Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/f0a67c-bd4f-4ddc-8c61-3fe7aea9e2e0/1/7Pm4rAdiQmEKQuRrW9-hkwFxJZI.roa
File: 7Pm4rAdiQmEKQuRrW9-hkwFxJZI.roa (raw, json)
Hash identifier: 894+bS7rDGkAWljxa1QdrRsmllslPJw7CwzQwk3k5xw=
Subject key identifier: EC:F9:B8:AC:07:62:42:61:0A:42:E4:6B:5B:DF:A1:93:01:71:25:92
Certificate issuer: /CN=200b15e0783fe00f1b8a57bd14fdbd06924b8832
Certificate serial: 01856F42B052CEFB9596DB29014340923761
Authority key identifier: 20:0B:15:E0:78:3F:E0:0F:1B:8A:57:BD:14:FD:BD:06:92:4B:88:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IAsV4Hg_4A8bile9FP29BpJLiDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/f0a67c-bd4f-4ddc-8c61-3fe7aea9e2e0/1/7Pm4rAdiQmEKQuRrW9-hkwFxJZI.roa
Signing time: Sun 01 Jan 2023 21:35:19 +0000
ROA not before: Sun 01 Jan 2023 21:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47692
IP address blocks: 152.89.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:b0:52:ce:fb:95:96:db:29:01:43:40:92:37:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=200b15e0783fe00f1b8a57bd14fdbd06924b8832
Validity
Not Before: Jan 1 21:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecf9b8ac076242610a42e46b5bdfa19301712592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9b:8a:4d:8b:21:92:cd:ca:06:fc:e9:9f:dc:
e8:b8:3d:1a:b8:7f:2b:6f:c4:c7:a0:af:83:cf:7d:
21:74:86:9f:16:50:30:e8:27:c5:fe:00:4a:c9:c9:
c0:12:f7:4f:da:1b:f2:3b:d0:ea:dd:bb:3b:8f:ae:
ea:3b:08:2c:3f:51:57:93:88:78:8a:b7:1d:83:6f:
41:af:f3:7b:3d:0e:91:76:2b:61:98:24:33:bf:65:
2b:ff:76:9c:d9:5b:ea:c4:b7:1d:e2:2b:f1:3a:da:
af:85:e0:b3:74:9d:61:e1:73:70:49:bf:21:b2:ac:
d3:23:1e:35:6e:6d:14:d9:f7:d4:80:70:91:02:28:
30:f3:c2:75:0b:ca:09:67:7f:73:0b:d5:f0:50:fa:
df:64:ce:7e:f4:d0:2c:ca:2e:40:83:59:e2:68:b2:
66:41:5d:ce:9e:88:c8:7b:94:d4:92:59:2c:be:99:
dc:5e:b5:8e:1e:27:ef:f4:53:03:d6:b3:0f:2e:65:
9c:09:54:8c:bd:ac:63:61:e4:93:e9:76:89:70:b3:
d4:0c:88:6c:9d:09:21:fd:9b:3e:41:f4:ef:25:c9:
92:37:d6:d0:48:99:cc:25:2c:fe:78:48:26:89:46:
2f:2c:51:1a:11:87:ab:55:1d:92:49:0d:57:28:b3:
19:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F9:B8:AC:07:62:42:61:0A:42:E4:6B:5B:DF:A1:93:01:71:25:92
X509v3 Authority Key Identifier:
keyid:20:0B:15:E0:78:3F:E0:0F:1B:8A:57:BD:14:FD:BD:06:92:4B:88:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IAsV4Hg_4A8bile9FP29BpJLiDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/f0a67c-bd4f-4ddc-8c61-3fe7aea9e2e0/1/7Pm4rAdiQmEKQuRrW9-hkwFxJZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/f0a67c-bd4f-4ddc-8c61-3fe7aea9e2e0/1/IAsV4Hg_4A8bile9FP29BpJLiDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.225.0/24
