Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/DSF_Acbhp7dVikQdzAdiUxkcZgs.roa
File: DSF_Acbhp7dVikQdzAdiUxkcZgs.roa (raw, json)
Hash identifier: ltSECPOS53wDzhjmmAyvD8C9PYhfThIw+BMsp/S25RY=
Subject key identifier: 0D:21:7F:01:C6:E1:A7:B7:55:8A:44:1D:CC:07:62:53:19:1C:66:0B
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0186DFA66065020D572DDEA09AB26E8BAB3B
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/DSF_Acbhp7dVikQdzAdiUxkcZgs.roa
Signing time: Tue 14 Mar 2023 10:24:28 +0000
ROA not before: Tue 14 Mar 2023 10:24:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62425
IP address blocks: 89.43.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Mar 2023 11:58:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:df:a6:60:65:02:0d:57:2d:de:a0:9a:b2:6e:8b:ab:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Mar 14 10:24:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d217f01c6e1a7b7558a441dcc076253191c660b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a0:00:d6:42:9a:48:fc:ad:88:63:64:02:8d:
eb:fb:ca:31:74:dc:b8:e5:fc:ab:1d:65:4e:16:3b:
98:70:83:5f:a2:c8:dd:8b:e4:e5:c1:44:47:1d:18:
ad:b8:e3:fc:68:be:0f:15:a6:69:4f:0e:c2:04:dd:
86:86:1a:6a:17:e1:bc:03:be:07:df:41:22:3d:d5:
2c:56:47:5b:39:c5:76:6b:76:be:00:fb:78:b3:da:
c0:98:16:c6:7b:7e:52:af:ef:70:81:44:50:18:ef:
18:d9:d4:3b:57:f3:a9:34:c2:a1:ee:3d:7c:42:0c:
5f:8e:0d:6a:b3:9e:12:8f:79:5b:21:11:97:e9:1d:
3a:98:f9:02:51:8f:8a:5a:a5:30:a8:31:d1:3c:66:
65:77:ad:b2:d8:ca:10:e6:91:c0:19:32:00:c4:1e:
9d:8c:e7:db:ef:33:7a:a0:7a:bb:cd:6b:bd:bb:09:
ba:68:84:71:a8:2a:59:ff:b7:5f:9b:66:ad:9f:bf:
fa:79:51:d3:2b:eb:cb:c5:bb:db:ae:2b:57:1b:3b:
19:e9:40:36:3f:f1:07:97:ab:98:07:0a:25:be:ac:
a8:40:55:25:b8:fb:58:6a:b4:29:51:14:5b:14:7f:
5f:62:5a:0a:a9:e4:78:fb:7d:bf:07:b2:48:31:fb:
f4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:21:7F:01:C6:E1:A7:B7:55:8A:44:1D:CC:07:62:53:19:1C:66:0B
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/DSF_Acbhp7dVikQdzAdiUxkcZgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.41.0/24
Signature Algorithm: sha256WithRSAEncryption
20:6b:28:ee:51:3c:1e:68:f4:3e:0c:59:aa:8d:fa:08:dc:f1:
cb:09:d4:55:b7:24:b4:b0:10:fe:6a:ba:be:f6:87:a7:fa:ad:
ed:95:31:da:44:d8:81:42:fe:33:b4:7f:ab:4f:fb:8b:0a:b3:
68:9e:3e:9c:9a:e3:b2:87:8f:50:df:5a:21:b0:11:e1:99:00:
83:49:ea:8b:5b:69:70:bc:f8:ce:79:87:bb:6b:21:b2:39:1d:
28:9c:8a:26:a3:9c:3b:1e:a5:30:0a:ce:4b:4a:95:86:62:65:
5d:a3:7f:d2:50:a8:7b:8c:07:26:91:9b:32:27:8c:0f:de:ff:
75:c5:2f:43:b8:40:15:19:63:15:1e:53:11:59:d0:bf:e3:0a:
f4:fd:31:26:b4:4e:3c:9b:4c:b9:d1:d2:b2:40:6d:62:00:b6:
f1:1b:c5:69:58:8d:47:24:11:7c:4b:eb:5d:a4:07:68:a3:31:
84:c2:47:9a:80:33:34:45:ae:65:c0:de:f8:49:47:ae:0b:ba:
35:a1:7b:ec:8c:95:91:7d:e3:ea:da:57:25:77:38:3d:e6:c1:
d7:a9:d8:d4:5b:32:b6:32:9f:71:22:77:38:d2:1a:92:c4:52:
9b:64:36:d2:ef:7d:4c:01:91:4e:55:0b:7a:69:fa:0c:90:0a:
44:0b:90:d2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbfpmBlAg1XLd6gmrJui6s7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5
M2FlYjkwHhcNMjMwMzE0MTAyNDI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDIxN2YwMWM2ZTFhN2I3NTU4YTQ0MWRjYzA3NjI1MzE5MWM2NjBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1aAA1kKaSPytiGNkAo3r+8oxdNy4
5fyrHWVOFjuYcINfosjdi+TlwURHHRituOP8aL4PFaZpTw7CBN2GhhpqF+G8A74H
30EiPdUsVkdbOcV2a3a+APt4s9rAmBbGe35Sr+9wgURQGO8Y2dQ7V/OpNMKh7j18
Qgxfjg1qs54Sj3lbIRGX6R06mPkCUY+KWqUwqDHRPGZld62y2MoQ5pHAGTIAxB6d
jOfb7zN6oHq7zWu9uwm6aIRxqCpZ/7dfm2atn7/6eVHTK+vLxbvbritXGzsZ6UA2
P/EHl6uYBwolvqyoQFUluPtYarQpURRbFH9fYloKqeR4+32/B7JIMfv0ewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA0hfwHG4ae3VYpEHcwHYlMZHGYLMB8GA1UdIwQY
MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt
NWQ0OGI2NWNlNTczLzEvRFNGX0FjYmhwN2RWaWtRZHpBZGlVeGtjWmdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz
LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSspMA0G
CSqGSIb3DQEBCwUAA4IBAQAgayjuUTweaPQ+DFmqjfoI3PHLCdRVtyS0sBD+arq+
9oen+q3tlTHaRNiBQv4ztH+rT/uLCrNonj6cmuOyh49Q31ohsBHhmQCDSeqLW2lw
vPjOeYe7ayGyOR0onIomo5w7HqUwCs5LSpWGYmVdo3/SUKh7jAcmkZsyJ4wP3v91
xS9DuEAVGWMVHlMRWdC/4wr0/TEmtE48m0y50dKyQG1iALbxG8VpWI1HJBF8S+td
pAdoozGEwkeagDM0Ra5lwN74SUeuC7o1oXvsjJWRfePq2lcldzg95sHXqdjUWzK2
Mp9xInc40hqSxFKbZDbS731MAZFOVQt6afoMkApEC5DS
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org