Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/3b33e7-30b4-4149-9045-a0564c9d6fde/1/8a7azBB0bi-6-1u_q-cf8PCTYSI.roa
File: 8a7azBB0bi-6-1u_q-cf8PCTYSI.roa (raw, json)
Hash identifier: K+7ZDVwJG+haCPNPRlqanuZ3oLHtWbPCu2CdaE8fXB8=
Subject key identifier: F1:AE:DA:CC:10:74:6E:2F:BA:FB:5B:BF:AB:E7:1F:F0:F0:93:61:22
Certificate issuer: /CN=c11909548695f18c04cb895e2aceeb1103e03e12
Certificate serial: 018A472F1D82E97AF8C77038EC74BA5F7279
Authority key identifier: C1:19:09:54:86:95:F1:8C:04:CB:89:5E:2A:CE:EB:11:03:E0:3E:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wRkJVIaV8YwEy4leKs7rEQPgPhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/3b33e7-30b4-4149-9045-a0564c9d6fde/1/8a7azBB0bi-6-1u_q-cf8PCTYSI.roa
Signing time: Wed 30 Aug 2023 16:03:04 +0000
ROA not before: Wed 30 Aug 2023 16:03:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207515
IP address blocks: 84.252.106.0/24 maxlen: 24
2a10:1100::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:47:2f:1d:82:e9:7a:f8:c7:70:38:ec:74:ba:5f:72:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c11909548695f18c04cb895e2aceeb1103e03e12
Validity
Not Before: Aug 30 16:03:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1aedacc10746e2fbafb5bbfabe71ff0f0936122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:08:e8:4e:bc:89:5c:ce:13:54:54:3e:0d:20:
5c:94:c2:a4:1b:8d:b5:a6:3d:bf:fb:05:38:49:bd:
17:26:03:e9:f8:33:31:1b:eb:c6:30:d1:ef:97:bf:
15:38:00:26:84:76:4e:c5:df:90:71:d6:1d:7d:ec:
51:0e:b0:e8:b4:0b:4e:74:fd:4b:ed:ec:89:1b:83:
20:e0:99:96:e7:e2:e0:65:59:55:7a:dd:65:cd:b6:
c8:89:c8:83:22:39:3c:f3:3b:3b:26:db:06:15:d6:
ae:87:0b:8b:46:b9:25:fe:63:41:f0:04:4c:94:6f:
9e:5a:72:ed:3f:4c:ae:95:2e:93:82:28:74:1a:59:
a7:b6:5d:85:be:86:81:c2:aa:4d:cf:83:e3:f7:77:
36:66:1a:b8:44:e1:cf:ae:38:06:aa:1b:ca:ab:b6:
f0:69:a3:ee:9f:5f:4f:bb:5f:f6:b7:c7:e4:71:f6:
4e:22:d1:20:e2:4c:e1:4e:ae:2a:3f:1d:62:6d:50:
c3:83:8d:46:ae:a0:90:d0:48:52:67:24:f2:23:1f:
eb:66:0c:9e:85:4a:1f:13:06:62:bb:a2:c1:b4:58:
1a:10:7b:4d:e4:be:74:c9:4a:4a:9d:e1:2c:85:db:
a8:d9:a3:9b:5a:44:6f:0a:c8:08:20:54:8f:01:27:
db:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:AE:DA:CC:10:74:6E:2F:BA:FB:5B:BF:AB:E7:1F:F0:F0:93:61:22
X509v3 Authority Key Identifier:
keyid:C1:19:09:54:86:95:F1:8C:04:CB:89:5E:2A:CE:EB:11:03:E0:3E:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wRkJVIaV8YwEy4leKs7rEQPgPhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/3b33e7-30b4-4149-9045-a0564c9d6fde/1/8a7azBB0bi-6-1u_q-cf8PCTYSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/3b33e7-30b4-4149-9045-a0564c9d6fde/1/wRkJVIaV8YwEy4leKs7rEQPgPhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.106.0/24
