Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/aR807DKaZ61jYhGoCRxoCQz_K4Y.roa
File: aR807DKaZ61jYhGoCRxoCQz_K4Y.roa (raw, json)
Hash identifier: qXF6EcTmCox7ztIOrp+LaYceXxmTwRGULKyBqyhLdnI=
Subject key identifier: 69:1F:34:EC:32:9A:67:AD:63:62:11:A8:09:1C:68:09:0C:FF:2B:86
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 018570CBE827911CBDAE29B18C1B7DC7CA5F
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/aR807DKaZ61jYhGoCRxoCQz_K4Y.roa
Signing time: Mon 02 Jan 2023 04:44:49 +0000
ROA not before: Mon 02 Jan 2023 04:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51249
IP address blocks: 87.99.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:e8:27:91:1c:bd:ae:29:b1:8c:1b:7d:c7:ca:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 2 04:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=691f34ec329a67ad636211a8091c68090cff2b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bf:f2:52:fa:39:9c:7f:d6:04:d6:4d:3d:59:
ed:10:69:0e:a3:0c:31:da:0b:2d:73:bf:b0:2a:0d:
5d:88:b0:56:e5:4e:e6:67:9f:56:a3:65:74:38:49:
6a:78:3a:fe:82:fd:31:2b:3c:1c:4c:6c:5e:61:dd:
e4:26:8f:68:66:43:94:7a:bb:f1:86:ee:a2:8f:84:
a7:f2:d7:d7:c9:7f:3b:bc:f7:5b:f7:aa:bf:ac:49:
0d:b4:66:69:f2:65:8e:a1:4a:f6:24:a9:b7:99:56:
f6:27:8f:dd:68:5d:04:5c:3b:39:00:26:0b:37:41:
1b:5d:76:7e:52:23:f3:a3:20:38:d8:94:89:b0:a7:
64:d6:f6:93:23:6d:b9:1c:bc:8a:92:8a:e2:4f:e9:
db:55:0a:05:04:63:cd:6c:d2:f1:55:2a:d2:b8:b0:
d3:aa:55:4a:80:d4:63:07:02:65:1b:2a:90:d3:1a:
e3:04:5a:c8:f9:4c:e6:d4:58:98:76:d6:29:76:eb:
a7:51:ec:c7:a5:fe:22:4b:01:15:ca:82:1f:4e:92:
a9:81:a8:48:81:9f:5f:65:4d:1d:4e:e0:dd:5b:e2:
30:25:a4:99:c2:84:af:72:a2:e6:bc:f6:5b:19:d2:
bb:d6:27:07:79:58:3c:4d:31:16:1a:80:60:d7:7f:
df:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:1F:34:EC:32:9A:67:AD:63:62:11:A8:09:1C:68:09:0C:FF:2B:86
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/aR807DKaZ61jYhGoCRxoCQz_K4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.99.71.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:ba:73:28:21:a5:49:47:27:52:04:a5:8d:dd:55:7f:e8:bd:
38:f5:4c:9c:c8:43:18:ad:dc:a1:be:02:ab:b5:ff:02:5d:5d:
a4:ba:17:a9:96:81:54:8d:07:18:bc:fb:fa:c9:15:d6:18:d3:
85:71:b9:7d:d0:44:37:bc:7b:4c:32:81:ca:33:a3:a8:be:dc:
59:90:dd:77:05:ee:95:7d:89:8b:a0:04:a5:cb:b8:fc:91:7b:
53:c3:3b:f7:a5:31:7a:19:64:a3:1f:78:f0:bc:d1:fd:c6:84:
78:33:fd:bf:e0:47:00:1e:06:64:c5:7b:db:fb:e2:96:18:ec:
9c:42:21:35:22:c6:07:4c:b6:02:5e:dd:31:09:ea:0f:b9:78:
c9:b8:26:cf:03:eb:1a:bb:00:49:73:7f:8a:e8:1f:6d:e4:34:
53:d5:a7:9d:e0:d2:ed:25:fb:6c:fe:39:18:39:dd:b1:6d:c2:
1d:74:8c:c2:f1:75:f1:b9:0a:60:8c:d4:c7:dd:fb:14:e3:37:
b2:6e:46:9f:d8:51:e2:62:59:74:a4:24:8c:b4:71:bd:54:1a:
8b:bc:da:76:f9:39:d8:56:d7:d1:fc:71:f7:06:7a:8f:63:41:
1c:41:c4:26:6b:76:24:7c:1a:86:db:ae:8c:87:65:ba:0a:5f:
c8:27:43:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwy+gnkRy9rimxjBt9x8pfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YWRkOWI2NzFmN2EzNmViMjM2N2UzNGZlZTRiY2IxM2I4
ZjY2Y2MwHhcNMjMwMTAyMDQ0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTFmMzRlYzMyOWE2N2FkNjM2MjExYTgwOTFjNjgwOTBjZmYyYjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxr/yUvo5nH/WBNZNPVntEGkOowwx
2gstc7+wKg1diLBW5U7mZ59Wo2V0OElqeDr+gv0xKzwcTGxeYd3kJo9oZkOUervx
hu6ij4Sn8tfXyX87vPdb96q/rEkNtGZp8mWOoUr2JKm3mVb2J4/daF0EXDs5ACYL
N0EbXXZ+UiPzoyA42JSJsKdk1vaTI225HLyKkoriT+nbVQoFBGPNbNLxVSrSuLDT
qlVKgNRjBwJlGyqQ0xrjBFrI+Uzm1FiYdtYpduunUezHpf4iSwEVyoIfTpKpgahI
gZ9fZU0dTuDdW+IwJaSZwoSvcqLmvPZbGdK71icHeVg8TTEWGoBg13/fAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGkfNOwymmetY2IRqAkcaAkM/yuGMB8GA1UdIwQY
MBaAFIit2bZx96NusjZ+NP7kvLE7j2bMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUszWnRuSDNvMjZ5Tm40MF91UzhzVHVQWnN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zZWQwMGEtMTVlZS00NjY0LWE3ZjEt
YTFiOTZiOWI3MGY4LzEvYVI4MDdES2FaNjFqWWhHb0NSeG9DUXpfSzRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8zZWQwMGEtMTVlZS00NjY0LWE3ZjEtYTFiOTZiOWI3MGY4
LzEvaUszWnRuSDNvMjZ5Tm40MF91UzhzVHVQWnN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV2NHMA0G
CSqGSIb3DQEBCwUAA4IBAQA8unMoIaVJRydSBKWN3VV/6L049UycyEMYrdyhvgKr
tf8CXV2kuheploFUjQcYvPv6yRXWGNOFcbl90EQ3vHtMMoHKM6OovtxZkN13Be6V
fYmLoASly7j8kXtTwzv3pTF6GWSjH3jwvNH9xoR4M/2/4EcAHgZkxXvb++KWGOyc
QiE1IsYHTLYCXt0xCeoPuXjJuCbPA+sauwBJc3+K6B9t5DRT1aed4NLtJfts/jkY
Od2xbcIddIzC8XXxuQpgjNTH3fsU4zeybkaf2FHiYll0pCSMtHG9VBqLvNp2+TnY
VtfR/HH3BnqPY0EcQcQma3YkfBqG266Mh2W6Cl/IJ0PU
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:49 2024 by rpki-client on console-fra.rpki-client.org