Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/05IQ3xEbWlXZSlNEH12ZqgDuhIs.roa
File: 05IQ3xEbWlXZSlNEH12ZqgDuhIs.roa (raw, json)
Hash identifier: BzJeRboXx7fGXjhL3M+adkbTUyDZClXGjsYI/La5Z6c=
Subject key identifier: D3:92:10:DF:11:1B:5A:55:D9:4A:53:44:1F:5D:99:AA:00:EE:84:8B
Certificate issuer: /CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Certificate serial: 0186264212E1206CA776C583FCD7BD8B0A33
Authority key identifier: 3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/05IQ3xEbWlXZSlNEH12ZqgDuhIs.roa
Signing time: Mon 06 Feb 2023 10:25:09 +0000
ROA not before: Mon 06 Feb 2023 10:25:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48951
IP address blocks: 78.140.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Feb 2023 12:21:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:26:42:12:e1:20:6c:a7:76:c5:83:fc:d7:bd:8b:0a:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Validity
Not Before: Feb 6 10:25:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d39210df111b5a55d94a53441f5d99aa00ee848b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:df:9e:1d:3e:06:6f:2d:d8:31:05:89:dc:46:
9a:19:05:d7:fa:43:b8:7d:41:23:53:d4:5a:22:0c:
af:0c:cf:53:d7:87:67:f0:bd:24:dc:ed:37:e2:3f:
8a:4d:49:0e:e7:17:89:ad:f8:42:d7:23:3c:c7:c1:
cd:28:5f:90:36:5f:72:8d:1a:7e:23:37:d2:13:3f:
f2:95:be:8c:76:2a:d8:0e:b1:6c:b7:09:d9:06:b0:
4f:27:43:51:8b:c1:18:cf:3c:b1:9d:e1:b2:b8:3c:
cb:f9:74:f8:9e:30:2b:5c:5c:41:9e:56:ad:68:ce:
78:79:b1:ff:62:ac:65:6e:2c:07:77:f2:f3:a7:45:
30:aa:e0:da:e5:e5:3b:b3:88:80:f4:d0:9e:a8:ce:
b1:1b:4c:18:9a:68:72:4d:4d:f9:1e:3c:af:53:6f:
31:6b:72:f0:e2:55:7f:a8:9b:17:6b:c1:5a:54:58:
0f:4e:3a:ce:41:ae:a5:dc:b3:57:a1:8c:85:7e:94:
93:37:c1:be:7e:9e:49:b0:bb:f0:36:82:f6:11:cf:
06:e9:e8:66:69:87:f7:0f:fe:1a:7a:a8:7c:25:3c:
37:db:57:9d:73:c6:f7:4f:7d:2f:59:3c:13:06:ef:
4f:90:9a:69:87:6e:31:bd:67:b2:c7:b0:7e:df:b1:
1d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:92:10:DF:11:1B:5A:55:D9:4A:53:44:1F:5D:99:AA:00:EE:84:8B
X509v3 Authority Key Identifier:
keyid:3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/05IQ3xEbWlXZSlNEH12ZqgDuhIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/OyMEQv6un8Jri9iH-qDtAnWCelg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.140.64.0/18
Signature Algorithm: sha256WithRSAEncryption
47:27:de:00:ce:c1:fd:81:5f:c2:37:85:dc:8c:fd:88:3e:99:
2b:2a:af:6e:f5:b4:15:c9:ec:6b:de:7a:57:8f:60:60:f2:0f:
