Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/sT_5ro6ufuoJ72z190ITT4OPBqg.roa
File: sT_5ro6ufuoJ72z190ITT4OPBqg.roa (raw, json)
Hash identifier: ArmHPLw8cR0tCpuSSJbA71z8NuY/1uhZnhd5oKXWSLY=
Subject key identifier: B1:3F:F9:AE:8E:AE:7E:EA:09:EF:6C:F5:F7:42:13:4F:83:8F:06:A8
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 018700CF246172C814AA65D359475859A124
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/sT_5ro6ufuoJ72z190ITT4OPBqg.roa
Signing time: Mon 20 Mar 2023 20:56:27 +0000
ROA not before: Mon 20 Mar 2023 20:56:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 93.89.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Mar 2023 15:42:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:00:cf:24:61:72:c8:14:aa:65:d3:59:47:58:59:a1:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Mar 20 20:56:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b13ff9ae8eae7eea09ef6cf5f742134f838f06a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:21:85:7a:1a:fe:b8:c7:9e:09:8a:5d:8a:31:
f6:b3:5b:f5:78:72:f9:03:56:5f:8c:50:a2:b9:d3:
d4:ca:35:2e:fb:a5:c4:a5:6f:65:ac:ad:8b:67:51:
fc:66:b4:29:3a:25:31:2a:6a:ce:e8:f5:53:c0:4e:
a0:01:61:08:8b:4e:bc:3a:a5:ab:61:36:dc:f7:44:
e6:d4:7c:c4:85:0f:30:b8:f2:23:b7:8a:33:6f:2a:
33:79:66:95:b1:63:da:bf:b0:d1:92:47:26:b0:55:
3c:d0:3a:98:ed:bb:f6:3b:9c:f8:a1:0a:5a:1e:85:
d9:48:91:75:da:1a:01:c9:b4:83:62:88:1e:a9:93:
96:b6:a9:0d:d9:d3:3c:3e:53:65:9a:c7:cb:30:17:
78:5b:67:42:d4:3b:60:10:97:91:ef:83:ba:ff:69:
48:80:2d:c2:b0:c9:20:d2:93:fd:a1:90:49:a4:5e:
96:ba:6f:39:a3:1c:bc:92:4b:d8:f3:8d:ba:e1:4d:
69:41:42:2f:b9:9e:bf:00:ae:b9:51:9e:06:b9:ce:
bd:e4:91:25:a6:4d:fb:7e:bf:94:2c:4f:8c:f1:29:
06:db:15:64:48:fa:12:3e:5f:2e:d4:ea:c0:e3:10:
de:2b:14:31:14:90:05:79:82:c4:87:b5:69:72:7e:
8f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:3F:F9:AE:8E:AE:7E:EA:09:EF:6C:F5:F7:42:13:4F:83:8F:06:A8
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/sT_5ro6ufuoJ72z190ITT4OPBqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.220.0/24
Signature Algorithm: sha256WithRSAEncryption
94:a0:6a:cb:cc:81:78:7e:39:9c:28:90:cf:df:04:3c:ef:79:
92:7a:8a:7d:18:98:df:bc:94:12:ac:e3:21:c3:fb:99:4e:ad:
70:49:f3:0b:c7:ed:7e:ab:a9:1f:2c:7d:03:47:62:b9:e1:d0:
bb:6c:0c:39:05:bd:e4:cf:aa:0f:92:e6:db:20:d4:dd:77:4d:
25:46:da:40:cd:66:f9:57:7e:a2:06:73:3f:2a:db:4d:b8:56:
b4:7f:8b:d5:85:59:f4:fc:a2:8a:d5:21:af:19:2f:91:bf:c0:
6d:e3:bc:05:13:a0:99:67:ef:8a:59:39:07:5e:28:bf:66:9e:
07:fd:3b:fd:ad:00:46:b4:f0:f4:20:cd:fb:3f:34:77:7f:1a:
d5:5d:a3:85:9b:da:cd:82:93:ca:f8:d6:f9:d8:40:f3:70:e3:
1e:15:5d:59:25:5d:77:dc:23:1d:d4:3c:27:84:d2:e7:95:b9:
a3:f8:30:02:54:e6:25:d8:b3:fc:a8:a4:8e:96:91:9a:c8:ee:
e7:b7:df:38:69:b1:d3:33:c8:3a:4f:72:66:b8:29:e8:dd:4f:
0b:fa:3e:1b:98:70:a9:58:d1:83:9a:b0:3b:44:47:88:90:67:
d6:80:0d:7e:fd:4d:18:23:b3:da:3a:00:7f:6f:36:cb:71:1a:
52:ed:b9:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcAzyRhcsgUqmXTWUdYWaEkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyYTE1Y2M4ODY1OWY1NzhjYzE1OWM1MmIzYTdlOWVjNTgx
OWZiMjAwHhcNMjMwMzIwMjA1NjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTNmZjlhZThlYWU3ZWVhMDllZjZjZjVmNzQyMTM0ZjgzOGYwNmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCGFehr+uMeeCYpdijH2s1v1eHL5
A1ZfjFCiudPUyjUu+6XEpW9lrK2LZ1H8ZrQpOiUxKmrO6PVTwE6gAWEIi068OqWr
YTbc90Tm1HzEhQ8wuPIjt4ozbyozeWaVsWPav7DRkkcmsFU80DqY7bv2O5z4oQpa
HoXZSJF12hoBybSDYogeqZOWtqkN2dM8PlNlmsfLMBd4W2dC1DtgEJeR74O6/2lI
gC3CsMkg0pP9oZBJpF6Wum85oxy8kkvY84264U1pQUIvuZ6/AK65UZ4Guc695JEl
pk37fr+ULE+M8SkG2xVkSPoSPl8u1OrA4xDeKxQxFJAFeYLEh7Vpcn6PSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLE/+a6Orn7qCe9s9fdCE0+DjwaoMB8GA1UdIwQY
MBaAFGKhXMiGWfV4zBWcUrOn6exYGfsgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXFGY3lJWlo5WGpNRlp4U3M2ZnA3RmdaLXlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8yMTE3YmMtMWY5ZS00NTkwLWE1NTAt
NDI2OWI1NmJmN2Q0LzEvc1RfNXJvNnVmdW9KNzJ6MTkwSVRUNE9QQnFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8yMTE3YmMtMWY5ZS00NTkwLWE1NTAtNDI2OWI1NmJmN2Q0
LzEvWXFGY3lJWlo5WGpNRlp4U3M2ZnA3RmdaLXlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXVncMA0G
CSqGSIb3DQEBCwUAA4IBAQCUoGrLzIF4fjmcKJDP3wQ873mSeop9GJjfvJQSrOMh
w/uZTq1wSfMLx+1+q6kfLH0DR2K54dC7bAw5Bb3kz6oPkubbINTdd00lRtpAzWb5
V36iBnM/KttNuFa0f4vVhVn0/KKK1SGvGS+Rv8Bt47wFE6CZZ++KWTkHXii/Zp4H
/Tv9rQBGtPD0IM37PzR3fxrVXaOFm9rNgpPK+Nb52EDzcOMeFV1ZJV133CMd1Dwn
hNLnlbmj+DACVOYl2LP8qKSOlpGayO7nt984abHTM8g6T3JmuCno3U8L+j4bmHCp
WNGDmrA7REeIkGfWgA1+/U0YI7PaOgB/bzbLcRpS7blj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:25 2024 by rpki-client on console-ams.rpki-client.org