Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/sR75I_A95CxDx-GVwhmGv2v2jEU.roa
File: sR75I_A95CxDx-GVwhmGv2v2jEU.roa (raw, json)
Hash identifier: 3Qmrfy3T7hgGegNn7T6NQ6sL08fzWRJsNdujfF3EMi0=
Subject key identifier: B1:1E:F9:23:F0:3D:E4:2C:43:C7:E1:95:C2:19:86:BF:6B:F6:8C:45
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0185703991E23CB6A26ECAA4E8C78D78366E
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/sR75I_A95CxDx-GVwhmGv2v2jEU.roa
Signing time: Mon 02 Jan 2023 02:04:59 +0000
ROA not before: Mon 02 Jan 2023 02:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64399
IP address blocks: 212.16.70.0/24 maxlen: 24
212.16.73.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:91:e2:3c:b6:a2:6e:ca:a4:e8:c7:8d:78:36:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jan 2 02:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b11ef923f03de42c43c7e195c21986bf6bf68c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8d:7b:fa:74:69:eb:72:bb:b0:0a:28:0e:37:
e2:18:f8:f1:4b:c3:7c:67:b5:f3:06:27:38:93:c9:
88:9a:8c:1d:26:f9:ed:0e:5b:88:6b:8b:bc:a3:d8:
a9:75:57:a7:f8:fa:b3:01:6c:fe:4c:b6:6e:a5:d2:
16:98:10:4b:ca:9f:36:0f:2b:ba:78:78:f0:d3:78:
83:36:50:95:31:a1:4e:72:5b:a1:8b:a8:e0:d1:d3:
02:fe:1b:20:74:b0:e7:3e:5c:48:e1:02:16:a4:ca:
77:08:e2:c1:d6:85:46:f7:3d:5b:b7:03:05:fe:f2:
05:b6:bd:67:ff:f4:16:25:fe:4a:19:68:7d:fb:c4:
74:42:94:59:28:2a:c1:c0:c6:4c:05:d5:52:90:6a:
31:5c:1a:9b:d9:2a:d1:e2:ec:b1:06:3c:2d:55:2b:
27:e5:8b:16:82:25:5c:7f:4e:65:bf:1e:fb:dc:b9:
70:6f:5a:bc:8b:7d:ee:59:62:06:90:ba:24:31:51:
ef:a7:7d:73:0c:5b:2e:ac:5a:e0:80:7a:20:c0:a6:
c9:17:be:ba:89:a9:c9:41:67:0c:9c:44:9d:9d:b0:
86:d9:91:19:1e:72:7c:4a:a2:01:87:5d:7e:e0:16:
48:64:72:43:79:3a:5d:7a:b2:b3:7b:ba:28:59:c7:
f1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:1E:F9:23:F0:3D:E4:2C:43:C7:E1:95:C2:19:86:BF:6B:F6:8C:45
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/sR75I_A95CxDx-GVwhmGv2v2jEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.70.0/24
212.16.73.0/24
Signature Algorithm: sha256WithRSAEncryption
05:54:8f:d4:7f:08:0a:78:3f:d5:db:77:bf:9f:2b:3b:17:1f:
2b:29:33:e6:49:e2:69:8d:f5:82:bb:b0:6f:44:fa:b0:c4:21:
0b:65:f3:63:0f:92:26:d3:9d:d5:ce:6e:15:04:ba:ab:52:ab:
7c:4e:d7:66:9b:86:4a:2d:e5:a0:6a:fb:b9:0f:44:27:fc:cd:
ec:a2:f9:96:0c:90:72:1a:2b:1b:a3:78:3f:13:31:01:54:0c:
f3:a4:69:3e:03:46:0e:13:9e:99:0a:d0:fc:74:32:4d:d3:44:
a8:fc:55:83:77:78:fe:dc:ec:21:67:89:af:a9:f9:da:3e:12:
2b:2a:de:73:9a:84:d9:ee:2c:c3:bb:c5:8b:0f:67:f3:55:79:
e2:f8:73:f0:bb:27:94:e4:51:d5:14:28:52:af:6c:e9:fc:dd:
10:a0:72:61:18:fc:69:02:b9:59:69:ac:93:f3:92:b4:b6:22:
64:25:b8:3c:fe:2a:4a:bf:58:35:fe:93:ec:31:90:93:a9:01:
44:08:15:23:0f:52:61:f2:b6:a5:39:72:2b:08:c2:da:1a:20:
49:5a:52:a0:b8:23:82:41:a8:e9:ef:3b:2d:ca:38:ed:aa:31:
7b:3e:42:4b:3e:0d:f2:61:52:0b:0c:11:e1:ca:fd:12:4c:fa:
85:fa:23:51
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVwOZHiPLaibsqk6MeNeDZuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjMwMTAyMDIwNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTFlZjkyM2YwM2RlNDJjNDNjN2UxOTVjMjE5ODZiZjZiZjY4YzQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlY17+nRp63K7sAooDjfiGPjxS8N8
Z7XzBic4k8mImowdJvntDluIa4u8o9ipdVen+PqzAWz+TLZupdIWmBBLyp82Dyu6
eHjw03iDNlCVMaFOcluhi6jg0dMC/hsgdLDnPlxI4QIWpMp3COLB1oVG9z1btwMF
/vIFtr1n//QWJf5KGWh9+8R0QpRZKCrBwMZMBdVSkGoxXBqb2SrR4uyxBjwtVSsn
5YsWgiVcf05lvx773Llwb1q8i33uWWIGkLokMVHvp31zDFsurFrggHogwKbJF766
ianJQWcMnESdnbCG2ZEZHnJ8SqIBh11+4BZIZHJDeTpderKze7ooWcfxAQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLEe+SPwPeQsQ8fhlcIZhr9r9oxFMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvc1I3NUlfQTk1Q3hEeC1HVndobUd2MnYyakVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1BBGAwQA
1BBJMA0GCSqGSIb3DQEBCwUAA4IBAQAFVI/UfwgKeD/V23e/nys7Fx8rKTPmSeJp
jfWCu7BvRPqwxCELZfNjD5Im053Vzm4VBLqrUqt8Ttdmm4ZKLeWgavu5D0Qn/M3s
ovmWDJByGisbo3g/EzEBVAzzpGk+A0YOE56ZCtD8dDJN00So/FWDd3j+3OwhZ4mv
qfnaPhIrKt5zmoTZ7izDu8WLD2fzVXni+HPwuyeU5FHVFChSr2zp/N0QoHJhGPxp
ArlZaayT85K0tiJkJbg8/ipKv1g1/pPsMZCTqQFECBUjD1Jh8ralOXIrCMLaGiBJ
WlKguCOCQajp7zstyjjtqjF7PkJLPg3yYVILDBHhyv0STPqF+iNR
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:48 2024 by rpki-client on console-ams.rpki-client.org