Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/bOTOM65_zaZTY-SUXJ32fklytoU.roa
File: bOTOM65_zaZTY-SUXJ32fklytoU.roa (raw, json)
Hash identifier: +ZaRuaME0C32bUl0LMJpq0iTIkIdJnNL/fj+MCHMs88=
Subject key identifier: 6C:E4:CE:33:AE:7F:CD:A6:53:63:E4:94:5C:9D:F6:7E:49:72:B6:85
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD522591933D92265E26C6716BD43BB
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/bOTOM65_zaZTY-SUXJ32fklytoU.roa
Signing time: Mon 02 Jan 2023 00:15:16 +0000
ROA not before: Mon 02 Jan 2023 00:15:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42756
IP address blocks: 89.44.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:22:59:19:33:d9:22:65:e2:6c:67:16:bd:43:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ce4ce33ae7fcda65363e4945c9df67e4972b685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f8:57:67:f8:b7:c7:b3:6b:c1:85:90:25:57:
bf:78:ad:41:eb:28:50:a5:5e:8e:98:74:78:b5:91:
82:f5:9e:2c:ad:52:36:74:46:7d:e5:f8:3a:ca:60:
ca:59:6b:91:02:dc:35:51:ad:3f:db:eb:74:ef:06:
11:8d:2b:87:83:56:f0:cd:81:b9:66:c6:6d:2d:51:
96:c7:1f:a6:93:35:4e:6e:19:e6:d2:09:68:b6:e8:
83:68:a6:04:b2:7a:2d:35:f2:d8:a2:f2:74:00:a0:
fd:1a:03:7a:57:0c:98:18:df:b5:89:f6:13:b8:ab:
33:7c:48:aa:2a:da:f5:be:77:10:d9:47:af:cc:52:
85:4f:bd:67:0b:65:22:a7:e2:b1:47:eb:6e:d0:5f:
d5:15:25:bb:f4:2d:cd:4e:73:07:f7:bf:98:4c:78:
30:6c:a0:2d:48:3f:16:9d:0f:4e:67:d5:eb:d3:5a:
83:d3:bc:9d:c5:99:3b:d3:75:4c:bf:c5:2b:5b:b5:
58:2c:62:81:54:06:d1:52:27:9a:77:27:12:81:ef:
5a:13:e2:b5:4b:ff:c3:e5:46:97:87:b7:10:f4:c9:
67:7c:6a:cd:f4:df:09:f9:55:bd:02:08:79:43:1d:
ee:b0:b8:30:20:73:67:76:48:53:7e:23:4e:e6:b5:
b5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E4:CE:33:AE:7F:CD:A6:53:63:E4:94:5C:9D:F6:7E:49:72:B6:85
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/bOTOM65_zaZTY-SUXJ32fklytoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.144.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:c2:13:b8:e7:41:53:31:a1:9c:84:87:d0:f3:bc:7a:c9:57:
cf:bb:44:3d:cb:99:cc:f4:1d:6d:8c:22:1a:2e:17:22:63:0d:
46:60:68:74:2f:3b:8a:7e:6f:46:3d:03:9f:55:8a:61:ca:36:
e5:cd:be:5b:69:27:9a:12:39:a6:91:d0:8f:dd:fc:9e:64:0f:
ba:64:25:62:29:02:72:2c:be:61:b8:82:da:31:67:fb:88:b6:
c5:f5:d4:9f:51:d1:36:c2:dd:07:7c:4d:46:d3:d7:3c:00:73:
a2:17:b9:13:b6:bd:88:42:88:cf:8e:56:52:63:60:d0:95:49:
10:c0:0f:5d:f8:35:ab:27:ea:d8:f2:78:60:4d:ae:7a:b2:36:
17:78:5a:e9:14:d7:16:01:31:4d:45:0e:d1:46:cc:1b:d3:3f:
fd:ba:62:19:70:58:70:9b:37:56:90:3b:94:2e:23:68:8a:8c:
68:cd:5f:a1:fa:9d:ef:30:21:25:b5:5d:61:44:39:7e:42:c1:
93:9d:7e:0a:36:a0:e5:e1:16:ae:01:26:11:8a:f8:b5:d7:40:
fb:9d:f7:a3:33:d5:40:8e:0b:31:e6:6d:5e:3c:9b:5a:90:07:
43:ab:d9:26:33:bc:ab:f3:73:eb:bf:a5:b6:4e:9a:da:be:64:
c7:81:0b:f1
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVv1SJZGTPZImXibGcWvUO7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy
MTliNTkwHhcNMjMwMTAyMDAxNTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2U0Y2UzM2FlN2ZjZGE2NTM2M2U0OTQ1YzlkZjY3ZTQ5NzJiNjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/hXZ/i3x7NrwYWQJVe/eK1B6yhQ
pV6OmHR4tZGC9Z4srVI2dEZ95fg6ymDKWWuRAtw1Ua0/2+t07wYRjSuHg1bwzYG5
ZsZtLVGWxx+mkzVObhnm0glotuiDaKYEsnotNfLYovJ0AKD9GgN6VwyYGN+1ifYT
uKszfEiqKtr1vncQ2UevzFKFT71nC2Uip+KxR+tu0F/VFSW79C3NTnMH97+YTHgw
bKAtSD8WnQ9OZ9Xr01qD07ydxZk703VMv8UrW7VYLGKBVAbRUieadycSge9aE+K1
S//D5UaXh7cQ9MlnfGrN9N8J+VW9Agh5Qx3usLgwIHNndkhTfiNO5rW1gwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFGzkzjOuf82mU2PklFyd9n5JcraFMB8GA1UdIwQY
MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl
LTkyZTI1ZmUxNjMzMS8xL2JPVE9NNjVfemFaVFktU1VYSjMyZmtseXRvVS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz
MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABZLJAw
DQYJKoZIhvcNAQELBQADggEBAF/CE7jnQVMxoZyEh9DzvHrJV8+7RD3Lmcz0HW2M
IhouFyJjDUZgaHQvO4p+b0Y9A59VimHKNuXNvltpJ5oSOaaR0I/d/J5kD7pkJWIp
AnIsvmG4gtoxZ/uItsX11J9R0TbC3Qd8TUbT1zwAc6IXuRO2vYhCiM+OVlJjYNCV
SRDAD134Nasn6tjyeGBNrnqyNhd4WukU1xYBMU1FDtFGzBvTP/26YhlwWHCbN1aQ
O5QuI2iKjGjNX6H6ne8wISW1XWFEOX5CwZOdfgo2oOXhFq4BJhGK+LXXQPud96Mz
1UCOCzHmbV48m1qQB0Or2SYzvKvzc+u/pbZOmtq+ZMeBC/E=
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:52 2024 by rpki-client on console-fra.rpki-client.org