Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/c0EBtggppGqWhdaGo2GVDa-Ul9g.roa
File: c0EBtggppGqWhdaGo2GVDa-Ul9g.roa (raw, json)
Hash identifier: OftWB6XGZtRn7VDfAwfVGL4V3vqU9iBVPDObEkn9la4=
Subject key identifier: 73:41:01:B6:08:29:A4:6A:96:85:D6:86:A3:61:95:0D:AF:94:97:D8
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 01857169E7F105AC3773EDD2E9B6235BC396
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/c0EBtggppGqWhdaGo2GVDa-Ul9g.roa
Signing time: Mon 02 Jan 2023 07:37:24 +0000
ROA not before: Mon 02 Jan 2023 07:37:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212953
IP address blocks: 176.98.41.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:e7:f1:05:ac:37:73:ed:d2:e9:b6:23:5b:c3:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Jan 2 07:37:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=734101b60829a46a9685d686a361950daf9497d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c3:c1:e6:f7:21:6d:b7:7f:d4:3c:03:a9:36:
a3:7d:30:af:77:18:16:99:ef:e0:94:33:7c:6f:0e:
0e:31:63:69:58:fe:32:e6:c5:83:20:b8:31:af:4d:
0e:ea:46:f9:2c:b0:1e:60:90:2a:e9:62:e3:d0:56:
1d:58:14:b1:9e:31:30:c2:11:e7:19:ea:6a:6f:bb:
00:e9:0b:88:2b:07:5c:2d:4e:80:c3:19:17:9c:fd:
c5:c0:59:ef:84:0b:01:cd:43:94:ca:94:f6:57:b3:
36:04:90:d4:fe:f0:27:1b:04:34:2a:ff:48:de:20:
01:fc:7a:85:08:93:6a:1a:da:84:bf:b3:ac:e2:e2:
f8:7a:52:31:20:23:ab:55:23:42:7e:98:2f:07:cb:
ab:12:c3:2d:6e:76:4d:63:6d:02:9c:8e:ad:a0:5f:
0f:35:53:07:52:d1:5f:60:1e:45:ca:9d:d8:2d:b2:
4c:93:7a:61:43:b1:6b:a7:ca:b6:b7:55:19:7f:78:
1a:de:34:fe:35:b2:a0:5d:8d:5a:f8:21:a0:dc:3f:
19:a7:5c:31:a7:95:ba:00:bd:60:65:e8:00:5a:71:
ff:af:5a:b1:5d:d3:ed:b9:5d:2c:5d:91:f9:c7:68:
aa:72:b9:75:bd:06:0f:a3:71:0e:89:39:3e:b4:50:
b9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:41:01:B6:08:29:A4:6A:96:85:D6:86:A3:61:95:0D:AF:94:97:D8
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/c0EBtggppGqWhdaGo2GVDa-Ul9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.41.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:de:ae:98:05:69:79:7c:db:73:4d:ed:e8:93:20:a1:4a:c0:
93:22:f8:9f:1a:e5:be:f5:64:06:a6:f1:a8:5b:6d:91:55:c2:
9a:e7:3b:8f:f7:e4:86:02:e7:4b:b7:aa:1f:b5:bc:b8:7c:07:
15:90:9b:fd:0c:11:09:46:f6:fe:6b:8e:f2:80:f1:8b:29:1a:
f3:73:51:33:44:18:1a:59:85:75:5c:02:93:c5:bb:05:32:c1:
95:c1:b9:6d:40:64:b2:a4:73:8f:c7:d3:29:ea:b3:ae:77:32:
28:be:4c:66:c8:b7:5e:98:85:11:bd:06:86:24:cd:25:65:e1:
75:62:08:7a:51:8d:aa:f8:7c:cf:60:d4:34:5a:6f:41:fd:91:
21:22:a6:86:96:a8:13:41:7b:c4:84:ad:c6:49:c4:c6:c3:fb:
60:10:12:79:68:f5:91:22:56:ab:f9:e7:e6:45:b7:f8:f3:98:
43:33:0f:8e:f2:b9:1b:5e:5b:f0:e9:38:1d:fc:93:9e:18:e8:
d1:d0:39:ef:c0:a3:6d:27:42:f7:9e:3c:38:e5:cb:15:04:a3:
e0:14:4d:1f:21:66:01:c6:34:4f:72:61:d8:cd:83:86:33:02:
62:12:30:af:b2:4f:2a:5f:5d:ed:53:ce:0b:b3:8c:cc:f3:37:
0f:d0:81:95
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxaefxBaw3c+3S6bYjW8OWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkYjM0Nzc0YjAxOTc5Mjg0ZmQ5ZTc1NGZlYTY4ZmEzYzYx
NzgzZDAwHhcNMjMwMTAyMDczNzI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzQxMDFiNjA4MjlhNDZhOTY4NWQ2ODZhMzYxOTUwZGFmOTQ5N2Q4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMPB5vchbbd/1DwDqTajfTCvdxgW
me/glDN8bw4OMWNpWP4y5sWDILgxr00O6kb5LLAeYJAq6WLj0FYdWBSxnjEwwhHn
Gepqb7sA6QuIKwdcLU6AwxkXnP3FwFnvhAsBzUOUypT2V7M2BJDU/vAnGwQ0Kv9I
3iAB/HqFCJNqGtqEv7Os4uL4elIxICOrVSNCfpgvB8urEsMtbnZNY20CnI6toF8P
NVMHUtFfYB5Fyp3YLbJMk3phQ7Frp8q2t1UZf3ga3jT+NbKgXY1a+CGg3D8Zp1wx
p5W6AL1gZegAWnH/r1qxXdPtuV0sXZH5x2iqcrl1vQYPo3EOiTk+tFC5kwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHNBAbYIKaRqloXWhqNhlQ2vlJfYMB8GA1UdIwQY
MBaAFI2zR3SwGXkoT9nnVP6mj6PGF4PQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGIt
NjI2NTUyMWY2ZGY3LzEvYzBFQnRnZ3BwR3FXaGRhR28yR1ZEYS1VbDlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGItNjI2NTUyMWY2ZGY3
LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGIpMA0G
CSqGSIb3DQEBCwUAA4IBAQDh3q6YBWl5fNtzTe3okyChSsCTIvifGuW+9WQGpvGo
W22RVcKa5zuP9+SGAudLt6oftby4fAcVkJv9DBEJRvb+a47ygPGLKRrzc1EzRBga
WYV1XAKTxbsFMsGVwbltQGSypHOPx9Mp6rOudzIovkxmyLdemIURvQaGJM0lZeF1
Ygh6UY2q+HzPYNQ0Wm9B/ZEhIqaGlqgTQXvEhK3GScTGw/tgEBJ5aPWRIlar+efm
Rbf485hDMw+O8rkbXlvw6Tgd/JOeGOjR0DnvwKNtJ0L3njw45csVBKPgFE0fIWYB
xjRPcmHYzYOGMwJiEjCvsk8qX13tU84Ls4zM8zcP0IGV
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:12 2024 by rpki-client on console-fra.rpki-client.org