Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/LnIX5mFr_yKF6IVh0KAx5o8G8jo.roa
File: LnIX5mFr_yKF6IVh0KAx5o8G8jo.roa (raw, json)
Hash identifier: seDMgEkadIqKecxDr88iHS2jt7h+eGPVdPEwnk16CZI=
Subject key identifier: 2E:72:17:E6:61:6B:FF:22:85:E8:85:61:D0:A0:31:E6:8F:06:F2:3A
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 018996DD3B7A675B07638A6065D0A7FB16AE
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/LnIX5mFr_yKF6IVh0KAx5o8G8jo.roa
Signing time: Thu 27 Jul 2023 10:20:28 +0000
ROA not before: Thu 27 Jul 2023 10:20:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212949
IP address blocks: 94.176.142.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:96:dd:3b:7a:67:5b:07:63:8a:60:65:d0:a7:fb:16:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jul 27 10:20:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e7217e6616bff2285e88561d0a031e68f06f23a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d5:a4:9c:46:3d:1e:fc:35:f7:9b:79:d5:b0:
15:2b:32:73:00:66:e2:15:d5:69:93:cb:3f:98:8b:
df:90:ab:4f:13:6e:7e:d8:f6:3b:d3:be:20:91:0c:
04:02:0b:f5:fe:46:5f:bd:5b:44:36:78:4a:62:15:
f6:9a:b7:6a:26:fe:0c:44:96:4c:76:84:4f:52:6c:
44:00:43:5e:de:78:c9:ca:57:da:f8:35:75:c4:f3:
fb:5e:de:d8:4a:22:ab:9f:6e:1d:b3:c8:e3:8d:5e:
b2:e1:7d:ef:4e:13:94:2e:96:ab:e3:1e:97:95:22:
c9:92:c2:08:ce:ac:84:79:dc:df:c2:a6:b0:8c:65:
8e:93:8c:c6:dd:7f:31:77:4c:c9:33:1e:e9:9a:b4:
5f:f9:42:c9:8d:b0:9c:74:75:71:b9:9c:37:8f:a3:
3a:f0:e4:1c:16:53:4f:87:4e:61:14:4c:2f:bb:ce:
d3:99:98:c0:3c:53:ea:9a:1e:3b:c3:c0:57:7b:db:
ed:1b:36:25:df:e7:24:09:ed:2c:36:11:2f:78:e3:
11:9f:4f:a5:39:ab:af:19:f2:37:c4:2a:0b:61:32:
0c:cd:4e:7c:76:ec:ec:35:9c:a6:65:bf:54:0a:cc:
cb:a6:3c:0f:1b:f4:c6:0c:e4:1e:a5:99:d2:ea:41:
61:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:72:17:E6:61:6B:FF:22:85:E8:85:61:D0:A0:31:E6:8F:06:F2:3A
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/LnIX5mFr_yKF6IVh0KAx5o8G8jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.176.142.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:17:0d:e0:53:f7:ae:0e:31:85:55:1a:47:f9:04:0c:3e:60:
9f:c3:78:14:ed:ff:ed:bd:e5:6e:e8:84:66:0f:c2:c4:79:e7:
28:24:b9:a3:76:b1:b1:6a:de:89:27:5e:23:28:1a:e9:65:f1:
b6:c1:eb:33:9e:a6:6d:da:be:08:1f:32:6e:7c:bc:9f:2e:19:
98:6b:83:54:7d:f2:47:d2:1e:a7:53:c1:05:a2:21:b2:54:37:
da:a4:03:24:57:4a:df:90:6c:05:8d:e9:0c:2f:97:ae:d8:eb:
9d:f1:be:46:a2:2b:17:1b:51:bd:cf:ba:e3:a2:45:1e:5f:2a:
ac:d1:e1:44:79:d4:f7:8b:c5:b1:bd:22:b5:7f:fc:42:18:cf:
03:ab:21:79:fb:81:ea:c9:46:68:d5:13:dc:58:4b:6a:21:45:
c9:4c:ff:4b:01:b4:d1:1e:34:13:8a:f6:46:9c:fa:cf:1a:51:
bf:25:5c:6d:b2:63:b0:21:2a:12:c3:a1:2e:a7:52:99:da:5f:
1d:1d:db:4d:51:dd:50:ba:91:90:e4:7c:5d:6a:be:36:ae:f1:
f7:a2:bd:73:02:7b:b6:6e:39:a3:b3:5a:d5:79:97:c4:9a:73:
7b:51:03:17:27:9f:47:d7:5d:99:e0:1c:e1:7e:d7:a9:86:3b:
10:51:bb:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmW3Tt6Z1sHY4pgZdCn+xauMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYWYxN2IwMDE1ZGJiN2NkOTkyZjI2Y2RmZjAxYzRlMjYy
MGI3M2UwHhcNMjMwNzI3MTAyMDI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTcyMTdlNjYxNmJmZjIyODVlODg1NjFkMGEwMzFlNjhmMDZmMjNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq9WknEY9Hvw195t51bAVKzJzAGbi
FdVpk8s/mIvfkKtPE25+2PY7074gkQwEAgv1/kZfvVtENnhKYhX2mrdqJv4MRJZM
doRPUmxEAENe3njJylfa+DV1xPP7Xt7YSiKrn24ds8jjjV6y4X3vThOULpar4x6X
lSLJksIIzqyEedzfwqawjGWOk4zG3X8xd0zJMx7pmrRf+ULJjbCcdHVxuZw3j6M6
8OQcFlNPh05hFEwvu87TmZjAPFPqmh47w8BXe9vtGzYl3+ckCe0sNhEveOMRn0+l
OauvGfI3xCoLYTIMzU58duzsNZymZb9UCszLpjwPG/TGDOQepZnS6kFhrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC5yF+Zha/8iheiFYdCgMeaPBvI6MB8GA1UdIwQY
MBaAFNqvF7ABXbt82ZLybN/wHE4mILc+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAt
Y2YwNmQxOTgzYmExLzEvTG5JWDVtRnJfeUtGNklWaDBLQXg1bzhHOGpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAtY2YwNmQxOTgzYmEx
LzEvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXrCOMA0G
CSqGSIb3DQEBCwUAA4IBAQCgFw3gU/euDjGFVRpH+QQMPmCfw3gU7f/tveVu6IRm
D8LEeecoJLmjdrGxat6JJ14jKBrpZfG2wesznqZt2r4IHzJufLyfLhmYa4NUffJH
0h6nU8EFoiGyVDfapAMkV0rfkGwFjekML5eu2Oud8b5GoisXG1G9z7rjokUeXyqs
0eFEedT3i8WxvSK1f/xCGM8DqyF5+4HqyUZo1RPcWEtqIUXJTP9LAbTRHjQTivZG
nPrPGlG/JVxtsmOwISoSw6Eup1KZ2l8dHdtNUd1QupGQ5Hxdar42rvH3or1zAnu2
bjmjs1rVeZfEmnN7UQMXJ59H112Z4BzhftephjsQUbvy
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:36 2024 by rpki-client on console-fra.rpki-client.org