Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f997c8-df70-4d7f-b86d-192cb369423f/1/0wKcGfOeTTV7nbUxhlDyzcOHgis.roa
File: 0wKcGfOeTTV7nbUxhlDyzcOHgis.roa (raw, json)
Hash identifier: nr1SqaE+9Hyf69edeO1z6fdmqvQ0t+QBLbtpt4uCaF8=
Subject key identifier: D3:02:9C:19:F3:9E:4D:35:7B:9D:B5:31:86:50:F2:CD:C3:87:82:2B
Certificate issuer: /CN=f62e0e55e5c5a30ec04bd6dc46d154b3e4b7b5f5
Certificate serial: 01856CB8362A473E9554BDCA06583D583054
Authority key identifier: F6:2E:0E:55:E5:C5:A3:0E:C0:4B:D6:DC:46:D1:54:B3:E4:B7:B5:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9i4OVeXFow7AS9bcRtFUs-S3tfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f997c8-df70-4d7f-b86d-192cb369423f/1/0wKcGfOeTTV7nbUxhlDyzcOHgis.roa
Signing time: Sun 01 Jan 2023 09:44:49 +0000
ROA not before: Sun 01 Jan 2023 09:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201218
IP address blocks: 78.24.203.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:36:2a:47:3e:95:54:bd:ca:06:58:3d:58:30:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f62e0e55e5c5a30ec04bd6dc46d154b3e4b7b5f5
Validity
Not Before: Jan 1 09:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3029c19f39e4d357b9db5318650f2cdc387822b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bb:05:2c:db:60:11:e8:f0:e3:eb:a7:8b:1a:
e6:9e:d8:4f:68:10:e5:4a:e3:8a:62:63:22:c7:2a:
cf:6d:9a:d8:7f:d9:55:83:ab:b6:be:34:4c:03:7d:
9d:87:6d:5e:06:21:fa:05:eb:87:3c:1c:fc:2e:b7:
fe:19:e4:19:55:18:35:59:10:09:8d:46:22:e0:03:
90:49:64:a9:18:01:ae:79:b4:89:7d:29:70:f6:65:
78:90:02:f2:31:82:5f:95:34:ee:6d:e8:5e:3a:6a:
c5:b0:6d:ee:23:4f:54:e4:18:ee:88:b3:60:56:69:
44:44:11:7e:b9:91:58:b9:ce:4e:40:d4:b2:82:db:
27:77:3f:74:02:20:e7:15:14:ec:86:f9:46:3c:ba:
ff:47:ad:e5:d8:35:e4:d6:1d:ec:78:0c:96:e3:14:
41:16:0f:78:db:51:e4:af:28:18:6f:52:04:b2:67:
24:48:bd:d7:2f:35:b3:8d:5a:a2:76:81:76:14:06:
e1:ba:07:df:ee:d0:75:08:63:b0:7d:f8:6f:13:f1:
cc:19:78:53:8a:b5:2f:44:36:2d:1f:6e:c0:85:43:
24:a2:d4:8a:38:2a:9e:90:71:ab:8d:66:44:e6:bd:
d9:60:50:6c:03:60:f8:4c:3f:cc:0a:6a:f4:43:af:
b1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:02:9C:19:F3:9E:4D:35:7B:9D:B5:31:86:50:F2:CD:C3:87:82:2B
X509v3 Authority Key Identifier:
keyid:F6:2E:0E:55:E5:C5:A3:0E:C0:4B:D6:DC:46:D1:54:B3:E4:B7:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9i4OVeXFow7AS9bcRtFUs-S3tfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f997c8-df70-4d7f-b86d-192cb369423f/1/0wKcGfOeTTV7nbUxhlDyzcOHgis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f997c8-df70-4d7f-b86d-192cb369423f/1/9i4OVeXFow7AS9bcRtFUs-S3tfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.203.0/24
