Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b9884b-6fc5-4b3e-b1e8-e01e94124674/1/AzbKfLQdFnaSRdMkCSYYRs-E8Gc.roa
File: AzbKfLQdFnaSRdMkCSYYRs-E8Gc.roa (raw, json)
Hash identifier: PfZA/hlb9ztU9rLxWi2+Pt2cDZORlRP9WPjzFlbhuuY=
Subject key identifier: 03:36:CA:7C:B4:1D:16:76:92:45:D3:24:09:26:18:46:CF:84:F0:67
Certificate issuer: /CN=da8f05e3843517cf0971c2bf9cddddd62717e52c
Certificate serial: 0189E0171D81323BD0B6DBC86B097DAA6426
Authority key identifier: DA:8F:05:E3:84:35:17:CF:09:71:C2:BF:9C:DD:DD:D6:27:17:E5:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2o8F44Q1F88JccK_nN3d1icX5Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b9884b-6fc5-4b3e-b1e8-e01e94124674/1/AzbKfLQdFnaSRdMkCSYYRs-E8Gc.roa
Signing time: Thu 10 Aug 2023 15:35:58 +0000
ROA not before: Thu 10 Aug 2023 15:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205007
IP address blocks: 138.124.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Aug 2023 16:05:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e0:17:1d:81:32:3b:d0:b6:db:c8:6b:09:7d:aa:64:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da8f05e3843517cf0971c2bf9cddddd62717e52c
Validity
Not Before: Aug 10 15:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0336ca7cb41d16769245d32409261846cf84f067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c4:74:ed:b3:b6:85:84:7d:3b:6b:63:24:b3:
a9:41:54:e5:e6:4e:b3:a6:83:ed:7b:88:a2:7c:fc:
b8:dc:2e:1f:6a:04:dc:56:d9:bf:f2:f0:23:e6:17:
5b:2d:54:85:75:15:97:48:4d:0c:48:36:80:ed:88:
36:ab:5f:6e:96:66:02:90:5b:48:d6:92:0d:1e:db:
90:55:f2:24:ef:3a:de:54:ac:28:08:48:9a:93:4a:
85:56:4d:8c:8a:aa:8b:df:a2:ed:4e:60:cc:bc:d8:
7f:70:bd:83:8e:24:f7:c6:5e:dd:68:27:c3:35:90:
e6:a8:c4:a5:13:ae:9d:7b:e8:03:17:db:d9:b3:cb:
72:9b:0f:6a:ce:64:a9:e2:87:56:f4:0b:33:1f:fd:
93:b4:25:2b:36:de:8c:7c:0b:67:49:75:c9:a7:63:
59:00:7f:92:75:e0:82:8d:60:77:39:16:ea:72:9b:
c3:67:92:25:41:e9:9b:83:b1:6f:11:b3:c4:f6:28:
db:0f:6c:68:56:35:50:42:b3:e1:66:64:b1:41:70:
c5:b2:32:8b:cb:04:80:6d:26:4c:2d:e1:7d:98:b9:
a5:3b:25:4e:8d:0d:d6:5b:3a:b2:65:0c:7e:45:bf:
1e:83:6c:c6:3f:57:3f:a0:9b:dc:54:f1:c2:26:59:
86:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:36:CA:7C:B4:1D:16:76:92:45:D3:24:09:26:18:46:CF:84:F0:67
X509v3 Authority Key Identifier:
keyid:DA:8F:05:E3:84:35:17:CF:09:71:C2:BF:9C:DD:DD:D6:27:17:E5:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2o8F44Q1F88JccK_nN3d1icX5Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b9884b-6fc5-4b3e-b1e8-e01e94124674/1/AzbKfLQdFnaSRdMkCSYYRs-E8Gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b9884b-6fc5-4b3e-b1e8-e01e94124674/1/2o8F44Q1F88JccK_nN3d1icX5Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.124.31.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:48:01:3c:8e:ce:c3:82:a4:f1:97:98:d9:7c:8c:a6:a1:ff:
