Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/xGR8HeRc4QKQgehBPgJ3SFO-5VU.roa
File: xGR8HeRc4QKQgehBPgJ3SFO-5VU.roa (raw, json)
Hash identifier: PuHJke5W5vZK1dtBqpk9JQJZeHHZ++OpoIv88LidkJs=
Subject key identifier: C4:64:7C:1D:E4:5C:E1:02:90:81:E8:41:3E:02:77:48:53:BE:E5:55
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0185734CB4927AE7F9D8DD548B06781C12AF
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/xGR8HeRc4QKQgehBPgJ3SFO-5VU.roa
Signing time: Mon 02 Jan 2023 16:24:44 +0000
ROA not before: Mon 02 Jan 2023 16:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54128
IP address blocks: 213.86.124.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:b4:92:7a:e7:f9:d8:dd:54:8b:06:78:1c:12:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 2 16:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4647c1de45ce1029081e8413e02774853bee555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d7:66:fb:88:a2:d9:a8:c9:dc:70:69:b8:c3:
9d:75:8b:fd:f8:9f:2c:2a:ca:7e:67:b2:e2:29:1f:
74:8d:ce:ed:85:19:2c:9e:11:6c:a7:f1:03:c3:82:
3b:82:b9:e7:e5:5f:8d:0b:a6:13:44:a8:1f:3a:d1:
07:d5:e2:af:3d:66:dc:8b:a7:08:98:8c:d4:80:fa:
b4:11:9b:1d:a2:d8:fb:52:36:9f:1e:e1:ed:76:f3:
41:18:b3:b1:c7:6d:9b:ec:43:ea:7f:46:74:af:32:
37:db:da:09:5c:b1:9a:2f:9b:a3:10:9c:f2:73:2c:
16:6e:7d:36:a2:d6:57:17:d1:fe:fb:4f:7f:d4:c5:
d9:b1:3d:4c:b6:87:b2:1f:e8:11:08:ce:85:8c:ab:
0d:1e:57:60:f5:88:c1:7f:f4:83:b4:09:48:e8:44:
20:d3:df:b3:08:91:37:e9:53:7f:60:bf:32:48:e1:
27:34:f7:6a:4b:cb:30:b1:fc:05:a4:ee:94:fc:d8:
70:cf:37:97:16:b2:03:f7:c0:18:9f:6d:e1:13:c0:
21:11:eb:63:95:38:7c:53:b8:cb:85:8f:7f:7b:da:
ad:1c:a6:87:6c:8e:83:de:19:33:4d:6e:de:1e:bd:
30:7d:8b:e9:be:bb:9d:79:2f:de:53:42:12:e8:d5:
6a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:64:7C:1D:E4:5C:E1:02:90:81:E8:41:3E:02:77:48:53:BE:E5:55
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/xGR8HeRc4QKQgehBPgJ3SFO-5VU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.86.124.0/24
Signature Algorithm: sha256WithRSAEncryption
58:e7:03:35:d4:ff:0d:78:ac:26:ee:4d:6b:6a:e8:ed:01:6a:
6d:d8:5c:3e:17:27:3e:4a:5c:a7:9b:b1:5e:4d:ee:e6:c5:92:
e7:7a:75:fe:e1:b0:f2:0d:e9:94:88:ea:71:87:82:80:57:d1:
1e:aa:a5:1c:ff:3c:c8:88:97:cf:04:bc:3e:ee:22:fd:73:21:
a5:a0:36:a1:8a:90:3a:2b:db:e1:9e:12:69:42:2f:d8:62:28:
36:d2:c0:9b:a7:f0:e4:16:e1:14:5d:23:d5:05:27:d5:67:e5:
a9:6f:ed:18:14:2a:86:a8:18:b1:62:86:e7:1d:fe:4f:6f:59:
1f:8a:d0:9b:56:46:2b:e6:ca:88:13:17:fe:a6:56:f2:02:ef:
13:11:8f:9b:63:3e:a3:65:f5:fe:04:50:48:57:10:99:40:cf:
0f:54:c1:24:f0:52:65:b6:a8:76:14:29:90:ec:79:60:d4:dc:
2a:6f:3d:2b:0c:eb:c9:ec:2c:10:de:b9:35:80:8e:66:ff:a3:
9b:e3:1d:f3:99:b9:6b:bf:b3:dc:0e:9c:90:7a:23:f6:88:38:
6c:21:e2:ea:16:78:97:c0:1e:f4:75:c8:9f:a1:d4:0f:48:5b:
e6:35:52:9b:7a:01:8d:86:5f:5d:b6:fd:0d:60:e0:c6:89:6e:
6e:0f:eb:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzTLSSeuf52N1UiwZ4HBKvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjZjhmZmMwODg1OTFlNGYyNDNiYWFmYTIxYjQyOThiZmIz
NjYwMjYwHhcNMjMwMTAyMTYyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDY0N2MxZGU0NWNlMTAyOTA4MWU4NDEzZTAyNzc0ODUzYmVlNTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtdm+4ii2ajJ3HBpuMOddYv9+J8s
Ksp+Z7LiKR90jc7thRksnhFsp/EDw4I7grnn5V+NC6YTRKgfOtEH1eKvPWbci6cI
mIzUgPq0EZsdotj7UjafHuHtdvNBGLOxx22b7EPqf0Z0rzI329oJXLGaL5ujEJzy
cywWbn02otZXF9H++09/1MXZsT1MtoeyH+gRCM6FjKsNHldg9YjBf/SDtAlI6EQg
09+zCJE36VN/YL8ySOEnNPdqS8swsfwFpO6U/NhwzzeXFrID98AYn23hE8AhEetj
lTh8U7jLhY9/e9qtHKaHbI6D3hkzTW7eHr0wfYvpvrudeS/eU0IS6NVqeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMRkfB3kXOECkIHoQT4Cd0hTvuVVMB8GA1UdIwQY
MBaAFEz4/8CIWR5PJDuq+iG0KYv7NmAmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMt
YjNiNzhiMGI2NmVhLzEveEdSOEhlUmM0UUtRZ2VoQlBnSjNTRk8tNVZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMtYjNiNzhiMGI2NmVh
LzEvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1VZ8MA0G
CSqGSIb3DQEBCwUAA4IBAQBY5wM11P8NeKwm7k1raujtAWpt2Fw+Fyc+Slynm7Fe
Te7mxZLnenX+4bDyDemUiOpxh4KAV9EeqqUc/zzIiJfPBLw+7iL9cyGloDahipA6
K9vhnhJpQi/YYig20sCbp/DkFuEUXSPVBSfVZ+Wpb+0YFCqGqBixYobnHf5Pb1kf
itCbVkYr5sqIExf+plbyAu8TEY+bYz6jZfX+BFBIVxCZQM8PVMEk8FJltqh2FCmQ
7Hlg1Nwqbz0rDOvJ7CwQ3rk1gI5m/6Ob4x3zmblrv7PcDpyQeiP2iDhsIeLqFniX
wB70dcifodQPSFvmNVKbegGNhl9dtv0NYODGiW5uD+sw
-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:09 2024 by rpki-client on console-ams.rpki-client.org