbc6BfKmmsRyRAMCldTrTquXGCqZdp4Dd
U1zUq0mraeYMxo33w5dqSMf+Izc8j5zwgPvHUTONRIxEHIySb/YM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org