Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/744IwnAQaDrKvCyyaKweM4XBUrw.roa
File: 744IwnAQaDrKvCyyaKweM4XBUrw.roa (raw, json)
Hash identifier: bpd3PtaMOcvDClp7s6CoOAXyxlzbDmUvTE1NWtDAF7E=
Subject key identifier: EF:8E:08:C2:70:10:68:3A:CA:BC:2C:B2:68:AC:1E:33:85:C1:52:BC
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018CC2DB55547141EC8C86B1A8D2704373AE
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/744IwnAQaDrKvCyyaKweM4XBUrw.roa
Signing time: Mon 01 Jan 2024 02:30:03 +0000
ROA not before: Mon 01 Jan 2024 02:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16625
IP address blocks: 92.123.240.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 06 Mar 2024 13:29:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:55:54:71:41:ec:8c:86:b1:a8:d2:70:43:73:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Jan 1 02:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef8e08c27010683acabc2cb268ac1e3385c152bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:81:2a:c9:7a:35:b2:66:31:89:6b:99:4f:b5:
09:b7:15:8b:6b:f1:93:11:62:66:24:2e:86:4f:ea:
d6:ef:66:b0:81:a2:61:86:65:bd:39:62:f5:67:cc:
32:c0:99:45:48:58:51:2e:50:25:60:44:fa:e1:70:
eb:53:ea:c9:b9:07:4a:88:7b:25:72:01:eb:6d:d3:
e6:36:2a:05:d5:8c:fa:2b:9d:02:1b:44:78:bd:9f:
c0:d0:2a:97:af:69:9d:a2:b6:06:d9:a5:f4:07:c9:
c0:ea:3b:21:19:a4:df:cb:84:09:ab:c6:dd:d4:02:
a2:c3:0d:43:87:23:49:a0:ad:a9:86:12:31:67:b4:
b6:8d:89:d6:2f:22:09:c1:29:bb:44:dd:da:b4:f5:
f1:be:e8:93:b3:56:06:53:53:9c:7e:62:37:04:c3:
64:66:d0:10:94:6e:8e:20:21:c3:f7:d1:7d:51:9b:
3a:15:37:55:e9:5d:e4:8f:5b:b2:a3:b8:43:51:fa:
38:51:25:0c:20:f4:dc:b4:d1:a1:af:c4:9f:84:82:
98:04:77:48:56:90:d5:68:06:03:8b:0d:0d:4d:27:
0f:b4:92:37:4f:51:6f:69:98:51:4d:6c:f1:b9:99:
cf:56:7e:b1:5f:fb:40:07:b4:7f:39:00:7c:d5:df:
13:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:8E:08:C2:70:10:68:3A:CA:BC:2C:B2:68:AC:1E:33:85:C1:52:BC
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/744IwnAQaDrKvCyyaKweM4XBUrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.123.240.0/22
Signature Algorithm: sha256WithRSAEncryption
29:91:a6:0d:a9:c6:cf:5f:a3:5f:77:b5:57:9b:30:9f:0f:ca:
ac:2e:a5:f1:6b:51:09:90:79:d3:24:23:4b:4f:f9:62:54:79:
99:f7:9e:ab:04:3c:f6:55:76:8c:f4:ab:01:8f:42:d3:9b:eb:
b3:1f:77:77:96:05:4a:e6:d4:f3:94:44:73:62:e5:7f:ec:37:
11:ec:86:59:76:a1:c3:d9:b4:5e:e5:ea:fa:aa:64:03:a3:45:
d2:17:9f:5f:ba:e2:fa:f1:4a:76:bd:61:af:12:0d:f7:f9:a7:
67:49:93:15:28:fd:1c:41:64:62:07:94:ed:00:65:24:13:6c:
3f:9d:ac:ef:e5:ca:3f:17:30:7a:5d:cd:36:ec:d9:d1:33:28:
bf:76:5c:1a:5f:9f:85:75:d4:88:45:e8:3f:2a:ac:5f:c2:91:
fc:dd:4f:04:75:41:82:7e:45:31:00:1d:34:82:a6:ab:46:27:
58:61:4d:ec:f3:41:84:aa:44:ac:a6:32:14:1e:21:eb:fc:cc:
16:6f:ce:0b:da:2a:63:08:41:e7:84:ec:b5:23:30:f5:9a:81:
55:d9:3a:6a:cf:17:41:5d:ee:e2:5e:24:01:79:56:e7:14:0e:
55:30:55:cf:2a:27:58:93:51:04:8d:bd:fb:43:f6:b0:9f:ea:
91:37:2a:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC21VUcUHsjIaxqNJwQ3OuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNWZjYmJlYTQ4OTM3YTQ0MmJhYmRiMzMwMjEzMmM0YmM5
YmQ2YWEwHhcNMjQwMTAxMDIzMDAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjhlMDhjMjcwMTA2ODNhY2FiYzJjYjI2OGFjMWUzMzg1YzE1MmJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0IEqyXo1smYxiWuZT7UJtxWLa/GT
EWJmJC6GT+rW72awgaJhhmW9OWL1Z8wywJlFSFhRLlAlYET64XDrU+rJuQdKiHsl
cgHrbdPmNioF1Yz6K50CG0R4vZ/A0CqXr2mdorYG2aX0B8nA6jshGaTfy4QJq8bd
1AKiww1DhyNJoK2phhIxZ7S2jYnWLyIJwSm7RN3atPXxvuiTs1YGU1OcfmI3BMNk
ZtAQlG6OICHD99F9UZs6FTdV6V3kj1uyo7hDUfo4USUMIPTctNGhr8SfhIKYBHdI
VpDVaAYDiw0NTScPtJI3T1FvaZhRTWzxuZnPVn6xX/tAB7R/OQB81d8TaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO+OCMJwEGg6yrwssmisHjOFwVK8MB8GA1UdIwQY
MBaAFGtfy76kiTekQrq9szAhMsS8m9aqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTFfTHZxU0pONlJDdXIyek1DRXl4THliMXFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8wNDIxODgtZGZiNi00YWQ0LTkxYTQt
ODhkMWNhYzllNGYxLzEvNzQ0SXduQVFhRHJLdkN5eWFLd2VNNFhCVXJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC8wNDIxODgtZGZiNi00YWQ0LTkxYTQtODhkMWNhYzllNGYx
LzEvYTFfTHZxU0pONlJDdXIyek1DRXl4THliMXFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXHvwMA0G
CSqGSIb3DQEBCwUAA4IBAQApkaYNqcbPX6Nfd7VXmzCfD8qsLqXxa1EJkHnTJCNL
T/liVHmZ956rBDz2VXaM9KsBj0LTm+uzH3d3lgVK5tTzlERzYuV/7DcR7IZZdqHD
2bRe5er6qmQDo0XSF59fuuL68Up2vWGvEg33+adnSZMVKP0cQWRiB5TtAGUkE2w/
nazv5co/FzB6Xc027NnRMyi/dlwaX5+FddSIReg/KqxfwpH83U8EdUGCfkUxAB00
gqarRidYYU3s80GEqkSspjIUHiHr/MwWb84L2ipjCEHnhOy1IzD1moFV2TpqzxdB
Xe7iXiQBeVbnFA5VMFXPKidYk1EEjb37Q/awn+qRNyq1
-----END CERTIFICATE-----
Generated at Wed Mar 6 16:58:49 2024 by rpki-client on console-fra.rpki-client.org