Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/851e84-2f1a-4c77-b1f2-d5865041a14f/1/f9BHFBWxX7rp-9VS3ZlREaBNHno.roa
File: f9BHFBWxX7rp-9VS3ZlREaBNHno.roa (raw, json)
Hash identifier: ADWX5lFiWjlAJH3uq7TxKE9Vzux1bMpnp0H3RCO65XI=
Subject key identifier: 7F:D0:47:14:15:B1:5F:BA:E9:FB:D5:52:DD:99:51:11:A0:4D:1E:7A
Certificate issuer: /CN=ca91c42dfa6afbc11e78ee9de2e785f8a20b5043
Certificate serial: 01856DD404F50FBB37CB2708C7AF3BCA4F66
Authority key identifier: CA:91:C4:2D:FA:6A:FB:C1:1E:78:EE:9D:E2:E7:85:F8:A2:0B:50:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypHELfpq-8EeeO6d4ueF-KILUEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/851e84-2f1a-4c77-b1f2-d5865041a14f/1/f9BHFBWxX7rp-9VS3ZlREaBNHno.roa
Signing time: Sun 01 Jan 2023 14:54:49 +0000
ROA not before: Sun 01 Jan 2023 14:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20529
IP address blocks: 217.147.192.0/20 maxlen: 24
217.147.202.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:04:f5:0f:bb:37:cb:27:08:c7:af:3b:ca:4f:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca91c42dfa6afbc11e78ee9de2e785f8a20b5043
Validity
Not Before: Jan 1 14:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7fd0471415b15fbae9fbd552dd995111a04d1e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:82:ab:e1:7b:98:fe:1f:2e:38:21:41:3a:8b:
f6:ed:a9:72:74:4a:90:4b:c6:ca:cb:72:14:bf:3f:
98:d5:3d:4a:88:c2:10:67:28:f4:47:c0:36:cf:bd:
bd:1d:54:41:22:65:c9:85:f8:bf:e9:e1:66:3d:81:
0a:38:97:fa:bc:39:6f:d7:e7:07:c7:ef:e3:9f:28:
09:29:b3:5f:89:4b:8a:b7:bd:20:45:13:5a:58:75:
ae:e2:46:38:24:05:36:fb:59:b3:1f:13:9d:80:01:
bd:e7:a8:e1:35:44:6d:88:e2:f7:ef:1e:69:7f:8a:
08:bd:9a:b0:57:af:5b:66:36:b5:1f:89:3a:1f:77:
d2:94:98:f3:cd:9d:10:0c:ce:8b:3a:3b:dd:c2:76:
bc:61:74:91:a2:4e:5e:0e:75:43:f3:ea:e7:0f:15:
3b:f4:d2:bf:c3:be:e4:0e:3f:5c:f1:2d:f1:17:c6:
2c:a9:54:d1:dc:b1:c9:9e:cb:b6:cc:bc:2c:5b:a6:
fd:96:a1:69:ae:be:49:21:29:b6:dc:b4:03:9b:13:
2e:63:5a:31:5f:7b:21:a6:47:c5:67:d1:5e:a4:c9:
0a:9a:67:c7:7d:9d:94:10:05:10:60:c8:48:d1:9f:
9b:3e:4e:5d:c3:f6:1c:37:33:04:0d:6d:0a:c3:c4:
69:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D0:47:14:15:B1:5F:BA:E9:FB:D5:52:DD:99:51:11:A0:4D:1E:7A
X509v3 Authority Key Identifier:
keyid:CA:91:C4:2D:FA:6A:FB:C1:1E:78:EE:9D:E2:E7:85:F8:A2:0B:50:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypHELfpq-8EeeO6d4ueF-KILUEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/851e84-2f1a-4c77-b1f2-d5865041a14f/1/f9BHFBWxX7rp-9VS3ZlREaBNHno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/851e84-2f1a-4c77-b1f2-d5865041a14f/1/ypHELfpq-8EeeO6d4ueF-KILUEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.192.0/20
