Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/_1WiF-0N3D_YBx-EO60K9tA90II.roa
File: _1WiF-0N3D_YBx-EO60K9tA90II.roa (raw, json)
Hash identifier: S4oGhd9nZcdYz3TlJG6Wrs5Eq8Scvm8zDLFNwmjdllI=
Subject key identifier: FF:55:A2:17:ED:0D:DC:3F:D8:07:1F:84:3B:AD:0A:F6:D0:3D:D0:82
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 0189200493C1B2109C18FD19600D1D188A9B
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/_1WiF-0N3D_YBx-EO60K9tA90II.roa
Signing time: Tue 04 Jul 2023 08:28:38 +0000
ROA not before: Tue 04 Jul 2023 08:28:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207490
IP address blocks: 80.72.16.0/23 maxlen: 23
80.72.26.0/23 maxlen: 23
2a00:8740:500::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:04:93:c1:b2:10:9c:18:fd:19:60:0d:1d:18:8a:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Jul 4 08:28:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff55a217ed0ddc3fd8071f843bad0af6d03dd082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b8:6e:9c:73:81:71:13:bc:8a:1b:12:d8:67:
8d:6b:12:eb:da:55:8e:e8:8f:07:46:e4:8c:d6:67:
2b:f3:43:2e:b5:d3:71:2e:a8:b7:a3:31:e3:cf:17:
13:bc:27:01:69:86:b3:00:d3:9a:a8:94:37:1b:c1:
e9:d7:c6:75:45:57:e6:53:1a:d0:e8:76:06:dd:42:
73:14:b0:35:e1:c2:5f:1d:73:20:4a:f7:b7:9c:f9:
8e:0b:1b:df:23:61:cb:be:bc:10:59:e8:d6:55:de:
3e:d5:eb:86:d5:f8:8d:88:80:50:15:61:9f:5f:c2:
f8:3b:d4:c9:3a:80:57:72:e7:b3:a5:01:68:e1:61:
a4:3d:47:7a:d4:5e:6a:8d:52:36:c9:da:f0:a0:c8:
c4:0b:2c:e5:9b:e5:09:b0:70:05:27:67:0c:98:a7:
0b:43:7d:d1:3e:30:ce:db:a7:4b:ef:7c:e1:b3:47:
81:d5:3a:60:5d:47:b8:4f:ef:b9:21:3d:ec:a7:cf:
5b:cd:b9:ae:6f:ee:a3:14:5c:a9:61:85:7b:4d:19:
96:29:50:09:5c:a8:cd:19:28:c1:82:8f:e1:0b:56:
ab:02:6d:84:36:8e:91:26:76:e1:34:e2:39:da:8e:
c1:2f:7f:5c:75:3d:c9:5a:8e:fa:83:a1:bf:7a:52:
20:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:55:A2:17:ED:0D:DC:3F:D8:07:1F:84:3B:AD:0A:F6:D0:3D:D0:82
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/_1WiF-0N3D_YBx-EO60K9tA90II.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.72.16.0/23
80.72.26.0/23
IPv6:
2a00:8740:500::/40
Signature Algorithm: sha256WithRSAEncryption
4a:c9:de:d0:f9:99:bc:2f:4a:53:bb:2b:70:c2:3b:e7:a7:13:
bc:40:9c:8c:38:10:67:be:4e:25:dd:d7:31:11:29:ed:ec:ef:
25:06:ec:0b:08:95:1a:0c:c5:f9:6a:45:e1:4a:cc:46:d1:a9:
