Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/t3KlOWwLVu7AL2Lk_GQXujdaIoc.roa
File: t3KlOWwLVu7AL2Lk_GQXujdaIoc.roa (raw, json)
Hash identifier: kNvTkQY8+K77dlqSeaUom/iSa7iGCoaLyJ/PpGCtlM8=
Subject key identifier: B7:72:A5:39:6C:0B:56:EE:C0:2F:62:E4:FC:64:17:BA:37:5A:22:87
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C2EDD42495AD1DE99DB6E8EC29C3C849F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/t3KlOWwLVu7AL2Lk_GQXujdaIoc.roa
Signing time: Sun 03 Dec 2023 08:48:21 +0000
ROA not before: Sun 03 Dec 2023 08:48:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147287
IP address blocks: 86.107.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Dec 2023 07:57:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:2e:dd:42:49:5a:d1:de:99:db:6e:8e:c2:9c:3c:84:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 3 08:48:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b772a5396c0b56eec02f62e4fc6417ba375a2287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3f:14:2a:93:64:72:97:e8:6a:ba:50:a2:19:
07:f3:38:56:d2:0b:21:a6:81:d4:f6:55:5f:63:17:
ad:a1:3e:ca:53:98:d8:08:f5:1f:ab:34:24:62:4a:
05:9a:a4:ff:17:dd:31:2c:0a:da:74:55:cc:ff:0a:
58:f2:92:28:c1:47:4d:aa:d5:8d:e5:84:42:82:69:
d5:9b:d7:da:9f:ee:6b:40:04:1f:97:ef:fc:89:66:
1b:c5:cf:cb:28:f9:f6:02:18:48:3c:ea:d6:37:fb:
c0:50:ec:f6:31:23:88:c9:15:bb:53:6b:af:43:c9:
05:ed:17:51:a3:b7:99:42:6b:fe:53:4b:b7:27:0a:
c4:b9:bb:5e:ed:03:a5:9f:94:c9:2f:2f:64:57:03:
d3:d8:b3:a4:ac:b4:67:23:46:50:aa:cc:7e:6d:ca:
9b:d5:cd:b4:0c:5f:98:96:35:c8:5d:1c:a3:90:bf:
89:41:cc:d8:20:b4:83:04:43:2c:99:e2:35:31:9e:
d2:f1:18:c1:94:fa:bf:e4:c9:12:0d:a3:11:09:c9:
9d:87:40:39:ef:ea:98:e2:da:06:67:5b:e6:e6:d3:
c6:fe:f3:c9:4d:0c:1e:67:b5:cf:ed:7f:bc:a7:fa:
7a:ef:8d:f1:ee:be:d3:9a:9e:cf:ca:da:1d:00:51:
a1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:72:A5:39:6C:0B:56:EE:C0:2F:62:E4:FC:64:17:BA:37:5A:22:87
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/t3KlOWwLVu7AL2Lk_GQXujdaIoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.51.0/24
Signature Algorithm: sha256WithRSAEncryption
76:44:b2:dc:79:99:ac:b9:0c:3b:4c:cf:f9:22:d1:ca:e1:d8:
1f:d9:b2:97:3d:bd:3b:47:fa:e7:cb:ec:dc:55:3b:81:43:b6:
77:97:db:1c:57:45:21:20:82:1a:3d:3d:bf:66:8c:3c:f5:ed:
5c:bf:76:53:5b:c9:7a:06:47:6d:59:b6:f0:09:d1:08:1b:06:
28:07:0d:0e:40:86:84:0f:a3:7d:a6:a3:30:57:55:ac:ab:cc:
32:1c:67:19:65:97:5d:7a:53:24:2c:7e:93:c5:2d:ed:1e:51:
9f:f3:50:93:7d:28:b9:d7:cd:15:3a:53:da:76:f4:34:a3:6a:
60:d9:ad:c5:85:44:d1:06:32:2f:4e:ac:a4:29:6b:b8:4b:69:
27:8e:8f:39:bd:a6:20:81:af:db:c1:67:c0:7a:96:f2:35:0e:
94:6d:b7:a9:f1:4c:c9:39:06:64:28:19:90:23:72:4a:b2:85:
a5:05:4a:7e:f1:48:b3:87:b6:f9:51:4e:b7:73:bc:47:df:4e:
5e:c6:a1:4c:9b:f7:59:d7:3a:23:f9:a3:d5:8f:5b:af:c6:f0:
dc:fd:f2:37:bc:08:cd:26:7d:1c:16:31:57:cc:d3:91:9b:51:
11:87:81:30:72:1e:e1:ca:e3:f5:8a:90:59:71:21:37:2f:23:
97:b7:f7:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwu3UJJWtHemdtujsKcPISfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMxMjAzMDg0ODIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzcyYTUzOTZjMGI1NmVlYzAyZjYyZTRmYzY0MTdiYTM3NWEyMjg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArD8UKpNkcpfoarpQohkH8zhW0gsh
poHU9lVfYxetoT7KU5jYCPUfqzQkYkoFmqT/F90xLAradFXM/wpY8pIowUdNqtWN
5YRCgmnVm9fan+5rQAQfl+/8iWYbxc/LKPn2AhhIPOrWN/vAUOz2MSOIyRW7U2uv
Q8kF7RdRo7eZQmv+U0u3JwrEubte7QOln5TJLy9kVwPT2LOkrLRnI0ZQqsx+bcqb
1c20DF+YljXIXRyjkL+JQczYILSDBEMsmeI1MZ7S8RjBlPq/5MkSDaMRCcmdh0A5
7+qY4toGZ1vm5tPG/vPJTQweZ7XP7X+8p/p6743x7r7Tmp7PytodAFGhsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLdypTlsC1buwC9i5PxkF7o3WiKHMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvdDNLbE9Xd0xWdTdBTDJMa19HUVh1amRhSW9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVmszMA0G
CSqGSIb3DQEBCwUAA4IBAQB2RLLceZmsuQw7TM/5ItHK4dgf2bKXPb07R/rny+zc
VTuBQ7Z3l9scV0UhIIIaPT2/Zow89e1cv3ZTW8l6BkdtWbbwCdEIGwYoBw0OQIaE
D6N9pqMwV1Wsq8wyHGcZZZddelMkLH6TxS3tHlGf81CTfSi5180VOlPadvQ0o2pg
2a3FhUTRBjIvTqykKWu4S2knjo85vaYgga/bwWfAepbyNQ6Ubbep8UzJOQZkKBmQ
I3JKsoWlBUp+8Uizh7b5UU63c7xH305exqFMm/dZ1zoj+aPVj1uvxvDc/fI3vAjN
Jn0cFjFXzNORm1ERh4Ewch7hyuP1ipBZcSE3LyOXt/ei
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org