Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/98WN0YeMZ6viUy6FCfx04vWTHVg.roa
File: 98WN0YeMZ6viUy6FCfx04vWTHVg.roa (raw, json)
Hash identifier: VtY3vJUokVhwPblgzVbJw5235QvnHz9/TdvGBCqGh6A=
Subject key identifier: F7:C5:8D:D1:87:8C:67:AB:E2:53:2E:85:09:FC:74:E2:F5:93:1D:58
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 01856EA6B72FB9325AEAA90903A6B4D7690D
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/98WN0YeMZ6viUy6FCfx04vWTHVg.roa
Signing time: Sun 01 Jan 2023 18:44:57 +0000
ROA not before: Sun 01 Jan 2023 18:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34723
IP address blocks: 86.106.200.0/21 maxlen: 24
89.45.16.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:b7:2f:b9:32:5a:ea:a9:09:03:a6:b4:d7:69:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 18:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7c58dd1878c67abe2532e8509fc74e2f5931d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:41:a4:3a:ef:ba:44:ca:bf:7d:3b:39:c8:df:
96:55:04:fe:f2:63:06:c9:68:0a:5b:8d:34:dc:a3:
01:bf:4e:09:64:f9:7b:28:25:3b:d9:d9:29:1c:ec:
4e:62:f3:68:4d:01:cf:19:26:0f:e3:fe:2d:a8:a1:
b3:57:d3:09:46:82:83:3b:a1:b8:16:04:f5:a3:ca:
d4:b0:8d:d4:62:af:b9:33:ff:01:87:16:47:07:d5:
91:92:32:e8:ef:5c:74:18:e7:5c:3c:34:99:e4:1e:
94:f2:68:63:01:65:2a:65:9b:5e:ec:29:8b:38:78:
62:12:f7:62:59:ec:d6:87:b9:20:3b:c1:e4:1b:67:
10:2d:d4:93:85:05:a4:c7:88:b5:03:db:e8:54:89:
d0:c9:94:cf:4b:8e:e8:99:48:9b:b0:e2:ec:a0:42:
f3:c8:b7:c1:15:d4:02:02:1e:cc:aa:a4:16:8d:26:
73:e3:da:93:77:02:80:74:e1:80:16:12:59:d7:98:
28:3f:38:a8:d4:71:5e:87:01:29:f7:1c:f4:40:93:
ed:96:af:57:be:ce:d8:5e:71:88:0f:84:6e:df:ec:
9e:f8:51:07:cf:6c:f0:f6:70:d3:b2:b7:2a:93:02:
c4:d6:94:7e:c8:dc:e1:05:f6:2d:ff:6f:30:19:1a:
93:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C5:8D:D1:87:8C:67:AB:E2:53:2E:85:09:FC:74:E2:F5:93:1D:58
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/98WN0YeMZ6viUy6FCfx04vWTHVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.200.0/21
89.45.16.0/21
Signature Algorithm: sha256WithRSAEncryption
d5:c6:fa:78:4e:80:43:5e:df:c7:9e:95:2f:a8:0e:74:93:b2:
2f:70:cb:34:93:4e:6f:9f:a3:0c:45:a1:94:d5:33:6d:8c:74:
c8:f6:d3:df:f8:d1:92:ad:11:01:4c:ed:ba:9d:b2:c1:df:cb:
69:07:ef:69:d5:d9:74:0c:24:f0:bb:54:57:cf:6f:13:73:3a:
91:b0:f7:d1:58:a6:a4:e2:dd:41:72:4e:3b:dc:eb:b1:c9:45:
5f:a0:f0:b2:f2:c6:d7:51:d2:35:5c:0b:97:ca:69:a4:c0:90:
fc:bb:77:f3:a7:6e:ba:36:53:38:4f:a0:87:28:46:71:e0:a8:
0c:5b:e5:18:95:27:28:8b:b7:20:3d:dd:98:28:1d:a3:61:dd:
9d:fb:92:a9:53:ac:d4:6b:78:ff:7a:bf:ce:32:c0:aa:28:f0:
5b:e5:85:f4:a0:25:17:a7:9f:89:e5:9f:7b:6d:46:cc:f3:6b:
31:16:c9:f2:af:03:d3:9f:4d:97:de:71:6a:bf:59:5c:0f:86:
47:98:9c:42:0f:10:96:f7:36:94:23:3f:71:6d:93:09:e5:51:
53:49:b7:97:0b:19:14:c6:db:4c:60:66:e3:1d:67:96:28:8f:
c8:39:4b:b8:b1:c8:1a:41:85:4e:99:3b:8c:41:a5:c8:5a:9f:
18:91:87:34
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVuprcvuTJa6qkJA6a012kNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5
M2FlYjkwHhcNMjMwMTAxMTg0NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmN2M1OGRkMTg3OGM2N2FiZTI1MzJlODUwOWZjNzRlMmY1OTMxZDU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkkGkOu+6RMq/fTs5yN+WVQT+8mMG
yWgKW4003KMBv04JZPl7KCU72dkpHOxOYvNoTQHPGSYP4/4tqKGzV9MJRoKDO6G4
FgT1o8rUsI3UYq+5M/8BhxZHB9WRkjLo71x0GOdcPDSZ5B6U8mhjAWUqZZte7CmL
OHhiEvdiWezWh7kgO8HkG2cQLdSThQWkx4i1A9voVInQyZTPS47omUibsOLsoELz
yLfBFdQCAh7MqqQWjSZz49qTdwKAdOGAFhJZ15goPzio1HFehwEp9xz0QJPtlq9X
vs7YXnGID4Ru3+ye+FEHz2zw9nDTsrcqkwLE1pR+yNzhBfYt/28wGRqTtwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFPfFjdGHjGer4lMuhQn8dOL1kx1YMB8GA1UdIwQY
MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt
NWQ0OGI2NWNlNTczLzEvOThXTjBZZU1aNnZpVXk2RkNmeDA0dldUSFZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz
LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDVmrIAwQD
WS0QMA0GCSqGSIb3DQEBCwUAA4IBAQDVxvp4ToBDXt/HnpUvqA50k7IvcMs0k05v
n6MMRaGU1TNtjHTI9tPf+NGSrREBTO26nbLB38tpB+9p1dl0DCTwu1RXz28TczqR
sPfRWKak4t1Bck473OuxyUVfoPCy8sbXUdI1XAuXymmkwJD8u3fzp266NlM4T6CH
KEZx4KgMW+UYlScoi7cgPd2YKB2jYd2d+5KpU6zUa3j/er/OMsCqKPBb5YX0oCUX
p5+J5Z97bUbM82sxFsnyrwPTn02X3nFqv1lcD4ZHmJxCDxCW9zaUIz9xbZMJ5VFT
SbeXCxkUxttMYGbjHWeWKI/IOUu4scgaQYVOmTuMQaXIWp8YkYc0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org