Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a0aad9-3867-449a-9243-9ab24e7d28fe/1/g1f8ulGWfjE0NluG38i2xvrTPqs.roa
File: g1f8ulGWfjE0NluG38i2xvrTPqs.roa (raw, json)
Hash identifier: doCdGFftnlGbpB9cle+1PfzilDbcbRoxiUnatxICKus=
Subject key identifier: 83:57:FC:BA:51:96:7E:31:34:36:5B:86:DF:C8:B6:C6:FA:D3:3E:AB
Certificate issuer: /CN=6a95a4cf6f0f0c32cd3dfe988762260bfcdba67e
Certificate serial: 0191E4E0944D8BA0A42D56B5EBA0ECA00F18
Authority key identifier: 6A:95:A4:CF:6F:0F:0C:32:CD:3D:FE:98:87:62:26:0B:FC:DB:A6:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/apWkz28PDDLNPf6Yh2ImC_zbpn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a0aad9-3867-449a-9243-9ab24e7d28fe/1/g1f8ulGWfjE0NluG38i2xvrTPqs.roa
Signing time: Thu 12 Sep 2024 06:16:48 +0000
ROA not before: Thu 12 Sep 2024 06:16:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1680
IP address blocks: 147.234.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Sep 2024 11:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e4:e0:94:4d:8b:a0:a4:2d:56:b5:eb:a0:ec:a0:0f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a95a4cf6f0f0c32cd3dfe988762260bfcdba67e
Validity
Not Before: Sep 12 06:16:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8357fcba51967e3134365b86dfc8b6c6fad33eab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b3:4f:ab:b3:a7:4c:26:80:f3:ce:8c:5a:81:
66:fe:c6:cc:cc:73:84:c7:7e:b8:7e:6a:5c:49:d9:
2e:b1:39:46:e5:cf:d5:66:19:8b:e0:bb:09:15:d0:
fc:45:59:80:01:77:13:58:ec:ad:07:4b:3e:cc:d0:
c2:c5:a6:83:70:5c:2e:51:04:93:48:d2:d7:64:e5:
f2:22:86:80:18:26:e1:e1:c5:77:86:da:13:6d:9d:
eb:8f:8c:72:6d:c1:be:72:6f:67:5c:22:d1:68:50:
49:25:53:ac:2e:4f:6f:fd:14:3b:c6:d2:2e:7f:41:
cf:74:8a:62:75:bc:25:ff:2a:0e:c2:7c:f8:a2:82:
d2:d3:4e:5f:ac:7e:77:45:fe:d3:a1:d5:d0:e3:1e:
51:fd:6d:42:ae:f9:57:a6:2f:66:72:9e:87:af:6c:
26:34:d9:f4:70:96:16:d0:59:c2:02:9c:66:e8:de:
99:52:5e:76:34:c5:45:7f:fb:27:ea:89:26:32:2a:
74:97:84:05:0e:1e:81:ee:7b:cd:85:07:2a:3a:2a:
a0:54:53:8a:ad:cc:26:a7:b2:29:bf:62:ef:64:0d:
47:97:3e:93:02:d4:b3:22:a1:de:bb:08:8c:58:0f:
11:70:05:a6:9c:21:9b:60:27:d0:eb:20:6e:72:f9:
28:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:57:FC:BA:51:96:7E:31:34:36:5B:86:DF:C8:B6:C6:FA:D3:3E:AB
X509v3 Authority Key Identifier:
keyid:6A:95:A4:CF:6F:0F:0C:32:CD:3D:FE:98:87:62:26:0B:FC:DB:A6:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/apWkz28PDDLNPf6Yh2ImC_zbpn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0aad9-3867-449a-9243-9ab24e7d28fe/1/g1f8ulGWfjE0NluG38i2xvrTPqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0aad9-3867-449a-9243-9ab24e7d28fe/1/apWkz28PDDLNPf6Yh2ImC_zbpn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.26.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:23:e2:ae:cd:4b:34:72:f3:2b:64:59:0f:c2:5b:a6:17:f9:
