Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/jaGXYgKBS0zikowDocD3SuUIXwY.roa
File: jaGXYgKBS0zikowDocD3SuUIXwY.roa (raw, json)
Hash identifier: adJ1xGl1t+t5kia5NWMhCwDGYlBB1m7p137baPC8g2I=
Subject key identifier: 8D:A1:97:62:02:81:4B:4C:E2:92:8C:03:A1:C0:F7:4A:E5:08:5F:06
Certificate issuer: /CN=83f36b0adee6cb5518763b5bc8eaa3d41f23e938
Certificate serial: 018AFB31398BE5D9E5C904D49A113169E854
Authority key identifier: 83:F3:6B:0A:DE:E6:CB:55:18:76:3B:5B:C8:EA:A3:D4:1F:23:E9:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g_NrCt7my1UYdjtbyOqj1B8j6Tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/jaGXYgKBS0zikowDocD3SuUIXwY.roa
Signing time: Wed 04 Oct 2023 14:57:01 +0000
ROA not before: Wed 04 Oct 2023 14:57:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 176.100.131.0/24 maxlen: 24
176.100.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fb:31:39:8b:e5:d9:e5:c9:04:d4:9a:11:31:69:e8:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83f36b0adee6cb5518763b5bc8eaa3d41f23e938
Validity
Not Before: Oct 4 14:57:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8da1976202814b4ce2928c03a1c0f74ae5085f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e9:53:9e:c0:7b:e6:97:aa:21:84:eb:07:55:
f4:c5:50:99:69:f7:5d:40:58:c9:4f:bf:a8:0c:88:
f0:df:23:a4:d6:43:87:8e:6e:c2:f2:d9:4e:ce:b2:
2c:29:53:f1:b7:df:40:5b:fc:84:e3:bb:3c:2e:48:
79:20:19:58:4a:9f:2a:60:96:9c:d9:42:76:41:56:
68:7d:c8:b8:80:6b:54:09:17:b6:eb:aa:8c:ef:ef:
79:63:46:bc:b4:85:68:42:32:23:13:87:13:2f:7d:
49:38:a9:bb:32:5b:11:92:fd:f9:2d:8a:da:76:a1:
e4:1b:de:6e:a1:27:a9:ef:06:bd:6b:69:a7:26:dd:
e5:87:be:ff:78:92:bb:0b:f4:e9:14:78:5f:7b:b0:
d1:d7:7b:0f:c0:11:82:45:7c:96:9b:fb:09:bf:d7:
f1:ff:bb:60:06:0c:13:d7:e2:b3:f3:78:ce:a1:d1:
e3:1c:dc:f7:d8:04:07:81:90:4e:00:7f:5f:0a:9a:
0c:c1:2d:30:e0:2f:6b:a2:54:1b:8d:eb:eb:a9:fc:
b0:21:a0:23:9e:28:23:73:f3:78:2e:13:72:ce:31:
66:42:0b:cd:85:ee:40:81:e2:ab:ee:43:82:62:f0:
f4:42:b6:2c:21:c6:5b:e4:bb:d5:fc:ac:cc:9e:59:
9f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A1:97:62:02:81:4B:4C:E2:92:8C:03:A1:C0:F7:4A:E5:08:5F:06
X509v3 Authority Key Identifier:
keyid:83:F3:6B:0A:DE:E6:CB:55:18:76:3B:5B:C8:EA:A3:D4:1F:23:E9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g_NrCt7my1UYdjtbyOqj1B8j6Tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/jaGXYgKBS0zikowDocD3SuUIXwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/g_NrCt7my1UYdjtbyOqj1B8j6Tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.130.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:69:6b:af:e5:e9:95:38:7c:02:06:39:a4:3f:46:c5:66:4f:
