Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/02068OKo7mh9kAOcNqFlTJ-QlHw.roa
File: 02068OKo7mh9kAOcNqFlTJ-QlHw.roa (raw, json)
Hash identifier: hGHR7JRGDEfObbxwjm0Oe2DG2dAd/rgepFiHnwb1g6I=
Subject key identifier: D3:6D:3A:F0:E2:A8:EE:68:7D:90:03:9C:36:A1:65:4C:9F:90:94:7C
Certificate issuer: /CN=9eb50e5386c809a0fae6530aa5e8d9825251ded0
Certificate serial: 01888252EA4354975EC8E8681F758216E3B0
Authority key identifier: 9E:B5:0E:53:86:C8:09:A0:FA:E6:53:0A:A5:E8:D9:82:52:51:DE:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nrUOU4bICaD65lMKpejZglJR3tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/02068OKo7mh9kAOcNqFlTJ-QlHw.roa
Signing time: Sat 03 Jun 2023 17:34:11 +0000
ROA not before: Sat 03 Jun 2023 17:34:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50200
IP address blocks: 77.74.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Jun 2023 17:59:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:82:52:ea:43:54:97:5e:c8:e8:68:1f:75:82:16:e3:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eb50e5386c809a0fae6530aa5e8d9825251ded0
Validity
Not Before: Jun 3 17:34:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d36d3af0e2a8ee687d90039c36a1654c9f90947c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:54:b8:16:3e:97:00:0f:b1:36:dd:43:85:79:
45:ec:86:b1:c0:1b:79:dd:22:fe:7f:34:a8:91:9a:
0e:54:16:1f:f2:fc:4e:9b:99:25:36:7a:c3:24:bb:
42:5a:ca:96:dd:55:40:96:a8:af:f0:63:65:36:87:
62:72:12:ed:68:1c:de:50:b8:d9:7f:77:8b:4c:59:
a7:1a:09:47:5f:c0:95:41:9f:cb:eb:31:5d:14:9a:
50:1e:4e:6a:3b:0b:49:93:30:1e:94:45:36:c1:13:
17:db:35:ee:1f:0c:42:52:32:d5:b0:fc:e3:3e:e8:
1e:27:2d:ec:33:fe:ad:df:8c:62:c7:13:c6:50:64:
e8:ef:77:68:65:fa:67:11:67:6c:c1:87:22:e4:7a:
ac:8b:09:44:fb:80:4a:f1:9f:a0:ee:82:58:b0:4c:
89:78:54:25:8f:69:2f:89:e8:81:20:ae:39:34:6d:
eb:ba:47:fe:1c:99:e6:6e:2c:86:e2:4b:92:1a:27:
e7:85:7a:fa:fc:0b:77:d3:18:25:0f:7d:7b:c3:f7:
a5:3d:37:30:83:11:95:81:08:1d:85:bd:5f:31:a5:
99:77:31:43:86:b5:58:84:04:fa:21:31:b6:41:9f:
ba:12:84:0a:02:93:be:a6:72:c4:b4:e7:6d:37:ef:
4c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6D:3A:F0:E2:A8:EE:68:7D:90:03:9C:36:A1:65:4C:9F:90:94:7C
X509v3 Authority Key Identifier:
keyid:9E:B5:0E:53:86:C8:09:A0:FA:E6:53:0A:A5:E8:D9:82:52:51:DE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nrUOU4bICaD65lMKpejZglJR3tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/02068OKo7mh9kAOcNqFlTJ-QlHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/nrUOU4bICaD65lMKpejZglJR3tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.123.0/24
