Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/M8QhC7VKO-I82HNfkiMCmrAx0hE.roa
File: M8QhC7VKO-I82HNfkiMCmrAx0hE.roa (raw, json)
Hash identifier: 6WNhpkgOWS9SNq9dhIJLp8Z/b/NXcgWjIfaDD3N5Xmo=
Subject key identifier: 33:C4:21:0B:B5:4A:3B:E2:3C:D8:73:5F:92:23:02:9A:B0:31:D2:11
Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial: 01879EE184305A56A27C715AAF148176D41A
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/M8QhC7VKO-I82HNfkiMCmrAx0hE.roa
Signing time: Thu 20 Apr 2023 13:36:32 +0000
ROA not before: Thu 20 Apr 2023 13:36:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56340
IP address blocks: 77.91.104.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:e1:84:30:5a:56:a2:7c:71:5a:af:14:81:76:d4:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
Validity
Not Before: Apr 20 13:36:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33c4210bb54a3be23cd8735f9223029ab031d211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0b:2b:58:6a:a5:3f:16:7b:2c:2d:b5:53:c5:
34:46:c3:7a:19:82:b3:38:05:58:cc:1e:50:58:44:
cb:55:5c:7a:72:c7:10:ab:76:4e:37:96:a7:26:04:
eb:06:55:5c:c1:89:56:c9:8b:44:8e:5f:e6:07:9b:
3e:28:1c:11:67:1b:bb:6c:14:3b:30:e3:16:c5:15:
63:df:b6:50:5d:6a:4c:0c:4b:72:d9:93:19:96:74:
67:e8:57:60:3a:f7:2d:f3:05:0a:70:54:9a:f7:94:
96:fc:06:82:2b:d9:68:61:dc:ad:dc:9e:23:d3:43:
07:b6:25:8b:56:34:62:c6:54:48:a6:2b:68:b3:d9:
f0:21:94:c4:c9:f7:c8:32:db:d1:51:94:f2:62:33:
15:de:20:43:9a:83:eb:93:c4:3e:91:7f:11:13:9d:
b6:6a:ba:ba:ca:05:75:e6:b0:67:b5:49:38:31:25:
f0:ba:49:b0:5e:27:71:0f:6b:e3:c2:90:5b:0e:c3:
4a:63:47:4f:21:39:de:48:c4:62:33:c4:d7:a4:8c:
07:c6:3a:75:d5:59:06:b4:66:3f:a8:0c:4c:21:60:
55:20:d7:f0:3c:5a:71:08:96:96:0f:48:b5:61:fc:
48:ba:e0:91:3f:75:0c:3c:27:64:a4:d9:bf:f2:10:
77:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C4:21:0B:B5:4A:3B:E2:3C:D8:73:5F:92:23:02:9A:B0:31:D2:11
X509v3 Authority Key Identifier:
keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/M8QhC7VKO-I82HNfkiMCmrAx0hE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.104.0/21
Signature Algorithm: sha256WithRSAEncryption
af:d9:e7:3e:4c:01:a4:ac:54:20:30:65:09:1d:2d:6e:a4:1b:
86:96:59:7e:29:49:27:7b:ad:37:83:c8:9f:71:9c:da:ce:06:
97:0a:b1:5a:07:64:e7:f6:69:11:91:32:7b:99:f8:a9:77:56:
d3:04:00:fa:c3:eb:35:62:c2:d6:cf:5b:5f:a4:4c:ee:78:0f:
84:a2:be:ae:8d:d1:3c:c2:80:87:06:19:2a:dc:3e:8e:d5:21:
7f:06:0f:b7:0a:58:c6:fc:2d:38:55:52:cc:ee:f5:a5:de:97:
d1:15:cd:bb:fd:47:0e:66:02:25:40:db:27:55:17:5f:73:21:
49:c6:d8:eb:2a:19:f1:68:a4:7d:fd:28:83:15:7d:93:61:9a:
17:71:c9:b0:9d:65:38:00:ee:06:50:c5:ae:3a:dd:47:53:fa:
18:2f:8f:a6:5a:51:78:dc:30:56:36:66:21:10:96:3a:c4:2c:
38:3c:4f:16:ea:ed:55:fc:7b:fc:a1:e5:0c:21:14:ca:b8:ec:
1e:7c:bf:68:eb:07:d9:c6:ff:0f:b6:a5:49:81:01:94:4a:fe:
43:5e:69:15:c2:d4:eb:d3:c0:c9:7e:23:5a:7c:ec:48:7e:e8:
d6:d4:ff:cf:03:66:e6:e2:67:3e:a9:ec:80:3a:36:b3:a9:ae:
8f:4d:63:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYee4YQwWlaifHFarxSBdtQaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2OTJjNWYxNjMxMzY1MzQyNWJjNDY3MTA1ODc1ZTNhMjk3
Y2ZmOWIwHhcNMjMwNDIwMTMzNjMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2M0MjEwYmI1NGEzYmUyM2NkODczNWY5MjIzMDI5YWIwMzFkMjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngsrWGqlPxZ7LC21U8U0RsN6GYKz
OAVYzB5QWETLVVx6cscQq3ZON5anJgTrBlVcwYlWyYtEjl/mB5s+KBwRZxu7bBQ7
MOMWxRVj37ZQXWpMDEty2ZMZlnRn6FdgOvct8wUKcFSa95SW/AaCK9loYdyt3J4j
00MHtiWLVjRixlRIpitos9nwIZTEyffIMtvRUZTyYjMV3iBDmoPrk8Q+kX8RE522
arq6ygV15rBntUk4MSXwukmwXidxD2vjwpBbDsNKY0dPITneSMRiM8TXpIwHxjp1
1VkGtGY/qAxMIWBVINfwPFpxCJaWD0i1YfxIuuCRP3UMPCdkpNm/8hB3QQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDPEIQu1SjviPNhzX5IjApqwMdIRMB8GA1UdIwQY
MBaAFAaSxfFjE2U0JbxGcQWHXjopfP+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMt
YzlmNTdlOTU5ZWYxLzEvTThRaEM3VktPLUk4MkhOZmtpTUNtckF4MGhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMtYzlmNTdlOTU5ZWYx
LzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDTVtoMA0G
CSqGSIb3DQEBCwUAA4IBAQCv2ec+TAGkrFQgMGUJHS1upBuGlll+KUkne603g8if
cZzazgaXCrFaB2Tn9mkRkTJ7mfipd1bTBAD6w+s1YsLWz1tfpEzueA+Eor6ujdE8
woCHBhkq3D6O1SF/Bg+3CljG/C04VVLM7vWl3pfRFc27/UcOZgIlQNsnVRdfcyFJ
xtjrKhnxaKR9/SiDFX2TYZoXccmwnWU4AO4GUMWuOt1HU/oYL4+mWlF43DBWNmYh
EJY6xCw4PE8W6u1V/Hv8oeUMIRTKuOwefL9o6wfZxv8PtqVJgQGUSv5DXmkVwtTr
08DJfiNafOxIfujW1P/PA2bm4mc+qeyAOjazqa6PTWO3
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:09 2024 by rpki-client on console-fra.rpki-client.org