Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/tsrXCks8YEgvCsiwXcxMeOSl0Ew.roa
File: tsrXCks8YEgvCsiwXcxMeOSl0Ew.roa (raw, json)
Hash identifier: O+3okg2vXRJRqRLJhnK66EAL0/JumkCJlVF3xbAeKEo=
Subject key identifier: B6:CA:D7:0A:4B:3C:60:48:2F:0A:C8:B0:5D:CC:4C:78:E4:A5:D0:4C
Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial: 01879EE18734CBCC85CD402ECED8B7FA8718
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/tsrXCks8YEgvCsiwXcxMeOSl0Ew.roa
Signing time: Thu 20 Apr 2023 13:36:33 +0000
ROA not before: Thu 20 Apr 2023 13:36:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207168
IP address blocks: 77.91.98.0/23 maxlen: 23
77.91.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:e1:87:34:cb:cc:85:cd:40:2e:ce:d8:b7:fa:87:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
Validity
Not Before: Apr 20 13:36:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6cad70a4b3c60482f0ac8b05dcc4c78e4a5d04c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:43:fe:ea:65:63:38:a2:2d:45:dd:76:f1:14:
fc:9c:c4:da:16:ba:38:bd:00:5d:bb:73:c4:dd:20:
8a:b3:33:a2:dd:11:e2:3d:3a:88:14:71:f7:96:99:
b1:e5:2f:3e:99:2e:3e:ac:86:ab:88:de:14:a9:88:
83:0c:57:88:05:13:10:a6:45:8b:43:e6:01:1b:c5:
34:af:51:3d:ae:aa:9d:05:73:59:cc:1f:42:e2:f3:
50:06:34:50:57:26:00:42:79:a2:18:d4:6f:83:e3:
c9:04:b1:07:8f:c1:c5:15:23:fa:6e:39:a7:91:14:
bb:ab:e0:ba:99:9c:51:39:ea:ac:c7:92:e3:f1:85:
e3:7b:a0:7f:1a:c2:4b:12:17:c3:ed:27:00:25:0b:
7e:d1:f1:f9:da:38:73:4d:ef:53:f7:1a:b4:d6:d9:
e7:8a:89:db:6b:7b:28:b3:f2:1c:80:26:2e:63:85:
70:f2:d2:40:fa:8b:ba:20:f1:d3:65:45:81:68:16:
89:9e:58:64:b2:de:d6:a8:22:e6:c0:5b:39:f5:27:
cf:0d:3e:90:52:16:a6:8d:41:9b:92:64:eb:4d:5f:
cd:03:bd:ed:59:66:4a:e8:4a:e1:6b:42:e4:f3:ed:
58:bd:2c:52:1e:5b:c0:8f:8a:50:d6:74:96:8d:70:
3f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:CA:D7:0A:4B:3C:60:48:2F:0A:C8:B0:5D:CC:4C:78:E4:A5:D0:4C
X509v3 Authority Key Identifier:
keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/tsrXCks8YEgvCsiwXcxMeOSl0Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.98.0/23
77.91.125.0/24
Signature Algorithm: sha256WithRSAEncryption
35:68:2a:18:b7:c3:41:ac:4e:0d:cd:a2:59:a9:53:3e:d7:3d:
90:8e:67:50:70:fc:a3:04:9d:ed:ed:9d:84:ba:3c:ea:fa:c9:
9c:70:d5:28:d2:cd:43:84:97:fe:06:25:c8:f3:f9:66:0a:7d:
33:f5:58:39:52:46:d7:21:2d:85:86:1e:6f:ee:f1:56:cb:96:
ea:aa:93:79:85:91:e9:b3:ac:5b:c2:9a:70:f0:82:db:4f:16:
82:0d:5c:e9:1e:eb:1a:ac:df:78:a1:c6:12:05:45:4e:06:75:
09:92:14:30:9c:2c:e3:b2:71:d9:d2:13:8e:c0:da:97:9f:43:
29:6f:c4:d4:50:b1:d0:8c:bb:cb:cb:c7:3a:4b:97:6b:0b:22:
fe:f3:32:a4:aa:4c:db:50:59:75:cc:80:f5:ec:91:8d:b2:a4:
31:79:e7:9f:c6:8e:55:34:6d:c1:8c:4e:4d:90:5f:e1:53:c0:
64:3a:20:64:96:28:0d:f7:e7:10:82:71:9d:78:73:11:10:14:
3b:b1:f3:a6:99:d8:ab:fa:07:d4:dd:e7:7f:50:f0:23:b0:2c:
b8:c1:71:8a:39:07:27:57:3b:03:7e:e5:8f:d2:85:6d:c0:86:
23:52:88:8e:02:a8:ba:f2:12:c6:50:db:1e:d3:8d:07:5b:48:
b1:fe:72:df
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYee4Yc0y8yFzUAuzti3+ocYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2OTJjNWYxNjMxMzY1MzQyNWJjNDY3MTA1ODc1ZTNhMjk3
Y2ZmOWIwHhcNMjMwNDIwMTMzNjMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmNhZDcwYTRiM2M2MDQ4MmYwYWM4YjA1ZGNjNGM3OGU0YTVkMDRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy0P+6mVjOKItRd128RT8nMTaFro4
vQBdu3PE3SCKszOi3RHiPTqIFHH3lpmx5S8+mS4+rIariN4UqYiDDFeIBRMQpkWL
Q+YBG8U0r1E9rqqdBXNZzB9C4vNQBjRQVyYAQnmiGNRvg+PJBLEHj8HFFSP6bjmn
kRS7q+C6mZxROeqsx5Lj8YXje6B/GsJLEhfD7ScAJQt+0fH52jhzTe9T9xq01tnn
ionba3sos/IcgCYuY4Vw8tJA+ou6IPHTZUWBaBaJnlhkst7WqCLmwFs59SfPDT6Q
UhamjUGbkmTrTV/NA73tWWZK6Erha0Lk8+1YvSxSHlvAj4pQ1nSWjXA/ZwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLbK1wpLPGBILwrIsF3MTHjkpdBMMB8GA1UdIwQY
MBaAFAaSxfFjE2U0JbxGcQWHXjopfP+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMt
YzlmNTdlOTU5ZWYxLzEvdHNyWENrczhZRWd2Q3Npd1hjeE1lT1NsMEV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMtYzlmNTdlOTU5ZWYx
LzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBTVtiAwQA
TVt9MA0GCSqGSIb3DQEBCwUAA4IBAQA1aCoYt8NBrE4NzaJZqVM+1z2QjmdQcPyj
BJ3t7Z2Eujzq+smccNUo0s1DhJf+BiXI8/lmCn0z9Vg5UkbXIS2Fhh5v7vFWy5bq
qpN5hZHps6xbwppw8ILbTxaCDVzpHusarN94ocYSBUVOBnUJkhQwnCzjsnHZ0hOO
wNqXn0Mpb8TUULHQjLvLy8c6S5drCyL+8zKkqkzbUFl1zID17JGNsqQxeeefxo5V
NG3BjE5NkF/hU8BkOiBkligN9+cQgnGdeHMREBQ7sfOmmdir+gfU3ed/UPAjsCy4
wXGKOQcnVzsDfuWP0oVtwIYjUoiOAqi68hLGUNse040HW0ix/nLf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:01 2024 by rpki-client on console-fra.rpki-client.org