Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/2we2q5ScJEZih_JX8L6XNcl7D2E.roa
File: 2we2q5ScJEZih_JX8L6XNcl7D2E.roa (raw, json)
Hash identifier: DN6rjp1rDI9Ci8oaoIU9NekWh0E8dwUgJkBEplRl1vs=
Subject key identifier: DB:07:B6:AB:94:9C:24:46:62:87:F2:57:F0:BE:97:35:C9:7B:0F:61
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 018D892FEC2342FF7B3D66649A1EF89DAFEE
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/2we2q5ScJEZih_JX8L6XNcl7D2E.roa
Signing time: Thu 08 Feb 2024 14:47:15 +0000
ROA not before: Thu 08 Feb 2024 14:47:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57844
IP address blocks: 77.83.154.0/23 maxlen: 23
139.28.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 22 Feb 2024 18:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:89:2f:ec:23:42:ff:7b:3d:66:64:9a:1e:f8:9d:af:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Feb 8 14:47:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db07b6ab949c24466287f257f0be9735c97b0f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0d:0e:e1:d1:1c:ad:d9:e1:95:50:e8:bf:6c:
c1:e7:d8:50:b9:05:8e:99:93:6f:6c:6b:94:4e:95:
f4:39:a5:e2:b3:8e:72:af:07:54:85:d6:f6:0f:17:
f7:ad:69:15:46:01:5d:f3:0d:2c:f7:89:f5:00:b7:
f9:4d:f0:e5:3d:84:4f:40:12:5e:8e:fd:df:2b:5c:
ad:5c:02:a7:82:52:58:21:38:30:1f:3e:4f:11:f2:
e9:75:15:03:ec:13:35:68:63:f0:53:eb:20:a2:5c:
1f:78:e7:16:38:50:9a:20:ed:b0:64:c4:58:84:8f:
cf:7c:48:b5:11:55:e1:b7:8c:d6:58:e2:c0:ba:52:
4c:ca:bb:6b:1c:9e:f3:28:40:ac:cb:92:05:01:3e:
20:e5:04:68:85:9f:37:04:b2:bc:ed:0e:d4:38:e3:
9d:27:af:fa:a4:e4:c9:45:b2:62:40:bf:e6:d6:a7:
48:93:ec:fc:e8:8d:39:3b:21:e7:d8:97:1b:4b:16:
df:9d:15:11:38:df:4a:79:dd:e4:2b:53:5c:cc:48:
8f:33:ce:41:a3:00:33:58:e2:f5:cd:06:97:e4:24:
c9:c1:f1:22:e3:ed:9b:49:19:35:5f:44:d5:b6:fe:
68:75:e2:0d:d7:23:7b:f0:88:46:4f:5e:3e:d2:7b:
e8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:07:B6:AB:94:9C:24:46:62:87:F2:57:F0:BE:97:35:C9:7B:0F:61
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/2we2q5ScJEZih_JX8L6XNcl7D2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.154.0/23
139.28.168.0/22
Signature Algorithm: sha256WithRSAEncryption
52:fd:1b:8f:a4:b2:9e:f7:03:6e:65:c5:e7:c9:af:1b:12:dd:
fe:16:c1:ed:d8:4a:4b:ab:5f:4c:e6:68:5a:8a:16:da:b9:c5:
0d:37:92:e9:03:9f:2d:81:bf:ab:f5:56:58:c3:12:6e:ae:57:
d5:ce:c9:68:3d:b0:d1:34:46:34:99:c0:3c:cb:c4:ff:31:6a:
53:ba:ca:7f:7c:6a:c9:a6:e0:00:7a:7b:68:81:31:3a:fa:21:
f5:8f:91:c5:03:94:a4:4f:91:9b:60:da:4e:87:43:8f:d7:3d:
70:ad:cd:23:13:a1:06:af:73:ee:c0:a8:f4:e7:26:d6:42:48:
29:28:c5:0c:36:d4:2c:e9:14:f9:14:f5:16:2d:c0:29:bc:aa:
bf:3a:39:65:12:77:d1:5c:67:d9:78:d5:b9:47:46:fe:79:a6:
f2:bc:61:ef:81:67:4b:24:d2:1b:50:f7:26:10:b0:d8:ed:d0:
d2:57:cd:66:0f:34:17:07:1f:6e:59:3b:16:49:bf:4a:6e:95:
b0:61:df:13:e0:27:cf:fa:d3:fa:14:af:d7:4c:f1:79:d1:7b:
2f:0f:9f:22:85:04:52:52:2f:12:c0:30:b9:9a:79:47:7a:90:
b7:d0:5b:52:05:b5:ef:8f:6b:71:c8:7a:d4:18:37:55:d7:c1:
5b:95:df:68
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY2JL+wjQv97PWZkmh74na/uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkYTI1YWFmZTNhOTg3MGU5NTI0YWZhMDI2NTk4N2VkNWE1
YTRkYTMwHhcNMjQwMjA4MTQ0NzE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjA3YjZhYjk0OWMyNDQ2NjI4N2YyNTdmMGJlOTczNWM5N2IwZjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkw0O4dEcrdnhlVDov2zB59hQuQWO
mZNvbGuUTpX0OaXis45yrwdUhdb2Dxf3rWkVRgFd8w0s94n1ALf5TfDlPYRPQBJe
jv3fK1ytXAKnglJYITgwHz5PEfLpdRUD7BM1aGPwU+sgolwfeOcWOFCaIO2wZMRY
hI/PfEi1EVXht4zWWOLAulJMyrtrHJ7zKECsy5IFAT4g5QRohZ83BLK87Q7UOOOd
J6/6pOTJRbJiQL/m1qdIk+z86I05OyHn2JcbSxbfnRURON9Ked3kK1NczEiPM85B
owAzWOL1zQaX5CTJwfEi4+2bSRk1X0TVtv5odeIN1yN78IhGT14+0nvoYwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNsHtquUnCRGYofyV/C+lzXJew9hMB8GA1UdIwQY
MBaAFK2iWq/jqYcOlSSvoCZZh+1aWk2jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmFKYXItT3BodzZWSkstZ0psbUg3VnBhVGFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS84MTBkMjQtYWNiZS00Y2IyLTlhYzUt
OWQ1ODc1ZDg2MzczLzEvMndlMnE1U2NKRVppaF9KWDhMNlhOY2w3RDJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS84MTBkMjQtYWNiZS00Y2IyLTlhYzUtOWQ1ODc1ZDg2Mzcz
LzEvcmFKYXItT3BodzZWSkstZ0psbUg3VnBhVGFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBTVOaAwQC
ixyoMA0GCSqGSIb3DQEBCwUAA4IBAQBS/RuPpLKe9wNuZcXnya8bEt3+FsHt2EpL
q19M5mhaihbaucUNN5LpA58tgb+r9VZYwxJurlfVzsloPbDRNEY0mcA8y8T/MWpT
usp/fGrJpuAAentogTE6+iH1j5HFA5SkT5GbYNpOh0OP1z1wrc0jE6EGr3PuwKj0
5ybWQkgpKMUMNtQs6RT5FPUWLcApvKq/OjllEnfRXGfZeNW5R0b+eabyvGHvgWdL
JNIbUPcmELDY7dDSV81mDzQXBx9uWTsWSb9KbpWwYd8T4CfP+tP6FK/XTPF50Xsv
D58ihQRSUi8SwDC5mnlHepC30FtSBbXvj2txyHrUGDdV18Fbld9o
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org