Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/31L7ZZrFHWIzWkzNf6trfTpZX2c.roa
File: 31L7ZZrFHWIzWkzNf6trfTpZX2c.roa (raw, json)
Hash identifier: fqjhm7Pk+qUU8vkpCTkweoxPdsmgmanGdfrxW9WlKQU=
Subject key identifier: DF:52:FB:65:9A:C5:1D:62:33:5A:4C:CD:7F:AB:6B:7D:3A:59:5F:67
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 01856D3869CE1062FEFE20CCCD39D6C23E5D
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/31L7ZZrFHWIzWkzNf6trfTpZX2c.roa
Signing time: Sun 01 Jan 2023 12:04:51 +0000
ROA not before: Sun 01 Jan 2023 12:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 78.136.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:69:ce:10:62:fe:fe:20:cc:cd:39:d6:c2:3e:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Jan 1 12:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df52fb659ac51d62335a4ccd7fab6b7d3a595f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:00:0c:09:91:a0:de:83:d0:85:fc:4b:9e:8c:
c6:a8:b9:fb:d4:09:38:fb:3e:38:bc:6b:7f:84:a7:
54:a2:0c:41:8b:ae:60:22:52:ab:1d:e9:e4:93:30:
15:e5:3b:fc:29:77:dc:02:b4:07:16:ee:a4:5b:58:
85:bf:73:3c:be:62:06:1a:99:19:4f:04:da:ee:ee:
6b:a6:41:9e:ed:c5:b8:99:53:b7:76:a6:b5:31:6b:
3e:72:47:ad:b2:35:84:7e:ea:b5:dc:18:78:c8:33:
3a:fa:d0:da:e7:e4:6e:55:73:ec:b6:3d:97:82:d1:
f5:3e:1e:d8:72:99:8a:c4:6f:fb:7e:c8:ee:cb:83:
e2:ed:29:e8:62:76:3f:0f:85:8c:92:c4:99:4e:6b:
7b:55:a1:ae:9b:5d:f7:e5:eb:06:79:a2:95:3f:b6:
d6:3f:f7:e6:c2:90:37:e2:39:85:4f:e6:f0:d6:1f:
b0:c5:8d:4d:b5:b9:70:bd:99:0d:6a:4c:25:06:3f:
dd:bb:83:8e:a8:62:06:d2:43:f3:19:68:98:b3:73:
95:18:91:ee:f5:44:4c:c5:a5:dd:0b:95:d4:e0:07:
90:2f:87:9f:4f:41:25:b1:ec:af:fd:09:6e:24:1b:
d4:3f:9f:a8:79:fd:32:a8:6b:c3:06:6a:89:63:4a:
c1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:52:FB:65:9A:C5:1D:62:33:5A:4C:CD:7F:AB:6B:7D:3A:59:5F:67
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/31L7ZZrFHWIzWkzNf6trfTpZX2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.255.0/24
Signature Algorithm: sha256WithRSAEncryption
79:c4:b5:bf:40:69:9e:85:74:33:92:21:52:4f:1b:03:59:e5:
7d:34:02:be:74:f0:82:32:65:ab:5e:ca:f7:a1:fc:1c:18:81:
80:bf:87:99:1b:9e:50:83:85:5c:e9:fd:9b:13:87:93:87:3e:
fc:1d:5d:3f:ec:84:b5:79:5a:bc:75:57:38:0d:dd:71:6c:f2:
b2:a7:78:dc:88:64:29:54:37:93:0f:13:03:44:ca:f4:39:02:
74:70:12:81:83:b5:6d:cb:82:27:5e:40:a4:ab:d9:b6:d1:ae:
3d:f1:cd:c9:8a:9d:c9:9b:97:8b:dd:3e:c1:b6:88:b9:bd:72:
3d:f3:ed:6b:94:15:aa:b6:93:e1:13:ef:bc:be:16:8b:cd:00:
7a:04:6c:1a:90:b1:95:f7:88:a0:d2:6c:65:ae:29:08:c2:c5:
88:64:82:6b:f7:4f:5a:ec:33:11:d3:e1:b6:fb:73:c3:e4:0f:
b4:78:5a:15:21:dc:1f:aa:7a:f7:80:8a:48:7b:36:c1:c2:99:
43:db:7e:14:9f:b8:7f:03:25:6b:09:e9:03:8a:68:4e:eb:90:
e1:f8:e6:30:98:47:19:34:72:ab:ae:2e:16:66:72:20:be:8c:
25:f8:53:22:2e:ee:54:23:92:30:01:e7:5b:ac:eb:f9:2d:6b:
96:27:e1:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtOGnOEGL+/iDMzTnWwj5dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyOWMyNzMwOThiNTI3NjhjYTBlNDRhM2EyYzE2ZWZlZDRh
NjVjYTAwHhcNMjMwMTAxMTIwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjUyZmI2NTlhYzUxZDYyMzM1YTRjY2Q3ZmFiNmI3ZDNhNTk1ZjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAAMCZGg3oPQhfxLnozGqLn71Ak4
+z44vGt/hKdUogxBi65gIlKrHenkkzAV5Tv8KXfcArQHFu6kW1iFv3M8vmIGGpkZ
TwTa7u5rpkGe7cW4mVO3dqa1MWs+cketsjWEfuq13Bh4yDM6+tDa5+RuVXPstj2X
gtH1Ph7YcpmKxG/7fsjuy4Pi7SnoYnY/D4WMksSZTmt7VaGum1335esGeaKVP7bW
P/fmwpA34jmFT+bw1h+wxY1NtblwvZkNakwlBj/du4OOqGIG0kPzGWiYs3OVGJHu
9URMxaXdC5XU4AeQL4efT0Elseyv/QluJBvUP5+oef0yqGvDBmqJY0rBmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN9S+2WaxR1iM1pMzX+ra306WV9nMB8GA1UdIwQY
MBaAFFKcJzCYtSdoyg5Eo6LBbv7UplygMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXB3bk1KaTFKMmpLRGtTam9zRnVfdFNtWEtBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS82ZDkzNTktYWZlZi00NTM1LTljOTMt
ZjMzZDNiYjM2NDg0LzEvMzFMN1packZIV0l6V2t6TmY2dHJmVHBaWDJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS82ZDkzNTktYWZlZi00NTM1LTljOTMtZjMzZDNiYjM2NDg0
LzEvVXB3bk1KaTFKMmpLRGtTam9zRnVfdFNtWEtBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAToj/MA0G
CSqGSIb3DQEBCwUAA4IBAQB5xLW/QGmehXQzkiFSTxsDWeV9NAK+dPCCMmWrXsr3
ofwcGIGAv4eZG55Qg4Vc6f2bE4eThz78HV0/7IS1eVq8dVc4Dd1xbPKyp3jciGQp
VDeTDxMDRMr0OQJ0cBKBg7Vty4InXkCkq9m20a498c3Jip3Jm5eL3T7Btoi5vXI9
8+1rlBWqtpPhE++8vhaLzQB6BGwakLGV94ig0mxlrikIwsWIZIJr909a7DMR0+G2
+3PD5A+0eFoVIdwfqnr3gIpIezbBwplD234Un7h/AyVrCekDimhO65Dh+OYwmEcZ
NHKrri4WZnIgvowl+FMiLu5UI5IwAedbrOv5LWuWJ+E4
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:07 2023 by rpki-client on console-ams.rpki-client.org