Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/RArFi1urzEvrKnl7f50Y8rSYDFQ.roa
File: RArFi1urzEvrKnl7f50Y8rSYDFQ.roa (raw, json)
Hash identifier: Y/7FkaQVIAE0ZhiMEDRgsTVJZ+C7J/prypZsOzJWq4I=
Subject key identifier: 44:0A:C5:8B:5B:AB:CC:4B:EB:2A:79:7B:7F:9D:18:F2:B4:98:0C:54
Certificate issuer: /CN=c9769bfa59865d0c9593262881807db13f4bb87a
Certificate serial: 01856DDD34C1D6B811A8755862F43AD93D02
Authority key identifier: C9:76:9B:FA:59:86:5D:0C:95:93:26:28:81:80:7D:B1:3F:4B:B8:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yXab-lmGXQyVkyYogYB9sT9LuHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/RArFi1urzEvrKnl7f50Y8rSYDFQ.roa
Signing time: Sun 01 Jan 2023 15:04:51 +0000
ROA not before: Sun 01 Jan 2023 15:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 80.71.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:34:c1:d6:b8:11:a8:75:58:62:f4:3a:d9:3d:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9769bfa59865d0c9593262881807db13f4bb87a
Validity
Not Before: Jan 1 15:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=440ac58b5babcc4beb2a797b7f9d18f2b4980c54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8f:2a:6e:5c:41:37:59:d1:2e:78:41:f9:43:
90:7e:e8:87:15:52:df:7b:45:7d:09:a6:f7:2a:64:
95:c4:c7:a5:46:5a:9b:03:ea:03:00:e0:c6:94:56:
73:1d:f5:d9:1d:c5:1f:eb:7f:65:65:f4:d5:f1:39:
5a:15:d9:8d:d6:a4:fb:83:01:e6:42:92:4c:0b:bf:
c6:ed:f9:4b:77:9c:bd:26:1a:e5:29:11:b1:23:1c:
30:d6:e3:f1:59:da:16:86:00:f6:c9:65:a6:02:12:
e7:eb:ba:ed:1d:1c:03:c2:cf:9b:bb:9c:52:ba:b8:
ed:12:52:50:62:f7:86:c9:fc:f9:b7:75:fc:af:a5:
17:50:5d:b1:90:5a:e3:13:1a:18:0f:64:13:e9:24:
2f:2b:20:fb:05:72:8c:6d:90:12:b1:7e:85:fb:a9:
b9:f6:bb:05:58:6b:89:73:f0:3c:1f:56:9b:91:19:
cb:c5:be:0c:60:72:33:a6:94:f7:42:42:62:30:e1:
e2:f9:ff:f8:4a:25:c6:95:8a:f9:10:ec:1f:d4:d6:
6a:50:fa:16:49:68:6c:ec:91:95:a1:77:01:ac:76:
ea:34:56:4a:3e:1a:8e:e3:16:62:76:07:78:73:ee:
e2:11:16:65:2e:67:4d:22:61:18:db:0a:15:12:0e:
b5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:0A:C5:8B:5B:AB:CC:4B:EB:2A:79:7B:7F:9D:18:F2:B4:98:0C:54
X509v3 Authority Key Identifier:
keyid:C9:76:9B:FA:59:86:5D:0C:95:93:26:28:81:80:7D:B1:3F:4B:B8:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yXab-lmGXQyVkyYogYB9sT9LuHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/RArFi1urzEvrKnl7f50Y8rSYDFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/yXab-lmGXQyVkyYogYB9sT9LuHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.144.0/24
Signature Algorithm: sha256WithRSAEncryption
