Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/J1QRxtXVfkzKHJDuWM86Hk6kd8o.roa
File: J1QRxtXVfkzKHJDuWM86Hk6kd8o.roa (raw, json)
Hash identifier: JjTiW0Axnn1PQBmqcEPL3zdZmLu9ayPfgCqPhzH4egk=
Subject key identifier: 27:54:11:C6:D5:D5:7E:4C:CA:1C:90:EE:58:CF:3A:1E:4E:A4:77:CA
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 0187A06059078E571038676EDCDDA8F8D747
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/J1QRxtXVfkzKHJDuWM86Hk6kd8o.roa
Signing time: Thu 20 Apr 2023 20:34:41 +0000
ROA not before: Thu 20 Apr 2023 20:34:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 87.248.130.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a0:60:59:07:8e:57:10:38:67:6e:dc:dd:a8:f8:d7:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Apr 20 20:34:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=275411c6d5d57e4cca1c90ee58cf3a1e4ea477ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:45:a2:f3:f1:ac:75:a0:96:f9:a0:f5:26:00:
91:f0:ac:4a:8c:ca:e1:e8:e6:78:f3:19:4b:ca:b5:
fb:28:40:56:23:cd:9b:37:24:c7:c6:69:ec:32:7d:
99:4f:f9:c6:6f:54:ae:23:7b:a9:e5:3d:da:dc:93:
9c:93:38:a0:c0:b2:38:4e:a9:fa:6d:92:a5:ba:fe:
4c:89:8d:3d:c8:8b:97:46:31:69:5a:0c:f5:07:3f:
00:19:06:09:e6:02:4e:ea:2b:da:a7:00:35:34:b4:
71:cc:bb:b3:75:58:71:54:9f:a5:22:80:4e:c1:79:
ae:cc:b5:64:f0:4b:5e:93:3e:8b:e5:73:82:c8:fe:
f2:d7:fe:03:f7:8a:ba:2e:7a:a4:29:60:38:b5:30:
aa:de:fc:ca:a5:5c:1e:a1:d0:d1:1f:18:8f:43:20:
09:76:b1:34:cd:c4:b7:0f:79:32:db:23:34:d0:2f:
21:6d:b5:48:fd:89:05:07:4a:88:90:74:5d:ba:cc:
6b:5b:93:b2:76:a6:37:21:0d:8a:7a:43:47:73:d9:
19:13:d5:a4:ed:9d:99:1f:4e:97:7d:e5:66:a3:fc:
23:7c:4f:70:d7:b9:bd:17:64:38:87:53:35:a6:5f:
ab:1f:bd:10:18:7e:87:92:a8:42:27:83:27:dc:34:
f7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:54:11:C6:D5:D5:7E:4C:CA:1C:90:EE:58:CF:3A:1E:4E:A4:77:CA
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/J1QRxtXVfkzKHJDuWM86Hk6kd8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.130.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:7a:6b:06:a0:af:c0:b9:14:d7:12:3d:d2:e1:b8:f7:ac:eb:
ec:83:c6:f2:16:be:78:0f:c8:36:14:c3:fb:c4:0a:25:3f:48:
53:22:93:a8:e3:70:22:2a:9d:96:f8:2b:ea:5a:ca:43:ce:52:
58:34:e9:5d:7c:8f:36:70:15:01:2c:f9:a8:29:8d:88:ec:87:
35:da:70:a5:10:b6:dd:af:48:5b:65:fb:87:f0:93:e9:80:28:
b5:16:89:1e:bf:55:69:64:06:95:42:20:aa:d3:b7:3d:f7:98:
c5:62:79:56:73:7a:90:50:5c:9d:49:fc:48:0b:f5:a8:e1:bc:
29:bc:45:eb:36:23:15:39:55:c1:2a:7c:89:c9:3a:42:f8:43:
d4:d9:d7:1c:df:96:55:06:ef:ef:aa:6c:5b:91:c5:3c:42:92:
cd:92:a1:6e:69:a5:2e:a3:bf:cd:a3:25:4f:f8:2c:79:97:fd:
7f:8e:4a:f1:2c:2d:af:a4:51:95:21:f4:87:6e:16:af:b8:32:
5d:49:86:6e:a3:0c:23:50:37:b2:35:0d:7b:e2:89:60:93:17:
a2:ef:3c:b8:a9:cb:dd:e3:eb:f3:04:fb:6d:e9:7a:ad:11:c5:
2c:90:aa:6b:35:e7:2b:56:38:da:ed:dc:07:c2:08:39:de:e2:
b3:59:f0:a8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYegYFkHjlcQOGdu3N2o+NdHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZjYxZmM3YzBhYjQxY2UxNTRlN2JjYjA4ZWY5NjIzNTFh
NDY3ODQwHhcNMjMwNDIwMjAzNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzU0MTFjNmQ1ZDU3ZTRjY2ExYzkwZWU1OGNmM2ExZTRlYTQ3N2NhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgUWi8/GsdaCW+aD1JgCR8KxKjMrh
6OZ48xlLyrX7KEBWI82bNyTHxmnsMn2ZT/nGb1SuI3up5T3a3JOckzigwLI4Tqn6
bZKluv5MiY09yIuXRjFpWgz1Bz8AGQYJ5gJO6ivapwA1NLRxzLuzdVhxVJ+lIoBO
wXmuzLVk8Etekz6L5XOCyP7y1/4D94q6LnqkKWA4tTCq3vzKpVweodDRHxiPQyAJ
drE0zcS3D3ky2yM00C8hbbVI/YkFB0qIkHRdusxrW5OydqY3IQ2KekNHc9kZE9Wk
7Z2ZH06XfeVmo/wjfE9w17m9F2Q4h1M1pl+rH70QGH6HkqhCJ4Mn3DT3ewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCdUEcbV1X5MyhyQ7ljPOh5OpHfKMB8GA1UdIwQY
MBaAFHf2H8fAq0HOFU57ywjvliNRpGeEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjkt
ZWRjOWQwMmZhZjU0LzEvSjFRUnh0WFZma3pLSEpEdVdNODZIazZrZDhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjktZWRjOWQwMmZhZjU0
LzEvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV/iCMA0G
CSqGSIb3DQEBCwUAA4IBAQCpemsGoK/AuRTXEj3S4bj3rOvsg8byFr54D8g2FMP7
xAolP0hTIpOo43AiKp2W+CvqWspDzlJYNOldfI82cBUBLPmoKY2I7Ic12nClELbd
r0hbZfuH8JPpgCi1Fokev1VpZAaVQiCq07c995jFYnlWc3qQUFydSfxIC/Wo4bwp
vEXrNiMVOVXBKnyJyTpC+EPU2dcc35ZVBu/vqmxbkcU8QpLNkqFuaaUuo7/NoyVP
+Cx5l/1/jkrxLC2vpFGVIfSHbhavuDJdSYZuowwjUDeyNQ174olgkxei7zy4qcvd
4+vzBPtt6XqtEcUskKprNecrVjja7dwHwgg53uKzWfCo
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:21 2023 by rpki-client on console-fra.rpki-client.org