Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/a2b2b8-cf1c-43e3-b0d3-fd31e1e3f5b9/1/PolkR0cmc72TCr4McaLNObDRl1E.roa
File: PolkR0cmc72TCr4McaLNObDRl1E.roa (raw, json)
Hash identifier: QKAhT9U5PkyQL2aDjknHGIBBsQB/muHTOqmXowvuq54=
Subject key identifier: 3E:89:64:47:47:26:73:BD:93:0A:BE:0C:71:A2:CD:39:B0:D1:97:51
Certificate issuer: /CN=0d8611b51799189931e30ae1be95acda81e3e1cc
Certificate serial: 01856F4B5B4B25C326E12092106686301B6A
Authority key identifier: 0D:86:11:B5:17:99:18:99:31:E3:0A:E1:BE:95:AC:DA:81:E3:E1:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYYRtReZGJkx4wrhvpWs2oHj4cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/a2b2b8-cf1c-43e3-b0d3-fd31e1e3f5b9/1/PolkR0cmc72TCr4McaLNObDRl1E.roa
Signing time: Sun 01 Jan 2023 21:44:47 +0000
ROA not before: Sun 01 Jan 2023 21:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43034
IP address blocks: 193.200.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:5b:4b:25:c3:26:e1:20:92:10:66:86:30:1b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8611b51799189931e30ae1be95acda81e3e1cc
Validity
Not Before: Jan 1 21:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e896447472673bd930abe0c71a2cd39b0d19751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9f:30:8e:62:60:24:66:51:1c:ab:f4:bf:4a:
59:ef:cf:f5:df:a4:52:3a:b8:28:80:db:5a:cf:b3:
54:77:ab:e7:2d:b6:9c:c8:b8:d2:1a:4c:bb:32:2e:
05:f9:66:94:17:cd:74:87:8d:ea:1a:87:41:27:56:
23:ad:0b:a1:ad:53:a4:6a:0f:47:c7:60:8f:70:33:
a1:96:2c:c4:fa:1f:e4:8a:0b:a0:72:ae:be:02:d2:
64:5b:d4:5d:07:b4:68:79:9c:95:5d:65:1c:8e:ce:
3c:db:51:00:2e:5d:54:d6:7f:62:39:77:43:68:28:
73:b0:c2:82:21:2d:4c:06:c4:7d:92:ce:ea:ad:fc:
43:da:aa:d7:5f:c4:d1:b8:70:f2:c3:a7:0b:82:61:
ef:7f:b9:22:50:64:38:56:1a:ef:d7:44:94:bd:69:
b3:16:39:12:84:48:eb:7c:60:15:2b:f7:64:37:05:
73:3f:74:2a:b0:13:f1:03:b4:f6:4f:5b:49:a7:bc:
d5:7b:f1:d7:1c:46:79:a3:bb:d5:82:fa:e5:9d:2c:
e1:9b:74:b8:02:ec:7d:19:0f:cd:19:90:5b:23:4c:
63:d3:70:bc:5d:c3:bb:21:05:71:ab:d5:64:81:0d:
2e:03:27:26:d5:2c:91:52:8c:e4:4e:8d:c6:03:9d:
c3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:89:64:47:47:26:73:BD:93:0A:BE:0C:71:A2:CD:39:B0:D1:97:51
X509v3 Authority Key Identifier:
keyid:0D:86:11:B5:17:99:18:99:31:E3:0A:E1:BE:95:AC:DA:81:E3:E1:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYYRtReZGJkx4wrhvpWs2oHj4cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a2b2b8-cf1c-43e3-b0d3-fd31e1e3f5b9/1/PolkR0cmc72TCr4McaLNObDRl1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a2b2b8-cf1c-43e3-b0d3-fd31e1e3f5b9/1/DYYRtReZGJkx4wrhvpWs2oHj4cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.207.0/24