Signature Algorithm: sha256WithRSAEncryption
02:b0:2c:76:f4:ff:ee:28:02:c7:14:70:e2:e8:d9:2f:ad:a7:
9a:55:6c:0d:13:23:f3:34:ce:6b:4e:84:fd:c6:8d:c4:ed:34:
e9:d3:6f:ec:06:a6:f9:59:4c:4d:e7:24:3b:32:16:8d:cb:4f:
9d:3d:34:76:f4:b4:11:d5:c9:1d:46:f1:3e:34:db:ed:27:72:
80:02:bd:fc:1f:bb:19:15:7a:15:6a:7c:fd:ef:4a:e0:a2:86:
48:e8:58:fe:61:9b:20:c3:29:56:68:c8:b8:3c:d1:0a:f7:71:
b9:6f:6f:80:50:76:65:51:5a:3a:57:87:67:2f:f2:8e:99:76:
6e:45:89:1d:fb:02:71:aa:90:1e:df:a8:f9:35:47:bb:6f:4e:
98:19:64:05:68:e7:4b:f9:c2:67:5d:f9:87:b5:06:d8:45:22:
07:86:7b:e2:0d:d3:4a:5d:ac:eb:b0:da:65:d5:18:80:2d:31:
6e:c0:0c:2d:45:cd:fc:7c:92:4e:20:9e:48:43:31:d7:5b:c5:
eb:a0:cf:7b:9d:25:e6:51:4a:e6:c2:ec:89:50:94:71:94:8f:
91:01:d3:23:0f:f9:d3:fa:b3:e2:a8:3b:dd:b8:ed:3a:5a:6f:
fa:80:e3:0c:9d:94:19:85:3b:a2:98:90:1a:41:9f:73:ce:b7:
ba:60:63:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsuDYqRz6VVL3KBlg9WDBUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2MmUwZTU1ZTVjNWEzMGVjMDRiZDZkYzQ2ZDE1NGIzZTRi
N2I1ZjUwHhcNMjMwMTAxMDk0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzAyOWMxOWYzOWU0ZDM1N2I5ZGI1MzE4NjUwZjJjZGMzODc4MjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrsFLNtgEejw4+unixrmnthPaBDl
SuOKYmMixyrPbZrYf9lVg6u2vjRMA32dh21eBiH6BeuHPBz8Lrf+GeQZVRg1WRAJ
jUYi4AOQSWSpGAGuebSJfSlw9mV4kALyMYJflTTubeheOmrFsG3uI09U5BjuiLNg
VmlERBF+uZFYuc5OQNSygtsndz90AiDnFRTshvlGPLr/R63l2DXk1h3seAyW4xRB
Fg9421HkrygYb1IEsmckSL3XLzWzjVqidoF2FAbhugff7tB1CGOwffhvE/HMGXhT
irUvRDYtH27AhUMkotSKOCqekHGrjWZE5r3ZYFBsA2D4TD/MCmr0Q6+xpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNMCnBnznk01e521MYZQ8s3Dh4IrMB8GA1UdIwQY
MBaAFPYuDlXlxaMOwEvW3EbRVLPkt7X1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWk0T1ZlWEZvdzdBUzliY1J0RlVzLVMzdGZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mOTk3YzgtZGY3MC00ZDdmLWI4NmQt
MTkyY2IzNjk0MjNmLzEvMHdLY0dmT2VUVFY3bmJVeGhsRHl6Y09IZ2lzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9mOTk3YzgtZGY3MC00ZDdmLWI4NmQtMTkyY2IzNjk0MjNm
LzEvOWk0T1ZlWEZvdzdBUzliY1J0RlVzLVMzdGZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAThjLMA0G
CSqGSIb3DQEBCwUAA4IBAQACsCx29P/uKALHFHDi6NkvraeaVWwNEyPzNM5rToT9
xo3E7TTp02/sBqb5WUxN5yQ7MhaNy0+dPTR29LQR1ckdRvE+NNvtJ3KAAr38H7sZ
FXoVanz970rgooZI6Fj+YZsgwylWaMi4PNEK93G5b2+AUHZlUVo6V4dnL/KOmXZu
RYkd+wJxqpAe36j5NUe7b06YGWQFaOdL+cJnXfmHtQbYRSIHhnviDdNKXazrsNpl
1RiALTFuwAwtRc38fJJOIJ5IQzHXW8XroM97nSXmUUrmwuyJUJRxlI+RAdMjD/nT
+rPiqDvduO06Wm/6gOMMnZQZhTuimJAaQZ9zzre6YGMo
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:06 2024 by rpki-client on console-ams.rpki-client.org