21:e3:55:71:68:7a:91:2d:28:d1:2e:84:5a:f1:18:ef:9e:d4:
cf:7b:da:ce:eb:ce:80:19:1d:3d:9c:7b:9a:e8:4c:f4:c4:78:
83:0d:56:19:62:17:34:57:67:47:78:01:0d:18:f1:e6:a8:5a:
74:d2:8e:6c:20:f3:10:45:25:88:61:81:eb:09:25:41:95:5c:
3d:10:f7:ec:67:2b:0a:18:18:99:0b:bf:6e:b9:e0:63:aa:9b:
1e:13:87:dd:04:6d:4e:50:4e:98:33:61:f0:20:6a:1b:6c:6d:
98:ec:6e:e8:9d:cf:fd:aa:2d:df:94:14:9c:af:bf:02:78:82:
ca:0c:d7:db:f1:29:cb:72:b9:bf:2c:35:14:fa:b3:e5:3b:87:
77:99:a3:57:d5:fc:97:00:89:08:0c:c2:0c:10:4f:57:0c:04:
53:be:7d:80:14:7b:17:0d:76:6b:01:b3:3c:6c:4f:d0:6d:c0:
29:88:a6:84:0a:50:7d:19:75:6c:6a:68:0d:63:e9:e6:0b:cc:
d8:56:5b:05:6e:d9:1d:12:b0:18:09:89:82:29:71:bb:25:ec:
27:53:f8:ef:2c:ed:aa:45:0d:05:ef:1c:ec:02:ae:30:b6:6d:
88:eb:70:6d:f4:48:6e:39:c3:ee:11:eb:56:f6:ce:fa:7e:24:
9c:bc:46:74
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt3TTB1rgRqHVYYvQ62T0CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5NzY5YmZhNTk4NjVkMGM5NTkzMjYyODgxODA3ZGIxM2Y0
YmI4N2EwHhcNMjMwMTAxMTUwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDBhYzU4YjViYWJjYzRiZWIyYTc5N2I3ZjlkMThmMmI0OTgwYzU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvI8qblxBN1nRLnhB+UOQfuiHFVLf
e0V9Cab3KmSVxMelRlqbA+oDAODGlFZzHfXZHcUf639lZfTV8TlaFdmN1qT7gwHm
QpJMC7/G7flLd5y9JhrlKRGxIxww1uPxWdoWhgD2yWWmAhLn67rtHRwDws+bu5xS
urjtElJQYveGyfz5t3X8r6UXUF2xkFrjExoYD2QT6SQvKyD7BXKMbZASsX6F+6m5
9rsFWGuJc/A8H1abkRnLxb4MYHIzppT3QkJiMOHi+f/4SiXGlYr5EOwf1NZqUPoW
SWhs7JGVoXcBrHbqNFZKPhqO4xZidgd4c+7iERZlLmdNImEY2woVEg61twIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEQKxYtbq8xL6yp5e3+dGPK0mAxUMB8GA1UdIwQY
MBaAFMl2m/pZhl0MlZMmKIGAfbE/S7h6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVhhYi1sbUdYUXlWa3lZb2dZQjlzVDlMdUhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iYjc1MDctMjI2MS00ZWRhLWE1OTIt
ZjdlYzQwZTZhMDQ5LzEvUkFyRmkxdXJ6RXZyS25sN2Y1MFk4clNZREZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9iYjc1MDctMjI2MS00ZWRhLWE1OTItZjdlYzQwZTZhMDQ5
LzEveVhhYi1sbUdYUXlWa3lZb2dZQjlzVDlMdUhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEeQMA0G
CSqGSIb3DQEBCwUAA4IBAQAh41VxaHqRLSjRLoRa8RjvntTPe9rO686AGR09nHua
6Ez0xHiDDVYZYhc0V2dHeAENGPHmqFp00o5sIPMQRSWIYYHrCSVBlVw9EPfsZysK
GBiZC79uueBjqpseE4fdBG1OUE6YM2HwIGobbG2Y7G7onc/9qi3flBScr78CeILK
DNfb8SnLcrm/LDUU+rPlO4d3maNX1fyXAIkIDMIMEE9XDARTvn2AFHsXDXZrAbM8
bE/QbcApiKaEClB9GXVsamgNY+nmC8zYVlsFbtkdErAYCYmCKXG7JewnU/jvLO2q
RQ0F7xzsAq4wtm2I63Bt9EhuOcPuEetW9s76fiScvEZ0
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:43 2023 by rpki-client on console-ams.rpki-client.org