Signature Algorithm: sha256WithRSAEncryption
5d:20:04:9b:6c:4c:09:99:43:65:55:62:90:5e:98:8a:3b:76:
28:38:8b:b5:2b:e2:2d:e0:53:f7:1e:34:a3:37:60:4b:02:c1:
58:06:a1:26:e6:d6:0e:83:4e:b3:d9:ea:f7:21:a8:e5:6c:97:
7f:e0:98:77:95:b6:7c:a2:c0:66:87:1e:6c:d4:b9:e6:f9:9b:
cf:4d:48:b9:65:9b:3a:49:0d:63:95:ec:e5:58:f0:f8:81:57:
9a:83:49:c4:bf:b6:9b:53:ea:eb:23:b6:f8:f8:ed:40:d6:39:
76:9d:1c:74:73:fb:ab:6f:29:0f:cf:97:7b:5c:b1:ab:21:79:
1e:62:f9:27:b6:5e:13:62:64:c8:d7:55:4a:99:ab:34:60:91:
5b:59:da:6d:09:f4:47:8c:af:31:f8:de:90:7a:1d:94:02:ce:
d6:0f:b5:ea:14:24:49:0b:57:5a:42:a0:6e:01:d2:9e:d4:60:
cf:b1:01:03:f0:6c:00:78:3b:f4:75:86:18:a4:8b:0a:cf:c1:
59:3c:0c:3b:dd:24:89:c6:e3:34:92:4b:c3:b4:ad:7d:a4:5b:
63:a8:3f:f9:de:7e:e4:68:2b:85:8f:08:ab:92:a6:7e:bf:2e:
ae:54:fb:74:fc:f6:e4:1a:97:a8:8b:e6:bc:04:5b:86:d6:ec:
2f:a4:29:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt1AT1D7s3yycIx687yk9mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhOTFjNDJkZmE2YWZiYzExZTc4ZWU5ZGUyZTc4NWY4YTIw
YjUwNDMwHhcNMjMwMTAxMTQ1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmQwNDcxNDE1YjE1ZmJhZTlmYmQ1NTJkZDk5NTExMWEwNGQxZTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoKr4XuY/h8uOCFBOov27alydEqQ
S8bKy3IUvz+Y1T1KiMIQZyj0R8A2z729HVRBImXJhfi/6eFmPYEKOJf6vDlv1+cH
x+/jnygJKbNfiUuKt70gRRNaWHWu4kY4JAU2+1mzHxOdgAG956jhNURtiOL37x5p
f4oIvZqwV69bZja1H4k6H3fSlJjzzZ0QDM6LOjvdwna8YXSRok5eDnVD8+rnDxU7
9NK/w77kDj9c8S3xF8YsqVTR3LHJnsu2zLwsW6b9lqFprr5JISm23LQDmxMuY1ox
X3shpkfFZ9FepMkKmmfHfZ2UEAUQYMhI0Z+bPk5dw/YcNzMEDW0Kw8RpHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH/QRxQVsV+66fvVUt2ZURGgTR56MB8GA1UdIwQY
MBaAFMqRxC36avvBHnjuneLnhfiiC1BDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXBIRUxmcHEtOEVlZU82ZDR1ZUYtS0lMVUVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny84NTFlODQtMmYxYS00Yzc3LWIxZjIt
ZDU4NjUwNDFhMTRmLzEvZjlCSEZCV3hYN3JwLTlWUzNabFJFYUJOSG5vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny84NTFlODQtMmYxYS00Yzc3LWIxZjItZDU4NjUwNDFhMTRm
LzEveXBIRUxmcHEtOEVlZU82ZDR1ZUYtS0lMVUVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE2ZPAMA0G
CSqGSIb3DQEBCwUAA4IBAQBdIASbbEwJmUNlVWKQXpiKO3YoOIu1K+It4FP3HjSj
N2BLAsFYBqEm5tYOg06z2er3IajlbJd/4Jh3lbZ8osBmhx5s1Lnm+ZvPTUi5ZZs6
SQ1jlezlWPD4gVeag0nEv7abU+rrI7b4+O1A1jl2nRx0c/urbykPz5d7XLGrIXke
Yvkntl4TYmTI11VKmas0YJFbWdptCfRHjK8x+N6Qeh2UAs7WD7XqFCRJC1daQqBu
AdKe1GDPsQED8GwAeDv0dYYYpIsKz8FZPAw73SSJxuM0kkvDtK19pFtjqD/53n7k
aCuFjwirkqZ+vy6uVPt0/PbkGpeoi+a8BFuG1uwvpCkZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:31 2024 by rpki-client on console-fra.rpki-client.org