Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/g8c6W4Pqn9cRp2ObbNSg1kyPboI.roa
File: g8c6W4Pqn9cRp2ObbNSg1kyPboI.roa (raw, json)
Hash identifier: 8B/2GPyqeMxf9c0Yv07dzqHTCbM+1OZpmrlPgkcp+j4=
Subject key identifier: 83:C7:3A:5B:83:EA:9F:D7:11:A7:63:9B:6C:D4:A0:D6:4C:8F:6E:82
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018571955C82AD1D31EBB4F27F646CBCD2D4
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/g8c6W4Pqn9cRp2ObbNSg1kyPboI.roa
Signing time: Mon 02 Jan 2023 08:24:51 +0000
ROA not before: Mon 02 Jan 2023 08:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1128
IP address blocks: 145.94.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:5c:82:ad:1d:31:eb:b4:f2:7f:64:6c:bc:d2:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83c73a5b83ea9fd711a7639b6cd4a0d64c8f6e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:23:3f:09:a7:4c:8c:bd:70:78:37:7b:0a:57:
e5:7e:aa:23:cb:91:3f:ac:0d:2f:e2:71:e8:1c:58:
e4:c7:a5:9e:bb:cc:90:29:66:97:b8:ae:73:fc:25:
56:47:27:1e:6c:38:36:80:f0:d8:95:74:1f:2b:41:
0f:11:e1:81:e0:14:4d:f5:bb:e9:56:d3:b6:23:df:
54:c7:11:06:24:6c:5b:59:b1:dc:1e:06:a6:be:40:
8f:9a:c0:87:a0:4c:c3:50:7c:9a:7e:b1:e0:45:55:
09:c2:13:1e:78:19:aa:3d:07:92:83:69:a5:ca:50:
ae:1e:2c:a8:e5:3c:42:32:77:b5:a3:90:61:7d:6e:
f7:f0:87:6f:5a:ec:4b:3e:29:10:25:67:2a:27:ea:
28:36:a3:c0:82:04:e7:57:58:e5:82:06:7e:49:f5:
04:9d:02:46:2e:8f:cd:e3:f5:75:21:97:74:21:8c:
88:10:c1:31:4e:68:bd:e6:2f:02:a5:9e:57:28:0f:
51:3b:9a:61:24:78:ef:e7:c5:c1:d4:29:3f:44:e7:
a8:ea:2e:06:c9:30:5a:67:1d:66:2d:c6:48:5e:8f:
ee:d0:22:62:f8:51:b1:79:50:29:93:21:70:0b:f1:
24:7c:9e:42:55:0a:ec:0e:ff:15:36:02:0e:32:88:
e9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C7:3A:5B:83:EA:9F:D7:11:A7:63:9B:6C:D4:A0:D6:4C:8F:6E:82
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/g8c6W4Pqn9cRp2ObbNSg1kyPboI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.94.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9a:c5:cd:5c:87:df:9d:83:4d:78:0f:67:fe:92:7d:7f:46:36:
cf:0a:80:88:c4:06:82:59:e8:54:f4:26:a8:eb:e7:d2:35:ee:
d5:5c:e6:eb:cd:f0:d5:25:fe:5d:fb:59:69:c5:75:c3:af:dc:
2a:55:18:77:fd:03:c2:c8:e7:83:62:bd:9a:5a:66:18:44:03:
4f:d1:b4:d5:f4:25:bd:ea:d4:69:6f:8f:b4:d7:7d:1f:18:fb:
96:08:27:e9:b5:0a:5e:3f:37:ed:73:13:73:82:b3:df:95:19:
b8:54:00:63:27:5a:97:c6:7c:08:1c:16:36:7e:1a:38:2b:19:
fb:fb:2c:27:49:24:5e:59:12:d7:bf:0d:58:68:d7:a5:5b:f9:
b6:43:43:0d:1e:cd:e5:b7:80:70:c0:94:0c:db:e5:be:2a:db:
5d:eb:d8:20:6f:c5:3e:20:1b:b7:3f:d0:3a:34:88:f2:83:d7:
e9:49:74:6e:c5:68:a9:dd:c1:f9:e3:57:64:e8:02:0b:45:ae:
2c:fe:5a:15:74:6c:6b:12:87:19:e7:4b:64:a3:6d:c3:a0:1a:
d9:e9:17:c2:fa:5d:57:82:4d:df:13:50:0c:13:57:c7:1b:0d:
60:a4:cf:94:2e:04:be:ab:f0:44:38:b1:eb:c3:85:dc:61:26:
af:fd:a8:27
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVxlVyCrR0x67Tyf2RsvNLUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NzNkYjE3Nzk1ZDJiZjFiNGI1MzQ1YzViMjkzOTBkYmFm
NDUyM2UwHhcNMjMwMTAyMDgyNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4M2M3M2E1YjgzZWE5ZmQ3MTFhNzYzOWI2Y2Q0YTBkNjRjOGY2ZTgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlCM/CadMjL1weDd7Clflfqojy5E/
rA0v4nHoHFjkx6Weu8yQKWaXuK5z/CVWRycebDg2gPDYlXQfK0EPEeGB4BRN9bvp
VtO2I99UxxEGJGxbWbHcHgamvkCPmsCHoEzDUHyafrHgRVUJwhMeeBmqPQeSg2ml
ylCuHiyo5TxCMne1o5BhfW738IdvWuxLPikQJWcqJ+ooNqPAggTnV1jlggZ+SfUE
nQJGLo/N4/V1IZd0IYyIEMExTmi95i8CpZ5XKA9RO5phJHjv58XB1Ck/ROeo6i4G
yTBaZx1mLcZIXo/u0CJi+FGxeVApkyFwC/EkfJ5CVQrsDv8VNgIOMojpZQIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFIPHOluD6p/XEadjm2zUoNZMj26CMB8GA1UdIwQY
MBaAFBdz2xd5XSvxtLU0XFspOQ269FI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYt
NTQ4NjFmMjMyNDlkLzEvZzhjNlc0UHFuOWNScDJPYmJOU2cxa3lQYm9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYtNTQ4NjFmMjMyNDlk
LzEvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAkV4wDQYJ
KoZIhvcNAQELBQADggEBAJrFzVyH352DTXgPZ/6SfX9GNs8KgIjEBoJZ6FT0Jqjr
59I17tVc5uvN8NUl/l37WWnFdcOv3CpVGHf9A8LI54NivZpaZhhEA0/RtNX0Jb3q
1Glvj7TXfR8Y+5YIJ+m1Cl4/N+1zE3OCs9+VGbhUAGMnWpfGfAgcFjZ+GjgrGfv7
LCdJJF5ZEte/DVho16Vb+bZDQw0ezeW3gHDAlAzb5b4q213r2CBvxT4gG7c/0Do0
iPKD1+lJdG7FaKndwfnjV2ToAgtFriz+WhV0bGsShxnnS2SjbcOgGtnpF8L6XVeC
Td8TUAwTV8cbDWCkz5QuBL6r8EQ4sevDhdxhJq/9qCc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org