Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/5t9_tivppoPW-IYJWiTMkQnN_I8.roa
File: 5t9_tivppoPW-IYJWiTMkQnN_I8.roa (raw, json)
Hash identifier: kCia/aB2NcueAE8Mhuseg5gznjgQbUcfuOyPi1xwD2I=
Subject key identifier: E6:DF:7F:B6:2B:E9:A6:83:D6:F8:86:09:5A:24:CC:91:09:CD:FC:8F
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD535F4AE0D6B3651109365325720BE
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/5t9_tivppoPW-IYJWiTMkQnN_I8.roa
Signing time: Mon 02 Jan 2023 00:15:22 +0000
ROA not before: Mon 02 Jan 2023 00:15:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58023
IP address blocks: 89.47.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:35:f4:ae:0d:6b:36:51:10:93:65:32:57:20:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6df7fb62be9a683d6f886095a24cc9109cdfc8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2d:6e:e3:e1:3a:39:f7:33:5d:d9:34:59:e2:
1a:29:03:5d:95:67:10:46:8d:b8:ad:84:ed:65:86:
41:e3:c7:b0:24:f1:f5:62:f7:37:9a:49:58:d0:9c:
9f:17:5a:33:f8:f9:8a:e2:f4:82:72:eb:48:8c:eb:
f8:03:99:8c:b6:17:5b:6a:df:6e:3a:0d:be:1f:fa:
1f:ad:d2:4f:dd:6f:cb:70:34:fa:4c:6b:8d:35:ba:
42:03:dc:3e:c0:5b:d0:6a:e8:5a:9f:e7:ef:26:07:
c2:ab:cb:8d:12:83:e9:c4:5d:2e:dc:40:ca:b5:12:
05:5e:ed:9b:d8:68:1b:fa:7f:9d:af:80:f7:6c:24:
71:7b:02:9a:ca:6e:01:a1:6e:97:a2:d4:19:4b:a7:
17:3a:75:b4:17:9a:a1:ac:d6:82:67:10:cd:72:1b:
d7:41:31:45:78:9b:31:ac:18:51:3c:21:de:46:44:
ca:37:c6:cb:5c:b2:2a:ea:7e:20:e1:8a:99:ad:47:
4f:6a:5d:b5:ce:58:80:61:9f:c0:a6:d0:12:7e:d2:
0a:e8:ee:54:2c:0a:f4:c6:59:74:22:41:35:02:98:
9a:a9:86:d8:73:b6:54:ae:aa:f8:4f:47:d0:f8:48:
4e:8f:b2:fd:de:76:b1:86:f6:a1:da:21:74:7b:64:
26:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DF:7F:B6:2B:E9:A6:83:D6:F8:86:09:5A:24:CC:91:09:CD:FC:8F
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/5t9_tivppoPW-IYJWiTMkQnN_I8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.252.0/24
Signature Algorithm: sha256WithRSAEncryption
64:a6:82:9e:3a:12:0d:6d:00:d7:08:67:7a:93:8c:4f:7f:ea:
5f:12:e1:33:98:0f:5a:d8:fd:1d:47:e2:cd:10:ad:f0:ea:14:
e1:6d:f3:46:a5:9e:31:ac:e6:5e:f3:8c:9b:81:39:27:9c:1c:
c3:ee:b3:52:a9:6c:bd:0a:3e:46:8e:85:b6:ca:e2:6d:d9:68:
6e:c9:5a:d4:59:a3:a4:64:58:2e:95:3d:67:cb:26:92:3a:59:
46:2c:cb:70:19:ff:d3:7f:97:0a:e7:ed:f1:66:bd:1a:f6:64:
b9:1d:95:08:80:47:7d:05:56:35:ba:02:8f:25:e9:b6:31:86:
fb:af:b9:93:ff:e4:51:44:a9:c7:a1:5b:16:3b:7a:5f:dc:42:
4d:c5:1b:22:a4:d1:3d:5b:7b:46:4b:60:6a:58:28:84:1e:30:
ed:8b:ea:dd:61:98:2a:a6:12:27:00:26:f9:a7:82:5d:ab:30:
b1:ea:80:02:8d:72:7d:8d:de:75:88:68:bf:36:3e:66:01:58:
95:40:a2:67:53:e1:1e:7f:68:e2:46:04:db:ed:8d:c4:30:ff:
84:f2:4f:c8:c7:11:4e:f4:f1:54:4a:fe:e2:aa:b3:19:e0:e7:
a3:88:33:06:b7:b7:50:24:aa:9f:35:8a:05:be:95:e8:57:10:
7b:ea:e2:14
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVv1TX0rg1rNlEQk2UyVyC+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy
MTliNTkwHhcNMjMwMTAyMDAxNTIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNmRmN2ZiNjJiZTlhNjgzZDZmODg2MDk1YTI0Y2M5MTA5Y2RmYzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhS1u4+E6OfczXdk0WeIaKQNdlWcQ
Ro24rYTtZYZB48ewJPH1Yvc3mklY0JyfF1oz+PmK4vSCcutIjOv4A5mMthdbat9u
Og2+H/ofrdJP3W/LcDT6TGuNNbpCA9w+wFvQauhan+fvJgfCq8uNEoPpxF0u3EDK
tRIFXu2b2Ggb+n+dr4D3bCRxewKaym4BoW6XotQZS6cXOnW0F5qhrNaCZxDNchvX
QTFFeJsxrBhRPCHeRkTKN8bLXLIq6n4g4YqZrUdPal21zliAYZ/AptASftIK6O5U
LAr0xll0IkE1ApiaqYbYc7ZUrqr4T0fQ+EhOj7L93naxhvah2iF0e2Qm0wIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFObff7Yr6aaD1viGCVokzJEJzfyPMB8GA1UdIwQY
MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl
LTkyZTI1ZmUxNjMzMS8xLzV0OV90aXZwcG9QVy1JWUpXaVRNa1FuTl9JOC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz
MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABZL/ww
DQYJKoZIhvcNAQELBQADggEBAGSmgp46Eg1tANcIZ3qTjE9/6l8S4TOYD1rY/R1H
4s0QrfDqFOFt80alnjGs5l7zjJuBOSecHMPus1KpbL0KPkaOhbbK4m3ZaG7JWtRZ
o6RkWC6VPWfLJpI6WUYsy3AZ/9N/lwrn7fFmvRr2ZLkdlQiAR30FVjW6Ao8l6bYx
hvuvuZP/5FFEqcehWxY7el/cQk3FGyKk0T1be0ZLYGpYKIQeMO2L6t1hmCqmEicA
Jvmngl2rMLHqgAKNcn2N3nWIaL82PmYBWJVAomdT4R5/aOJGBNvtjcQw/4TyT8jH
EU708VRK/uKqsxng56OIMwa3t1Akqp81igW+lehXEHvq4hQ=
-----END CERTIFICATE-----
Generated at Thu Dec 14 05:55:18 2023 by rpki-client on console-ams.rpki-client.org