Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/f_S8lhQd_tGz2Gy7VhC0OnfQBOs.roa
File: f_S8lhQd_tGz2Gy7VhC0OnfQBOs.roa (raw, json)
Hash identifier: wBzdlvfm+FpbR+hRKsCj4Gu30JSbC4q4CrA8J66NYL4=
Subject key identifier: 7F:F4:BC:96:14:1D:FE:D1:B3:D8:6C:BB:56:10:B4:3A:77:D0:04:EB
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01856C8A6302FA7742AA379158426439B838
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/f_S8lhQd_tGz2Gy7VhC0OnfQBOs.roa
Signing time: Sun 01 Jan 2023 08:54:46 +0000
ROA not before: Sun 01 Jan 2023 08:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399641
IP address blocks: 87.248.149.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:8a:63:02:fa:77:42:aa:37:91:58:42:64:39:b8:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jan 1 08:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ff4bc96141dfed1b3d86cbb5610b43a77d004eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:54:ac:4f:bc:99:3c:70:1c:06:9f:65:78:d9:
ba:bd:65:0c:da:16:cb:28:cd:e8:88:46:d7:ed:ed:
3e:9d:f3:cf:8a:cf:8c:c0:80:b6:60:70:87:4e:8f:
81:2a:54:b0:d0:69:67:31:b2:a9:46:29:64:eb:a5:
6c:aa:48:16:b0:a0:e1:95:a3:3b:49:fb:8b:a9:16:
ef:8f:54:3f:7b:40:e2:87:d8:6b:c6:46:37:c5:bd:
56:1d:2e:57:f4:d8:bb:08:7e:69:e4:e0:ec:f0:70:
c3:2c:c0:7a:6c:64:fd:52:e9:45:68:6e:b1:74:23:
b2:e6:24:b1:e3:f0:3b:be:d9:14:e5:44:a8:42:69:
b3:c9:64:06:3b:78:b0:86:95:76:21:d5:1c:d6:3b:
6c:65:35:5c:f5:96:31:9c:4e:68:23:9e:07:07:52:
54:6f:3a:71:b4:1d:b4:5a:a1:39:b2:c8:91:b2:bd:
9d:9b:25:9e:f9:68:5b:56:6a:ca:d5:ee:94:c8:00:
bf:b1:2e:2a:7a:5c:d5:89:43:88:c0:e6:6b:57:29:
99:59:33:1f:4f:b7:81:ef:b9:13:29:b5:8a:1f:e4:
24:0f:c0:30:06:ce:00:f6:d2:9a:df:0a:b7:ae:74:
18:f4:ed:5d:0b:ef:a9:7a:46:6b:4d:a3:93:18:16:
9c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F4:BC:96:14:1D:FE:D1:B3:D8:6C:BB:56:10:B4:3A:77:D0:04:EB
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/f_S8lhQd_tGz2Gy7VhC0OnfQBOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.149.0/24
Signature Algorithm: sha256WithRSAEncryption
52:79:35:0a:65:ba:5c:fc:eb:d2:8d:33:0e:9e:12:4f:0f:d8:
a6:4b:31:78:36:3e:b4:15:54:2b:38:d9:40:eb:f9:4a:cb:da:
cf:0f:4c:75:7e:21:0c:24:5f:b0:c5:d4:3c:e9:91:33:2a:f6:
ac:18:b7:e7:b7:08:8a:21:37:b2:77:a8:5d:30:d6:53:5c:f8:
23:7e:d7:60:30:01:71:b4:d5:e2:fd:7b:62:3d:d9:6a:70:ec:
35:30:aa:d8:9f:57:42:d9:14:85:ce:9e:89:1c:f9:35:ad:b0:
72:f2:7e:11:e5:b6:42:7c:2e:fa:c6:fb:af:b3:44:73:6c:be:
2c:81:0d:05:2e:e7:54:eb:84:f6:76:94:5d:61:00:66:20:c7:
d6:60:f1:d8:0f:8e:45:a0:9e:be:95:73:32:5c:03:11:6a:55:
2c:23:c9:ec:8d:8e:ba:42:8b:40:8a:13:d5:8d:07:54:cc:39:
3e:33:33:a9:53:bc:f7:ec:4a:fe:e5:e5:d5:32:6f:db:22:d6:
c1:32:d2:a4:16:12:7f:0c:4d:65:72:66:bc:ab:9c:57:d6:68:
06:27:35:b6:8a:23:6e:ee:c2:7c:58:1a:e4:a6:9e:89:46:45:
87:5f:8c:16:5e:f7:9d:c8:76:72:26:94:10:db:b6:a2:87:ba:
8b:75:da:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsimMC+ndCqjeRWEJkObg4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZjYxZmM3YzBhYjQxY2UxNTRlN2JjYjA4ZWY5NjIzNTFh
NDY3ODQwHhcNMjMwMTAxMDg1NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmY0YmM5NjE0MWRmZWQxYjNkODZjYmI1NjEwYjQzYTc3ZDAwNGViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglSsT7yZPHAcBp9leNm6vWUM2hbL
KM3oiEbX7e0+nfPPis+MwIC2YHCHTo+BKlSw0GlnMbKpRilk66VsqkgWsKDhlaM7
SfuLqRbvj1Q/e0Dih9hrxkY3xb1WHS5X9Ni7CH5p5ODs8HDDLMB6bGT9UulFaG6x
dCOy5iSx4/A7vtkU5USoQmmzyWQGO3iwhpV2IdUc1jtsZTVc9ZYxnE5oI54HB1JU
bzpxtB20WqE5ssiRsr2dmyWe+WhbVmrK1e6UyAC/sS4qelzViUOIwOZrVymZWTMf
T7eB77kTKbWKH+QkD8AwBs4A9tKa3wq3rnQY9O1dC++pekZrTaOTGBacGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH/0vJYUHf7Rs9hsu1YQtDp30ATrMB8GA1UdIwQY
MBaAFHf2H8fAq0HOFU57ywjvliNRpGeEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjkt
ZWRjOWQwMmZhZjU0LzEvZl9TOGxoUWRfdEd6Mkd5N1ZoQzBPbmZRQk9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjktZWRjOWQwMmZhZjU0
LzEvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV/iVMA0G
CSqGSIb3DQEBCwUAA4IBAQBSeTUKZbpc/OvSjTMOnhJPD9imSzF4Nj60FVQrONlA
6/lKy9rPD0x1fiEMJF+wxdQ86ZEzKvasGLfntwiKITeyd6hdMNZTXPgjftdgMAFx
tNXi/XtiPdlqcOw1MKrYn1dC2RSFzp6JHPk1rbBy8n4R5bZCfC76xvuvs0RzbL4s
gQ0FLudU64T2dpRdYQBmIMfWYPHYD45FoJ6+lXMyXAMRalUsI8nsjY66QotAihPV
jQdUzDk+MzOpU7z37Er+5eXVMm/bItbBMtKkFhJ/DE1lcma8q5xX1mgGJzW2iiNu
7sJ8WBrkpp6JRkWHX4wWXvedyHZyJpQQ27aih7qLddpT
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:19 2024 by rpki-client on console-fra.rpki-client.org