Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/5xOo8XtuvWPpbG9xZwYgHATgssk.roa
File: 5xOo8XtuvWPpbG9xZwYgHATgssk.roa (raw, json)
Hash identifier: wVV/FHKaUiMvna7PBGWl6XGg501QNTgo0nUVsc4K7VE=
Subject key identifier: E7:13:A8:F1:7B:6E:BD:63:E9:6C:6F:71:67:06:20:1C:04:E0:B2:C9
Certificate issuer: /CN=7247ba43e270c98bdc642a9e3c218ca524eb0f53
Certificate serial: 01864A29F0D4964905B49446EC870E351491
Authority key identifier: 72:47:BA:43:E2:70:C9:8B:DC:64:2A:9E:3C:21:8C:A5:24:EB:0F:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cke6Q-JwyYvcZCqePCGMpSTrD1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/5xOo8XtuvWPpbG9xZwYgHATgssk.roa
Signing time: Mon 13 Feb 2023 09:45:07 +0000
ROA not before: Mon 13 Feb 2023 09:45:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 80.70.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4a:29:f0:d4:96:49:05:b4:94:46:ec:87:0e:35:14:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7247ba43e270c98bdc642a9e3c218ca524eb0f53
Validity
Not Before: Feb 13 09:45:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e713a8f17b6ebd63e96c6f716706201c04e0b2c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d5:71:69:48:55:57:d4:21:e2:c5:78:f7:74:
02:35:b7:d9:e5:af:94:8d:df:b4:7b:a3:32:23:54:
43:66:f2:50:76:18:a4:67:d5:f8:29:49:d6:cc:4b:
b1:52:02:3d:f3:65:16:e5:51:4d:12:04:0c:78:8e:
ab:75:14:59:eb:18:59:ae:df:a1:cd:fa:c9:f2:6a:
2d:b7:a1:5a:dd:5c:32:6f:22:35:f3:95:dd:59:84:
dc:5b:23:66:f6:15:13:95:2c:d0:6e:c9:92:eb:e3:
b2:1c:4c:ba:57:eb:94:5a:7e:6c:d9:99:e3:27:47:
52:d0:47:4e:b2:34:d2:0d:fc:de:9a:5e:0c:8c:1b:
01:88:c1:43:b9:00:3f:62:a0:69:08:27:0f:7c:b6:
53:9d:c5:8c:d3:3f:72:e9:ec:7d:8b:0d:5b:85:3b:
a4:e5:46:33:e2:c0:42:b8:8a:c4:4c:21:6c:d8:74:
45:b1:e5:2c:4d:33:c2:d6:9e:48:7b:cd:92:82:ef:
a4:b5:a5:cc:3e:ea:c2:1b:65:5b:9b:15:9c:07:57:
11:7e:3f:e1:3e:e0:ad:f5:b5:af:d3:8f:3c:54:95:
8d:e7:45:92:02:6a:7c:18:81:78:04:a9:12:24:0a:
3b:86:3f:f1:2e:87:e7:b0:b4:8e:b2:da:09:57:cc:
5c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:13:A8:F1:7B:6E:BD:63:E9:6C:6F:71:67:06:20:1C:04:E0:B2:C9
X509v3 Authority Key Identifier:
keyid:72:47:BA:43:E2:70:C9:8B:DC:64:2A:9E:3C:21:8C:A5:24:EB:0F:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cke6Q-JwyYvcZCqePCGMpSTrD1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/5xOo8XtuvWPpbG9xZwYgHATgssk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/cke6Q-JwyYvcZCqePCGMpSTrD1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.70.221.0/24
Signature Algorithm: sha256WithRSAEncryption
