Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/stzi9HVsF2folr0_Ueqar1ET1P8.roa
File: stzi9HVsF2folr0_Ueqar1ET1P8.roa (raw, json)
Hash identifier: gmftdtLoW0gukpkstg29f8DCg69chV/1vWu6ZTGTYqc=
Subject key identifier: B2:DC:E2:F4:75:6C:17:67:E8:96:BD:3F:51:EA:9A:AF:51:13:D4:FF
Certificate issuer: /CN=150183623fc16dc74cb775462c36d31016a40ac1
Certificate serial: 01856F4B8BDA5AA5CEDB3D9AA1158C569872
Authority key identifier: 15:01:83:62:3F:C1:6D:C7:4C:B7:75:46:2C:36:D3:10:16:A4:0A:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FQGDYj_BbcdMt3VGLDbTEBakCsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/stzi9HVsF2folr0_Ueqar1ET1P8.roa
Signing time: Sun 01 Jan 2023 21:44:59 +0000
ROA not before: Sun 01 Jan 2023 21:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57511
IP address blocks: 158.255.77.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:8b:da:5a:a5:ce:db:3d:9a:a1:15:8c:56:98:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=150183623fc16dc74cb775462c36d31016a40ac1
Validity
Not Before: Jan 1 21:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2dce2f4756c1767e896bd3f51ea9aaf5113d4ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:32:9b:74:23:f1:ad:cd:c1:35:cd:ec:3c:e5:
1a:e9:0b:40:49:17:af:77:de:da:41:14:b9:e3:26:
ca:3d:f6:39:af:20:4e:74:96:fd:22:e6:4c:2f:e8:
f5:4e:03:f3:20:0a:0a:51:c2:1b:0f:1d:8f:d9:5a:
c0:5d:1a:10:a9:58:47:e3:d2:53:c9:61:68:16:10:
35:c0:f3:27:ba:69:b8:9f:ca:dd:70:f8:31:a7:f3:
35:8c:73:b1:ce:e8:00:5c:5c:13:6a:49:9a:df:ec:
08:5c:96:35:ba:2f:a1:af:ba:b8:d8:eb:f7:fc:16:
ae:a7:9d:92:dd:15:c8:eb:4c:88:e9:2f:e4:18:9e:
66:f2:3c:86:fa:8e:a6:4a:a5:4c:39:2b:35:91:80:
8b:c9:eb:44:33:7e:38:d3:67:85:4f:38:b4:e4:77:
a7:3f:08:ad:1b:5c:71:52:29:e3:55:f6:4d:aa:0a:
97:8a:a0:55:98:12:41:16:b7:97:50:78:dc:05:2c:
9c:d2:8d:da:15:18:9f:bd:95:c1:d9:fb:08:dc:56:
f2:59:4a:15:64:e9:bd:23:78:47:95:c4:35:17:db:
bc:27:50:6d:71:de:bd:52:59:ae:8d:f4:77:6f:8f:
91:c0:4f:07:97:d8:3d:6e:9d:fc:4b:54:c5:0b:94:
7f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DC:E2:F4:75:6C:17:67:E8:96:BD:3F:51:EA:9A:AF:51:13:D4:FF
X509v3 Authority Key Identifier:
keyid:15:01:83:62:3F:C1:6D:C7:4C:B7:75:46:2C:36:D3:10:16:A4:0A:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FQGDYj_BbcdMt3VGLDbTEBakCsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/stzi9HVsF2folr0_Ueqar1ET1P8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/FQGDYj_BbcdMt3VGLDbTEBakCsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.255.77.0/24
Signature Algorithm: sha256WithRSAEncryption
