Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/t7celPKM7uw2EPoQmUn__Gxzhlw.roa
File: t7celPKM7uw2EPoQmUn__Gxzhlw.roa (raw, json)
Hash identifier: rJct/woZ7MzI50R5oGblcKNHmp/Yv39DY1MrjRKcRC4=
Subject key identifier: B7:B7:1E:94:F2:8C:EE:EC:36:10:FA:10:99:49:FF:FC:6C:73:86:5C
Certificate issuer: /CN=99d3a2d6fad651678e96d24e24d19d71fe380409
Certificate serial: 0188581C3975290E6C4334A9A4863F07242A
Authority key identifier: 99:D3:A2:D6:FA:D6:51:67:8E:96:D2:4E:24:D1:9D:71:FE:38:04:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdOi1vrWUWeOltJOJNGdcf44BAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/t7celPKM7uw2EPoQmUn__Gxzhlw.roa
Signing time: Fri 26 May 2023 12:50:24 +0000
ROA not before: Fri 26 May 2023 12:50:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13043
IP address blocks: 164.60.0.0/16 maxlen: 24
212.64.225.0/24 maxlen: 24
164.59.128.0/23 maxlen: 24
164.59.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:58:1c:39:75:29:0e:6c:43:34:a9:a4:86:3f:07:24:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d3a2d6fad651678e96d24e24d19d71fe380409
Validity
Not Before: May 26 12:50:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7b71e94f28ceeec3610fa109949fffc6c73865c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:77:e5:d1:48:77:58:81:24:ca:8e:9d:c2:47:
34:71:ed:49:1e:a9:8c:49:09:6f:71:8c:8d:e4:f5:
f5:b1:d0:94:4e:1b:f6:fe:85:54:40:ca:e9:d1:ad:
aa:73:40:c7:5c:c7:de:0e:91:0f:66:a1:6b:a1:c5:
cc:97:f8:d1:55:b7:cb:91:04:8d:0a:26:e7:c5:0d:
77:1e:21:46:78:e8:65:ea:59:54:05:24:89:c5:a1:
0b:93:42:51:ec:cb:32:63:47:7e:a6:07:64:1e:96:
cf:30:a9:5f:ac:f4:ad:8c:1d:3b:c1:86:ea:6e:23:
4b:4a:2c:aa:0b:44:1b:75:0c:51:04:19:a6:6b:bf:
c4:52:63:9b:b8:24:26:c4:4b:57:0d:cb:4a:8f:83:
08:5a:4e:85:7e:60:01:77:e1:3a:8f:df:cc:96:c4:
f6:fb:6e:91:04:b9:d9:59:de:36:84:78:85:f9:8b:
36:95:96:5c:47:40:8b:10:1a:20:fd:84:5c:fc:be:
41:d6:f5:f4:88:8a:63:e1:93:3c:91:04:d4:65:37:
ab:56:e7:5b:0a:d1:72:96:bb:09:41:8b:90:d3:a2:
6e:d3:2a:66:b3:1c:3b:a6:12:20:11:f7:c5:66:04:
05:1d:65:ef:90:74:c5:95:08:b9:6e:08:36:34:f4:
32:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B7:1E:94:F2:8C:EE:EC:36:10:FA:10:99:49:FF:FC:6C:73:86:5C
X509v3 Authority Key Identifier:
keyid:99:D3:A2:D6:FA:D6:51:67:8E:96:D2:4E:24:D1:9D:71:FE:38:04:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdOi1vrWUWeOltJOJNGdcf44BAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/t7celPKM7uw2EPoQmUn__Gxzhlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/mdOi1vrWUWeOltJOJNGdcf44BAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.59.128.0-164.59.130.255
164.60.0.0/16
