Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/lRBocKRkLbl29ARhJgodgxgxX2U.roa
File: lRBocKRkLbl29ARhJgodgxgxX2U.roa (raw, json)
Hash identifier: zF5BEMUDRg27Rz/i1w2CZtqEaZyydSlA8gTnBBWgpb8=
Subject key identifier: 95:10:68:70:A4:64:2D:B9:76:F4:04:61:26:0A:1D:83:18:31:5F:65
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 018A839D7A98E53AAF2BEAB5579113D3EE1E
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/lRBocKRkLbl29ARhJgodgxgxX2U.roa
Signing time: Mon 11 Sep 2023 09:40:50 +0000
ROA not before: Mon 11 Sep 2023 09:40:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42689
IP address blocks: 213.137.80.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Dec 2023 21:41:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:9d:7a:98:e5:3a:af:2b:ea:b5:57:91:13:d3:ee:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Sep 11 09:40:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95106870a4642db976f40461260a1d8318315f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0f:28:87:a0:ea:90:cc:06:66:5b:26:f9:8e:
82:2d:d2:d4:b1:f3:9f:e7:fd:59:49:33:e3:ec:0b:
1b:d5:76:c4:c8:c2:fc:eb:2d:40:16:46:c6:2c:6b:
46:72:2f:5d:23:13:8a:bf:43:56:3c:33:8a:a0:b5:
18:62:bd:6d:3b:03:ba:d8:86:8d:21:73:fb:c5:f7:
01:10:a9:63:45:9a:be:5b:56:85:78:0a:11:8a:1b:
6a:48:fd:79:20:2e:61:ce:fc:b9:6f:f6:33:e8:f5:
39:47:d2:9a:35:c7:7d:69:54:2a:e1:0c:ad:56:2d:
3b:4e:4d:99:2b:54:55:98:4e:49:cb:95:86:bd:19:
c3:b5:c0:22:ea:0d:1c:3a:e2:04:5b:93:05:bc:d1:
c7:bc:89:73:49:55:24:1c:74:fe:6b:30:4e:31:cc:
f4:1d:4f:cb:5d:7a:2a:5c:a9:10:0f:fa:e0:55:e0:
64:5f:49:2d:2e:e5:3d:63:7b:09:2f:5f:81:95:5d:
f4:45:ee:47:cc:02:83:c7:88:36:a8:5a:4b:a2:97:
0f:75:2e:b7:46:45:a6:a4:0c:70:e9:0e:cc:15:2e:
3c:4a:89:36:bc:46:ff:a9:78:ed:f9:c1:0e:10:5e:
16:20:dd:35:a0:82:f9:b7:c2:c5:ef:ef:2b:e2:e8:
78:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:10:68:70:A4:64:2D:B9:76:F4:04:61:26:0A:1D:83:18:31:5F:65
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/lRBocKRkLbl29ARhJgodgxgxX2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.137.80.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:b8:e8:a7:89:d0:82:d7:6c:ff:fd:8e:5e:37:72:d6:a8:bd:
a8:6e:89:96:fb:45:2e:7b:c6:66:35:fe:e7:3d:73:6d:f4:19:
30:d6:3f:59:03:c0:af:59:b5:aa:41:e3:c3:5a:37:3c:72:75:
b2:1a:63:7a:5f:aa:87:ed:3a:98:29:93:2e:b6:d1:f9:12:c7:
da:e8:83:88:28:0c:8d:ba:69:07:14:90:3c:26:31:2a:27:f2:
67:d1:df:c0:4a:d2:64:bf:a5:c2:fa:ab:96:3c:66:dc:00:80:
b1:f6:67:36:cb:bb:dd:d2:45:52:2e:96:3c:c8:72:06:16:2c:
69:05:f4:c2:5e:90:d7:e8:6b:d9:0f:39:21:17:83:29:fe:90:
e9:29:1f:db:01:eb:6d:8f:82:68:de:83:f0:30:56:ca:57:da:
f1:b8:1a:eb:e4:34:50:97:c0:8d:09:6c:31:fb:6d:97:a6:8c:
d8:81:bd:ad:ee:6b:e9:bb:1c:67:b7:de:76:fb:04:3c:d4:bb:
e3:9f:c8:04:e3:5d:50:e0:46:a0:17:59:16:b8:02:93:b9:c2:
d3:e7:4a:e5:80:e8:f7:6e:e9:e5:ed:11:55:d5:37:d6:a5:8d:
1b:d0:f6:1d:2e:be:fa:77:98:36:bb:00:28:39:42:20:87:78:
65:79:d5:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqDnXqY5TqvK+q1V5ET0+4eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZjliMTZhZGYyZmQzMTk4ODg1OTkyMmI0NDU3NDgxZGQ3
ZWVmNDAwHhcNMjMwOTExMDk0MDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTEwNjg3MGE0NjQyZGI5NzZmNDA0NjEyNjBhMWQ4MzE4MzE1ZjY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApw8oh6DqkMwGZlsm+Y6CLdLUsfOf
5/1ZSTPj7Asb1XbEyML86y1AFkbGLGtGci9dIxOKv0NWPDOKoLUYYr1tOwO62IaN
IXP7xfcBEKljRZq+W1aFeAoRihtqSP15IC5hzvy5b/Yz6PU5R9KaNcd9aVQq4Qyt
Vi07Tk2ZK1RVmE5Jy5WGvRnDtcAi6g0cOuIEW5MFvNHHvIlzSVUkHHT+azBOMcz0
HU/LXXoqXKkQD/rgVeBkX0ktLuU9Y3sJL1+BlV30Re5HzAKDx4g2qFpLopcPdS63
RkWmpAxw6Q7MFS48Sok2vEb/qXjt+cEOEF4WIN01oIL5t8LF7+8r4uh4oQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJUQaHCkZC25dvQEYSYKHYMYMV9lMB8GA1UdIwQY
MBaAFHD5sWrfL9MZiIWZIrRFdIHdfu9AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUt
YmM2ZGI3MjQ4YWRkLzEvbFJCb2NLUmtMYmwyOUFSaEpnb2RneGd4WDJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUtYmM2ZGI3MjQ4YWRk
LzEvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB1YlQMA0G
CSqGSIb3DQEBCwUAA4IBAQCjuOinidCC12z//Y5eN3LWqL2obomW+0Uue8ZmNf7n
PXNt9Bkw1j9ZA8CvWbWqQePDWjc8cnWyGmN6X6qH7TqYKZMuttH5Esfa6IOIKAyN
umkHFJA8JjEqJ/Jn0d/AStJkv6XC+quWPGbcAICx9mc2y7vd0kVSLpY8yHIGFixp
BfTCXpDX6GvZDzkhF4Mp/pDpKR/bAettj4Jo3oPwMFbKV9rxuBrr5DRQl8CNCWwx
+22XpozYgb2t7mvpuxxnt952+wQ81Lvjn8gE411Q4EagF1kWuAKTucLT50rlgOj3
bunl7RFV1TfWpY0b0PYdLr76d5g2uwAoOUIgh3hledXe
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:06 2024 by rpki-client on console-fra.rpki-client.org