Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/IUr_9M8pSCYjtXBB1l6F3Mvlg5Y.roa
File: IUr_9M8pSCYjtXBB1l6F3Mvlg5Y.roa (raw, json)
Hash identifier: 1ViZSjtihOUN0tggq0nIpmekcXw0Qkt/umXrAfUfYAM=
Subject key identifier: 21:4A:FF:F4:CF:29:48:26:23:B5:70:41:D6:5E:85:DC:CB:E5:83:96
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 0185719E7593F1707BD42C89EF19ACED35CA
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/IUr_9M8pSCYjtXBB1l6F3Mvlg5Y.roa
Signing time: Mon 02 Jan 2023 08:34:48 +0000
ROA not before: Mon 02 Jan 2023 08:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21209
IP address blocks: 213.253.215.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:75:93:f1:70:7b:d4:2c:89:ef:19:ac:ed:35:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 2 08:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=214afff4cf29482623b57041d65e85dccbe58396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7e:05:ce:11:69:35:5f:b4:9b:91:ca:3a:b7:
25:ec:7c:ea:26:8c:07:f4:4b:df:5c:c0:ae:2c:87:
82:4d:44:fa:5a:75:03:45:6b:c0:d4:81:d9:9f:16:
f3:45:45:15:dd:c0:9c:70:ef:ec:59:c9:2b:33:14:
73:cb:10:bc:44:66:80:e8:3e:2a:63:1a:b1:50:f0:
95:99:ff:48:43:97:84:ae:5e:a9:35:5e:0a:9c:82:
2c:97:2d:13:a7:16:17:6b:87:76:fa:fd:07:55:c6:
f0:1e:a7:09:87:27:e7:72:40:4d:aa:53:b2:05:13:
68:5d:ab:bc:45:32:49:d5:ef:d9:cb:7f:cb:23:84:
77:85:cb:3c:41:52:ab:54:d3:5d:1a:b4:5c:57:5b:
22:77:bf:98:b1:af:35:9f:e3:a9:78:ca:ea:5a:03:
81:9a:c4:a6:5c:15:ab:7e:75:2c:39:34:53:19:53:
da:b7:d1:99:e4:bc:e9:20:98:a8:f9:74:27:d4:6e:
64:fc:07:5c:06:cd:f7:d9:7b:d0:67:d1:26:1c:27:
03:93:32:08:d3:37:f5:95:7a:3f:84:95:d0:34:56:
01:f8:31:de:1f:67:93:c8:b0:86:6a:8b:0d:5f:15:
e1:a9:62:19:e1:5d:2b:00:20:75:6d:82:08:d1:f0:
8f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4A:FF:F4:CF:29:48:26:23:B5:70:41:D6:5E:85:DC:CB:E5:83:96
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/IUr_9M8pSCYjtXBB1l6F3Mvlg5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.253.215.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:91:7f:e3:f9:4d:ea:a6:ac:ba:45:a1:3d:2a:6e:d1:1d:e0:
0f:45:e5:d6:ab:d5:a3:cd:43:b2:a1:e9:bc:df:a4:e2:20:38:
b1:9a:81:a6:9d:9a:98:18:38:87:b3:cf:b3:22:0c:4e:fb:14:
fd:0e:48:49:50:17:8a:39:7d:12:5a:93:6b:b0:a3:4c:56:af:
6f:f7:ca:34:3f:60:24:b6:8a:6a:91:58:0e:f6:86:0b:98:5f:
2d:af:f1:30:82:a8:9d:32:32:44:2d:dc:09:e9:48:fe:c5:f2:
d3:fb:54:f1:ee:3a:25:b5:65:b6:f2:58:19:e9:2d:d2:b5:bf:
c8:89:69:ba:6b:7a:88:e1:ed:ec:a8:59:27:84:4d:8c:e1:de:
dd:57:d3:e9:0c:27:eb:77:bb:f5:4f:d8:28:84:ab:01:a3:ef:
ac:63:4c:46:75:90:82:7d:94:0c:0c:05:9a:6e:73:f4:70:49:
2b:c9:51:da:1c:a7:aa:b2:81:e1:25:b0:d4:4a:b4:80:7e:28:
20:63:e7:39:48:75:26:4f:da:ea:45:e7:da:35:a9:0a:4c:e8:
e6:42:4e:c0:08:96:1f:f8:61:93:14:81:32:d9:f4:8b:b1:af:
7f:9c:08:1f:4c:9c:38:a7:db:ed:ae:66:50:f6:5c:8f:6a:48:
4e:ce:fc:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxnnWT8XB71CyJ7xms7TXKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5
ZDQyODgwHhcNMjMwMTAyMDgzNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTRhZmZmNGNmMjk0ODI2MjNiNTcwNDFkNjVlODVkY2NiZTU4Mzk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkX4FzhFpNV+0m5HKOrcl7HzqJowH
9EvfXMCuLIeCTUT6WnUDRWvA1IHZnxbzRUUV3cCccO/sWckrMxRzyxC8RGaA6D4q
YxqxUPCVmf9IQ5eErl6pNV4KnIIsly0TpxYXa4d2+v0HVcbwHqcJhyfnckBNqlOy
BRNoXau8RTJJ1e/Zy3/LI4R3hcs8QVKrVNNdGrRcV1sid7+Ysa81n+OpeMrqWgOB
msSmXBWrfnUsOTRTGVPat9GZ5LzpIJio+XQn1G5k/AdcBs332XvQZ9EmHCcDkzII
0zf1lXo/hJXQNFYB+DHeH2eTyLCGaosNXxXhqWIZ4V0rACB1bYII0fCPZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCFK//TPKUgmI7VwQdZehdzL5YOWMB8GA1UdIwQY
MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It
ZWNjNDliZGMyYWQ4LzEvSVVyXzlNOHBTQ1lqdFhCQjFsNkYzTXZsZzVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4
LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1f3XMA0G
CSqGSIb3DQEBCwUAA4IBAQCgkX/j+U3qpqy6RaE9Km7RHeAPReXWq9WjzUOyoem8
36TiIDixmoGmnZqYGDiHs8+zIgxO+xT9DkhJUBeKOX0SWpNrsKNMVq9v98o0P2Ak
topqkVgO9oYLmF8tr/EwgqidMjJELdwJ6Uj+xfLT+1Tx7joltWW28lgZ6S3Stb/I
iWm6a3qI4e3sqFknhE2M4d7dV9PpDCfrd7v1T9gohKsBo++sY0xGdZCCfZQMDAWa
bnP0cEkryVHaHKeqsoHhJbDUSrSAfiggY+c5SHUmT9rqRefaNakKTOjmQk7ACJYf
+GGTFIEy2fSLsa9/nAgfTJw4p9vtrmZQ9lyPakhOzvzh
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:13 2024 by rpki-client on console-fra.rpki-client.org