01:81:58:83:6d:70:72:db:1e:3c:96:2a:39:b7:32:bc:20:36:
e8:fd:df:b9:67:41:22:02:a9:62:98:0f:11:33:91:90:62:0b:
37:24:7d:0b:85:cc:e7:07:c2:9f:0a:62:1c:88:b3:38:5b:e7:
e7:91:c5:c9:e5:f1:0b:fb:24:e0:e9:b9:26:8b:82:47:e7:6e:
d8:db:fc:70:e7:c4:b8:e6:ea:f7:5c:d2:be:ac:69:a5:d8:91:
5a:ad:27:41:7a:a1:cb:be:6b:15:2f:3c:98:6d:03:6a:e2:0e:
6c:7f:15:5b:0d:55:ea:9d:d0:66:b9:f2:eb:5b:c2:93:d2:46:
c6:51:3a:b5:55:5b:32:f7:8a:ee:42:6b:67:db:7d:68:8c:f0:
a6:a5:98:99:05:e1:84:51:28:c6:b3:86:0e:12:d3:95:19:c0:
91:c5:c5:d4:c0:c2:00:12:00:de:53:04:4c:67:73:00:38:77:
62:5c:d5:b4:2a:40:b7:27:37:dd:c8:21:f9:bb:51:3d:9a:cc:
c4:de:34:23:9d:62:78:99:70:ed:e0:4c:79:44:4e:ce:06:6b:
3b:78:36:36:eb:55:7c:12:1b:42:58:27:f7:be:a9:20:29:be:
4d:75:7e:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYngFx2BMjvQttvIawl9qmQmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhOGYwNWUzODQzNTE3Y2YwOTcxYzJiZjljZGRkZGQ2Mjcx
N2U1MmMwHhcNMjMwODEwMTUzNTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzM2Y2E3Y2I0MWQxNjc2OTI0NWQzMjQwOTI2MTg0NmNmODRmMDY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAicR07bO2hYR9O2tjJLOpQVTl5k6z
poPte4iifPy43C4fagTcVtm/8vAj5hdbLVSFdRWXSE0MSDaA7Yg2q19ulmYCkFtI
1pINHtuQVfIk7zreVKwoCEiak0qFVk2MiqqL36LtTmDMvNh/cL2DjiT3xl7daCfD
NZDmqMSlE66de+gDF9vZs8tymw9qzmSp4odW9AszH/2TtCUrNt6MfAtnSXXJp2NZ
AH+SdeCCjWB3ORbqcpvDZ5IlQembg7FvEbPE9ijbD2xoVjVQQrPhZmSxQXDFsjKL
ywSAbSZMLeF9mLmlOyVOjQ3WWzqyZQx+Rb8eg2zGP1c/oJvcVPHCJlmGBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAM2yny0HRZ2kkXTJAkmGEbPhPBnMB8GA1UdIwQY
MBaAFNqPBeOENRfPCXHCv5zd3dYnF+UsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMm84RjQ0UTFGODhKY2NLX25OM2QxaWNYNVN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iOTg4NGItNmZjNS00YjNlLWIxZTgt
ZTAxZTk0MTI0Njc0LzEvQXpiS2ZMUWRGbmFTUmRNa0NTWVlScy1FOEdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9iOTg4NGItNmZjNS00YjNlLWIxZTgtZTAxZTk0MTI0Njc0
LzEvMm84RjQ0UTFGODhKY2NLX25OM2QxaWNYNVN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAinwfMA0G
CSqGSIb3DQEBCwUAA4IBAQCbSAE8js7DgqTxl5jZfIymof8BgViDbXBy2x48lio5
tzK8IDbo/d+5Z0EiAqlimA8RM5GQYgs3JH0LhcznB8KfCmIciLM4W+fnkcXJ5fEL
+yTg6bkmi4JH527Y2/xw58S45ur3XNK+rGml2JFarSdBeqHLvmsVLzyYbQNq4g5s
fxVbDVXqndBmufLrW8KT0kbGUTq1VVsy94ruQmtn231ojPCmpZiZBeGEUSjGs4YO
EtOVGcCRxcXUwMIAEgDeUwRMZ3MAOHdiXNW0KkC3JzfdyCH5u1E9mszE3jQjnWJ4
mXDt4Ex5RE7OBms7eDY261V8EhtCWCf3vqkgKb5NdX4T
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:08 2024 by rpki-client on console-fra.rpki-client.org