Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/kjIykD7OqJnMeYRwL33GTZnK8sU.roa
File: kjIykD7OqJnMeYRwL33GTZnK8sU.roa (raw, json)
Hash identifier: HV8aHTjBoJyD0VwMS6YISmo3Z+vDRMI6iov6f1mwqys=
Subject key identifier: 92:32:32:90:3E:CE:A8:99:CC:79:84:70:2F:7D:C6:4D:99:CA:F2:C5
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018BCEBA9B1E83D403968C0B6D1397E9AD89
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/kjIykD7OqJnMeYRwL33GTZnK8sU.roa
Signing time: Tue 14 Nov 2023 16:46:57 +0000
ROA not before: Tue 14 Nov 2023 16:46:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42708
IP address blocks: 176.116.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ce:ba:9b:1e:83:d4:03:96:8c:0b:6d:13:97:e9:ad:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Nov 14 16:46:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=923232903ecea899cc7984702f7dc64d99caf2c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:40:dd:4e:61:6f:ed:6d:a9:91:d9:cf:bb:eb:
b6:2a:80:49:b9:17:8d:b6:4f:12:79:16:b0:76:b5:
19:ef:94:5c:e5:e5:bf:17:5c:8c:4b:2e:76:3a:c8:
33:4a:fe:a9:09:5e:2f:32:d9:3b:a6:14:94:83:65:
94:99:c3:f4:63:a4:72:85:0a:2c:8d:0f:dc:6b:73:
3f:9c:f5:25:2a:22:45:79:ab:d1:c8:88:2f:53:1a:
31:e5:f2:a8:8c:45:a0:49:42:9f:38:2e:3e:4f:f9:
16:8f:7c:5d:29:ad:9e:78:5d:5b:dd:53:50:09:51:
db:6c:99:2e:2a:6b:1b:84:e2:8a:ec:14:2a:e2:b0:
24:fe:ad:5b:41:76:7e:f4:b9:6f:97:f9:d4:1e:8d:
8a:8d:b6:02:54:b2:fa:5d:19:a6:65:b1:8e:1a:0b:
a5:7f:c9:f5:64:dd:62:37:1e:92:c9:0f:43:4e:6e:
24:ec:fe:c5:4d:f4:0d:c7:4a:69:12:8a:b8:0d:c8:
d4:ad:91:3d:51:63:96:e1:71:79:7f:ad:61:e2:7e:
eb:7f:9d:28:73:92:af:5e:11:98:52:94:29:d6:58:
0a:e2:df:05:8c:c7:00:89:17:7a:d6:2b:ff:91:46:
5a:43:af:fc:3d:f2:93:fd:2d:a8:d6:2d:c0:43:52:
07:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:32:32:90:3E:CE:A8:99:CC:79:84:70:2F:7D:C6:4D:99:CA:F2:C5
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/kjIykD7OqJnMeYRwL33GTZnK8sU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.31.0/24
Signature Algorithm: sha256WithRSAEncryption
89:16:ac:7e:ea:23:c4:51:60:a1:f5:08:50:fd:b4:0e:cf:6a:
e8:87:9f:0e:43:c9:18:34:71:00:e8:df:09:c9:88:52:db:3d:
12:2c:40:5e:72:a4:33:ce:46:9e:02:21:d1:29:ce:f4:0f:5d:
4e:37:c0:7e:c3:4f:26:3e:ff:c2:3c:1d:2c:06:75:91:e3:b9:
97:21:9d:8b:14:f8:8a:06:69:2d:9e:c0:3b:5e:4a:a8:99:f2:
fe:2d:38:50:24:b5:2f:8f:84:15:34:59:21:3f:73:c6:76:6c:
1c:73:c9:f1:8c:13:ac:fe:d1:2b:09:9c:27:f2:11:61:5f:0f:
9e:b6:68:cb:c4:f3:fb:c9:e6:68:c9:48:ea:ab:25:89:13:e6:
f0:7d:a3:0c:70:c0:0c:9a:8a:56:a2:e4:5c:9f:89:3e:cc:5d:
4b:0e:fe:e8:20:72:92:ea:6e:85:11:3a:a4:93:da:42:58:9a:
3f:06:d4:89:f2:c9:26:49:bb:15:8c:a2:a6:43:33:1e:e7:c8:
36:ce:a0:75:fe:9b:ef:90:09:96:86:79:79:64:3f:31:d8:c4:
78:ef:42:70:0b:c7:dd:8e:8b:c2:3c:d7:b9:63:6a:7f:0b:4b:
97:2e:37:40:d2:1f:da:09:9f:97:07:36:ee:0f:93:09:ac:fc:
05:ce:af:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvOupseg9QDlowLbROX6a2JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMTQxMTJkMDVlOWQ4NzYxNDlkMjc3OGQ0OGVkYWFhMzI0
ZGIwYTUwHhcNMjMxMTE0MTY0NjU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MjMyMzI5MDNlY2VhODk5Y2M3OTg0NzAyZjdkYzY0ZDk5Y2FmMmM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUDdTmFv7W2pkdnPu+u2KoBJuReN
tk8SeRawdrUZ75Rc5eW/F1yMSy52OsgzSv6pCV4vMtk7phSUg2WUmcP0Y6RyhQos
jQ/ca3M/nPUlKiJFeavRyIgvUxox5fKojEWgSUKfOC4+T/kWj3xdKa2eeF1b3VNQ
CVHbbJkuKmsbhOKK7BQq4rAk/q1bQXZ+9Llvl/nUHo2KjbYCVLL6XRmmZbGOGgul
f8n1ZN1iNx6SyQ9DTm4k7P7FTfQNx0ppEoq4DcjUrZE9UWOW4XF5f61h4n7rf50o
c5KvXhGYUpQp1lgK4t8FjMcAiRd61iv/kUZaQ6/8PfKT/S2o1i3AQ1IHQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJIyMpA+zqiZzHmEcC99xk2ZyvLFMB8GA1UdIwQY
MBaAFE8UES0F6dh2FJ0neNSO2qoyTbClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUt
YmFmYmRmYzgxMzJhLzEva2pJeWtEN09xSm5NZVlSd0wzM0dUWm5LOHNVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUtYmFmYmRmYzgxMzJh
LzEvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHQfMA0G
CSqGSIb3DQEBCwUAA4IBAQCJFqx+6iPEUWCh9QhQ/bQOz2roh58OQ8kYNHEA6N8J
yYhS2z0SLEBecqQzzkaeAiHRKc70D11ON8B+w08mPv/CPB0sBnWR47mXIZ2LFPiK
BmktnsA7XkqomfL+LThQJLUvj4QVNFkhP3PGdmwcc8nxjBOs/tErCZwn8hFhXw+e
tmjLxPP7yeZoyUjqqyWJE+bwfaMMcMAMmopWouRcn4k+zF1LDv7oIHKS6m6FETqk
k9pCWJo/BtSJ8skmSbsVjKKmQzMe58g2zqB1/pvvkAmWhnl5ZD8x2MR470JwC8fd
jovCPNe5Y2p/C0uXLjdA0h/aCZ+XBzbuD5MJrPwFzq86
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:45 2024 by rpki-client on console-fra.rpki-client.org