Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/AA4x81ch70920w2V4VLwI0q9FfY.roa
File: AA4x81ch70920w2V4VLwI0q9FfY.roa (raw, json)
Hash identifier: XTOxnt2ovYoEQg1N7HrV8lwQJfMlEtDshMRWduLRRP8=
Subject key identifier: 00:0E:31:F3:57:21:EF:4F:76:D3:0D:95:E1:52:F0:23:4A:BD:15:F6
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 0185707081CF0FCEDCEC43267434CE92CA6D
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/AA4x81ch70920w2V4VLwI0q9FfY.roa
Signing time: Mon 02 Jan 2023 03:04:59 +0000
ROA not before: Mon 02 Jan 2023 03:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6853
IP address blocks: 57.79.0.0/16 maxlen: 32
57.66.0.0/15 maxlen: 32
57.78.0.0/16 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:81:cf:0f:ce:dc:ec:43:26:74:34:ce:92:ca:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 2 03:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=000e31f35721ef4f76d30d95e152f0234abd15f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:34:44:49:f6:b7:b6:5a:75:90:10:47:2a:27:
61:05:fc:de:3f:4c:30:37:26:6f:ac:b6:98:ca:37:
93:2c:70:fc:96:12:b6:b7:b8:44:b4:62:0e:b6:c5:
50:fd:08:ff:24:b6:89:e8:8c:7b:5b:9e:90:4f:c5:
e8:cc:5b:51:d1:3a:af:88:8a:72:b6:f6:ed:f7:c3:
18:6c:fc:d2:53:aa:21:57:5f:ce:07:f9:54:73:3f:
d0:38:c6:fd:77:a2:3d:0d:c6:28:1c:b3:ec:de:cf:
2e:44:c3:90:e0:41:c0:b6:ac:c8:96:81:44:a6:6c:
a8:6d:94:bc:60:c0:a4:db:97:2a:dc:9b:35:cd:60:
33:f1:d9:e9:98:74:cc:2c:97:9f:4c:f4:ad:d3:49:
f1:eb:2c:8e:2d:74:35:7e:11:e2:c3:8c:1d:83:ed:
86:34:2b:1e:7c:9a:30:0e:38:f5:a7:55:44:5c:58:
c4:3f:36:30:22:5a:1a:4c:9d:d8:73:58:b6:3d:5a:
aa:70:60:59:0b:45:02:72:20:f5:9d:6d:7e:d2:a3:
04:b3:dd:f1:6b:5b:87:1d:9d:61:f9:f7:b4:9d:7e:
99:f6:82:07:eb:d6:ef:1b:7d:45:db:2f:1f:93:2b:
0d:47:2a:c1:72:fe:20:ab:01:32:dd:a4:73:d0:0e:
d2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:0E:31:F3:57:21:EF:4F:76:D3:0D:95:E1:52:F0:23:4A:BD:15:F6
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/AA4x81ch70920w2V4VLwI0q9FfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.66.0.0/15
57.78.0.0/15
Signature Algorithm: sha256WithRSAEncryption
0d:51:e3:35:4f:fc:6e:10:33:e2:7b:67:5e:95:a2:b6:5d:ad:
d6:0e:9d:01:07:9f:8e:29:9a:89:99:f8:24:a3:ec:a4:94:97:
f2:e2:f5:d9:7d:05:5e:3a:c6:25:b4:bc:3a:0e:f5:31:28:6e:
60:51:e9:eb:4f:fe:d3:7b:c6:b9:1f:f3:b1:68:ea:78:50:ac:
04:ab:ee:25:10:35:72:86:5d:50:f3:3e:da:65:d7:2b:f3:89:
6a:36:c0:bb:dd:9d:b4:f2:14:32:b0:15:80:cd:44:fb:53:8a:
3e:cd:11:32:4f:3b:67:a9:eb:12:67:72:19:c3:c3:18:14:a5:
e7:dd:f5:e0:25:1f:e4:c5:b9:d3:25:a2:00:2a:0f:59:8b:cc:
fe:51:8f:be:8b:75:97:d4:1f:32:4c:12:00:91:83:2d:a9:70:
89:31:3b:07:a8:34:f9:6f:4b:14:83:eb:36:33:15:de:21:1f:
32:98:d6:3d:52:b6:a8:76:13:c4:d2:a4:cb:97:43:36:36:ca:
3d:3e:31:bc:15:58:f7:37:89:7f:6d:63:63:61:8f:63:85:44:
45:10:71:6c:0c:24:11:0e:43:b6:87:5b:2f:50:e1:b4:d8:56:
cc:9a:b0:01:f2:ec:af:d3:20:77:14:8d:11:4e:8d:37:cf:d7:
a8:19:f6:cc
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAYVwcIHPD87c7EMmdDTOksptMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYjgzY2ZlNTQ4OTgzNWYyOTRkMGFmNGRkNGRiNmUzZGMy
NWYxZjMwHhcNMjMwMTAyMDMwNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDBlMzFmMzU3MjFlZjRmNzZkMzBkOTVlMTUyZjAyMzRhYmQxNWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhDRESfa3tlp1kBBHKidhBfzeP0ww
NyZvrLaYyjeTLHD8lhK2t7hEtGIOtsVQ/Qj/JLaJ6Ix7W56QT8XozFtR0TqviIpy
tvbt98MYbPzSU6ohV1/OB/lUcz/QOMb9d6I9DcYoHLPs3s8uRMOQ4EHAtqzIloFE
pmyobZS8YMCk25cq3Js1zWAz8dnpmHTMLJefTPSt00nx6yyOLXQ1fhHiw4wdg+2G
NCsefJowDjj1p1VEXFjEPzYwIloaTJ3Yc1i2PVqqcGBZC0UCciD1nW1+0qMEs93x
a1uHHZ1h+fe0nX6Z9oIH69bvG31F2y8fkysNRyrBcv4gqwEy3aRz0A7SPQIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFAAOMfNXIe9PdtMNleFS8CNKvRX2MB8GA1UdIwQY
MBaAFM24PP5UiYNfKU0K9N1NtuPcJfHzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemJnOF9sU0pnMThwVFFyMDNVMjI0OXdsOGZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS83Mzk3MTYtOWFmMi00N2Y1LWE2ZjEt
YTNiNzRmOTY0MWFjLzEvQUE0eDgxY2g3MDkyMHcyVjRWTHdJMHE5RmZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS83Mzk3MTYtOWFmMi00N2Y1LWE2ZjEtYTNiNzRmOTY0MWFj
LzEvemJnOF9sU0pnMThwVFFyMDNVMjI0OXdsOGZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCMGCCsGAQUFBwEHAQH/BBQwEjAQBAIAATAKAwMBOUIDAwE5
TjANBgkqhkiG9w0BAQsFAAOCAQEADVHjNU/8bhAz4ntnXpWitl2t1g6dAQefjima
iZn4JKPspJSX8uL12X0FXjrGJbS8Og71MShuYFHp60/+03vGuR/zsWjqeFCsBKvu
JRA1coZdUPM+2mXXK/OJajbAu92dtPIUMrAVgM1E+1OKPs0RMk87Z6nrEmdyGcPD
GBSl59314CUf5MW50yWiACoPWYvM/lGPvot1l9QfMkwSAJGDLalwiTE7B6g0+W9L
FIPrNjMV3iEfMpjWPVK2qHYTxNKky5dDNjbKPT4xvBVY9zeJf21jY2GPY4VERRBx
bAwkEQ5DtodbL1DhtNhWzJqwAfLsr9MgdxSNEU6NN8/XqBn2zA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org