Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/vJzRGvaMuyZRN4V56h8lYC7f-88.roa
File: vJzRGvaMuyZRN4V56h8lYC7f-88.roa (raw, json)
Hash identifier: TsWGaNUg3fKSPI1rebO0gvw8Hg076yqkbF8hv/eJZVc=
Subject key identifier: BC:9C:D1:1A:F6:8C:BB:26:51:37:85:79:EA:1F:25:60:2E:DF:FB:CF
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018AA88B61035EB271FEDD86ACA055689368
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/vJzRGvaMuyZRN4V56h8lYC7f-88.roa
Signing time: Mon 18 Sep 2023 13:47:01 +0000
ROA not before: Mon 18 Sep 2023 13:47:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198022
IP address blocks: 144.208.215.96/28 maxlen: 28
2a00:11c0:47:df::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a8:8b:61:03:5e:b2:71:fe:dd:86:ac:a0:55:68:93:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Sep 18 13:47:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc9cd11af68cbb2651378579ea1f25602edffbcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:73:88:f2:5a:db:af:59:dd:3e:1f:db:ec:d8:
b7:66:2a:d2:88:82:13:8b:82:d6:96:5b:d4:2f:c6:
72:1c:bf:78:d2:7d:a2:2f:73:a2:57:81:97:4c:a4:
a8:c4:89:e9:cc:63:96:de:91:7a:a1:93:2e:4b:a0:
a3:2e:b4:a5:e5:d8:8f:02:ad:e4:d8:12:5f:bd:56:
48:72:6d:af:52:8f:9b:e9:9c:47:d2:51:13:78:49:
28:14:75:b2:bf:6c:9d:ed:fb:92:f0:dc:dc:8b:da:
75:45:95:86:21:ce:9a:6c:17:a1:4b:a6:26:be:e6:
61:61:06:b0:76:32:e9:2a:a3:7d:f0:c5:78:44:6e:
f2:09:46:b1:b6:05:41:a3:73:6c:61:24:44:9b:77:
0b:88:13:37:ce:49:dc:d4:f3:f5:fe:92:ec:b3:7c:
f0:94:1c:a1:35:86:3d:ce:c5:ed:d0:7b:93:f6:8d:
86:c9:84:a6:dc:5c:16:97:74:55:31:3d:27:99:9b:
6c:89:9d:5f:58:65:5c:9f:68:23:39:cf:5e:45:78:
33:13:a6:28:cd:88:a8:d8:5e:f6:99:ce:f2:40:8e:
f5:ec:8d:c0:17:e1:3c:32:14:4d:d4:77:f9:d7:b6:
9f:bb:f9:8e:62:8d:0b:28:dd:e0:2c:24:07:31:b6:
11:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:9C:D1:1A:F6:8C:BB:26:51:37:85:79:EA:1F:25:60:2E:DF:FB:CF
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/vJzRGvaMuyZRN4V56h8lYC7f-88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.215.96/28
IPv6:
2a00:11c0:47:df::/64
Signature Algorithm: sha256WithRSAEncryption
12:1b:fa:79:d5:39:1b:9c:7f:9b:64:f1:e8:15:9a:04:9a:fd:
23:8d:a8:d7:0b:16:47:91:23:ca:97:fd:c8:0f:65:ce:08:0b:
8d:6f:cc:60:67:b8:f3:6f:f9:73:9a:37:11:40:56:60:98:a3:
ea:32:35:0d:69:0c:9c:bf:d3:be:58:59:20:cd:8c:1e:49:15:
c2:67:10:2d:1a:07:b7:ce:e6:a1:61:6d:e9:aa:d0:c7:78:d3:
81:54:9e:69:dc:8d:77:1c:73:8d:13:6e:38:ae:7d:e3:91:17:
5a:e9:8b:fa:5c:8d:23:f0:fb:7c:a4:68:c8:59:53:57:e1:c2:
c2:a4:8b:c1:32:1a:0e:da:96:7a:e4:04:09:71:83:83:b2:78:
d6:d5:6a:02:66:d8:d6:fd:87:2c:4e:91:52:4d:47:8e:fc:f7:
9c:cd:52:c9:30:59:5a:58:be:bf:40:1d:9e:ea:ad:06:e0:6f:
33:d1:ed:1e:e5:e4:2b:00:8a:e0:8e:9d:36:27:c9:84:9a:45:
83:b2:68:4a:83:ab:4e:84:e8:3b:cf:0b:5d:23:94:2e:35:f2:
1f:6e:c1:e5:d8:a0:42:bc:8c:f7:44:f8:68:80:5e:12:d5:54:
f6:54:3c:91:fe:ac:2f:47:25:e6:14:cd:3d:d4:f1:14:4e:af:
00:4b:1b:66
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAYqoi2EDXrJx/t2GrKBVaJNoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MzlhZmViYWNlODk5YThlZTBiYjRmOGJiNDQ3NWZlMjQ3
YTE1MjgwHhcNMjMwOTE4MTM0NzAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzljZDExYWY2OGNiYjI2NTEzNzg1NzllYTFmMjU2MDJlZGZmYmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiHOI8lrbr1ndPh/b7Ni3ZirSiIIT
i4LWllvUL8ZyHL940n2iL3OiV4GXTKSoxInpzGOW3pF6oZMuS6CjLrSl5diPAq3k
2BJfvVZIcm2vUo+b6ZxH0lETeEkoFHWyv2yd7fuS8Nzci9p1RZWGIc6abBehS6Ym
vuZhYQawdjLpKqN98MV4RG7yCUaxtgVBo3NsYSREm3cLiBM3zknc1PP1/pLss3zw
lByhNYY9zsXt0HuT9o2GyYSm3FwWl3RVMT0nmZtsiZ1fWGVcn2gjOc9eRXgzE6Yo
zYio2F72mc7yQI717I3AF+E8MhRN1Hf517afu/mOYo0LKN3gLCQHMbYRyQIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFLyc0Rr2jLsmUTeFeeofJWAu3/vPMB8GA1UdIwQY
MBaAFKU5r+us6Jmo7gu0+LtEdf4kehUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYt
NzQxMzk1OTEzMTJlLzEvdkp6Ukd2YU11eVpSTjRWNTZoOGxZQzdmLTg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYtNzQxMzk1OTEzMTJl
LzEvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjANBAIAATAHAwUEkNDXYDAR
BAIAAjALAwkAKgARwABHAN8wDQYJKoZIhvcNAQELBQADggEBABIb+nnVORucf5tk
8egVmgSa/SONqNcLFkeRI8qX/cgPZc4IC41vzGBnuPNv+XOaNxFAVmCYo+oyNQ1p
DJy/075YWSDNjB5JFcJnEC0aB7fO5qFhbemq0Md404FUnmncjXccc40TbjiufeOR
F1rpi/pcjSPw+3ykaMhZU1fhwsKki8EyGg7alnrkBAlxg4OyeNbVagJm2Nb9hyxO
kVJNR47895zNUskwWVpYvr9AHZ7qrQbgbzPR7R7l5CsAiuCOnTYnyYSaRYOyaEqD
q06E6DvPC10jlC418h9uweXYoEK8jPdE+GiAXhLVVPZUPJH+rC9HJeYUzT3U8RRO
rwBLG2Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org