27:df:9a:3d:38:22:43:93:67:d1:5d:a2:50:21:60:51:2c:1c:
f8:f6:46:97:d2:b2:37:e2:9e:21:b0:ac:6d:6b:46:cb:27:d0:
a6:da:bb:f8:af:76:e5:22:1f:c3:f7:ae:b5:e0:84:84:34:ca:
0b:9b:3e:1c:73:8e:e0:36:ed:00:2c:63:5c:82:97:49:b2:f9:
94:fb:2d:7f:75:05:cd:70:69:6e:bb:22:ac:d3:57:32:8d:88:
7a:6c:76:2d:ef:39:9d:74:d5:d4:17:30:5b:d4:2d:3d:89:46:
da:74:a8:16:64:ef:12:67:53:36:aa:09:e8:a2:0a:96:fe:c9:
b5:cb:c5:07:eb:8a:ed:9e:6a:76:17:65:8a:c7:01:6c:89:38:
cd:5c:11:d2:c7:e4:05:e7:05:a3:9c:dd:f1:ba:c3:7b:b4:88:
7d:a9:df:7c:b3:e5:19:d1:61:ac:93:5c:97:a9:a5:49:15:12:
1d:80:32:50:3b:ad:a1:66:be:87:98:c1:7c:6b:e0:b5:b5:6d:
af:bd:46:a8:7c:a1:6f:63:53:5f:7c:8d:c4:41:29:80:73:a7:
33:7e:35:6b:a6:5f:c7:be:84:c8:8d:12:35:0d:74:79:ac:0a:
3f:b9:d7:74:5c:8d:b5:60:2f:19:2c:f0:15:ac:24:27:5a:4c:
8a:5a:01:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZKKfDUlkkFtJRG7IcONRSRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNDdiYTQzZTI3MGM5OGJkYzY0MmE5ZTNjMjE4Y2E1MjRl
YjBmNTMwHhcNMjMwMjEzMDk0NTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzEzYThmMTdiNmViZDYzZTk2YzZmNzE2NzA2MjAxYzA0ZTBiMmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNVxaUhVV9Qh4sV493QCNbfZ5a+U
jd+0e6MyI1RDZvJQdhikZ9X4KUnWzEuxUgI982UW5VFNEgQMeI6rdRRZ6xhZrt+h
zfrJ8mott6Fa3VwybyI185XdWYTcWyNm9hUTlSzQbsmS6+OyHEy6V+uUWn5s2Znj
J0dS0EdOsjTSDfzeml4MjBsBiMFDuQA/YqBpCCcPfLZTncWM0z9y6ex9iw1bhTuk
5UYz4sBCuIrETCFs2HRFseUsTTPC1p5Ie82Sgu+ktaXMPurCG2VbmxWcB1cRfj/h
PuCt9bWv0488VJWN50WSAmp8GIF4BKkSJAo7hj/xLofnsLSOstoJV8xc4wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOcTqPF7br1j6WxvcWcGIBwE4LLJMB8GA1UdIwQY
MBaAFHJHukPicMmL3GQqnjwhjKUk6w9TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2tlNlEtSnd5WXZjWkNxZVBDR01wU1RyRDFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8zNDEwNjgtMjhmNi00ZjgxLTk5M2Yt
Mjc5MjAzYjFkOTJjLzEvNXhPbzhYdHV2V1BwYkc5eFp3WWdIQVRnc3NrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni8zNDEwNjgtMjhmNi00ZjgxLTk5M2YtMjc5MjAzYjFkOTJj
LzEvY2tlNlEtSnd5WXZjWkNxZVBDR01wU1RyRDFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEbdMA0G
CSqGSIb3DQEBCwUAA4IBAQAn35o9OCJDk2fRXaJQIWBRLBz49kaX0rI34p4hsKxt
a0bLJ9Cm2rv4r3blIh/D96614ISENMoLmz4cc47gNu0ALGNcgpdJsvmU+y1/dQXN
cGluuyKs01cyjYh6bHYt7zmddNXUFzBb1C09iUbadKgWZO8SZ1M2qgnoogqW/sm1
y8UH64rtnmp2F2WKxwFsiTjNXBHSx+QF5wWjnN3xusN7tIh9qd98s+UZ0WGsk1yX
qaVJFRIdgDJQO62hZr6HmMF8a+C1tW2vvUaofKFvY1NffI3EQSmAc6czfjVrpl/H
voTIjRI1DXR5rAo/udd0XI21YC8ZLPAVrCQnWkyKWgHQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:24 2024 by rpki-client on console-ams.rpki-client.org