Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/hp1m7jfLGpwOuEEWpPB_WDSxK3M.roa
File: hp1m7jfLGpwOuEEWpPB_WDSxK3M.roa (raw, json)
Hash identifier: Vs1P+V5GD/OE+yWZhQSRsIJGYwoc+mhfssK8sdiF0aE=
Subject key identifier: 86:9D:66:EE:37:CB:1A:9C:0E:B8:41:16:A4:F0:7F:58:34:B1:2B:73
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 01892A373D31D76CB1FA59CDA735952A619C
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/hp1m7jfLGpwOuEEWpPB_WDSxK3M.roa
Signing time: Thu 06 Jul 2023 08:00:10 +0000
ROA not before: Thu 06 Jul 2023 08:00:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 89.23.92.0/24 maxlen: 24
178.254.150.0/24 maxlen: 24
89.23.77.0/24 maxlen: 24
89.23.84.0/24 maxlen: 24
89.23.85.0/24 maxlen: 24
89.23.81.0/24 maxlen: 24
89.23.79.0/24 maxlen: 24
89.23.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jul 2023 08:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2a:37:3d:31:d7:6c:b1:fa:59:cd:a7:35:95:2a:61:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jul 6 08:00:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=869d66ee37cb1a9c0eb84116a4f07f5834b12b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7e:af:8c:da:53:fc:e8:2c:67:6e:fb:2e:d9:
b0:42:7b:85:ba:50:df:52:1e:cd:18:a3:20:a2:01:
20:c7:94:ad:5d:fb:15:19:e3:8b:bd:4b:d9:86:2c:
44:2b:ed:4a:95:96:b6:e7:ba:69:b9:08:cf:1f:3b:
62:1d:2c:f5:cc:57:8e:4c:2e:9c:18:25:ba:0b:a5:
bc:7f:b4:2e:ea:c9:32:b2:89:81:31:54:85:91:79:
89:f1:be:47:eb:8f:5c:5d:d5:17:d1:b3:db:30:f1:
ad:35:e2:cd:84:0d:e2:38:22:11:fe:a9:03:34:dc:
08:3e:8d:11:4e:dd:67:9d:87:1e:06:31:ae:8b:c5:
fc:91:68:4e:5e:5c:3f:77:5b:59:84:50:7c:57:a2:
3e:3b:a2:0d:f6:24:c1:dd:fb:06:fb:0c:03:82:7c:
fa:01:f9:9e:12:23:a9:d7:c6:ed:3f:e3:10:e7:48:
18:ba:89:89:f6:dc:9b:2b:df:25:cd:d7:2e:97:04:
5f:9e:25:5c:90:97:86:3d:c5:76:e7:f0:0b:c0:ac:
e7:6e:2f:f7:8f:bb:a9:ee:32:a0:51:3f:ef:30:cb:
c8:9b:07:d0:72:8f:ad:67:4c:25:d2:bf:7b:1c:1c:
b4:50:56:5a:71:fd:8f:04:b7:3f:d3:29:21:df:ff:
7f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:9D:66:EE:37:CB:1A:9C:0E:B8:41:16:A4:F0:7F:58:34:B1:2B:73
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/hp1m7jfLGpwOuEEWpPB_WDSxK3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.77.0/24
89.23.79.0/24
89.23.81.0/24
89.23.84.0/23
89.23.87.0/24
89.23.92.0/24
178.254.150.0/24
Signature Algorithm: sha256WithRSAEncryption
23:73:02:e7:e2:f4:f9:23:37:fb:6e:9a:60:e7:80:75:36:f4:
