Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/tEGoSb1WRUi_ST0GyFgBKsOd7sE.roa
File: tEGoSb1WRUi_ST0GyFgBKsOd7sE.roa (raw, json)
Hash identifier: JCYZ+QgMiT5Ha30FX+aVFOMuAr0CPmsAnVUgxxnlNIA=
Subject key identifier: B4:41:A8:49:BD:56:45:48:BF:49:3D:06:C8:58:01:2A:C3:9D:EE:C1
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 0185730CD5546B5673A5E3BF7C25D30AC982
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/tEGoSb1WRUi_ST0GyFgBKsOd7sE.roa
Signing time: Mon 02 Jan 2023 15:14:58 +0000
ROA not before: Mon 02 Jan 2023 15:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206106
IP address blocks: 147.234.52.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:d5:54:6b:56:73:a5:e3:bf:7c:25:d3:0a:c9:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Jan 2 15:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b441a849bd564548bf493d06c858012ac39deec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:54:7a:17:10:31:51:18:fb:c6:3b:14:a2:c4:
48:c8:73:e4:62:20:91:f6:7e:61:41:aa:49:f8:60:
92:b9:1f:5d:19:0a:22:f0:11:bb:54:3b:80:75:6e:
97:a8:9b:d3:48:63:cc:35:49:67:c2:f2:ae:62:40:
15:ae:e7:a8:07:85:45:71:05:c4:5b:af:be:94:80:
0d:db:06:56:17:d0:01:8f:fa:76:7a:b4:29:92:fa:
79:93:18:b8:33:c5:36:be:51:53:9d:58:52:78:a2:
0a:6e:4b:95:38:77:c8:f9:4e:36:36:15:03:3b:61:
6d:b0:13:40:f6:20:ce:7e:67:ca:e0:0a:09:30:92:
18:4b:a0:ef:c5:3e:fb:47:68:2e:56:d2:0d:fe:e3:
06:0a:29:4e:4c:33:9e:de:40:39:cc:eb:1a:18:2d:
62:07:0b:81:97:84:4f:11:68:00:1b:c8:58:59:f1:
3c:02:eb:2b:c3:95:05:37:14:4b:49:7c:99:39:7e:
db:db:9e:13:c1:f1:cc:07:d8:2f:35:cc:4f:f5:cd:
09:39:5f:ef:a6:1a:34:ac:83:f7:1a:7c:84:b0:1d:
1b:8a:5d:b2:48:9d:e8:26:81:58:a1:41:d3:ad:08:
26:b2:07:5a:2d:e4:a6:a4:47:05:4b:cf:a9:ec:d6:
60:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:41:A8:49:BD:56:45:48:BF:49:3D:06:C8:58:01:2A:C3:9D:EE:C1
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/tEGoSb1WRUi_ST0GyFgBKsOd7sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.52.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:30:0c:1c:5a:69:83:4c:67:85:26:e0:d9:af:96:87:0b:8a:
0a:71:4b:69:f5:f2:2f:c2:cd:38:a2:c5:52:fd:11:20:d6:ec:
fb:2f:57:b5:b9:ef:c0:d6:26:4c:a8:5b:78:82:af:6f:8a:b8:
5f:85:5d:4c:3b:2c:c3:03:bf:3f:d5:76:a4:8b:40:c8:7d:e8:
e3:90:ea:be:ff:35:c7:c6:16:10:0b:f5:33:19:bb:60:74:92:
9a:e0:34:be:06:68:a4:74:df:7e:cc:7c:09:bd:0c:4f:66:24:
38:b2:cf:31:28:24:c9:b9:8b:cb:d4:4f:58:34:ce:c3:c8:46:
22:d2:76:cb:e6:85:77:56:d0:7b:16:f5:77:ba:b3:90:2c:1d:
d1:f7:22:88:e6:05:d2:d5:28:28:f0:12:7a:01:26:7b:f4:7f:
7b:3c:58:71:17:0e:a0:9c:cf:d5:4d:81:34:6a:91:35:f1:dc:
af:c5:a0:0f:8d:13:ca:f0:7c:79:b8:da:e4:1b:73:13:39:6b:
49:b2:8c:c6:80:5a:a5:ba:dd:da:ce:69:d6:56:84:94:34:8a:
bf:0d:b4:a2:65:21:76:bc:94:e2:81:bf:e7:b2:96:c9:d4:0b:
fa:4d:36:51:b4:f1:30:5e:7a:a3:4b:d2:8c:28:bc:7f:fb:9e:
e2:7c:15:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzDNVUa1ZzpeO/fCXTCsmCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi
NDUwZTYwHhcNMjMwMTAyMTUxNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDQxYTg0OWJkNTY0NTQ4YmY0OTNkMDZjODU4MDEyYWMzOWRlZWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFR6FxAxURj7xjsUosRIyHPkYiCR
9n5hQapJ+GCSuR9dGQoi8BG7VDuAdW6XqJvTSGPMNUlnwvKuYkAVrueoB4VFcQXE
W6++lIAN2wZWF9ABj/p2erQpkvp5kxi4M8U2vlFTnVhSeKIKbkuVOHfI+U42NhUD
O2FtsBNA9iDOfmfK4AoJMJIYS6DvxT77R2guVtIN/uMGCilOTDOe3kA5zOsaGC1i
BwuBl4RPEWgAG8hYWfE8Ausrw5UFNxRLSXyZOX7b254TwfHMB9gvNcxP9c0JOV/v
pho0rIP3GnyEsB0bil2ySJ3oJoFYoUHTrQgmsgdaLeSmpEcFS8+p7NZgZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLRBqEm9VkVIv0k9BshYASrDne7BMB8GA1UdIwQY
MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt
NDQzMzIyOWE4NDczLzEvdEVHb1NiMVdSVWlfU1QwR3lGZ0JLc09kN3NFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz
LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+o0MA0G
CSqGSIb3DQEBCwUAA4IBAQCcMAwcWmmDTGeFJuDZr5aHC4oKcUtp9fIvws04osVS
/REg1uz7L1e1ue/A1iZMqFt4gq9virhfhV1MOyzDA78/1Xaki0DIfejjkOq+/zXH
xhYQC/UzGbtgdJKa4DS+BmikdN9+zHwJvQxPZiQ4ss8xKCTJuYvL1E9YNM7DyEYi
0nbL5oV3VtB7FvV3urOQLB3R9yKI5gXS1Sgo8BJ6ASZ79H97PFhxFw6gnM/VTYE0
apE18dyvxaAPjRPK8Hx5uNrkG3MTOWtJsozGgFqlut3azmnWVoSUNIq/DbSiZSF2
vJTigb/nspbJ1Av6TTZRtPEwXnqjS9KMKLx/+57ifBVl
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:32 2024 by rpki-client on console-fra.rpki-client.org