Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/pODde5fQeYyfVEeDQiqTuSAhgNU.roa
File: pODde5fQeYyfVEeDQiqTuSAhgNU.roa (raw, json)
Hash identifier: ramA8TXacWnidMvuykkKboZQY6qg/kL9x0eQmkMdQx4=
Subject key identifier: A4:E0:DD:7B:97:D0:79:8C:9F:54:47:83:42:2A:93:B9:20:21:80:D5
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 01856F5DE2C1CA5E7B4002089FB7381C2766
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/pODde5fQeYyfVEeDQiqTuSAhgNU.roa
Signing time: Sun 01 Jan 2023 22:05:01 +0000
ROA not before: Sun 01 Jan 2023 22:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202819
IP address blocks: 84.245.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:e2:c1:ca:5e:7b:40:02:08:9f:b7:38:1c:27:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 22:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4e0dd7b97d0798c9f544783422a93b9202180d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b4:b3:8c:18:26:d9:ac:e3:ae:dd:02:73:30:
bb:66:4e:6e:da:ac:42:be:4f:d6:aa:c0:31:e3:0c:
64:c4:5e:27:fd:18:7d:4a:9e:81:c5:ec:3f:62:b5:
15:fa:43:3b:54:bd:5e:b6:ef:a5:86:b2:d7:2f:48:
4b:e6:f4:4f:f2:3a:d6:66:f3:75:85:a7:3a:2a:b1:
4c:33:9d:05:92:1e:f5:c1:a6:4a:9f:35:e2:34:f7:
42:04:93:6e:94:4f:2c:e0:37:a7:da:8c:0e:e1:d6:
f6:d4:69:88:48:04:bb:b5:e6:ed:87:f7:92:cf:0f:
b9:04:c7:a5:e6:ce:3e:d3:be:4b:ee:1e:82:32:3e:
a5:00:4b:58:54:2c:c8:76:da:df:30:13:6e:58:db:
95:43:67:4e:34:be:b3:25:e2:59:37:fc:85:99:3c:
ab:e3:c0:46:ce:c1:35:60:c4:56:e5:b0:76:cc:36:
c5:0f:f8:ad:bf:bd:bc:27:6c:b7:74:dc:fc:54:04:
e2:64:fa:d3:4e:d8:7b:9d:ab:ae:de:89:f2:0d:5d:
e8:e6:b5:29:bb:62:a1:4b:7e:b2:81:58:35:eb:a5:
17:12:72:a0:9f:48:8d:40:45:a1:59:7a:b2:20:6c:
a8:d3:1c:49:9a:d6:9c:70:21:17:a8:06:e0:53:06:
21:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E0:DD:7B:97:D0:79:8C:9F:54:47:83:42:2A:93:B9:20:21:80:D5
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/pODde5fQeYyfVEeDQiqTuSAhgNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.245.95.0/24
Signature Algorithm: sha256WithRSAEncryption
91:d5:fc:9c:2b:18:1e:84:9d:09:91:01:46:54:ba:2c:a7:25:
f4:9f:51:9a:1a:4e:4f:0c:cd:f2:f5:21:5d:c8:e1:47:fa:6d:
80:c6:56:6d:a1:28:d4:8a:ef:27:a2:19:6d:b4:1a:6d:21:9f:
8c:4e:cf:5e:f1:47:9e:07:91:6b:17:79:f0:55:66:1f:1d:13:
b9:06:7d:e8:be:27:8d:f4:f8:66:ab:0c:1e:09:2d:b1:d3:50:
58:0a:8c:04:84:79:17:fd:57:f3:37:d9:1b:67:d9:ac:f6:4b:
ad:27:2c:16:1f:76:0b:35:51:fe:c4:1e:72:ab:1b:ff:b0:2b:
8e:7a:34:3a:23:78:dd:ad:02:bf:9a:19:35:11:8b:e4:57:8d:
51:96:29:b2:36:21:00:e8:29:86:7f:a9:14:a1:d4:3a:07:cf:
4b:36:c3:02:21:8a:dd:2c:4a:dc:f3:ca:c1:4f:13:a3:59:8c:
2f:3f:b4:b6:80:9a:4c:43:22:81:5b:42:63:c2:6c:83:27:7c:
37:e6:97:b5:f9:1e:d8:c8:5c:04:91:15:37:05:16:9a:13:83:
d9:3a:4e:d7:d5:a2:89:68:f2:df:ad:ab:c1:12:75:7b:93:1f:
f7:31:b1:2a:97:52:d4:e2:87:3a:79:b7:ec:c6:7b:ab:da:4c:
06:a7:d1:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvXeLByl57QAIIn7c4HCdmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Zjg4MTQwMWFiYWNjODhjOTQxZmRmNzQwZjFhYjE1MzZm
MDVkYmEwHhcNMjMwMTAxMjIwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNGUwZGQ3Yjk3ZDA3OThjOWY1NDQ3ODM0MjJhOTNiOTIwMjE4MGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA37SzjBgm2azjrt0CczC7Zk5u2qxC
vk/WqsAx4wxkxF4n/Rh9Sp6Bxew/YrUV+kM7VL1etu+lhrLXL0hL5vRP8jrWZvN1
hac6KrFMM50Fkh71waZKnzXiNPdCBJNulE8s4Den2owO4db21GmISAS7tebth/eS
zw+5BMel5s4+075L7h6CMj6lAEtYVCzIdtrfMBNuWNuVQ2dONL6zJeJZN/yFmTyr
48BGzsE1YMRW5bB2zDbFD/itv728J2y3dNz8VATiZPrTTth7nauu3onyDV3o5rUp
u2KhS36ygVg166UXEnKgn0iNQEWhWXqyIGyo0xxJmtaccCEXqAbgUwYhKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKTg3XuX0HmMn1RHg0Iqk7kgIYDVMB8GA1UdIwQY
MBaAFOf4gUAausyIyUH990DxqxU28F26MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNV9pQlFCcTZ6SWpKUWYzM1FQR3JGVGJ3WGJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9mNTUzNGEtYTYxMy00N2JlLWI0MmIt
ZTJmYmMzYTY4ODAwLzEvcE9EZGU1ZlFlWXlmVkVlRFFpcVR1U0FoZ05VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS9mNTUzNGEtYTYxMy00N2JlLWI0MmItZTJmYmMzYTY4ODAw
LzEvNV9pQlFCcTZ6SWpKUWYzM1FQR3JGVGJ3WGJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVPVfMA0G
CSqGSIb3DQEBCwUAA4IBAQCR1fycKxgehJ0JkQFGVLospyX0n1GaGk5PDM3y9SFd
yOFH+m2AxlZtoSjUiu8nohlttBptIZ+MTs9e8UeeB5FrF3nwVWYfHRO5Bn3ovieN
9PhmqwweCS2x01BYCowEhHkX/VfzN9kbZ9ms9kutJywWH3YLNVH+xB5yqxv/sCuO
ejQ6I3jdrQK/mhk1EYvkV41RlimyNiEA6CmGf6kUodQ6B89LNsMCIYrdLErc88rB
TxOjWYwvP7S2gJpMQyKBW0JjwmyDJ3w35pe1+R7YyFwEkRU3BRaaE4PZOk7X1aKJ
aPLfravBEnV7kx/3MbEql1LU4oc6ebfsxnur2kwGp9Hw
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:44 2024 by rpki-client on console-fra.rpki-client.org