Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/iv9dbUIJDeVdIrDaw4LDyLNEX5I.roa
File: iv9dbUIJDeVdIrDaw4LDyLNEX5I.roa (raw, json)
Hash identifier: mJ8Bj7iIqZDGEtTNeLqEn9GG8mvLmJemo+ITCrcC8PM=
Subject key identifier: 8A:FF:5D:6D:42:09:0D:E5:5D:22:B0:DA:C3:82:C3:C8:B3:44:5F:92
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 0187E51F40A145C5B8AA525D66545C54D611
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/iv9dbUIJDeVdIrDaw4LDyLNEX5I.roa
Signing time: Thu 04 May 2023 04:57:23 +0000
ROA not before: Thu 04 May 2023 04:57:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35624
IP address blocks: 212.119.42.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e5:1f:40:a1:45:c5:b8:aa:52:5d:66:54:5c:54:d6:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: May 4 04:57:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8aff5d6d42090de55d22b0dac382c3c8b3445f92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9f:c7:dd:a8:55:56:fa:e7:25:ff:0b:3e:e7:
bd:f3:82:1b:2f:5b:b9:64:b5:fc:f8:35:69:e3:58:
8c:05:04:99:8f:59:37:c2:2a:7d:af:b9:ce:ba:f1:
bd:fa:eb:05:06:f6:61:38:fc:8b:50:40:dc:8b:25:
2e:17:a7:40:07:a1:2b:a9:81:56:46:78:86:ec:23:
ca:88:ed:a8:57:22:4f:6f:50:0a:17:d1:74:4b:eb:
60:45:7e:0d:6a:c0:e1:d2:5c:cd:8c:96:60:07:18:
83:cb:ff:ef:0c:b6:f6:d2:37:1a:b3:e8:1f:2a:14:
c7:87:ef:21:86:b9:72:7c:c5:bd:39:ba:15:25:7f:
d0:e8:7e:77:8f:95:3f:c6:d4:42:6f:4b:e6:35:5c:
cc:89:e4:9f:05:15:e0:f9:3d:e6:9d:80:a3:0a:6a:
49:e0:83:fb:d4:09:69:8f:cb:da:6a:e3:a2:f6:bb:
cf:75:7e:fc:5b:70:d6:e3:f7:18:d9:ae:5f:49:c0:
43:5c:53:e3:c1:71:a9:53:11:ca:e1:76:d7:08:d4:
2a:15:dc:ef:7e:ad:97:82:bc:50:15:25:1c:f3:79:
62:df:ae:e3:9b:6b:0f:5b:15:d9:e9:f6:c9:65:15:
cb:e9:dd:80:05:f1:49:41:99:08:41:c6:2a:12:c8:
d9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:FF:5D:6D:42:09:0D:E5:5D:22:B0:DA:C3:82:C3:C8:B3:44:5F:92
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/iv9dbUIJDeVdIrDaw4LDyLNEX5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.119.42.0/23
Signature Algorithm: sha256WithRSAEncryption
38:a5:f7:35:51:f8:75:ab:34:a6:df:43:21:d3:07:df:78:10:
85:2a:5c:d2:4a:ee:1f:7f:50:ae:95:15:3e:26:8a:8f:b5:c6:
a6:25:de:e4:7a:80:22:64:8b:fb:13:cf:6a:ed:27:ee:ea:44:
3f:18:e6:d8:6b:4e:1d:ef:10:3c:04:ca:8b:1d:99:91:bc:e5:
9a:91:03:35:80:84:f9:7c:22:37:e3:6f:e1:36:cb:10:cc:d0:
79:b5:a0:cc:73:9c:c0:36:55:27:5e:9b:1c:24:e6:0b:f8:2a:
00:62:1c:46:c6:3f:d2:b0:37:d4:4f:ce:03:13:11:77:1d:82:
3f:8b:eb:df:6a:43:85:b4:d7:49:3c:ab:1c:be:b1:9e:8a:2a:
4c:83:62:ac:0c:0a:08:e8:47:2c:26:72:10:23:3e:38:4a:21:
1b:fe:d9:11:6c:af:3a:d8:7c:d1:ac:cd:6e:cf:11:5f:ff:fe:
62:5e:ec:32:0e:19:75:a6:93:b6:aa:e6:f8:36:aa:b4:30:c0:
09:ed:7f:a2:22:0d:75:27:15:3f:f9:5f:60:73:7b:ff:95:67:
f2:51:64:e6:26:cb:1b:14:61:a1:29:54:4b:4e:75:bf:9c:e6:
11:f1:ed:1b:7a:3c:2f:f8:0e:9e:8b:24:37:04:50:b6:df:2e:
70:26:6e:b5
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYflH0ChRcW4qlJdZlRcVNYRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3
Y2Q0MjMwHhcNMjMwNTA0MDQ1NzIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWZmNWQ2ZDQyMDkwZGU1NWQyMmIwZGFjMzgyYzNjOGIzNDQ1ZjkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3p/H3ahVVvrnJf8LPue984IbL1u5
ZLX8+DVp41iMBQSZj1k3wip9r7nOuvG9+usFBvZhOPyLUEDciyUuF6dAB6ErqYFW
RniG7CPKiO2oVyJPb1AKF9F0S+tgRX4NasDh0lzNjJZgBxiDy//vDLb20jcas+gf
KhTHh+8hhrlyfMW9OboVJX/Q6H53j5U/xtRCb0vmNVzMieSfBRXg+T3mnYCjCmpJ
4IP71Alpj8vaauOi9rvPdX78W3DW4/cY2a5fScBDXFPjwXGpUxHK4XbXCNQqFdzv
fq2XgrxQFSUc83li367jm2sPWxXZ6fbJZRXL6d2ABfFJQZkIQcYqEsjZqQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFIr/XW1CCQ3lXSKw2sOCw8izRF+SMB8GA1UdIwQY
MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli
LWExYjdjZWVmYTE2Yy8xL2l2OWRiVUlKRGVWZElyRGF3NExEeUxORVg1SS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjliLWExYjdjZWVmYTE2
Yy8xLzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHUdyow
DQYJKoZIhvcNAQELBQADggEBADil9zVR+HWrNKbfQyHTB994EIUqXNJK7h9/UK6V
FT4mio+1xqYl3uR6gCJki/sTz2rtJ+7qRD8Y5thrTh3vEDwEyosdmZG85ZqRAzWA
hPl8Ijfjb+E2yxDM0Hm1oMxznMA2VSdemxwk5gv4KgBiHEbGP9KwN9RPzgMTEXcd
gj+L699qQ4W010k8qxy+sZ6KKkyDYqwMCgjoRywmchAjPjhKIRv+2RFsrzrYfNGs
zW7PEV///mJe7DIOGXWmk7aq5vg2qrQwwAntf6IiDXUnFT/5X2Bze/+VZ/JRZOYm
yxsUYaEpVEtOdb+c5hHx7Rt6PC/4Dp6LJDcEULbfLnAmbrU=
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:33 2024 by rpki-client on console-fra.rpki-client.org