Signature Algorithm: sha256WithRSAEncryption
98:35:1e:a3:9d:b4:64:c0:a9:f7:e7:bc:08:bd:05:56:ae:a8:
59:fd:13:92:5c:15:87:1a:bc:10:15:63:5d:b6:32:00:35:5a:
35:59:11:bb:07:92:6d:d4:0b:55:88:08:4a:b5:69:b9:88:05:
94:e0:3a:3d:08:86:b7:75:09:e5:f7:29:2a:f1:5c:3a:95:19:
b2:d2:cc:78:4e:0b:8a:d0:06:8b:ec:18:c5:44:a2:1f:31:a6:
cf:43:2c:02:28:f4:87:d1:2f:e5:a2:10:da:64:fd:de:f8:d3:
a4:f6:7f:cf:37:4d:49:4c:76:87:82:e3:73:eb:46:4e:d0:fb:
0a:fe:5f:57:32:cd:3c:95:1a:46:57:4c:9b:13:f5:62:66:7f:
08:d1:16:c4:37:b7:63:70:0e:3e:dc:92:44:09:12:16:7d:87:
a4:53:a9:f9:6f:6f:23:1e:f7:39:82:ae:4a:a5:2a:af:aa:ec:
ae:d6:56:03:57:ff:40:4f:d5:76:49:e9:af:d1:66:b9:34:4a:
8a:c4:e8:29:a5:dc:45:fd:9d:ed:6f:43:c8:fa:70:37:31:1e:
f0:4d:2a:78:be:b6:32:e7:38:b5:75:e8:05:f7:2d:36:f9:7b:
19:fa:d3:5a:fc:ea:3a:06:93:38:b5:0b:70:cd:8e:4e:12:e3:
2e:70:51:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvQrBSzvuVltspAUNAkjdhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMGIxNWUwNzgzZmUwMGYxYjhhNTdiZDE0ZmRiZDA2OTI0
Yjg4MzIwHhcNMjMwMTAxMjEzNTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlY2Y5YjhhYzA3NjI0MjYxMGE0MmU0NmI1YmRmYTE5MzAxNzEyNTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15uKTYshks3KBvzpn9zouD0auH8r
b8THoK+Dz30hdIafFlAw6CfF/gBKycnAEvdP2hvyO9Dq3bs7j67qOwgsP1FXk4h4
ircdg29Br/N7PQ6RdithmCQzv2Ur/3ac2VvqxLcd4ivxOtqvheCzdJ1h4XNwSb8h
sqzTIx41bm0U2ffUgHCRAigw88J1C8oJZ39zC9XwUPrfZM5+9NAsyi5Ag1niaLJm
QV3OnojIe5TUklksvpncXrWOHifv9FMD1rMPLmWcCVSMvaxjYeST6XaJcLPUDIhs
nQkh/Zs+QfTvJcmSN9bQSJnMJSz+eEgmiUYvLFEaEYerVR2SSQ1XKLMZtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOz5uKwHYkJhCkLka1vfoZMBcSWSMB8GA1UdIwQY
MBaAFCALFeB4P+APG4pXvRT9vQaSS4gyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUFzVjRIZ180QThiaWxlOUZQMjlCcEpMaURJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9mMGE2N2MtYmQ0Zi00ZGRjLThjNjEt
M2ZlN2FlYTllMmUwLzEvN1BtNHJBZGlRbUVLUXVSclc5LWhrd0Z4SlpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS9mMGE2N2MtYmQ0Zi00ZGRjLThjNjEtM2ZlN2FlYTllMmUw
LzEvSUFzVjRIZ180QThiaWxlOUZQMjlCcEpMaURJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmFnhMA0G
CSqGSIb3DQEBCwUAA4IBAQCYNR6jnbRkwKn357wIvQVWrqhZ/ROSXBWHGrwQFWNd
tjIANVo1WRG7B5Jt1AtViAhKtWm5iAWU4Do9CIa3dQnl9ykq8Vw6lRmy0sx4TguK
0AaL7BjFRKIfMabPQywCKPSH0S/lohDaZP3e+NOk9n/PN01JTHaHguNz60ZO0PsK
/l9XMs08lRpGV0ybE/ViZn8I0RbEN7djcA4+3JJECRIWfYekU6n5b28jHvc5gq5K
pSqvquyu1lYDV/9AT9V2Semv0Wa5NEqKxOgppdxF/Z3tb0PI+nA3MR7wTSp4vrYy
5zi1degF9y02+XsZ+tNa/Oo6BpM4tQtwzY5OEuMucFFh
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:59 2024 by rpki-client on console-fra.rpki-client.org