29:a5:11:90:59:f0:31:ee:ff:41:ae:e3:2e:88:3f:d7:e8:ec:
99:9b:54:39:88:63:45:60:df:69:b2:fd:c6:9e:9f:0e:cb:73:
77:f1:23:8d:11:5d:9a:58:44:da:18:a1:e1:32:e9:b8:ba:0e:
4b:8a:f3:c4:d1:fa:d0:82:c8:42:c5:36:17:ad:45:81:ef:d5:
69:62:63:8c:74:18:3c:f8:72:5d:fc:5c:20:27:72:43:5e:11:
c5:c4:29:1c:1a:44:6d:ab:40:e4:0a:a1:0b:ec:c1:ec:30:10:
0a:77:71:11:b6:ec:d6:dc:01:3a:d8:bc:21:99:06:0e:66:08:
ce:03:3a:7d:52:73:d7:a7:ff:d7:ba:0f:77:93:6c:6a:27:13:
d8:5b:ca:0e:66:59:55:a8:c1:65:0f:c5:f0:ee:12:dd:60:d9:
b1:15:f9:58:92:60:60:64:60:7e:b5:a5:98:85:83:ce:94:99:
91:de:42:1d:88:38:12:74:0e:26:c3:ec:98:3d:c6:24:f8:6b:
7f:3d:88:71
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgISAYkgBJPBshCcGP0ZYA0dGIqbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzZTk3MDMzYTM2YWE5YmNjMGMyZjE2N2U2MjBkN2NhMTQ5
M2NiZWEwHhcNMjMwNzA0MDgyODM4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjU1YTIxN2VkMGRkYzNmZDgwNzFmODQzYmFkMGFmNmQwM2RkMDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAibhunHOBcRO8ihsS2GeNaxLr2lWO
6I8HRuSM1mcr80MutdNxLqi3ozHjzxcTvCcBaYazANOaqJQ3G8Hp18Z1RVfmUxrQ
6HYG3UJzFLA14cJfHXMgSve3nPmOCxvfI2HLvrwQWejWVd4+1euG1fiNiIBQFWGf
X8L4O9TJOoBXcuezpQFo4WGkPUd61F5qjVI2ydrwoMjECyzlm+UJsHAFJ2cMmKcL
Q33RPjDO26dL73zhs0eB1TpgXUe4T++5IT3sp89bzbmub+6jFFypYYV7TRmWKVAJ
XKjNGSjBgo/hC1arAm2ENo6RJnbhNOI52o7BL39cdT3JWo76g6G/elIgdwIDAQAB
o4ICHzCCAhswHQYDVR0OBBYEFP9VohftDdw/2AcfhDutCvbQPdCCMB8GA1UdIwQY
MBaAFNPpcDOjaqm8wMLxZ+Yg18oUk8vqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMC1sd002TnFxYnpBd3ZGbjVpRFh5aFNUeS1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81YTMyMGItZTk0Zi00MWM5LTgyZjMt
ZGJmOWQ0MWYxNzk4LzEvXzFXaUYtME4zRF9ZQngtRU82MEs5dEE5MElJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS81YTMyMGItZTk0Zi00MWM5LTgyZjMtZGJmOWQ0MWYxNzk4
LzEvMC1sd002TnFxYnpBd3ZGbjVpRFh5aFNUeS1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDASBAIAATAMAwQBUEgQAwQB
UEgaMA4EAgACMAgDBgAqAIdABTANBgkqhkiG9w0BAQsFAAOCAQEASsne0PmZvC9K
U7srcMI756cTvECcjDgQZ75OJd3XMREp7ezvJQbsCwiVGgzF+WpF4UrMRtGpKaUR
kFnwMe7/Qa7jLog/1+jsmZtUOYhjRWDfabL9xp6fDstzd/EjjRFdmlhE2hih4TLp
uLoOS4rzxNH60ILIQsU2F61Fge/VaWJjjHQYPPhyXfxcICdyQ14RxcQpHBpEbatA
5AqhC+zB7DAQCndxEbbs1twBOti8IZkGDmYIzgM6fVJz16f/17oPd5NsaicT2FvK
DmZZVajBZQ/F8O4S3WDZsRX5WJJgYGRgfrWlmIWDzpSZkd5CHYg4EnQOJsPsmD3G
JPhrfz2IcQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org