Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/C7ULWjSqOQMN0LT-9tuQNWaBS98.roa
File: C7ULWjSqOQMN0LT-9tuQNWaBS98.roa (raw, json)
Hash identifier: qgMZi9PTjvTyy+j7UeuwxSEoVHzH4sLy43TLc0HhPgs=
Subject key identifier: 0B:B5:0B:5A:34:AA:39:03:0D:D0:B4:FE:F6:DB:90:35:66:81:4B:DF
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 01856D0A90F068BE221FCD3DD2DB8325265F
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/C7ULWjSqOQMN0LT-9tuQNWaBS98.roa
Signing time: Sun 01 Jan 2023 11:14:47 +0000
ROA not before: Sun 01 Jan 2023 11:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20864
IP address blocks: 213.143.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:90:f0:68:be:22:1f:cd:3d:d2:db:83:25:26:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: Jan 1 11:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bb50b5a34aa39030dd0b4fef6db903566814bdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c0:f1:5f:2d:f4:df:ba:01:e2:f4:93:66:75:
83:df:50:1a:a0:c2:df:16:e5:c9:e9:c3:70:5c:79:
4a:b9:66:1d:43:1f:63:12:51:5e:db:33:b3:50:d2:
c0:cd:47:67:1a:aa:ad:71:c8:cc:39:d7:34:65:44:
13:58:bd:1b:40:a1:47:7c:83:97:95:70:80:2b:8f:
0d:7e:9a:cc:bc:96:4b:05:92:a5:e2:06:38:ea:ca:
69:d7:95:7a:7e:c2:2c:0f:ce:5f:cf:41:60:76:3a:
69:2e:e6:4a:98:33:6f:3a:0a:3d:a0:f6:86:82:3a:
0f:e6:6e:bd:ab:f1:2b:31:b7:5e:36:de:72:8f:a5:
68:c6:18:9e:fd:5a:43:a0:89:25:b4:37:98:33:ed:
01:c6:41:99:08:9a:c5:12:bb:08:f9:04:89:a5:a5:
5e:d0:01:9c:dd:33:5d:d8:66:21:9f:44:0a:69:ac:
96:5f:9d:9f:ae:c1:7d:e4:9f:b6:50:91:3b:65:60:
be:ea:71:0d:d8:58:ce:76:aa:c9:e7:e6:76:4d:4e:
99:f4:08:12:0e:dc:45:cc:6d:cf:72:b3:b5:dc:41:
66:e7:9a:56:16:0b:a1:03:f0:dc:8a:d2:77:b4:31:
aa:98:d9:8c:72:fe:b8:50:be:dc:97:9c:1c:77:11:
4e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B5:0B:5A:34:AA:39:03:0D:D0:B4:FE:F6:DB:90:35:66:81:4B:DF
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/C7ULWjSqOQMN0LT-9tuQNWaBS98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.143.224.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:6e:65:11:4f:0c:f9:a0:b7:36:b0:f8:03:62:fd:d6:7d:78:
88:42:26:05:0c:27:50:6b:99:56:c1:66:e2:68:e0:71:a4:c9:
27:27:36:6f:2f:98:55:59:71:53:05:61:2f:72:65:a6:d4:0c:
94:b1:94:71:c5:0f:70:98:ff:43:27:36:46:ed:84:a5:38:72:
8b:15:40:d9:02:fd:53:0e:a2:57:82:b9:db:4a:67:e5:23:39:
99:d8:40:c3:0e:18:65:e1:80:49:e8:be:26:e4:f6:3d:93:aa:
36:92:9c:88:1b:3e:48:3a:2d:ef:9b:cf:82:a7:11:d5:7c:bb:
1d:49:bf:f5:5d:a6:5b:a8:10:64:ad:ee:8a:bc:23:5f:4b:d0:
82:8c:ff:e3:c7:bc:90:73:fa:50:01:38:e1:37:04:f6:78:ac:
5f:4c:50:85:bc:df:8b:b0:93:a9:5d:ec:c5:f8:d8:e9:15:31:
75:c8:7c:7d:e3:37:ac:2a:e3:88:35:64:6c:18:70:f5:3a:53:
75:c2:3b:78:b6:cd:ed:90:cf:16:e6:ef:cf:76:44:10:78:a2:
71:49:49:92:57:45:5a:21:57:53:bc:da:51:86:80:63:8f:d0:
c5:43:e1:32:d0:19:79:bb:13:38:18:a1:be:21:4c:2e:57:10:
23:2d:d2:1f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtCpDwaL4iH8090tuDJSZfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MTlmMmFkOTE1ODRiYWZmMDQ2NzQ0N2JhYzhmYjk3OGQx
ZjlkZDMwHhcNMjMwMTAxMTExNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYmI1MGI1YTM0YWEzOTAzMGRkMGI0ZmVmNmRiOTAzNTY2ODE0YmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8DxXy3037oB4vSTZnWD31AaoMLf
FuXJ6cNwXHlKuWYdQx9jElFe2zOzUNLAzUdnGqqtccjMOdc0ZUQTWL0bQKFHfIOX
lXCAK48NfprMvJZLBZKl4gY46spp15V6fsIsD85fz0FgdjppLuZKmDNvOgo9oPaG
gjoP5m69q/ErMbdeNt5yj6Voxhie/VpDoIkltDeYM+0BxkGZCJrFErsI+QSJpaVe
0AGc3TNd2GYhn0QKaayWX52frsF95J+2UJE7ZWC+6nEN2FjOdqrJ5+Z2TU6Z9AgS
DtxFzG3PcrO13EFm55pWFguhA/DcitJ3tDGqmNmMcv64UL7cl5wcdxFOUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAu1C1o0qjkDDdC0/vbbkDVmgUvfMB8GA1UdIwQY
MBaAFDkZ8q2RWEuv8EZ0R7rI+5eNH53TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1JueXJaRllTNl93Um5SSHVzajdsNDBmbmRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS85MTE4ZTItYWU3NC00YzI0LWE3NzUt
MzJhYTY3MzFjMjkxLzEvQzdVTFdqU3FPUU1OMExULTl0dVFOV2FCUzk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS85MTE4ZTItYWU3NC00YzI0LWE3NzUtMzJhYTY3MzFjMjkx
LzEvT1JueXJaRllTNl93Um5SSHVzajdsNDBmbmRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1Y/gMA0G
CSqGSIb3DQEBCwUAA4IBAQAObmURTwz5oLc2sPgDYv3WfXiIQiYFDCdQa5lWwWbi
aOBxpMknJzZvL5hVWXFTBWEvcmWm1AyUsZRxxQ9wmP9DJzZG7YSlOHKLFUDZAv1T
DqJXgrnbSmflIzmZ2EDDDhhl4YBJ6L4m5PY9k6o2kpyIGz5IOi3vm8+CpxHVfLsd
Sb/1XaZbqBBkre6KvCNfS9CCjP/jx7yQc/pQATjhNwT2eKxfTFCFvN+LsJOpXezF
+NjpFTF1yHx94zesKuOINWRsGHD1OlN1wjt4ts3tkM8W5u/PdkQQeKJxSUmSV0Va
IVdTvNpRhoBjj9DFQ+Ey0Bl5uxM4GKG+IUwuVxAjLdIf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:14 2024 by rpki-client on console-fra.rpki-client.org