Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/bHN_70LhI_f7CS8CXZ6aayLE_WI.roa
File: bHN_70LhI_f7CS8CXZ6aayLE_WI.roa (raw, json)
Hash identifier: sKGoKnm1bSNhDBe7osoGmnegVqkt9LeSJMqiglv9ASI=
Subject key identifier: 6C:73:7F:EF:42:E1:23:F7:FB:09:2F:02:5D:9E:9A:6B:22:C4:FD:62
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01856EAFC0AE9C6905B122722F71E081DEB0
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/bHN_70LhI_f7CS8CXZ6aayLE_WI.roa
Signing time: Sun 01 Jan 2023 18:54:49 +0000
ROA not before: Sun 01 Jan 2023 18:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60068
IP address blocks: 84.32.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:c0:ae:9c:69:05:b1:22:72:2f:71:e0:81:de:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 18:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c737fef42e123f7fb092f025d9e9a6b22c4fd62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ed:16:16:83:db:32:57:7d:e6:cd:af:50:ea:
d4:64:29:78:ec:13:2d:8b:bf:df:0c:1e:d8:83:d6:
7a:e8:d5:e2:7c:d0:3d:c3:18:7b:7f:a9:5b:ea:15:
72:7b:d9:3e:4a:54:aa:5b:79:06:89:28:6a:b0:ae:
0b:b8:7b:ef:10:8c:77:aa:26:4d:47:9e:62:21:ee:
3d:d9:fc:28:d7:cc:4e:53:41:a2:ae:9d:cd:04:76:
c1:a7:a8:b9:8b:76:6f:8b:df:c3:58:75:b8:a8:a8:
bf:3e:8f:41:61:5e:51:34:bc:aa:d2:4e:96:e3:01:
1f:60:9a:01:b7:c2:32:58:a9:96:c5:ee:ab:1d:23:
a5:78:2e:69:b8:13:6b:2e:39:f9:77:32:17:98:1f:
b1:e3:e8:14:f9:66:0b:e4:34:e7:ae:52:97:83:6d:
29:1b:9b:9b:05:a2:05:75:18:4f:7a:ae:ac:3a:87:
64:c7:25:b7:a7:9f:a6:d9:e8:d0:41:e8:fc:6a:4b:
e0:8f:32:85:b7:db:b1:a1:a0:04:60:48:d7:4d:83:
1a:fb:d2:2f:cc:bd:ed:48:2e:b3:5e:6f:d8:07:d4:
12:58:2f:fe:80:c1:02:38:3e:83:40:47:ec:f9:55:
21:f6:df:ea:e6:ed:27:aa:b2:04:d2:44:cd:0b:bd:
3b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:73:7F:EF:42:E1:23:F7:FB:09:2F:02:5D:9E:9A:6B:22:C4:FD:62
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/bHN_70LhI_f7CS8CXZ6aayLE_WI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.32.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:93:c7:07:ec:82:d2:52:5e:6d:64:2c:69:e1:62:f7:0f:3c:
90:1e:ef:2c:f4:45:b7:b7:dd:95:e2:4c:ed:83:33:d5:9b:34:
6d:80:7a:c2:50:e1:5a:bb:38:c0:31:f5:5e:13:8b:62:a4:54:
8f:5a:2c:2c:b3:63:64:e2:0a:b2:45:98:8f:cc:74:8b:24:c5:
fc:fe:84:b9:a9:43:2e:0d:5a:6d:56:6f:6e:30:63:1d:15:96:
a6:1a:8b:63:d1:7d:95:06:39:4f:d0:1e:f2:81:e2:88:70:1c:
5a:66:f1:a8:60:87:39:04:a1:f4:3d:4b:7e:f9:e8:0e:a1:b9:
12:a4:73:04:f0:ba:63:91:eb:15:15:3c:d7:6f:86:4f:1b:8c:
82:48:51:e3:0e:38:d2:36:35:b0:95:bc:41:a2:a0:e4:78:aa:
34:b7:81:1b:bb:3a:fe:88:3e:b0:6a:54:d9:97:b4:df:05:0a:
a7:e1:10:1e:3d:99:8e:47:77:08:fd:ec:d8:d2:37:b2:46:94:
b3:9e:8b:a2:6b:b5:76:30:d7:73:13:b7:cc:d0:f4:95:d6:f8:
77:4f:79:3a:12:c3:49:4a:20:7c:05:cb:12:59:70:3f:6f:40:
1b:99:44:56:5e:2f:8a:68:e5:97:79:d8:3d:cb:d3:a6:a0:a3:
6b:ac:88:62
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVur8CunGkFsSJyL3Hggd6wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwMTAxMTg1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzczN2ZlZjQyZTEyM2Y3ZmIwOTJmMDI1ZDllOWE2YjIyYzRmZDYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4e0WFoPbMld95s2vUOrUZCl47BMt
i7/fDB7Yg9Z66NXifNA9wxh7f6lb6hVye9k+SlSqW3kGiShqsK4LuHvvEIx3qiZN
R55iIe492fwo18xOU0Girp3NBHbBp6i5i3Zvi9/DWHW4qKi/Po9BYV5RNLyq0k6W
4wEfYJoBt8IyWKmWxe6rHSOleC5puBNrLjn5dzIXmB+x4+gU+WYL5DTnrlKXg20p
G5ubBaIFdRhPeq6sOodkxyW3p5+m2ejQQej8akvgjzKFt9uxoaAEYEjXTYMa+9Iv
zL3tSC6zXm/YB9QSWC/+gMECOD6DQEfs+VUh9t/q5u0nqrIE0kTNC707IQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGxzf+9C4SP3+wkvAl2emmsixP1iMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvYkhOXzcwTGhJX2Y3Q1M4Q1haNmFheUxFX1dJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCAgMA0G
CSqGSIb3DQEBCwUAA4IBAQA7k8cH7ILSUl5tZCxp4WL3DzyQHu8s9EW3t92V4kzt
gzPVmzRtgHrCUOFauzjAMfVeE4tipFSPWiwss2Nk4gqyRZiPzHSLJMX8/oS5qUMu
DVptVm9uMGMdFZamGotj0X2VBjlP0B7ygeKIcBxaZvGoYIc5BKH0PUt++egOobkS
pHME8LpjkesVFTzXb4ZPG4yCSFHjDjjSNjWwlbxBoqDkeKo0t4Ebuzr+iD6walTZ
l7TfBQqn4RAePZmOR3cI/ezY0jeyRpSznouia7V2MNdzE7fM0PSV1vh3T3k6EsNJ
SiB8BcsSWXA/b0AbmURWXi+KaOWXedg9y9OmoKNrrIhi
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:49 2023 by rpki-client on console-fra.rpki-client.org