Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/fg4TdygsPAYRKPXgG4AEORosG3o.roa
File: fg4TdygsPAYRKPXgG4AEORosG3o.roa (raw, json)
Hash identifier: sMNs1837aBBlAJdIvXD2wAoWVkUGfP4EzCsDtJ0YbDo=
Subject key identifier: 7E:0E:13:77:28:2C:3C:06:11:28:F5:E0:1B:80:04:39:1A:2C:1B:7A
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018959515DFAE6F65C41722F3731AAD1F25C
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/fg4TdygsPAYRKPXgG4AEORosG3o.roa
Signing time: Sat 15 Jul 2023 11:30:51 +0000
ROA not before: Sat 15 Jul 2023 11:30:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197842
IP address blocks: 89.251.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 09:53:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:59:51:5d:fa:e6:f6:5c:41:72:2f:37:31:aa:d1:f2:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jul 15 11:30:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e0e1377282c3c061128f5e01b8004391a2c1b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:98:97:64:d9:07:1c:c6:d5:f2:3a:5c:87:a0:
63:c8:c9:f9:35:fa:f6:6e:f6:fd:e1:c9:f0:c1:b6:
76:27:e9:e7:f1:71:3b:87:6a:19:38:33:2c:b9:1c:
ca:d1:c4:58:31:de:27:c4:33:f1:b1:63:ad:20:31:
1e:9d:ac:8d:87:49:03:30:de:b3:7d:4c:b5:df:d0:
8d:c8:4e:76:db:36:eb:68:f7:ea:c1:92:fa:8d:4b:
3b:bf:9e:25:3e:a1:da:48:db:00:b8:c9:45:8f:7a:
74:d8:ee:c7:5f:9d:01:3c:bd:9b:38:c2:3c:1e:e1:
79:ff:0c:89:b3:9f:4e:29:d7:49:dd:23:5b:97:1a:
63:ad:c7:7d:2f:f0:5e:d2:9e:be:48:59:81:41:29:
71:79:bf:0f:05:ba:a0:ff:dc:47:4f:d0:20:36:ce:
6e:64:4b:34:9e:40:bb:8e:40:b1:84:b0:5a:d2:f3:
5d:ea:e8:dd:ac:ae:19:1f:b6:ae:67:bb:3a:4a:9a:
e2:ac:3f:d7:3a:c9:28:e4:db:56:02:69:b5:8a:3e:
b5:62:bb:06:59:53:fd:b6:8e:9f:6c:bc:10:ed:e1:
1e:b7:6c:a5:1d:3a:16:be:69:88:08:bc:d1:04:59:
2c:40:59:87:50:ef:ec:97:f7:d5:c4:b6:24:25:89:
ed:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:0E:13:77:28:2C:3C:06:11:28:F5:E0:1B:80:04:39:1A:2C:1B:7A
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/fg4TdygsPAYRKPXgG4AEORosG3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.30.0/24
Signature Algorithm: sha256WithRSAEncryption
42:43:12:f1:2e:43:b8:6d:a1:ea:ce:50:29:22:6e:bd:94:f2:
c5:c2:a6:d2:66:cb:92:ef:3f:59:d0:eb:4a:f1:67:f1:9b:6d:
32:db:19:7c:41:13:5c:2e:66:b9:a1:02:a3:7b:b5:b9:25:a7:
c0:46:65:66:34:6e:0a:aa:21:e3:fc:05:b6:b0:67:05:ea:97:
3c:ad:e1:1c:cc:1d:d8:7d:b2:be:c3:c9:a9:64:a0:e0:82:bc:
79:2d:e7:b5:39:4b:58:40:f4:e1:98:ba:1e:f5:05:2e:79:d8:
f5:08:9f:eb:3d:c7:d4:71:a8:5c:35:2d:85:ab:37:a6:06:7d:
41:af:c7:97:f7:f6:b5:eb:49:59:1f:94:35:d1:6a:4d:df:ec:
94:84:3e:54:f2:6d:db:e3:65:7e:31:bf:22:3c:07:4f:1f:6d:
c7:bb:79:3e:69:45:92:0d:8b:90:32:4e:b0:6b:ce:ce:ec:26:
19:c9:ae:c2:35:a2:9f:b1:58:50:de:fa:ff:4f:85:4d:46:d2:
23:43:75:f8:0e:c7:92:9d:27:6c:89:50:4d:eb:d5:fc:24:df:
12:c6:3f:a8:ad:07:c5:cf:5e:88:fa:63:82:0f:ca:75:f7:70:
48:85:b8:82:c0:f9:81:68:6a:6e:cc:47:9c:d4:69:46:61:41:
32:25:45:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlZUV365vZcQXIvNzGq0fJcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjMwNzE1MTEzMDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTBlMTM3NzI4MmMzYzA2MTEyOGY1ZTAxYjgwMDQzOTFhMmMxYjdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspiXZNkHHMbV8jpch6BjyMn5Nfr2
bvb94cnwwbZ2J+nn8XE7h2oZODMsuRzK0cRYMd4nxDPxsWOtIDEenayNh0kDMN6z
fUy139CNyE522zbraPfqwZL6jUs7v54lPqHaSNsAuMlFj3p02O7HX50BPL2bOMI8
HuF5/wyJs59OKddJ3SNblxpjrcd9L/Be0p6+SFmBQSlxeb8PBbqg/9xHT9AgNs5u
ZEs0nkC7jkCxhLBa0vNd6ujdrK4ZH7auZ7s6SprirD/XOsko5NtWAmm1ij61YrsG
WVP9to6fbLwQ7eEet2ylHToWvmmICLzRBFksQFmHUO/sl/fVxLYkJYntFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH4OE3coLDwGESj14BuABDkaLBt6MB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvZmc0VGR5Z3NQQVlSS1BYZ0c0QUVPUm9zRzNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWfseMA0G
CSqGSIb3DQEBCwUAA4IBAQBCQxLxLkO4baHqzlApIm69lPLFwqbSZsuS7z9Z0OtK
8Wfxm20y2xl8QRNcLma5oQKje7W5JafARmVmNG4KqiHj/AW2sGcF6pc8reEczB3Y
fbK+w8mpZKDggrx5Lee1OUtYQPThmLoe9QUuedj1CJ/rPcfUcahcNS2FqzemBn1B
r8eX9/a160lZH5Q10WpN3+yUhD5U8m3b42V+Mb8iPAdPH23Hu3k+aUWSDYuQMk6w
a87O7CYZya7CNaKfsVhQ3vr/T4VNRtIjQ3X4DseSnSdsiVBN69X8JN8Sxj+orQfF
z16I+mOCD8p193BIhbiCwPmBaGpuzEec1GlGYUEyJUWj
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org