Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/m4pfGX55GqvfPC-Jj1lz6R_Y-R4.roa
File: m4pfGX55GqvfPC-Jj1lz6R_Y-R4.roa (raw, json)
Hash identifier: hQRSVTs7qH9SMi79qGB++clkWvpYfhz5scz/P1Pxpsc=
Subject key identifier: 9B:8A:5F:19:7E:79:1A:AB:DF:3C:2F:89:8F:59:73:E9:1F:D8:F9:1E
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018630CD8BABC5F0188DB1013613042B0334
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/m4pfGX55GqvfPC-Jj1lz6R_Y-R4.roa
Signing time: Wed 08 Feb 2023 11:33:42 +0000
ROA not before: Wed 08 Feb 2023 11:33:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 89.46.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 May 2023 05:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:30:cd:8b:ab:c5:f0:18:8d:b1:01:36:13:04:2b:03:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Feb 8 11:33:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b8a5f197e791aabdf3c2f898f5973e91fd8f91e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:96:2f:0d:57:4c:0c:41:13:74:c9:14:78:9d:
2a:13:33:6a:68:99:0d:1a:60:75:d6:1d:52:d5:79:
bc:52:b3:db:cd:7f:18:bb:4a:96:9f:c3:37:86:46:
9d:ed:7c:5a:fc:4f:be:4a:a0:28:0e:e0:5f:a8:b5:
67:0d:56:74:24:b6:8d:13:1b:73:73:73:87:af:f8:
13:09:a7:27:4b:f7:ba:93:96:72:08:65:84:c7:22:
b9:2d:62:2e:d6:65:a5:22:2e:e6:ee:50:6c:d7:2a:
40:2d:d2:e8:67:b0:2b:94:4a:fa:9c:f0:35:93:ac:
8b:5d:c3:34:11:4d:95:8c:8e:b5:41:35:00:b5:02:
6e:81:14:f4:11:80:22:57:7e:65:f1:85:4b:9f:dc:
4b:42:c8:61:0e:e3:de:3a:e3:ec:bd:ae:47:4a:06:
6d:07:8c:76:dd:a0:84:94:fc:4e:7f:7e:e2:8d:8e:
18:4d:0c:cb:08:b5:ae:80:3f:4a:9f:36:dc:96:cf:
95:d0:9d:14:aa:c6:81:cc:c7:cd:4e:97:b7:03:bf:
d4:be:15:ea:cc:fc:b9:c2:95:c7:61:b3:e0:5f:23:
0b:e4:12:0d:c0:6b:1f:14:e9:9c:8b:7d:89:40:2d:
dd:73:c7:39:f0:8b:25:f5:e0:0a:ba:cb:e7:7e:1e:
10:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8A:5F:19:7E:79:1A:AB:DF:3C:2F:89:8F:59:73:E9:1F:D8:F9:1E
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/m4pfGX55GqvfPC-Jj1lz6R_Y-R4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.176.0/22
Signature Algorithm: sha256WithRSAEncryption
89:8b:66:25:e9:0b:00:32:24:d2:01:8d:dc:dd:3e:49:ea:3d:
32:c3:bc:fa:d8:72:35:1f:03:15:19:ba:fe:8d:c1:fc:bf:f6:
16:b0:78:6c:aa:5c:3d:8d:c0:b2:f2:a3:41:2b:8c:8f:07:f9:
bf:02:77:24:e3:2f:39:80:0a:37:ab:2f:58:6b:53:21:62:4e:
b9:64:01:28:75:b0:a7:3e:b1:23:74:a0:2f:40:b2:d7:1b:21:
ca:64:71:5c:7d:35:65:6c:31:b4:c0:de:9c:3b:ce:4f:8f:b8:
af:2f:2d:41:a6:a4:9d:9f:25:f4:62:f2:3c:83:12:95:8b:57:
6e:f9:1a:b7:c1:76:7a:16:d8:8f:58:fe:92:d4:07:4d:4b:df:
1f:3e:48:e6:30:3f:c5:20:e4:c5:fd:7c:b5:e8:3a:a5:d2:ad:
50:2c:05:bd:1f:4c:99:36:31:b3:f3:c8:27:62:e9:48:7b:2a:
32:65:22:61:1c:05:65:60:a6:68:8f:80:57:32:27:ae:cf:30:
21:d9:b8:88:04:fc:fd:d4:0e:99:e4:b3:4e:37:d8:71:c5:95:
2f:51:b6:52:2a:4f:28:0d:bd:16:e2:04:df:f9:00:79:05:9a:
93:74:5c:a9:14:ac:04:3b:7d:cd:80:59:f7:77:3a:c4:77:73:
53:cb:d3:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYwzYurxfAYjbEBNhMEKwM0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjMwMjA4MTEzMzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjhhNWYxOTdlNzkxYWFiZGYzYzJmODk4ZjU5NzNlOTFmZDhmOTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZYvDVdMDEETdMkUeJ0qEzNqaJkN
GmB11h1S1Xm8UrPbzX8Yu0qWn8M3hkad7Xxa/E++SqAoDuBfqLVnDVZ0JLaNExtz
c3OHr/gTCacnS/e6k5ZyCGWExyK5LWIu1mWlIi7m7lBs1ypALdLoZ7ArlEr6nPA1
k6yLXcM0EU2VjI61QTUAtQJugRT0EYAiV35l8YVLn9xLQshhDuPeOuPsva5HSgZt
B4x23aCElPxOf37ijY4YTQzLCLWugD9Knzbcls+V0J0UqsaBzMfNTpe3A7/UvhXq
zPy5wpXHYbPgXyML5BINwGsfFOmci32JQC3dc8c58Isl9eAKusvnfh4QRQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJuKXxl+eRqr3zwviY9Zc+kf2PkeMB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvbTRwZkdYNTVHcXZmUEMtSmoxbHo2Ul9ZLVI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCWS6wMA0G
CSqGSIb3DQEBCwUAA4IBAQCJi2Yl6QsAMiTSAY3c3T5J6j0yw7z62HI1HwMVGbr+
jcH8v/YWsHhsqlw9jcCy8qNBK4yPB/m/Anck4y85gAo3qy9Ya1MhYk65ZAEodbCn
PrEjdKAvQLLXGyHKZHFcfTVlbDG0wN6cO85Pj7ivLy1BpqSdnyX0YvI8gxKVi1du
+Rq3wXZ6FtiPWP6S1AdNS98fPkjmMD/FIOTF/Xy16Dql0q1QLAW9H0yZNjGz88gn
YulIeyoyZSJhHAVlYKZoj4BXMieuzzAh2biIBPz91A6Z5LNON9hxxZUvUbZSKk8o
Db0W4gTf+QB5BZqTdFypFKwEO33NgFn3dzrEd3NTy9Pb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org