Signature Algorithm: sha256WithRSAEncryption
65:9c:19:3a:44:94:2a:95:0d:35:28:ca:90:9b:d2:1f:73:b1:
10:e9:38:83:05:0b:e2:6a:92:63:2f:06:9a:8a:6a:0e:d4:05:
b6:1f:79:09:c5:0f:86:5e:a1:17:3e:7f:5d:ff:ec:db:93:f2:
13:3b:83:a0:0a:23:22:1b:2d:6b:dc:12:f0:d6:c2:64:43:42:
81:75:4c:b5:eb:26:0e:93:45:cf:e6:96:f4:b6:84:36:42:07:
fd:c0:a1:54:b3:6d:a9:78:fc:8c:08:26:14:ff:5e:eb:84:8f:
20:33:7b:e7:13:97:cc:1b:db:1b:c0:b7:96:d8:e9:e7:6d:74:
51:6e:a6:73:51:e2:d4:bd:10:d5:d1:2f:b8:f6:50:0e:e9:54:
e2:b3:44:ec:e3:6f:9c:47:3d:8d:44:ad:8d:e8:81:06:d2:72:
a2:27:dd:05:90:6b:d8:cf:ac:69:5a:4d:95:3b:46:40:6e:bb:
3c:df:f8:32:53:a7:b1:11:f7:f1:88:ba:41:a1:76:7c:c4:73:
01:cd:c6:27:35:70:24:83:fc:7e:3b:f0:e9:8e:cf:82:dd:61:
c8:02:a0:57:87:3d:ea:c0:f2:c5:72:67:0e:7e:20:a4:b3:03:
3d:fb:9d:84:42:cb:03:e0:6f:2d:f0:59:d5:c7:05:fc:ff:f5:
dd:cd:a1:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYiCUupDVJdeyOhoH3WCFuOwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllYjUwZTUzODZjODA5YTBmYWU2NTMwYWE1ZThkOTgyNTI1
MWRlZDAwHhcNMjMwNjAzMTczNDExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzZkM2FmMGUyYThlZTY4N2Q5MDAzOWMzNmExNjU0YzlmOTA5NDdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVS4Fj6XAA+xNt1DhXlF7IaxwBt5
3SL+fzSokZoOVBYf8vxOm5klNnrDJLtCWsqW3VVAlqiv8GNlNodichLtaBzeULjZ
f3eLTFmnGglHX8CVQZ/L6zFdFJpQHk5qOwtJkzAelEU2wRMX2zXuHwxCUjLVsPzj
PugeJy3sM/6t34xixxPGUGTo73doZfpnEWdswYci5HqsiwlE+4BK8Z+g7oJYsEyJ
eFQlj2kvieiBIK45NG3rukf+HJnmbiyG4kuSGifnhXr6/At30xglD317w/elPTcw
gxGVgQgdhb1fMaWZdzFDhrVYhAT6ITG2QZ+6EoQKApO+pnLEtOdtN+9M2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNNtOvDiqO5ofZADnDahZUyfkJR8MB8GA1UdIwQY
MBaAFJ61DlOGyAmg+uZTCqXo2YJSUd7QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnJVT1U0YklDYUQ2NWxNS3BlalpnbEpSM3RBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9iNTQ2NDEtYTk1YS00YWRkLWE0NWUt
MWNhZGE2ZThiMWE5LzEvMDIwNjhPS283bWg5a0FPY05xRmxUSi1RbEh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9iNTQ2NDEtYTk1YS00YWRkLWE0NWUtMWNhZGE2ZThiMWE5
LzEvbnJVT1U0YklDYUQ2NWxNS3BlalpnbEpSM3RBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUp7MA0G
CSqGSIb3DQEBCwUAA4IBAQBlnBk6RJQqlQ01KMqQm9Ifc7EQ6TiDBQviapJjLwaa
imoO1AW2H3kJxQ+GXqEXPn9d/+zbk/ITO4OgCiMiGy1r3BLw1sJkQ0KBdUy16yYO
k0XP5pb0toQ2Qgf9wKFUs22pePyMCCYU/17rhI8gM3vnE5fMG9sbwLeW2OnnbXRR
bqZzUeLUvRDV0S+49lAO6VTis0Ts42+cRz2NRK2N6IEG0nKiJ90FkGvYz6xpWk2V
O0ZAbrs83/gyU6exEffxiLpBoXZ8xHMBzcYnNXAkg/x+O/Dpjs+C3WHIAqBXhz3q
wPLFcmcOfiCkswM9+52EQssD4G8t8FnVxwX8//XdzaHQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:15 2024 by rpki-client on console-ams.rpki-client.org