Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/PHt8Qlf0UsaCzsHrz2loZI84jrA.roa
File: PHt8Qlf0UsaCzsHrz2loZI84jrA.roa (raw, json)
Hash identifier: An9JA+4uIoMW2NrBMNu1bCx8vMsGw4tENtwk19plw7Y=
Subject key identifier: 3C:7B:7C:42:57:F4:52:C6:82:CE:C1:EB:CF:69:68:64:8F:38:8E:B0
Certificate issuer: /CN=50182bee9aa010c1ffd2d804f6aa7b14bddb91f7
Certificate serial: 018B4B7E3A8CE0F7693711778EB715503552
Authority key identifier: 50:18:2B:EE:9A:A0:10:C1:FF:D2:D8:04:F6:AA:7B:14:BD:DB:91:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UBgr7pqgEMH_0tgE9qp7FL3bkfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/PHt8Qlf0UsaCzsHrz2loZI84jrA.roa
Signing time: Fri 20 Oct 2023 05:10:45 +0000
ROA not before: Fri 20 Oct 2023 05:10:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140403
IP address blocks: 81.199.98.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4b:7e:3a:8c:e0:f7:69:37:11:77:8e:b7:15:50:35:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50182bee9aa010c1ffd2d804f6aa7b14bddb91f7
Validity
Not Before: Oct 20 05:10:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c7b7c4257f452c682cec1ebcf6968648f388eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:03:6c:24:a7:79:d6:17:b2:6e:6c:04:5c:aa:
f9:e8:39:0b:7e:5d:57:6c:7d:cb:68:2a:7f:56:a4:
f4:f6:2c:fb:b7:40:00:04:d6:af:0a:57:74:4c:29:
00:11:4d:7d:65:7b:e6:4f:a1:04:39:5e:75:e7:2c:
6c:4a:8a:10:b2:c3:21:f8:54:ce:56:a3:7b:7d:65:
60:dd:4a:a2:05:6c:58:f5:8c:d1:98:59:be:97:b6:
fc:a2:bb:54:25:f4:c7:d8:14:27:d9:3d:e7:65:04:
58:87:51:d8:df:01:fb:50:4d:ed:11:fe:fc:10:06:
30:80:1d:d3:8e:f9:ae:1e:1b:95:62:d8:af:27:75:
c7:d9:14:bd:14:6a:04:17:e8:ab:83:6a:a2:76:a1:
47:d5:3c:b7:6d:b2:1c:51:52:57:2a:59:be:cc:e8:
65:16:63:b9:1e:42:df:0a:55:4f:25:f7:c6:d1:4d:
c8:bd:81:75:b6:b6:04:7a:05:b6:2b:37:c5:60:a4:
5a:0e:d2:1d:b4:9c:d7:0f:e6:95:00:b9:15:39:4c:
81:dd:43:d6:ff:5d:5e:72:8a:5a:6e:93:14:16:9d:
ed:b1:ee:0e:ff:7a:0c:7d:34:35:9a:9b:6a:ce:69:
3c:93:e0:0a:19:6a:a4:5d:2a:b5:7f:07:0e:8a:94:
61:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7B:7C:42:57:F4:52:C6:82:CE:C1:EB:CF:69:68:64:8F:38:8E:B0
X509v3 Authority Key Identifier:
keyid:50:18:2B:EE:9A:A0:10:C1:FF:D2:D8:04:F6:AA:7B:14:BD:DB:91:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UBgr7pqgEMH_0tgE9qp7FL3bkfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/PHt8Qlf0UsaCzsHrz2loZI84jrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/UBgr7pqgEMH_0tgE9qp7FL3bkfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.98.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:e4:8a:a2:08:34:85:59:aa:42:5d:3e:f0:a2:bb:15:28:e8:
e2:91:13:8e:ba:22:24:23:08:72:8e:4d:63:cb:d6:89:36:40:
32:b5:c7:88:f6:2a:6e:9f:fb:af:2c:80:e8:f6:e5:15:0b:07:
39:cd:4d:1d:50:04:f9:b4:43:9d:5c:93:b8:71:85:af:84:7b:
46:d7:c1:a4:7a:6d:0b:52:20:b6:f2:39:14:9c:4a:7f:6c:74:
dc:38:c5:9a:56:27:d7:94:ed:e2:75:f7:6b:79:d1:6a:a4:d0:
47:06:f5:1d:4f:36:d1:ec:11:57:40:9a:ca:8b:a7:1d:77:67:
13:69:24:c4:e8:9f:8e:3e:34:c9:75:5f:f5:e1:50:64:9d:0f:
83:d4:a4:bf:a3:a7:8d:6e:cb:1f:ad:71:75:9f:d7:e4:30:d2:
a6:97:38:2f:71:40:6d:31:d8:66:24:8e:a1:e6:bb:31:da:85:
6c:c2:fe:38:d0:27:77:09:b1:1c:c3:77:95:28:4b:29:b9:c8:
af:cf:76:87:32:a6:6f:e5:df:d3:60:f7:04:e1:0b:0e:ee:89:
04:89:ac:94:f6:bd:51:73:46:12:ef:98:77:5c:57:c3:a7:dd:
da:b2:e6:06:5e:63:18:b2:3d:79:52:5e:9f:d9:e1:0f:2f:7a:
ea:d9:00:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtLfjqM4PdpNxF3jrcVUDVSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwMTgyYmVlOWFhMDEwYzFmZmQyZDgwNGY2YWE3YjE0YmRk
YjkxZjcwHhcNMjMxMDIwMDUxMDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzdiN2M0MjU3ZjQ1MmM2ODJjZWMxZWJjZjY5Njg2NDhmMzg4ZWIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgNsJKd51heybmwEXKr56DkLfl1X
bH3LaCp/VqT09iz7t0AABNavCld0TCkAEU19ZXvmT6EEOV515yxsSooQssMh+FTO
VqN7fWVg3UqiBWxY9YzRmFm+l7b8ortUJfTH2BQn2T3nZQRYh1HY3wH7UE3tEf78
EAYwgB3TjvmuHhuVYtivJ3XH2RS9FGoEF+irg2qidqFH1Ty3bbIcUVJXKlm+zOhl
FmO5HkLfClVPJffG0U3IvYF1trYEegW2KzfFYKRaDtIdtJzXD+aVALkVOUyB3UPW
/11ecopabpMUFp3tse4O/3oMfTQ1mptqzmk8k+AKGWqkXSq1fwcOipRhSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDx7fEJX9FLGgs7B689paGSPOI6wMB8GA1UdIwQY
MBaAFFAYK+6aoBDB/9LYBPaqexS925H3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUJncjdwcWdFTUhfMHRnRTlxcDdGTDNia2ZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9iZDQ1NjYtYWMyNy00NmY4LTk0Zjkt
MTlkMWJiNjFkOWE3LzEvUEh0OFFsZjBVc2FDenNIcnoybG9aSTg0anJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9iZDQ1NjYtYWMyNy00NmY4LTk0ZjktMTlkMWJiNjFkOWE3
LzEvVUJncjdwcWdFTUhfMHRnRTlxcDdGTDNia2ZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBUcdiMA0G
CSqGSIb3DQEBCwUAA4IBAQCK5IqiCDSFWapCXT7worsVKOjikROOuiIkIwhyjk1j
y9aJNkAytceI9ipun/uvLIDo9uUVCwc5zU0dUAT5tEOdXJO4cYWvhHtG18Gkem0L
UiC28jkUnEp/bHTcOMWaVifXlO3idfdredFqpNBHBvUdTzbR7BFXQJrKi6cdd2cT
aSTE6J+OPjTJdV/14VBknQ+D1KS/o6eNbssfrXF1n9fkMNKmlzgvcUBtMdhmJI6h
5rsx2oVswv440Cd3CbEcw3eVKEspucivz3aHMqZv5d/TYPcE4QsO7okEiayU9r1R
c0YS75h3XFfDp93asuYGXmMYsj15Ul6f2eEPL3rq2QAq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:41 2024 by rpki-client on console-fra.rpki-client.org