212.64.225.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:43:0c:13:61:83:ff:83:09:5d:0b:fe:16:b8:ff:6a:a6:d1:
8d:db:1a:fc:2a:71:6d:fc:82:ec:04:a2:06:2b:59:ea:da:dd:
83:14:38:60:3e:c7:39:78:bc:28:d6:93:07:4b:44:80:9e:6c:
1a:79:69:79:be:bf:5e:ec:f6:00:02:a7:e8:e5:3d:d8:28:2b:
d4:cb:62:38:1b:0a:a9:ba:18:2f:9e:cb:54:cc:b1:42:d6:dd:
14:c3:bc:30:f5:98:ad:46:56:64:0e:93:06:b2:74:96:f6:c5:
03:c7:c0:67:35:19:e2:37:2f:4b:a2:a1:6c:18:bb:d6:c9:f7:
23:90:8e:22:82:6a:af:3c:3f:cb:ff:50:0c:c9:29:94:1f:c3:
54:28:bf:7b:34:24:71:48:19:89:f5:c3:11:2f:23:ac:e8:e0:
34:dd:8c:d7:3e:0d:0d:69:a3:8a:9e:73:6c:0d:20:d3:b8:67:
08:28:6a:03:22:2c:5b:48:c6:70:5e:29:86:e2:89:c2:ed:d9:
2e:1f:d6:fd:f3:a4:85:f2:37:00:4c:38:a5:35:01:18:45:2e:
69:6b:79:81:d2:57:2e:78:df:1b:58:e5:13:8c:16:c8:95:10:
17:a8:5c:f0:3d:86:3d:74:25:ac:7a:75:1d:b5:57:2e:70:0b:
6e:3c:01:82
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgISAYhYHDl1KQ5sQzSppIY/ByQqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZDNhMmQ2ZmFkNjUxNjc4ZTk2ZDI0ZTI0ZDE5ZDcxZmUz
ODA0MDkwHhcNMjMwNTI2MTI1MDI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiN2I3MWU5NGYyOGNlZWVjMzYxMGZhMTA5OTQ5ZmZmYzZjNzM4NjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXfl0Uh3WIEkyo6dwkc0ce1JHqmM
SQlvcYyN5PX1sdCUThv2/oVUQMrp0a2qc0DHXMfeDpEPZqFrocXMl/jRVbfLkQSN
CibnxQ13HiFGeOhl6llUBSSJxaELk0JR7MsyY0d+pgdkHpbPMKlfrPStjB07wYbq
biNLSiyqC0QbdQxRBBmma7/EUmObuCQmxEtXDctKj4MIWk6FfmABd+E6j9/MlsT2
+26RBLnZWd42hHiF+Ys2lZZcR0CLEBog/YRc/L5B1vX0iIpj4ZM8kQTUZTerVudb
CtFylrsJQYuQ06Ju0ypmsxw7phIgEffFZgQFHWXvkHTFlQi5bgg2NPQy2QIDAQAB
o4ICHDCCAhgwHQYDVR0OBBYEFLe3HpTyjO7sNhD6EJlJ//xsc4ZcMB8GA1UdIwQY
MBaAFJnTotb61lFnjpbSTiTRnXH+OAQJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWRPaTF2cldVV2VPbHRKT0pOR2RjZjQ0QkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS80MTBkOTQtYWY3OC00Mzk3LWFkZmUt
NDhkNzM4YzU5NDdkLzEvdDdjZWxQS003dXcyRVBvUW1Vbl9fR3h6aGx3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS80MTBkOTQtYWY3OC00Mzk3LWFkZmUtNDhkNzM4YzU5NDdk
LzEvbWRPaTF2cldVV2VPbHRKT0pOR2RjZjQ0QkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDIGCCsGAQUFBwEHAQH/BCMwITAfBAIAATAZMAwDBAekO4AD
BACkO4IDAwCkPAMEANRA4TANBgkqhkiG9w0BAQsFAAOCAQEAf0MME2GD/4MJXQv+
Frj/aqbRjdsa/CpxbfyC7ASiBitZ6trdgxQ4YD7HOXi8KNaTB0tEgJ5sGnlpeb6/
Xuz2AAKn6OU92Cgr1MtiOBsKqboYL57LVMyxQtbdFMO8MPWYrUZWZA6TBrJ0lvbF
A8fAZzUZ4jcvS6KhbBi71sn3I5COIoJqrzw/y/9QDMkplB/DVCi/ezQkcUgZifXD
ES8jrOjgNN2M1z4NDWmjip5zbA0g07hnCChqAyIsW0jGcF4phuKJwu3ZLh/W/fOk
hfI3AEw4pTUBGEUuaWt5gdJXLnjfG1jlE4wWyJUQF6hc8D2GPXQlrHp1HbVXLnAL
bjwBgg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:33 2024 by rpki-client on console-ams.rpki-client.org