Signature Algorithm: sha256WithRSAEncryption
90:ed:54:10:1c:34:45:a8:18:aa:19:37:17:05:5f:d6:d7:14:
b7:c1:21:18:6d:1a:e5:4d:39:bb:f9:dd:68:df:fc:5a:08:a7:
dc:56:7a:9e:14:fe:f0:a7:d2:fb:b9:ab:d2:75:41:25:bd:99:
bb:fc:ce:2d:cc:ae:1f:90:5a:67:a6:b5:60:c2:9e:03:57:ff:
ce:56:aa:43:06:98:98:72:2c:7b:c5:11:55:9c:67:20:72:e4:
a4:f0:51:e7:a3:a9:ac:b2:a6:90:a8:b7:b6:ef:38:2f:c1:e8:
f7:40:a9:11:dd:ae:71:a2:d8:a0:ba:d2:f6:e1:b6:ff:c5:5d:
bc:5f:81:32:0d:10:d8:12:d7:17:60:8a:e2:8a:aa:26:b2:03:
82:ea:73:0b:1c:bb:8f:09:bf:71:3d:a9:be:07:2e:79:6a:f9:
ed:84:ff:cb:75:47:c0:96:37:61:5a:06:a4:b8:20:a3:68:94:
0c:e5:bb:40:f0:17:ba:42:38:17:39:10:97:b6:77:16:c2:cc:
83:6e:03:ca:fe:be:40:18:a2:b5:25:4e:06:11:ab:f9:c0:fe:
42:c8:7f:78:12:c4:a2:84:8e:a3:1f:6a:ca:39:bf:b2:5e:7b:
6f:bb:6e:ec:c3:df:99:a0:91:b3:27:af:47:4f:50:74:4b:27:
11:28:c2:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvS1tLJcMm4SCSEGaGMBtqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkODYxMWI1MTc5OTE4OTkzMWUzMGFlMWJlOTVhY2RhODFl
M2UxY2MwHhcNMjMwMTAxMjE0NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTg5NjQ0NzQ3MjY3M2JkOTMwYWJlMGM3MWEyY2QzOWIwZDE5NzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl58wjmJgJGZRHKv0v0pZ78/136RS
OrgogNtaz7NUd6vnLbacyLjSGky7Mi4F+WaUF810h43qGodBJ1YjrQuhrVOkag9H
x2CPcDOhlizE+h/kigugcq6+AtJkW9RdB7RoeZyVXWUcjs4821EALl1U1n9iOXdD
aChzsMKCIS1MBsR9ks7qrfxD2qrXX8TRuHDyw6cLgmHvf7kiUGQ4Vhrv10SUvWmz
FjkShEjrfGAVK/dkNwVzP3QqsBPxA7T2T1tJp7zVe/HXHEZ5o7vVgvrlnSzhm3S4
Aux9GQ/NGZBbI0xj03C8XcO7IQVxq9VkgQ0uAycm1SyRUozkTo3GA53DdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD6JZEdHJnO9kwq+DHGizTmw0ZdRMB8GA1UdIwQY
MBaAFA2GEbUXmRiZMeMK4b6VrNqB4+HMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFlZUnRSZVpHSmt4NHdyaHZwV3Myb0hqNGN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9hMmIyYjgtY2YxYy00M2UzLWIwZDMt
ZmQzMWUxZTNmNWI5LzEvUG9sa1IwY21jNzJUQ3I0TWNhTE5PYkRSbDFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS9hMmIyYjgtY2YxYy00M2UzLWIwZDMtZmQzMWUxZTNmNWI5
LzEvRFlZUnRSZVpHSmt4NHdyaHZwV3Myb0hqNGN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcjPMA0G
CSqGSIb3DQEBCwUAA4IBAQCQ7VQQHDRFqBiqGTcXBV/W1xS3wSEYbRrlTTm7+d1o
3/xaCKfcVnqeFP7wp9L7uavSdUElvZm7/M4tzK4fkFpnprVgwp4DV//OVqpDBpiY
cix7xRFVnGcgcuSk8FHno6mssqaQqLe27zgvwej3QKkR3a5xotigutL24bb/xV28
X4EyDRDYEtcXYIriiqomsgOC6nMLHLuPCb9xPam+By55avnthP/LdUfAljdhWgak
uCCjaJQM5btA8Be6QjgXORCXtncWwsyDbgPK/r5AGKK1JU4GEav5wP5CyH94EsSi
hI6jH2rKOb+yXntvu27sw9+ZoJGzJ69HT1B0SycRKMKw
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:53 2024 by rpki-client on console-fra.rpki-client.org