IPv6:
2a10:1100::/29
Signature Algorithm: sha256WithRSAEncryption
98:ef:37:89:47:ea:7b:fe:e7:ca:ab:70:13:a5:b0:ce:a2:e5:
27:97:bf:14:83:ee:d2:7d:e6:ea:3f:a5:da:3f:48:43:6f:9b:
cc:41:93:e8:c6:58:e3:f2:fc:cc:17:96:6e:fc:52:84:9b:f6:
76:5a:45:b2:d5:68:09:b7:7c:b7:dc:08:27:90:2f:c5:35:ab:
56:96:ca:1d:93:79:c2:df:f5:c1:73:be:7b:48:4c:4a:4b:f3:
f7:e5:6e:97:ca:12:ec:91:eb:16:4c:75:84:c9:63:bf:c7:85:
83:43:f8:82:3e:f8:14:27:a1:ba:27:59:63:83:43:cb:75:b7:
0f:9a:54:b0:38:92:ea:f9:c9:fa:c9:06:3b:a3:bc:3a:12:08:
95:86:5e:06:e0:9f:89:81:a5:86:bd:a4:68:b9:56:3e:99:f1:
23:0f:fa:fd:80:86:da:39:42:15:50:9b:43:d9:3f:6a:e4:2e:
89:03:b5:4a:75:dd:fb:2a:ec:f9:aa:79:10:24:fd:ef:46:90:
b7:c0:22:13:73:5a:ec:84:bc:1f:30:ee:45:a2:a1:36:3c:e3:
c0:98:9f:b9:ab:66:bf:32:78:90:3b:ea:32:41:5c:61:0c:fc:
11:65:87:3d:7e:2d:b1:9b:b8:58:74:96:ab:01:8e:58:3f:83:
6d:70:c1:4a
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYpHLx2C6Xr4x3A47HS6X3J5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMxMTkwOTU0ODY5NWYxOGMwNGNiODk1ZTJhY2VlYjExMDNl
MDNlMTIwHhcNMjMwODMwMTYwMzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMWFlZGFjYzEwNzQ2ZTJmYmFmYjViYmZhYmU3MWZmMGYwOTM2MTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwjoTryJXM4TVFQ+DSBclMKkG421
pj2/+wU4Sb0XJgPp+DMxG+vGMNHvl78VOAAmhHZOxd+QcdYdfexRDrDotAtOdP1L
7eyJG4Mg4JmW5+LgZVlVet1lzbbIiciDIjk88zs7JtsGFdauhwuLRrkl/mNB8ARM
lG+eWnLtP0yulS6Tgih0Glmntl2FvoaBwqpNz4Pj93c2Zhq4ROHPrjgGqhvKq7bw
aaPun19Pu1/2t8fkcfZOItEg4kzhTq4qPx1ibVDDg41GrqCQ0EhSZyTyIx/rZgye
hUofEwZiu6LBtFgaEHtN5L50yUpKneEshduo2aObWkRvCsgIIFSPASfbwQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFPGu2swQdG4vuvtbv6vnH/Dwk2EiMB8GA1UdIwQY
MBaAFMEZCVSGlfGMBMuJXirO6xED4D4SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd1JrSlZJYVY4WXdFeTRsZUtzN3JFUVBnUGhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8zYjMzZTctMzBiNC00MTQ5LTkwNDUt
YTA1NjRjOWQ2ZmRlLzEvOGE3YXpCQjBiaS02LTF1X3EtY2Y4UENUWVNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8zYjMzZTctMzBiNC00MTQ5LTkwNDUtYTA1NjRjOWQ2ZmRl
LzEvd1JrSlZJYVY4WXdFeTRsZUtzN3JFUVBnUGhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAVPxqMA0E
AgACMAcDBQMqEBEAMA0GCSqGSIb3DQEBCwUAA4IBAQCY7zeJR+p7/ufKq3ATpbDO
ouUnl78Ug+7SfebqP6XaP0hDb5vMQZPoxljj8vzMF5Zu/FKEm/Z2WkWy1WgJt3y3
3AgnkC/FNatWlsodk3nC3/XBc757SExKS/P35W6XyhLskesWTHWEyWO/x4WDQ/iC
PvgUJ6G6J1ljg0PLdbcPmlSwOJLq+cn6yQY7o7w6EgiVhl4G4J+JgaWGvaRouVY+
mfEjD/r9gIbaOUIVUJtD2T9q5C6JA7VKdd37Kuz5qnkQJP3vRpC3wCITc1rshLwf
MO5FoqE2POPAmJ+5q2a/MniQO+oyQVxhDPwRZYc9fi2xm7hYdJarAY5YP4NtcMFK
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:53 2024 by rpki-client on console-ams.rpki-client.org