Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/0aHjrbcAsKlODVmzbJFNv8Hq2iI.roa
File: 0aHjrbcAsKlODVmzbJFNv8Hq2iI.roa (raw, json)
Hash identifier: dSQdFsroC8KNPS32CAF0J+KciBj8cQA4chUIpMdK7kg=
Subject key identifier: D1:A1:E3:AD:B7:00:B0:A9:4E:0D:59:B3:6C:91:4D:BF:C1:EA:DA:22
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 01856C53CC951E68AC1CB0BA48F3E3771636
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/0aHjrbcAsKlODVmzbJFNv8Hq2iI.roa
Signing time: Sun 01 Jan 2023 07:55:09 +0000
ROA not before: Sun 01 Jan 2023 07:55:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198602
IP address blocks: 213.135.94.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:cc:95:1e:68:ac:1c:b0:ba:48:f3:e3:77:16:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 07:55:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1a1e3adb700b0a94e0d59b36c914dbfc1eada22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:0b:56:84:a3:fb:58:1f:a4:b6:bf:bb:94:90:
35:e8:b1:27:98:ce:ef:3f:8f:3a:96:fd:89:e2:45:
bb:b6:bb:b0:a6:56:41:5d:51:36:1b:d6:8c:b6:81:
a9:9d:29:f9:03:e9:31:39:f5:0f:33:80:33:33:9a:
54:36:08:d4:bf:75:29:cf:92:63:6e:8e:b8:8a:6b:
88:db:fc:bd:15:d8:07:d7:52:93:f1:03:36:0c:58:
7d:96:11:db:22:79:cf:52:76:0b:9f:af:36:06:c2:
30:3e:bf:a0:26:05:71:06:10:c6:5e:e2:05:ea:ed:
9a:d1:59:03:cc:b0:1b:24:2c:a2:a3:86:51:a5:97:
6f:f3:17:62:38:a6:93:e1:9e:3b:0e:b8:f2:7a:03:
e6:e3:63:22:72:4b:fb:6b:8a:06:e3:61:9c:63:25:
55:af:6e:e8:7d:c8:26:ab:cb:77:a1:fb:32:39:bb:
27:aa:8a:ef:af:bf:e3:6a:07:b5:c4:ab:cb:a6:fe:
c6:74:06:72:d9:41:76:92:e2:67:28:1b:5e:0a:86:
8f:9e:1a:ba:ef:09:76:64:bc:66:45:cf:b6:61:ce:
88:ca:f8:f4:be:86:5d:47:6b:cf:08:02:fc:ef:55:
e8:d9:01:be:bd:75:0d:6b:f5:74:3c:c8:39:e6:6a:
f5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:A1:E3:AD:B7:00:B0:A9:4E:0D:59:B3:6C:91:4D:BF:C1:EA:DA:22
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/0aHjrbcAsKlODVmzbJFNv8Hq2iI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.135.94.0/23
Signature Algorithm: sha256WithRSAEncryption
72:ca:4e:56:ab:58:4f:85:53:00:0f:50:55:ff:74:71:0f:e7:
21:50:03:37:c7:65:27:3a:79:73:71:39:da:45:3b:e3:45:89:
ca:8e:d0:b2:52:cd:d3:e3:28:f6:8e:92:d2:23:f6:e5:7b:29:
88:8e:a3:fb:c4:d7:54:76:24:cb:c7:37:51:8c:02:0f:59:4b:
9a:66:ca:5c:84:9e:23:b2:47:fa:29:8e:14:c3:86:03:50:cb:
a2:3d:ed:a2:36:05:d0:26:0f:a9:3e:b5:17:00:1f:ca:d4:6d:
61:36:da:38:a0:ab:0a:3f:83:de:c8:09:4e:77:2b:c1:5d:a5:
07:40:c2:7f:03:44:fd:15:6a:d3:6e:41:87:30:74:61:dc:1d:
e3:40:2a:67:88:c6:91:d1:cf:61:11:21:b7:f4:fb:4e:7b:ee:
90:8a:db:90:63:5b:d3:41:a9:30:7f:e6:d2:4d:cc:97:07:b4:
87:f1:93:72:83:d1:01:78:77:fc:2a:1f:46:20:54:36:07:e4:
db:2c:88:f4:2a:e8:a9:4c:94:28:29:95:c3:b7:62:ec:71:0f:
de:8f:da:15:ab:fa:a2:33:40:28:64:7a:04:23:c5:b9:f8:93:
74:a1:64:58:42:7d:48:48:cf:83:06:e7:16:1b:85:aa:86:ef:
45:94:1d:3b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsU8yVHmisHLC6SPPjdxY2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmMzgxODU1NGE1MTgwOGVlZmI4MjllYzc0NjVhMzIyMmYy
NzAxMjMwHhcNMjMwMTAxMDc1NTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMWExZTNhZGI3MDBiMGE5NGUwZDU5YjM2YzkxNGRiZmMxZWFkYTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgAtWhKP7WB+ktr+7lJA16LEnmM7v
P486lv2J4kW7truwplZBXVE2G9aMtoGpnSn5A+kxOfUPM4AzM5pUNgjUv3Upz5Jj
bo64imuI2/y9FdgH11KT8QM2DFh9lhHbInnPUnYLn682BsIwPr+gJgVxBhDGXuIF
6u2a0VkDzLAbJCyio4ZRpZdv8xdiOKaT4Z47DrjyegPm42Mickv7a4oG42GcYyVV
r27ofcgmq8t3ofsyObsnqorvr7/jage1xKvLpv7GdAZy2UF2kuJnKBteCoaPnhq6
7wl2ZLxmRc+2Yc6Iyvj0voZdR2vPCAL871Xo2QG+vXUNa/V0PMg55mr1DwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNGh4623ALCpTg1Zs2yRTb/B6toiMB8GA1UdIwQY
MBaAFI84GFVKUYCO77gp7HRloyIvJwEjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanpnWVZVcFJnSTd2dUNuc2RHV2pJaThuQVNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8wOWRiYTQtMWM5My00OWQ2LTg4ODgt
YmZiNGJhMzBlNDVhLzEvMGFIanJiY0FzS2xPRFZtemJKRk52OEhxMmlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni8wOWRiYTQtMWM5My00OWQ2LTg4ODgtYmZiNGJhMzBlNDVh
LzEvanpnWVZVcFJnSTd2dUNuc2RHV2pJaThuQVNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB1YdeMA0G
CSqGSIb3DQEBCwUAA4IBAQByyk5Wq1hPhVMAD1BV/3RxD+chUAM3x2UnOnlzcTna
RTvjRYnKjtCyUs3T4yj2jpLSI/bleymIjqP7xNdUdiTLxzdRjAIPWUuaZspchJ4j
skf6KY4Uw4YDUMuiPe2iNgXQJg+pPrUXAB/K1G1hNto4oKsKP4PeyAlOdyvBXaUH
QMJ/A0T9FWrTbkGHMHRh3B3jQCpniMaR0c9hESG39PtOe+6QituQY1vTQakwf+bS
TcyXB7SH8ZNyg9EBeHf8Kh9GIFQ2B+TbLIj0KuipTJQoKZXDt2LscQ/ej9oVq/qi
M0AoZHoEI8W5+JN0oWRYQn1ISM+DBucWG4Wqhu9FlB07
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org