ea:40:fe:21:b7:e9:37:9e:de:e9:50:4b:5f:03:2f:1a:b9:7f:
42:ca:c9:1b:22:88:20:8e:9c:5e:53:94:7a:8b:fe:0f:51:e5:
0f:57:8f:2f:3e:a3:2e:81:a9:f8:65:56:2a:ab:41:15:fe:08:
3c:79:a1:90:0c:b1:d3:24:1e:04:c3:0b:d3:8b:d9:aa:da:d7:
74:e3:c1:f3:5c:a6:ff:05:f3:c6:d7:55:06:72:1d:0c:e2:98:
28:ef:39:19:71:a6:88:e4:87:fd:51:28:4a:a6:5a:71:0a:71:
43:2a:b0:2d:58:58:dc:22:1a:8a:4e:d4:ba:7f:f4:9d:fa:8e:
e0:74:7e:af:67:11:a7:0a:b8:36:4d:d1:de:45:38:9d:0c:51:
8c:82:c9:35:ae:11:c7:c1:5c:93:1e:f6:12:72:59:f3:89:05:
53:c7:bf:64:e4:43:35:1e:72:17:70:73:b8:69:8a:36:4f:86:
20:7d:fc:6a:31:ba:10:6a:e2:66:74:f4:0f:84:31:df:1f:41:
57:b3:1e:43:37:e9:6c:8f:ac:dc:3b:f4:02:75:10:20:33:b7:
50:9c:35:b1:9e:07:b2:49:a3:00:3c:84:13:27:72:28:2b:df:
c7:8e:9c:6a
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAYkqNz0x12yx+lnNpzWVKmGcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5NzEzZWYyNTI3N2UxM2RkNzNmNDQxOTZmZGE1Y2VjMGZk
OWNlMTYwHhcNMjMwNzA2MDgwMDEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjlkNjZlZTM3Y2IxYTljMGViODQxMTZhNGYwN2Y1ODM0YjEyYjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmX6vjNpT/OgsZ277LtmwQnuFulDf
Uh7NGKMgogEgx5StXfsVGeOLvUvZhixEK+1KlZa257ppuQjPHztiHSz1zFeOTC6c
GCW6C6W8f7Qu6skysomBMVSFkXmJ8b5H649cXdUX0bPbMPGtNeLNhA3iOCIR/qkD
NNwIPo0RTt1nnYceBjGui8X8kWhOXlw/d1tZhFB8V6I+O6IN9iTB3fsG+wwDgnz6
AfmeEiOp18btP+MQ50gYuomJ9tybK98lzdculwRfniVckJeGPcV25/ALwKznbi/3
j7up7jKgUT/vMMvImwfQco+tZ0wl0r97HBy0UFZacf2PBLc/0ykh3/9/ZwIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFIadZu43yxqcDrhBFqTwf1g0sStzMB8GA1UdIwQY
MBaAFOlxPvJSd+E91z9EGW/aXOwP2c4WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEt
MGY2NmMxODg3OTE2LzEvaHAxbTdqZkxHcHdPdUVFV3BQQl9XRFN4SzNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEtMGY2NmMxODg3OTE2
LzEvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAWRdNAwQA
WRdPAwQAWRdRAwQBWRdUAwQAWRdXAwQAWRdcAwQAsv6WMA0GCSqGSIb3DQEBCwUA
A4IBAQAjcwLn4vT5Izf7bppg54B1NvTqQP4ht+k3nt7pUEtfAy8auX9CyskbIogg
jpxeU5R6i/4PUeUPV48vPqMugan4ZVYqq0EV/gg8eaGQDLHTJB4EwwvTi9mq2td0
48HzXKb/BfPG11UGch0M4pgo7zkZcaaI5If9UShKplpxCnFDKrAtWFjcIhqKTtS6
f/Sd+o7gdH6vZxGnCrg2TdHeRTidDFGMgsk1rhHHwVyTHvYSclnziQVTx79k5EM1
HnIXcHO4aYo2T4YgffxqMboQauJmdPQPhDHfH0FXsx5DN+lsj6zcO/QCdRAgM7dQ
nDWxngeySaMAPIQTJ3IoK9/Hjpxq
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:41 2024 by rpki-client on console-ams.rpki-client.org