d2:6a:25:f4:91:22:7d:ee:97:e4:ec:27:8e:cb:53:6b:ab:d9:
f4:88:48:cc:f9:73:04:02:6d:c5:b7:f8:70:4f:b5:ce:85:0b:
19:ed:86:fb:6a:13:a3:30:79:6c:d4:9d:cf:12:4a:10:43:72:
54:31:2d:6f:b4:99:af:45:f5:c8:9e:d8:b2:28:e8:27:05:09:
59:04:ee:d1:a0:fb:87:03:76:c4:9b:7d:31:36:2e:4f:6a:2f:
58:b7:02:a5:2f:73:28:ae:f5:f0:71:78:90:65:2d:14:c1:90:
81:11:9c:52:32:4f:ed:d8:9a:7c:8c:eb:da:5c:42:cb:9f:82:
42:dd:a7:a8:b9:7f:88:a5:a6:b7:93:0b:91:9e:f0:eb:09:bc:
e2:2c:e5:86:68:4f:9a:e4:ac:8a:96:61:3c:10:68:5d:1b:b6:
07:eb:2b:d1:82:f9:41:29:dc:0a:43:84:fe:60:88:27:a5:f1:
eb:be:ae:bc:4c:47:93:7b:88:f4:85:c1:36:55:63:5e:95:67:
22:cf:77:58:a9:49:bc:65:a3:26:58:0e:05:01:89:3f:20:35:
ba:62:c0:81:14:4c:62:a3:d6:8a:07:a9:15:7c:f5:87:50:be:
7a:df:08:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHk4JRNi6CkLVa166DsoA8YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhOTVhNGNmNmYwZjBjMzJjZDNkZmU5ODg3NjIyNjBiZmNk
YmE2N2UwHhcNMjQwOTEyMDYxNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzU3ZmNiYTUxOTY3ZTMxMzQzNjViODZkZmM4YjZjNmZhZDMzZWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurNPq7OnTCaA886MWoFm/sbMzHOE
x364fmpcSdkusTlG5c/VZhmL4LsJFdD8RVmAAXcTWOytB0s+zNDCxaaDcFwuUQST
SNLXZOXyIoaAGCbh4cV3htoTbZ3rj4xybcG+cm9nXCLRaFBJJVOsLk9v/RQ7xtIu
f0HPdIpidbwl/yoOwnz4ooLS005frH53Rf7TodXQ4x5R/W1CrvlXpi9mcp6Hr2wm
NNn0cJYW0FnCApxm6N6ZUl52NMVFf/sn6okmMip0l4QFDh6B7nvNhQcqOiqgVFOK
rcwmp7Ipv2LvZA1Hlz6TAtSzIqHeuwiMWA8RcAWmnCGbYCfQ6yBucvkoJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFINX/LpRln4xNDZbht/Itsb60z6rMB8GA1UdIwQY
MBaAFGqVpM9vDwwyzT3+mIdiJgv826Z+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXBXa3oyOFBERExOUGY2WWgySW1DX3picG40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hMGFhZDktMzg2Ny00NDlhLTkyNDMt
OWFiMjRlN2QyOGZlLzEvZzFmOHVsR1dmakUwTmx1RzM4aTJ4dnJUUHFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9hMGFhZDktMzg2Ny00NDlhLTkyNDMtOWFiMjRlN2QyOGZl
LzEvYXBXa3oyOFBERExOUGY2WWgySW1DX3picG40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+oaMA0G
CSqGSIb3DQEBCwUAA4IBAQAeI+KuzUs0cvMrZFkPwlumF/nSaiX0kSJ97pfk7CeO
y1Nrq9n0iEjM+XMEAm3Ft/hwT7XOhQsZ7Yb7ahOjMHls1J3PEkoQQ3JUMS1vtJmv
RfXIntiyKOgnBQlZBO7RoPuHA3bEm30xNi5Pai9YtwKlL3MorvXwcXiQZS0UwZCB
EZxSMk/t2Jp8jOvaXELLn4JC3aeouX+Ipaa3kwuRnvDrCbziLOWGaE+a5KyKlmE8
EGhdG7YH6yvRgvlBKdwKQ4T+YIgnpfHrvq68TEeTe4j0hcE2VWNelWciz3dYqUm8
ZaMmWA4FAYk/IDW6YsCBFExio9aKB6kVfPWHUL563wj8
-----END CERTIFICATE-----
Generated at Sun Sep 29 12:09:38 2024 by rpki-client on console-fra.rpki-client.org