60:bf:01:6d:85:bd:99:52:1a:4b:f9:1c:b0:b9:a6:79:84:8a:
c8:9f:96:02:6e:c5:d9:e9:e8:8b:11:2e:21:81:9b:03:f0:48:
32:ed:b6:74:51:46:6f:e8:ec:e6:4f:98:78:28:1d:9a:54:c5:
72:d8:dd:df:72:71:6a:1d:56:2b:6f:0d:7a:9c:f7:3d:1d:fe:
6c:0a:d4:ba:85:3b:e2:1b:2d:a3:d5:c5:37:32:f9:40:50:0b:
eb:11:90:46:29:36:b6:2b:68:79:d3:9a:a6:1b:57:72:3a:c9:
20:f5:58:23:36:cd:4f:21:47:43:61:1b:79:2f:97:29:90:a0:
08:69:c0:92:b2:d8:5f:0e:4b:3c:f3:ca:55:bb:d3:1c:ad:89:
6a:df:e5:ae:62:ca:9d:14:03:3b:9f:f7:aa:d2:ef:92:cf:cf:
7a:7e:45:d7:c8:ed:c4:f0:4b:13:a3:eb:6e:4d:42:00:ee:7a:
44:f3:19:df:8f:06:17:90:c5:db:e4:51:b0:a1:0a:c1:4a:8a:
35:93:4a:35:7e:96:58:80:45:89:82:84:bc:ef:b7:dc:86:0c:
e2:cb:9a:4a:86:90:8b:48:d6:96:cc:43:99:17:50:da:83:91:
b0:b6:c6:a4:d3:81:bb:a9:89:81:df:87:9b:62:70:36:f3:ac:
73:9c:d3:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvS4vaWqXO2z2aoRWMVphyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1MDE4MzYyM2ZjMTZkYzc0Y2I3NzU0NjJjMzZkMzEwMTZh
NDBhYzEwHhcNMjMwMTAxMjE0NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMmRjZTJmNDc1NmMxNzY3ZTg5NmJkM2Y1MWVhOWFhZjUxMTNkNGZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTKbdCPxrc3BNc3sPOUa6QtASRev
d97aQRS54ybKPfY5ryBOdJb9IuZML+j1TgPzIAoKUcIbDx2P2VrAXRoQqVhH49JT
yWFoFhA1wPMnumm4n8rdcPgxp/M1jHOxzugAXFwTakma3+wIXJY1ui+hr7q42Ov3
/Baup52S3RXI60yI6S/kGJ5m8jyG+o6mSqVMOSs1kYCLyetEM34402eFTzi05Hen
PwitG1xxUinjVfZNqgqXiqBVmBJBFreXUHjcBSyc0o3aFRifvZXB2fsI3FbyWUoV
ZOm9I3hHlcQ1F9u8J1Btcd69UlmujfR3b4+RwE8Hl9g9bp38S1TFC5R/MQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLLc4vR1bBdn6Ja9P1Hqmq9RE9T/MB8GA1UdIwQY
MBaAFBUBg2I/wW3HTLd1Riw20xAWpArBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRlFHRFlqX0JiY2RNdDNWR0xEYlRFQmFrQ3NFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9mM2ZiMjQtOWEyMC00NDllLWFmNjIt
MjhmNTIwNTJjMWRkLzEvc3R6aTlIVnNGMmZvbHIwX1VlcWFyMUVUMVA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9mM2ZiMjQtOWEyMC00NDllLWFmNjItMjhmNTIwNTJjMWRk
LzEvRlFHRFlqX0JiY2RNdDNWR0xEYlRFQmFrQ3NFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnv9NMA0G
CSqGSIb3DQEBCwUAA4IBAQBgvwFthb2ZUhpL+RywuaZ5hIrIn5YCbsXZ6eiLES4h
gZsD8Egy7bZ0UUZv6OzmT5h4KB2aVMVy2N3fcnFqHVYrbw16nPc9Hf5sCtS6hTvi
Gy2j1cU3MvlAUAvrEZBGKTa2K2h505qmG1dyOskg9VgjNs1PIUdDYRt5L5cpkKAI
acCSsthfDks888pVu9McrYlq3+WuYsqdFAM7n/eq0u+Sz896fkXXyO3E8EsTo+tu
TUIA7npE8xnfjwYXkMXb5FGwoQrBSoo1k0o1fpZYgEWJgoS877fchgziy5pKhpCL
SNaWzEOZF1Dag5Gwtsak04G7qYmB34ebYnA286xznNM0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:41 2024 by rpki-client on console-ams.rpki-client.org