Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/XwhrCZUuGcvVZS97uX33GYmd0Ns.roa
File: XwhrCZUuGcvVZS97uX33GYmd0Ns.roa (raw, json)
Hash identifier: iCg2d/D519WOYYyDe0N4s5W7Peki8IXluxT8pXbKSaM=
Subject key identifier: 5F:08:6B:09:95:2E:19:CB:D5:65:2F:7B:B9:7D:F7:19:89:9D:D0:DB
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 01876B86B2059AFBC4D2FC3A646C673FAB92
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/XwhrCZUuGcvVZS97uX33GYmd0Ns.roa
Signing time: Mon 10 Apr 2023 14:16:42 +0000
ROA not before: Mon 10 Apr 2023 14:16:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 93.177.114.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6b:86:b2:05:9a:fb:c4:d2:fc:3a:64:6c:67:3f:ab:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Apr 10 14:16:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f086b09952e19cbd5652f7bb97df719899dd0db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6f:32:bb:56:29:ad:65:45:e1:c0:bd:2b:5c:
ff:f2:a2:ad:37:c0:f2:7e:a5:09:52:92:ad:89:0c:
cd:a4:ce:8e:4d:27:2d:22:71:2e:34:10:98:ff:9c:
5a:74:f6:6f:6f:24:6d:4c:71:15:3f:61:19:c7:07:
05:1d:8f:74:13:f1:35:fc:dd:fb:49:dd:d7:2e:81:
06:1e:c6:c4:f9:73:2d:28:ff:3b:db:95:b3:80:fa:
9c:d2:15:f8:c6:b0:7d:d9:b0:70:69:68:f8:75:22:
62:69:9c:f8:8a:16:b1:5f:e7:1b:36:e7:1a:2e:bf:
a0:c3:73:4a:6d:09:9f:48:b5:0f:4e:ae:72:ff:9c:
fb:3c:77:30:e3:94:06:f1:fa:9d:15:9b:fc:83:46:
00:e7:9a:87:20:41:62:d0:24:46:bf:7d:10:fc:d9:
24:b5:5b:0e:7c:15:07:e2:ec:27:ae:9f:ef:17:d8:
7a:4e:cb:f3:e7:9f:51:ab:c9:a2:4f:a6:ad:b3:27:
84:8a:ec:b9:4a:bb:0b:98:06:db:4e:2b:df:8d:35:
8f:67:23:56:65:5d:26:68:3e:69:af:ae:b7:46:26:
02:e9:3d:24:74:c8:41:fe:a8:d4:1b:bb:c4:43:07:
b7:12:e2:18:07:47:8e:f2:42:bf:22:19:52:f7:ac:
86:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:08:6B:09:95:2E:19:CB:D5:65:2F:7B:B9:7D:F7:19:89:9D:D0:DB
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/XwhrCZUuGcvVZS97uX33GYmd0Ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.114.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:d7:57:bb:bf:57:1a:db:42:54:93:d6:50:84:86:86:b0:3d:
36:49:89:84:ec:16:96:4e:2d:3b:23:e9:0d:7a:1a:ad:20:5d:
5b:5a:ce:f3:d4:c7:2a:c3:c1:89:df:d6:93:07:21:4b:90:60:
1a:07:fd:b4:ff:66:67:00:33:1e:11:65:96:72:bf:7f:55:70:
a7:43:d3:29:17:75:2b:0c:a8:50:da:e0:81:aa:44:5f:ff:c8:
6a:a5:c0:3d:bc:64:e2:f5:b4:68:67:29:13:2e:6e:f3:5e:be:
ac:70:e5:55:4d:ca:64:44:63:43:bf:11:27:c7:de:bb:03:fd:
0b:50:f1:96:f7:80:9f:5f:12:9b:05:40:c6:73:65:92:0c:50:
76:58:7a:61:ab:01:9c:48:e6:d8:4e:f9:e5:a8:b7:7f:de:f5:
07:43:31:79:7a:cb:e2:17:2d:a0:40:6f:2e:e1:d2:9d:b4:90:
b7:46:b6:98:2c:0d:98:25:5d:fc:48:17:fc:28:90:f1:37:9d:
ae:09:c0:2f:4e:93:54:a3:fa:12:72:eb:15:66:a0:9e:8d:1f:
c9:b1:f2:31:08:43:21:2e:13:2e:81:6c:6e:21:27:db:0e:8c:
ad:05:56:b5:5f:dd:fd:08:e9:2e:b1:d3:41:e4:2c:6c:9e:21:
3e:35:c5:e9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdrhrIFmvvE0vw6ZGxnP6uSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3MGZiMGYxZDhiOGMxOThiMGRjODYxNThhZmJjYmM1Mjlj
ZjE2YmUwHhcNMjMwNDEwMTQxNjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjA4NmIwOTk1MmUxOWNiZDU2NTJmN2JiOTdkZjcxOTg5OWRkMGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg28yu1YprWVF4cC9K1z/8qKtN8Dy
fqUJUpKtiQzNpM6OTSctInEuNBCY/5xadPZvbyRtTHEVP2EZxwcFHY90E/E1/N37
Sd3XLoEGHsbE+XMtKP8725WzgPqc0hX4xrB92bBwaWj4dSJiaZz4ihaxX+cbNuca
Lr+gw3NKbQmfSLUPTq5y/5z7PHcw45QG8fqdFZv8g0YA55qHIEFi0CRGv30Q/Nkk
tVsOfBUH4uwnrp/vF9h6Tsvz559Rq8miT6atsyeEiuy5SrsLmAbbTivfjTWPZyNW
ZV0maD5pr663RiYC6T0kdMhB/qjUG7vEQwe3EuIYB0eO8kK/IhlS96yGPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF8IawmVLhnL1WUve7l99xmJndDbMB8GA1UdIwQY
MBaAFFcPsPHYuMGYsNyGFYr7y8Upzxa+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnctdzhkaTR3Wml3M0lZVml2dkx4U25QRnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8wOTQ5ZmMtYWNjZC00NzFmLWE5Y2Qt
OTcyNDNlMzE2MjcyLzEvWHdockNaVXVHY3ZWWlM5N3VYMzNHWW1kME5zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8wOTQ5ZmMtYWNjZC00NzFmLWE5Y2QtOTcyNDNlMzE2Mjcy
LzEvVnctdzhkaTR3Wml3M0lZVml2dkx4U25QRnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBXbFyMA0G
CSqGSIb3DQEBCwUAA4IBAQAs11e7v1ca20JUk9ZQhIaGsD02SYmE7BaWTi07I+kN
ehqtIF1bWs7z1Mcqw8GJ39aTByFLkGAaB/20/2ZnADMeEWWWcr9/VXCnQ9MpF3Ur
DKhQ2uCBqkRf/8hqpcA9vGTi9bRoZykTLm7zXr6scOVVTcpkRGNDvxEnx967A/0L
UPGW94CfXxKbBUDGc2WSDFB2WHphqwGcSObYTvnlqLd/3vUHQzF5esviFy2gQG8u
4dKdtJC3RraYLA2YJV38SBf8KJDxN52uCcAvTpNUo/oScusVZqCejR/JsfIxCEMh
LhMugWxuISfbDoytBVa1X939COkusdNB5CxsniE+NcXp
-----END CERTIFICATE-----
Generated at Fri Aug 11 08:26:21 2023 by rpki-client on console-fra.rpki-client.org