Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/4QVPiDLoW7TAYybbizRMHM8EQEg.roa
File: 4QVPiDLoW7TAYybbizRMHM8EQEg.roa (raw, json)
Hash identifier: MiW3TIvQ8Ap10x6SBFYesk2Z3AEavLFvyDjnX3i6Svk=
Subject key identifier: E1:05:4F:88:32:E8:5B:B4:C0:63:26:DB:8B:34:4C:1C:CF:04:40:48
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01856E38CBD4AC84EC5C05B1DAFCB6041C5E
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/4QVPiDLoW7TAYybbizRMHM8EQEg.roa
Signing time: Sun 01 Jan 2023 16:44:53 +0000
ROA not before: Sun 01 Jan 2023 16:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136744
IP address blocks: 77.47.242.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Oct 2023 14:16:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:cb:d4:ac:84:ec:5c:05:b1:da:fc:b6:04:1c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 1 16:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1054f8832e85bb4c06326db8b344c1ccf044048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ef:82:c6:34:26:74:eb:e6:e2:fb:a9:4b:62:
19:87:e9:4d:29:48:43:26:c9:10:64:47:7f:50:35:
2c:e4:f6:20:57:db:b7:f4:fa:8a:95:ca:ba:14:fa:
74:22:c0:28:c5:f0:a9:c3:c3:01:40:68:04:eb:00:
c6:83:f5:f4:fe:d6:bb:ec:3d:c6:02:ab:d5:61:a2:
61:11:03:cc:0e:8b:e3:6e:55:29:3d:0d:79:76:bb:
88:49:5c:ec:d3:b4:f1:2c:60:07:53:ba:dc:90:db:
79:d5:74:53:90:4b:19:4a:42:cf:7c:86:e9:1d:59:
dd:75:ff:78:16:94:fb:d8:6c:b2:13:f1:68:17:75:
8a:bf:53:d5:ea:74:60:7a:27:e9:d7:af:e2:62:9b:
0d:27:67:2d:41:8d:1c:16:2b:ea:84:4d:f4:48:49:
62:14:31:7a:ba:e6:ec:17:d9:39:bb:6d:5e:8a:72:
8a:83:d6:b2:1e:26:f4:ee:0f:23:d5:6f:4b:09:cf:
00:8e:cc:e3:5d:28:11:10:ad:6f:95:1a:7e:5a:2e:
fe:84:b6:c7:95:66:cd:6c:24:a2:c5:bd:0a:b7:63:
67:a5:e6:bb:ec:3f:64:dc:eb:94:20:08:4f:46:5f:
a8:df:f9:38:4f:a5:f8:8e:ca:52:59:49:92:8f:38:
64:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:05:4F:88:32:E8:5B:B4:C0:63:26:DB:8B:34:4C:1C:CF:04:40:48
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/4QVPiDLoW7TAYybbizRMHM8EQEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.242.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:e6:ac:8c:21:9e:2b:1e:eb:af:a3:83:f5:de:91:90:72:fb:
d1:bc:ff:80:1f:c5:0f:e2:bb:63:40:f1:5b:5c:4c:56:54:fd:
1c:18:87:36:81:6b:48:4d:c1:8d:b7:ee:c9:f3:d1:48:4d:e4:
88:24:b1:de:59:d0:71:79:18:38:8e:a7:4b:05:f2:df:31:a6:
d8:a7:a2:11:71:d0:7b:b5:3e:e4:22:28:0c:7f:a6:43:e6:77:
2f:49:13:94:50:af:ec:3d:aa:90:5c:d1:64:3e:24:7a:ff:2e:
c2:ab:5f:da:68:6a:4f:ca:eb:a0:8f:bb:1f:6d:40:1c:32:d6:
8f:be:8d:67:2f:14:97:65:b4:6b:64:ac:f1:d1:f8:c4:b1:4f:
47:7f:ff:66:9b:4e:56:dc:92:c2:44:e5:04:71:b5:c5:7e:ee:
f5:41:64:1c:47:76:5b:1d:b7:47:f6:74:c6:2b:ac:95:50:3d:
b3:78:11:0a:bb:ca:6e:bc:6d:f5:10:6b:bb:81:71:5c:05:9d:
2a:d5:b6:46:af:9e:45:bf:57:e3:d7:cc:a8:21:30:9c:67:f2:
c3:ba:33:0a:6e:98:26:ea:ad:f6:45:6b:f4:f2:58:0c:dc:ee:
12:6c:5c:01:24:d2:a8:34:ec:04:17:ef:6e:84:55:9e:fd:62:
b1:9d:a5:5a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuOMvUrITsXAWx2vy2BBxeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjMwMTAxMTY0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTA1NGY4ODMyZTg1YmI0YzA2MzI2ZGI4YjM0NGMxY2NmMDQ0MDQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnu+CxjQmdOvm4vupS2IZh+lNKUhD
JskQZEd/UDUs5PYgV9u39PqKlcq6FPp0IsAoxfCpw8MBQGgE6wDGg/X0/ta77D3G
AqvVYaJhEQPMDovjblUpPQ15druISVzs07TxLGAHU7rckNt51XRTkEsZSkLPfIbp
HVnddf94FpT72GyyE/FoF3WKv1PV6nRgeifp16/iYpsNJ2ctQY0cFivqhE30SEli
FDF6uubsF9k5u21einKKg9ayHib07g8j1W9LCc8AjszjXSgREK1vlRp+Wi7+hLbH
lWbNbCSixb0Kt2Nnpea77D9k3OuUIAhPRl+o3/k4T6X4jspSWUmSjzhk3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOEFT4gy6Fu0wGMm24s0TBzPBEBIMB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvNFFWUGlETG9XN1RBWXliYml6Uk1ITThFUUVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBTS/yMA0G
CSqGSIb3DQEBCwUAA4IBAQBv5qyMIZ4rHuuvo4P13pGQcvvRvP+AH8UP4rtjQPFb
XExWVP0cGIc2gWtITcGNt+7J89FITeSIJLHeWdBxeRg4jqdLBfLfMabYp6IRcdB7
tT7kIigMf6ZD5ncvSROUUK/sPaqQXNFkPiR6/y7Cq1/aaGpPyuugj7sfbUAcMtaP
vo1nLxSXZbRrZKzx0fjEsU9Hf/9mm05W3JLCROUEcbXFfu71QWQcR3ZbHbdH9nTG
K6yVUD2zeBEKu8puvG31EGu7gXFcBZ0q1bZGr55Fv1fj18yoITCcZ/LDujMKbpgm
6q32RWv08lgM3O4SbFwBJNKoNOwEF+9uhFWe/WKxnaVa
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org