e3:28:a2:6e:3b:38:db:26:ad:44:6c:40:37:b3:11:91:fb:a9:
bd:eb:e9:7b:d0:51:8d:4a:40:20:ac:72:81:93:30:fd:67:ba:
01:ee:6e:84:a0:b7:ea:5a:56:63:b7:fa:fa:a0:de:33:95:2a:
62:55:15:17:9a:65:d7:e1:76:2c:9a:d3:a4:f5:3d:81:15:a9:
aa:c4:7c:a0:ad:82:af:48:d1:dd:d4:45:27:9c:6d:ee:41:bf:
4e:c8:e2:3b:2d:2b:32:3f:d8:5b:49:27:3a:2e:4b:6e:fb:ec:
ed:34:d9:b6:7f:dc:cb:e9:1d:e7:8b:26:c8:2f:1a:fa:51:76:
c0:a0:32:ac:10:bc:04:97:2a:65:c1:58:ef:20:91:16:cb:7f:
1c:31:e8:1b:c0:f2:13:49:bd:94:3f:8e:11:51:d0:b6:a8:42:
d3:0b:10:08:4c:33:01:0a:3e:8d:ba:9c:c3:84:23:91:47:75:
bc:ad:c1:4e:f8:0e:e4:e4:9b:b2:c9:ff:0e:8a:a3:d0:7e:60:
6a:9a:81:41:1d:2e:44:31:85:1c:77:88:52:3e:64:d5:35:0b:
ed:b6:53:3f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYmQhLhIGyndsWD/Ne9iwozMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMjMwNDQyZmVhZTlmYzI2YjhiZDg4N2ZhYTBlZDAyNzU4
MjdhNTgwHhcNMjMwMjA2MTAyNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzkyMTBkZjExMWI1YTU1ZDk0YTUzNDQxZjVkOTlhYTAwZWU4NDhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgt+eHT4Gby3YMQWJ3EaaGQXX+kO4
fUEjU9RaIgyvDM9T14dn8L0k3O034j+KTUkO5xeJrfhC1yM8x8HNKF+QNl9yjRp+
IzfSEz/ylb6MdirYDrFstwnZBrBPJ0NRi8EYzzyxneGyuDzL+XT4njArXFxBnlat
aM54ebH/YqxlbiwHd/Lzp0UwquDa5eU7s4iA9NCeqM6xG0wYmmhyTU35HjyvU28x
a3Lw4lV/qJsXa8FaVFgPTjrOQa6l3LNXoYyFfpSTN8G+fp5JsLvwNoL2Ec8G6ehm
aYf3D/4aeqh8JTw321edc8b3T30vWTwTBu9PkJpph24xvWeyx7B+37EdEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNOSEN8RG1pV2UpTRB9dmaoA7oSLMB8GA1UdIwQY
MBaAFDsjBEL+rp/Ca4vYh/qg7QJ1gnpYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3lNRVF2NnVuOEpyaTlpSC1xRHRBbldDZWxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8zYTEwOTQtOWI3MC00MjUxLWI2OGYt
NzI2NzA3Mzc2MWQ0LzEvMDVJUTN4RWJXbFhaU2xORUgxMlpxZ0R1aElzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8zYTEwOTQtOWI3MC00MjUxLWI2OGYtNzI2NzA3Mzc2MWQ0
LzEvT3lNRVF2NnVuOEpyaTlpSC1xRHRBbldDZWxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGToxAMA0G
CSqGSIb3DQEBCwUAA4IBAQBHJ94AzsH9gV/CN4XcjP2IPpkrKq9u9bQVyexr3npX
j2Bg8g/jKKJuOzjbJq1EbEA3sxGR+6m96+l70FGNSkAgrHKBkzD9Z7oB7m6EoLfq
WlZjt/r6oN4zlSpiVRUXmmXX4XYsmtOk9T2BFamqxHygrYKvSNHd1EUnnG3uQb9O
yOI7LSsyP9hbSSc6Lktu++ztNNm2f9zL6R3niybILxr6UXbAoDKsELwElyplwVjv
IJEWy38cMegbwPITSb2UP44RUdC2qELTCxAITDMBCj6NupzDhCORR3W8rcFO+A7k
5Juyyf8OiqPQfmBqmoFBHS5EMYUcd4hSPmTVNQvttlM/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:00 2024 by rpki-client on console-fra.rpki-client.org