Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/88sqIzZFpEAP6YuFRCs4TqtzlCI.roa
File: 88sqIzZFpEAP6YuFRCs4TqtzlCI.roa (raw, json)
Hash identifier: FGYMWQrY5zOG3SgDfDmvrAM3zF7ORT2QN0OCd7b3pKE=
Subject key identifier: F3:CB:2A:23:36:45:A4:40:0F:E9:8B:85:44:2B:38:4E:AB:73:94:22
Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672
Certificate serial: 01856F14D306CFEEAEF41CE9A302C4BBE02E
Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/88sqIzZFpEAP6YuFRCs4TqtzlCI.roa
Signing time: Sun 01 Jan 2023 20:45:13 +0000
ROA not before: Sun 01 Jan 2023 20:45:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210203
IP address blocks: 139.45.198.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:d3:06:cf:ee:ae:f4:1c:e9:a3:02:c4:bb:e0:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672
Validity
Not Before: Jan 1 20:45:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3cb2a233645a4400fe98b85442b384eab739422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:41:69:e1:ba:98:27:41:92:3f:67:6a:5d:b9:
ea:ca:40:da:d9:21:80:4b:b6:9f:6b:63:21:2e:66:
24:bb:48:35:f7:2b:5a:b1:30:16:69:9e:47:61:99:
f8:d5:81:15:57:50:f6:40:c6:63:d5:16:fe:ea:d7:
06:76:a4:6c:10:78:78:09:20:6d:4e:d6:d1:db:c9:
21:e0:b1:bd:08:69:7e:79:24:bd:5e:c1:ae:61:42:
c8:8d:b6:12:ef:51:79:eb:25:70:cc:8c:da:51:26:
68:ff:44:73:aa:a5:fb:a8:13:aa:f0:4f:22:f7:e7:
26:04:c0:ae:7b:28:ed:c9:e6:a6:1c:f5:0c:48:33:
08:6a:59:0e:db:91:83:32:1d:8d:4b:73:49:29:90:
fb:98:59:9e:89:ce:88:d7:43:0f:dc:97:8b:f6:50:
e0:2d:c6:77:77:77:65:87:4b:74:8f:46:41:67:6d:
58:72:2c:46:f1:72:db:57:a1:77:96:6b:8d:27:71:
bc:b8:06:02:32:54:23:cc:e4:0f:d4:05:30:fd:64:
f8:54:15:9e:5b:de:bf:c7:af:d7:7c:4e:37:cd:02:
68:10:25:30:81:80:ba:29:c1:ec:aa:1a:e1:aa:4e:
53:9b:6f:22:de:33:dd:df:f4:99:ca:ec:2a:0b:2e:
bd:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:CB:2A:23:36:45:A4:40:0F:E9:8B:85:44:2B:38:4E:AB:73:94:22
X509v3 Authority Key Identifier:
keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/88sqIzZFpEAP6YuFRCs4TqtzlCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.45.198.0/23
Signature Algorithm: sha256WithRSAEncryption
01:01:ed:8d:ee:2d:53:fa:c0:99:0b:ec:ea:d1:d3:55:4d:98:
b0:e9:57:32:ad:43:2d:fe:68:ac:76:9b:3e:aa:74:18:81:74:
d9:ae:dc:c1:9f:61:9d:51:de:58:b5:5f:22:cd:a9:91:3d:d7:
87:ca:9d:ff:86:a2:43:f5:27:3b:de:7e:d8:d7:37:c5:58:20:
a7:b6:57:9b:fa:2b:f7:0a:ec:9b:af:e8:82:79:11:ad:1e:8b:
89:87:88:36:41:8e:6e:81:82:92:09:f1:6b:a8:bf:f7:d6:a8:
38:60:3c:90:e2:c8:ee:44:9e:54:68:59:9a:e0:b9:16:3c:38:
d1:0b:40:3a:78:af:76:c6:95:14:72:01:7c:55:75:3c:df:84:
56:b2:53:94:f1:d7:e5:30:69:53:f8:cc:df:9a:8a:95:a3:9a:
80:e9:9f:2b:07:44:c7:22:b8:77:0a:a0:31:3c:49:13:4c:f5:
1c:a6:31:f9:27:54:3a:6c:1f:3d:40:26:cf:72:3f:9d:ee:05:
cf:c4:f8:1f:5f:76:10:41:91:ae:de:0c:b0:c9:3e:5a:fb:57:
0c:74:01:ef:d8:d9:a4:4e:c4:90:8d:16:ef:ce:01:63:f9:de:
b1:27:1d:06:8a:47:ed:60:d7:58:6c:cd:61:25:99:2c:19:aa:
d7:a6:cf:aa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFNMGz+6u9BzpowLEu+AuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5YmUwMmRlYTBhMDg2ZTk4ODBmNTY0Yzg2ODcyYmJjNTk3
Y2M2NzIwHhcNMjMwMTAxMjA0NTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmM2NiMmEyMzM2NDVhNDQwMGZlOThiODU0NDJiMzg0ZWFiNzM5NDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUFp4bqYJ0GSP2dqXbnqykDa2SGA
S7afa2MhLmYku0g19ytasTAWaZ5HYZn41YEVV1D2QMZj1Rb+6tcGdqRsEHh4CSBt
TtbR28kh4LG9CGl+eSS9XsGuYULIjbYS71F56yVwzIzaUSZo/0RzqqX7qBOq8E8i
9+cmBMCueyjtyeamHPUMSDMIalkO25GDMh2NS3NJKZD7mFmeic6I10MP3JeL9lDg
LcZ3d3dlh0t0j0ZBZ21YcixG8XLbV6F3lmuNJ3G8uAYCMlQjzOQP1AUw/WT4VBWe
W96/x6/XfE43zQJoECUwgYC6KcHsqhrhqk5Tm28i3jPd3/SZyuwqCy69KwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPPLKiM2RaRAD+mLhUQrOE6rc5QiMB8GA1UdIwQY
MBaAFCm+At6goIbpiA9WTIaHK7xZfMZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMt
MDAzYTE1NjhiZjNmLzEvODhzcUl6WkZwRUFQNll1RlJDczRUcXR6bENJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMtMDAzYTE1NjhiZjNm
LzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBiy3GMA0G
CSqGSIb3DQEBCwUAA4IBAQABAe2N7i1T+sCZC+zq0dNVTZiw6VcyrUMt/misdps+
qnQYgXTZrtzBn2GdUd5YtV8izamRPdeHyp3/hqJD9Sc73n7Y1zfFWCCntleb+iv3
Cuybr+iCeRGtHouJh4g2QY5ugYKSCfFrqL/31qg4YDyQ4sjuRJ5UaFma4LkWPDjR
C0A6eK92xpUUcgF8VXU834RWslOU8dflMGlT+MzfmoqVo5qA6Z8rB0THIrh3CqAx
PEkTTPUcpjH5J1Q6bB89QCbPcj+d7gXPxPgfX3YQQZGu3gywyT5a+1cMdAHv2Nmk
TsSQjRbvzgFj+d6xJx0GikftYNdYbM1hJZksGarXps+q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:17 2024 by rpki-client on console-fra.rpki-client.org