Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/bFCoJlkyAsg8Dq2vcplkK6wl3mM.roa
File: bFCoJlkyAsg8Dq2vcplkK6wl3mM.roa (raw, json)
Hash identifier: SvisCYevSk3ZBSx/K/NHU6s712yhehzFbiRuzoHvoCM=
Subject key identifier: 6C:50:A8:26:59:32:02:C8:3C:0E:AD:AF:72:99:64:2B:AC:25:DE:63
Certificate issuer: /CN=af0dc12b0f1b533d8d04ec6117d6b9e512fcaa9f
Certificate serial: 01856FC296E7DBF9C2A8B58987AB0FE4579E
Authority key identifier: AF:0D:C1:2B:0F:1B:53:3D:8D:04:EC:61:17:D6:B9:E5:12:FC:AA:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rw3BKw8bUz2NBOxhF9a55RL8qp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/bFCoJlkyAsg8Dq2vcplkK6wl3mM.roa
Signing time: Sun 01 Jan 2023 23:55:01 +0000
ROA not before: Sun 01 Jan 2023 23:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34762
IP address blocks: 213.158.94.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Oct 2023 14:52:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:96:e7:db:f9:c2:a8:b5:89:87:ab:0f:e4:57:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af0dc12b0f1b533d8d04ec6117d6b9e512fcaa9f
Validity
Not Before: Jan 1 23:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c50a826593202c83c0eadaf7299642bac25de63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:18:ef:91:1f:71:98:00:98:fe:92:45:c4:0a:
c1:03:5e:55:c2:5e:b3:12:15:4f:41:fb:56:40:1c:
52:0b:be:ec:5a:80:5e:3e:a5:ba:af:e6:8c:4a:e7:
5f:00:92:f1:c5:93:1b:a6:44:fc:c5:e7:5c:ea:fc:
a2:42:bf:8a:dc:3a:91:d4:e3:cf:5b:e5:64:15:00:
07:6b:db:70:30:a4:54:75:53:f8:24:6d:ce:27:55:
70:88:41:e3:a7:2a:48:74:1d:52:b6:76:97:b9:99:
67:9a:92:ff:c7:fe:6b:50:a1:2f:e8:78:b5:7d:c8:
59:fb:3e:24:c2:73:0b:fb:d1:6b:fd:0c:df:96:9a:
c5:07:74:5e:29:96:10:96:1b:03:ee:68:06:e5:e8:
58:32:d3:5e:86:f7:cc:0a:ad:86:4e:4f:2d:b0:2e:
ed:45:5f:7d:e6:3f:b6:7e:ad:c2:62:7d:0a:93:1f:
2a:8b:68:ed:72:1a:a8:bf:d7:00:18:fc:3d:7c:46:
8e:aa:32:05:2c:a7:46:13:e8:5a:13:4c:61:22:2c:
11:42:35:fc:bf:c8:9b:fd:ad:1e:39:fc:db:ec:6f:
17:8f:1f:ee:8b:98:7d:da:91:5d:89:92:29:47:da:
ee:31:68:27:5a:84:5a:38:99:96:30:c7:26:69:ed:
20:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:50:A8:26:59:32:02:C8:3C:0E:AD:AF:72:99:64:2B:AC:25:DE:63
X509v3 Authority Key Identifier:
keyid:AF:0D:C1:2B:0F:1B:53:3D:8D:04:EC:61:17:D6:B9:E5:12:FC:AA:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rw3BKw8bUz2NBOxhF9a55RL8qp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/bFCoJlkyAsg8Dq2vcplkK6wl3mM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/rw3BKw8bUz2NBOxhF9a55RL8qp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.158.94.0/23
