Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/H_FBLLfqJGkudeGIcmWJqrs_1KY.roa
File: H_FBLLfqJGkudeGIcmWJqrs_1KY.roa (raw, json)
Hash identifier: OssPtjKFVjTxWVs+KHJOr5cz1dNzdVfTJN+rSU9WbRY=
Subject key identifier: 1F:F1:41:2C:B7:EA:24:69:2E:75:E1:88:72:65:89:AA:BB:3F:D4:A6
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018A2AEDC28F650685B0EA9912D91A13363B
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/H_FBLLfqJGkudeGIcmWJqrs_1KY.roa
Signing time: Fri 25 Aug 2023 04:22:19 +0000
ROA not before: Fri 25 Aug 2023 04:22:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197789
IP address blocks: 89.251.16.0/24 maxlen: 24
89.251.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2a:ed:c2:8f:65:06:85:b0:ea:99:12:d9:1a:13:36:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Aug 25 04:22:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ff1412cb7ea24692e75e188726589aabb3fd4a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:d9:dc:df:71:f3:8e:26:47:e0:13:d6:1d:
e7:d8:50:41:9c:af:e0:3c:95:d2:be:e7:84:0f:b6:
ba:2f:c0:7a:cd:73:51:b8:fe:05:a4:f2:aa:20:a7:
4a:cf:15:0f:96:65:6e:d4:11:ab:4c:86:3f:e9:3a:
18:08:0e:b5:e0:97:a1:96:a7:77:df:73:c9:1f:2e:
12:4c:fc:ec:b7:56:19:75:bc:da:58:4d:54:d2:86:
72:ef:a3:45:0e:a2:90:99:68:c2:c0:8b:a0:2d:92:
ba:61:be:f3:f4:8f:ce:78:53:a4:0a:b6:95:18:35:
1c:42:af:07:c4:5b:03:b4:d9:13:a3:49:1d:4b:ec:
3b:70:ad:1c:d2:8e:f3:7e:78:fa:f4:2b:03:e1:70:
a5:08:a4:a4:b8:60:a7:22:b7:d5:98:98:67:ed:9c:
58:23:9b:41:d9:fa:8d:3e:68:31:7e:ff:55:55:c1:
28:a3:5e:76:3a:13:19:f1:8c:39:b3:60:f9:d5:77:
7b:65:38:4f:24:9b:c0:11:89:3c:42:cc:f6:04:39:
4b:51:9e:d2:01:e0:a8:65:11:54:23:4e:6b:ed:de:
ea:80:92:b8:39:9d:91:58:5e:c2:9b:ac:0c:f0:36:
3a:f0:3b:ed:7d:18:62:bb:d7:4f:14:b5:bd:26:a4:
cb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:F1:41:2C:B7:EA:24:69:2E:75:E1:88:72:65:89:AA:BB:3F:D4:A6
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/H_FBLLfqJGkudeGIcmWJqrs_1KY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.16.0/24
89.251.19.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:72:6f:0b:e3:3e:5b:4d:2e:8a:85:17:a6:27:89:73:e7:88:
6f:ea:f2:0b:9e:28:53:db:27:68:17:dc:36:31:0d:45:24:b5:
0b:3a:48:52:2c:0c:2c:32:20:33:59:1b:ae:74:21:54:6f:87:
e9:65:13:c7:9a:4f:54:8e:5b:9f:28:73:c6:d5:86:48:0f:6f:
a3:1e:50:9d:18:bb:0b:de:3b:e9:a6:06:6b:01:53:b2:97:f2:
e7:cb:8c:c3:8f:36:92:93:38:c5:61:a7:71:60:d8:a9:23:29:
2a:40:04:a8:1e:e1:24:af:f3:b3:71:b7:87:65:5d:b1:09:2e:
9f:04:65:9c:44:bc:bc:63:40:0e:17:39:12:c0:4e:c5:d5:d9:
5e:25:1d:e7:d9:5a:00:38:5d:4a:0c:62:65:4c:17:32:19:21:
34:6e:8e:7e:a7:67:77:5c:25:0f:da:5d:03:de:25:0f:29:42:
a2:b4:e1:6e:6d:88:26:32:05:28:59:68:37:eb:3b:27:a7:4c:
31:c4:91:2a:e1:1a:c3:c6:75:3f:1c:f8:dd:f3:08:ed:c5:9c:
22:f9:8a:81:4d:cb:53:02:72:e9:63:94:e0:bf:a4:f6:cd:9b:
25:f6:dc:10:5b:d3:b8:2c:2d:08:55:f1:13:a5:70:52:13:ec:
e6:ee:81:54
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYoq7cKPZQaFsOqZEtkaEzY7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjMwODI1MDQyMjE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZmYxNDEyY2I3ZWEyNDY5MmU3NWUxODg3MjY1ODlhYWJiM2ZkNGE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPrZ3N9x844mR+AT1h3n2FBBnK/g
PJXSvueED7a6L8B6zXNRuP4FpPKqIKdKzxUPlmVu1BGrTIY/6ToYCA614Jehlqd3
33PJHy4STPzst1YZdbzaWE1U0oZy76NFDqKQmWjCwIugLZK6Yb7z9I/OeFOkCraV
GDUcQq8HxFsDtNkTo0kdS+w7cK0c0o7zfnj69CsD4XClCKSkuGCnIrfVmJhn7ZxY
I5tB2fqNPmgxfv9VVcEoo152OhMZ8Yw5s2D51Xd7ZThPJJvAEYk8Qsz2BDlLUZ7S
AeCoZRFUI05r7d7qgJK4OZ2RWF7Cm6wM8DY68DvtfRhiu9dPFLW9JqTL8wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFB/xQSy36iRpLnXhiHJliaq7P9SmMB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvSF9GQkxMZnFKR2t1ZGVHSWNtV0pxcnNfMUtZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWfsQAwQA
WfsTMA0GCSqGSIb3DQEBCwUAA4IBAQAacm8L4z5bTS6KhRemJ4lz54hv6vILnihT
2ydoF9w2MQ1FJLULOkhSLAwsMiAzWRuudCFUb4fpZRPHmk9UjlufKHPG1YZID2+j
HlCdGLsL3jvppgZrAVOyl/Lny4zDjzaSkzjFYadxYNipIykqQASoHuEkr/OzcbeH
ZV2xCS6fBGWcRLy8Y0AOFzkSwE7F1dleJR3n2VoAOF1KDGJlTBcyGSE0bo5+p2d3
XCUP2l0D3iUPKUKitOFubYgmMgUoWWg36zsnp0wxxJEq4RrDxnU/HPjd8wjtxZwi
+YqBTctTAnLpY5Tgv6T2zZsl9twQW9O4LC0IVfETpXBSE+zm7oFU
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org