Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/76RZ8-LcNUnuRchNl3zvQoLEnmA.roa
File: 76RZ8-LcNUnuRchNl3zvQoLEnmA.roa (raw, json)
Hash identifier: 3vEH/a0snkzJEj0DkkdSytsra76E9WBwwzH/lUJkt9I=
Subject key identifier: EF:A4:59:F3:E2:DC:35:49:EE:45:C8:4D:97:7C:EF:42:82:C4:9E:60
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 0185C9E9D9D4C90AD3B5F460598CA73826E5
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/76RZ8-LcNUnuRchNl3zvQoLEnmA.roa
Signing time: Thu 19 Jan 2023 12:03:44 +0000
ROA not before: Thu 19 Jan 2023 12:03:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 195.242.243.0/24 maxlen: 24
89.46.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Feb 2023 15:06:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c9:e9:d9:d4:c9:0a:d3:b5:f4:60:59:8c:a7:38:26:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Jan 19 12:03:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efa459f3e2dc3549ee45c84d977cef4282c49e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5a:a5:80:d5:54:28:96:88:34:be:85:93:aa:
02:5c:17:5a:ae:22:03:75:d2:80:93:78:38:3d:35:
91:24:e8:56:6a:5b:53:33:40:63:30:7c:2e:0a:dc:
d9:35:94:57:fa:fa:a3:a0:b1:01:6f:a6:33:98:8c:
bb:89:65:b3:5e:0a:0c:e8:d6:80:03:31:81:27:f0:
66:00:42:bc:66:02:e5:99:08:80:17:fc:77:f1:22:
e8:28:ce:28:85:bb:15:5e:72:68:09:4d:ab:dd:57:
02:06:d3:24:be:60:61:13:02:e3:ef:d3:81:ee:6a:
09:38:62:0c:f1:e7:ff:f5:03:6f:f8:ee:cd:cf:e6:
72:30:59:bc:e5:94:d8:38:a9:72:4e:fb:6f:13:b3:
59:03:98:48:08:34:fd:21:e0:57:d7:51:9b:07:d8:
7d:d3:da:4f:70:55:d7:93:45:76:1b:5a:76:ce:38:
68:ab:61:e6:fb:dd:f6:90:bb:64:fb:ff:ed:05:dd:
64:ca:4b:be:85:e0:e5:8f:69:3e:a4:96:52:94:01:
f0:4b:73:69:33:39:7d:bb:07:cc:a6:15:51:53:69:
33:07:bc:fb:46:3f:bb:5d:0c:dd:40:8e:f3:f5:7b:
38:d2:b6:72:50:55:5a:49:ae:59:07:8a:bb:6a:02:
e3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A4:59:F3:E2:DC:35:49:EE:45:C8:4D:97:7C:EF:42:82:C4:9E:60
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/76RZ8-LcNUnuRchNl3zvQoLEnmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.10.0/24
195.242.243.0/24
Signature Algorithm: sha256WithRSAEncryption
15:6b:c2:36:06:5a:1c:4c:ea:79:cb:ca:3f:54:9d:67:98:2d:
02:4a:cd:b9:15:c3:53:03:db:ab:83:92:b5:62:3e:56:c2:0d:
0f:bd:a6:5a:90:9d:ad:03:ad:35:a2:0e:41:1b:44:7d:48:bd:
f0:32:a8:24:21:46:fa:cb:0e:35:75:34:c5:10:2b:52:cc:c2:
aa:9c:81:f4:c3:15:40:33:db:f5:3c:2e:05:05:f8:39:38:aa:
1a:bc:0c:25:b2:b9:7c:09:59:c0:5a:b2:2d:5b:8d:46:c7:84:
8b:d8:1a:51:5c:7a:5b:d9:2b:90:b8:f4:df:6b:fc:81:f9:8c:
55:f6:cb:51:09:bf:c4:66:99:5e:66:fd:11:77:08:7e:67:e0:
5a:7b:b8:c3:6a:22:69:f1:23:76:65:f6:a5:f1:69:41:1f:1c:
d8:b9:a6:bb:a5:fe:00:c6:cc:11:19:0b:d9:94:07:51:a2:9e:
a3:9e:e6:07:07:d9:f1:dc:58:f6:11:1b:1f:ce:6f:ca:3a:7f:
1f:ef:e1:04:45:42:e6:7c:d3:5a:8b:aa:8f:61:22:79:d6:d4:
bb:9e:64:11:68:9c:4c:97:cf:e8:99:95:8e:17:1b:a8:fc:8a:
d2:29:14:c3:78:13:95:c3:9a:e5:0e:69:b8:55:17:eb:1e:09:
68:c0:55:45
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYXJ6dnUyQrTtfRgWYynOCblMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1
YmE2ODEwHhcNMjMwMTE5MTIwMzQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZmE0NTlmM2UyZGMzNTQ5ZWU0NWM4NGQ5NzdjZWY0MjgyYzQ5ZTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhFqlgNVUKJaINL6Fk6oCXBdariID
ddKAk3g4PTWRJOhWaltTM0BjMHwuCtzZNZRX+vqjoLEBb6YzmIy7iWWzXgoM6NaA
AzGBJ/BmAEK8ZgLlmQiAF/x38SLoKM4ohbsVXnJoCU2r3VcCBtMkvmBhEwLj79OB
7moJOGIM8ef/9QNv+O7Nz+ZyMFm85ZTYOKlyTvtvE7NZA5hICDT9IeBX11GbB9h9
09pPcFXXk0V2G1p2zjhoq2Hm+932kLtk+//tBd1kyku+heDlj2k+pJZSlAHwS3Np
Mzl9uwfMphVRU2kzB7z7Rj+7XQzdQI7z9Xs40rZyUFVaSa5ZB4q7agLj1wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFO+kWfPi3DVJ7kXITZd870KCxJ5gMB8GA1UdIwQY
MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt
YTg3NzNkZTc2OGY3LzEvNzZSWjgtTGNOVW51UmNoTmwzenZRb0xFbm1BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3
LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWS4KAwQA
w/LzMA0GCSqGSIb3DQEBCwUAA4IBAQAVa8I2BlocTOp5y8o/VJ1nmC0CSs25FcNT
A9urg5K1Yj5Wwg0PvaZakJ2tA601og5BG0R9SL3wMqgkIUb6yw41dTTFECtSzMKq
nIH0wxVAM9v1PC4FBfg5OKoavAwlsrl8CVnAWrItW41Gx4SL2BpRXHpb2SuQuPTf
a/yB+YxV9stRCb/EZpleZv0Rdwh+Z+Bae7jDaiJp8SN2Zfal8WlBHxzYuaa7pf4A
xswRGQvZlAdRop6jnuYHB9nx3Fj2ERsfzm/KOn8f7+EERULmfNNai6qPYSJ51tS7
nmQRaJxMl8/omZWOFxuo/IrSKRTDeBOVw5rlDmm4VRfrHglowFVF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:14 2024 by rpki-client on console-ams.rpki-client.org