Signature Algorithm: sha256WithRSAEncryption
21:cd:c3:2f:41:03:97:25:46:1b:be:ec:74:7f:15:c2:93:b6:
80:e8:2c:84:a8:f4:ca:1a:3d:18:74:fa:26:84:0e:f2:fc:91:
eb:1e:7a:f8:27:0c:c5:9d:d2:97:65:4a:ae:45:50:16:4a:36:
fc:18:bb:79:39:72:b5:8d:bf:9c:d4:bd:ad:ed:3d:15:44:8c:
6e:e0:fa:2a:89:74:dd:09:06:3b:1e:ff:71:c1:fa:85:34:00:
9b:44:78:f0:77:34:d7:93:12:a3:39:81:6b:49:a9:90:dc:68:
51:31:b8:fb:a2:a3:a9:75:9a:92:67:e2:9d:6e:67:40:80:e9:
45:d9:b5:f3:12:3b:7f:65:bb:3c:44:df:be:88:37:aa:52:d2:
5a:1f:1a:ab:0f:bd:be:9f:99:b5:55:d9:72:ce:97:cd:62:a4:
85:aa:2c:ca:e3:69:4a:a5:3d:5c:4c:58:58:a1:3a:40:1f:7b:
78:86:d0:ab:97:87:80:c1:65:c3:99:9e:00:69:d8:f5:7b:0f:
f7:10:87:95:5d:16:81:e9:84:a3:a7:72:e4:89:b9:bf:e8:3b:
b2:89:b3:7f:79:b1:04:1d:e1:42:0b:7a:ba:2d:34:ee:44:a8:
2f:78:de:a0:fd:48:15:2e:b6:9e:88:a7:cc:53:dd:dc:b3:50:
27:ed:76:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvwpbn2/nCqLWJh6sP5FeeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMGRjMTJiMGYxYjUzM2Q4ZDA0ZWM2MTE3ZDZiOWU1MTJm
Y2FhOWYwHhcNMjMwMTAxMjM1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzUwYTgyNjU5MzIwMmM4M2MwZWFkYWY3Mjk5NjQyYmFjMjVkZTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgxjvkR9xmACY/pJFxArBA15Vwl6z
EhVPQftWQBxSC77sWoBePqW6r+aMSudfAJLxxZMbpkT8xedc6vyiQr+K3DqR1OPP
W+VkFQAHa9twMKRUdVP4JG3OJ1VwiEHjpypIdB1StnaXuZlnmpL/x/5rUKEv6Hi1
fchZ+z4kwnML+9Fr/QzflprFB3ReKZYQlhsD7mgG5ehYMtNehvfMCq2GTk8tsC7t
RV995j+2fq3CYn0Kkx8qi2jtchqov9cAGPw9fEaOqjIFLKdGE+haE0xhIiwRQjX8
v8ib/a0eOfzb7G8Xjx/ui5h92pFdiZIpR9ruMWgnWoRaOJmWMMcmae0gxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGxQqCZZMgLIPA6tr3KZZCusJd5jMB8GA1UdIwQY
MBaAFK8NwSsPG1M9jQTsYRfWueUS/KqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnczQkt3OGJVejJOQk94aEY5YTU1Ukw4cXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9jMzE3NGEtYTc5NC00NGVlLThkMjYt
YmM1YjY5MTQ0NTg3LzEvYkZDb0psa3lBc2c4RHEydmNwbGtLNndsM21NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi9jMzE3NGEtYTc5NC00NGVlLThkMjYtYmM1YjY5MTQ0NTg3
LzEvcnczQkt3OGJVejJOQk94aEY5YTU1Ukw4cXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB1Z5eMA0G
CSqGSIb3DQEBCwUAA4IBAQAhzcMvQQOXJUYbvux0fxXCk7aA6CyEqPTKGj0YdPom
hA7y/JHrHnr4JwzFndKXZUquRVAWSjb8GLt5OXK1jb+c1L2t7T0VRIxu4PoqiXTd
CQY7Hv9xwfqFNACbRHjwdzTXkxKjOYFrSamQ3GhRMbj7oqOpdZqSZ+KdbmdAgOlF
2bXzEjt/Zbs8RN++iDeqUtJaHxqrD72+n5m1VdlyzpfNYqSFqizK42lKpT1cTFhY
oTpAH3t4htCrl4eAwWXDmZ4Aadj1ew/3EIeVXRaB6YSjp3Lkibm/6DuyibN/ebEE
HeFCC3q6LTTuRKgveN6g/UgVLraeiKfMU93cs1An7XaT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:04 2024 by rpki-client on console-fra.rpki-client.org