68:f6:77:a2:f0:ef:e7:27:2d:d1:dc:05:38:85:f4:62:64:b8:
52:2e:ab:b0:5f:b8:d8:e9:73:b1:36:56:60:96:e8:aa:51:e9:
a3:4d:10:79:95:01:f8:15:ef:fd:c6:91:e8:f2:17:a4:c7:c9:
15:82:fa:a1:21:91:0d:83:a9:ef:9d:0b:bc:30:b4:61:c5:05:
2c:90:4a:97:21:b0:7f:e6:70:4a:99:39:c9:f7:cc:a9:98:c0:
d1:37:bb:ad:9d:a0:40:1b:f9:da:43:e6:b3:4f:5d:c1:4d:e8:
bc:1e:d0:5c:78:3e:a2:6a:5a:de:79:9a:ea:8b:bf:2c:2d:55:
d8:6d:4c:85:bb:ed:3e:a6:f2:c8:d1:2e:4b:fc:a0:45:50:86:
d7:34:75:ee:83:65:c4:8c:63:5a:b9:40:e2:98:b5:28:d0:fc:
2f:eb:74:80:b8:a8:ed:e3:01:26:5b:f6:a3:9e:e6:d4:e7:b3:
82:85:c9:f7:f1:a0:47:78:fe:eb:8f:35:2f:54:be:1d:b3:e8:
09:df:a5:d0:e8:e1:67:71:a2:70:9d:06:0e:a2:4c:f8:44:a4:
c5:44:c3:19:f0:16:95:5e:de:00:26:a1:19:88:df:2f:bb:ee:
0f:bc:dc:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYr7MTmL5dnlyQTUmhExaehUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzZjM2YjBhZGVlNmNiNTUxODc2M2I1YmM4ZWFhM2Q0MWYy
M2U5MzgwHhcNMjMxMDA0MTQ1NzAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZGExOTc2MjAyODE0YjRjZTI5MjhjMDNhMWMwZjc0YWU1MDg1ZjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvulTnsB75peqIYTrB1X0xVCZafdd
QFjJT7+oDIjw3yOk1kOHjm7C8tlOzrIsKVPxt99AW/yE47s8Lkh5IBlYSp8qYJac
2UJ2QVZofci4gGtUCRe266qM7+95Y0a8tIVoQjIjE4cTL31JOKm7MlsRkv35LYra
dqHkG95uoSep7wa9a2mnJt3lh77/eJK7C/TpFHhfe7DR13sPwBGCRXyWm/sJv9fx
/7tgBgwT1+Kz83jOodHjHNz32AQHgZBOAH9fCpoMwS0w4C9rolQbjevrqfywIaAj
nigjc/N4LhNyzjFmQgvNhe5AgeKr7kOCYvD0QrYsIcZb5LvV/KzMnlmfFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI2hl2ICgUtM4pKMA6HA90rlCF8GMB8GA1UdIwQY
MBaAFIPzawre5stVGHY7W8jqo9QfI+k4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ19OckN0N215MVVZZGp0YnlPcWoxQjhqNlRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC83MzE5NWMtZTY2My00OThjLTk3ZGIt
YWY2NGYzZmEyNDU5LzEvamFHWFlnS0JTMHppa293RG9jRDNTdVVJWHdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC83MzE5NWMtZTY2My00OThjLTk3ZGItYWY2NGYzZmEyNDU5
LzEvZ19OckN0N215MVVZZGp0YnlPcWoxQjhqNlRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBsGSCMA0G
CSqGSIb3DQEBCwUAA4IBAQBcaWuv5emVOHwCBjmkP0bFZk9o9nei8O/nJy3R3AU4
hfRiZLhSLquwX7jY6XOxNlZgluiqUemjTRB5lQH4Fe/9xpHo8hekx8kVgvqhIZEN
g6nvnQu8MLRhxQUskEqXIbB/5nBKmTnJ98ypmMDRN7utnaBAG/naQ+azT13BTei8
HtBceD6ialreeZrqi78sLVXYbUyFu+0+pvLI0S5L/KBFUIbXNHXug2XEjGNauUDi
mLUo0Pwv63SAuKjt4wEmW/ajnubU57OChcn38aBHeP7rjzUvVL4ds+gJ36XQ6OFn
caJwnQYOokz4RKTFRMMZ8BaVXt4AJqEZiN8vu+4PvNzd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:59 2024 by rpki-client on console-fra.rpki-client.org