Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/lGWFTLGoOogmBAQfw4lH44pJocM.roa
File: lGWFTLGoOogmBAQfw4lH44pJocM.roa (raw, json)
Hash identifier: 1cg+0bxCgkTQTeiGODQZhm8cMEyGzRg68SugvanxhfI=
Subject key identifier: 94:65:85:4C:B1:A8:3A:88:26:04:04:1F:C3:89:47:E3:8A:49:A1:C3
Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Certificate serial: 01857358925F78A9F3B71505A4051D608D75
Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/lGWFTLGoOogmBAQfw4lH44pJocM.roa
Signing time: Mon 02 Jan 2023 16:37:42 +0000
ROA not before: Mon 02 Jan 2023 16:37:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48931
IP address blocks: 89.42.38.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:58:92:5f:78:a9:f3:b7:15:05:a4:05:1d:60:8d:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Validity
Not Before: Jan 2 16:37:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9465854cb1a83a882604041fc38947e38a49a1c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:53:da:34:d5:5b:64:9d:76:4a:29:04:25:3d:
7e:97:24:ac:40:5b:a3:e9:ae:a8:17:99:3e:8c:bd:
f9:0b:11:81:03:69:bb:54:39:e7:37:c4:19:33:cb:
f0:ac:8b:2d:83:62:df:54:bf:65:1b:20:29:60:df:
d6:ff:cc:12:a6:e8:ab:e0:84:8a:b7:28:ad:1a:fb:
dc:b6:39:16:ba:a3:00:02:e8:e0:c2:ea:cb:b6:3e:
4e:9b:8a:ed:27:8b:12:34:9e:94:2d:4c:d6:b6:81:
a3:9c:19:b4:93:7d:e3:4d:6e:e9:ac:28:b6:63:4e:
00:ef:58:5a:4c:6c:0c:f0:22:f3:72:e9:a8:c7:f0:
73:56:10:19:9a:b6:58:29:36:bd:58:2a:80:56:5f:
24:62:67:98:a3:44:07:1d:ff:e0:7a:ba:75:bb:6e:
89:46:28:75:c7:08:0b:61:f9:e0:f7:f1:96:81:06:
11:4b:bf:e9:da:2b:14:67:91:c6:40:38:6b:bf:e4:
c3:d4:de:4f:a6:cd:f1:e3:49:aa:87:9f:37:29:98:
03:c6:ad:6c:18:0c:97:78:cf:05:59:75:eb:7c:c0:
ea:e0:0c:94:1a:4c:17:b3:73:88:fd:87:c6:bb:70:
57:b3:f9:24:c0:f8:09:be:a5:5a:1a:1c:bc:9c:6d:
db:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:65:85:4C:B1:A8:3A:88:26:04:04:1F:C3:89:47:E3:8A:49:A1:C3
X509v3 Authority Key Identifier:
keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/lGWFTLGoOogmBAQfw4lH44pJocM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.38.0/23
Signature Algorithm: sha256WithRSAEncryption
35:9a:85:68:36:ce:74:33:03:e5:6f:62:72:ef:96:23:4b:e2:
ef:99:98:1e:d3:41:3b:b8:86:7d:cf:18:eb:4b:19:d5:a1:a4:
a0:e5:30:b6:72:67:cf:3c:bc:eb:7a:a4:7e:39:69:46:a3:1c:
72:af:60:22:6b:27:ef:2e:80:02:cd:f7:83:8e:a9:d0:4f:50:
54:ec:9b:1e:e3:fa:65:16:da:6e:2d:e1:ee:09:b4:75:6f:ef:
bd:e9:76:17:c9:e1:08:1e:8a:43:09:d9:e0:2b:6c:fb:79:41:
f8:3b:b8:ca:8e:4f:bb:1b:d3:e7:9e:40:53:04:d4:a6:f3:f9:
5b:35:b0:61:79:b7:98:dc:db:73:7d:57:2b:15:10:82:17:3a:
5c:47:94:e8:ee:67:41:0c:75:6b:96:2d:06:85:cc:59:3d:49:
0e:4c:60:b7:fc:6b:2d:30:fb:6b:f2:79:ab:e3:e5:b5:8a:a1:
0f:19:39:9d:65:8a:b6:b7:d5:10:04:ef:27:20:22:7e:03:89:
d7:b4:64:b8:1d:18:f8:18:d9:19:6d:d0:68:93:4e:72:20:bb:
8f:ed:d1:ef:1c:05:d2:b4:6a:40:43:40:d5:1c:c0:d4:46:bf:
69:7a:b5:52:d2:f8:22:6a:52:6a:aa:5d:a1:33:43:30:e1:3e:
88:12:cd:c9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzWJJfeKnztxUFpAUdYI11MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNTQyZjVkZjNjMWFjYjg1N2ZkNTBlZWIwMTZlZWQwNzM4
NWZmOGMwHhcNMjMwMTAyMTYzNzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NDY1ODU0Y2IxYTgzYTg4MjYwNDA0MWZjMzg5NDdlMzhhNDlhMWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFPaNNVbZJ12SikEJT1+lySsQFuj
6a6oF5k+jL35CxGBA2m7VDnnN8QZM8vwrIstg2LfVL9lGyApYN/W/8wSpuir4ISK
tyitGvvctjkWuqMAAujgwurLtj5Om4rtJ4sSNJ6ULUzWtoGjnBm0k33jTW7prCi2
Y04A71haTGwM8CLzcumox/BzVhAZmrZYKTa9WCqAVl8kYmeYo0QHHf/gerp1u26J
Rih1xwgLYfng9/GWgQYRS7/p2isUZ5HGQDhrv+TD1N5Pps3x40mqh583KZgDxq1s
GAyXeM8FWXXrfMDq4AyUGkwXs3OI/YfGu3BXs/kkwPgJvqVaGhy8nG3bewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJRlhUyxqDqIJgQEH8OJR+OKSaHDMB8GA1UdIwQY
MBaAFJxUL13zway4V/1Q7rAW7tBzhf+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUt
MjVkYmY0MzgwNGM1LzEvbEdXRlRMR29Pb2dtQkFRZnc0bEg0NHBKb2NNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUtMjVkYmY0MzgwNGM1
LzEvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBWSomMA0G
CSqGSIb3DQEBCwUAA4IBAQA1moVoNs50MwPlb2Jy75YjS+LvmZge00E7uIZ9zxjr
SxnVoaSg5TC2cmfPPLzreqR+OWlGoxxyr2AiayfvLoACzfeDjqnQT1BU7Jse4/pl
FtpuLeHuCbR1b++96XYXyeEIHopDCdngK2z7eUH4O7jKjk+7G9PnnkBTBNSm8/lb
NbBhebeY3NtzfVcrFRCCFzpcR5To7mdBDHVrli0GhcxZPUkOTGC3/GstMPtr8nmr
4+W1iqEPGTmdZYq2t9UQBO8nICJ+A4nXtGS4HRj4GNkZbdBok05yILuP7dHvHAXS
tGpAQ0DVHMDURr9perVS0vgialJqql2hM0Mw4T6IEs3J
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:24 2024 by rpki-client on console-fra.rpki-client.org