Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/c52293-0678-4b42-8ae0-4891653eeb67/1/83mPJx3pG3W03_9tLefYd5tFlXM.roa
File: 83mPJx3pG3W03_9tLefYd5tFlXM.roa (raw, json)
Hash identifier: p8GJvzt7eHFfeX4OTU6PcfsYeGtb+4a5NCNpA5IEIho=
Subject key identifier: F3:79:8F:27:1D:E9:1B:75:B4:DF:FF:6D:2D:E7:D8:77:9B:45:95:73
Certificate issuer: /CN=e78ba5d98d48cebd5ad04c08bf09082b12a7e3ab
Certificate serial: 0186B748672E3A038C1DFD7A52E0C8AE3D45
Authority key identifier: E7:8B:A5:D9:8D:48:CE:BD:5A:D0:4C:08:BF:09:08:2B:12:A7:E3:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/54ul2Y1Izr1a0EwIvwkIKxKn46s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/c52293-0678-4b42-8ae0-4891653eeb67/1/83mPJx3pG3W03_9tLefYd5tFlXM.roa
Signing time: Mon 06 Mar 2023 14:17:00 +0000
ROA not before: Mon 06 Mar 2023 14:17:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 77.81.0.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b7:48:67:2e:3a:03:8c:1d:fd:7a:52:e0:c8:ae:3d:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e78ba5d98d48cebd5ad04c08bf09082b12a7e3ab
Validity
Not Before: Mar 6 14:17:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3798f271de91b75b4dfff6d2de7d8779b459573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:08:57:ac:e1:47:16:c5:ed:63:71:ad:e3:48:
a8:f7:c5:69:7d:57:46:b5:0e:13:a2:cb:fd:bd:09:
8e:4a:c4:8f:0d:e7:71:75:66:d9:d6:6a:08:83:27:
af:b2:6b:7d:8d:18:c8:6a:d5:62:c1:6a:cc:f5:18:
77:77:23:7c:7b:90:fd:30:3b:c9:8a:1b:b7:6a:4d:
34:50:c6:2c:89:2b:f9:ca:5f:48:e7:22:6b:b8:f9:
84:bd:2f:b5:07:99:78:12:76:21:79:dc:dc:15:2a:
82:8e:d0:c3:19:d9:1b:d8:24:cb:27:6f:e1:c4:14:
d1:da:33:bc:6f:96:80:8b:13:dd:6d:37:f3:1d:1d:
ba:1f:fe:0f:02:f6:2b:38:63:dd:1e:33:d9:cb:85:
26:0a:65:ea:14:78:47:5b:9d:98:05:22:71:2d:1d:
6e:9d:9d:c9:e7:f5:73:0f:08:e2:6f:81:e7:8f:31:
72:50:a5:ef:e7:87:8a:e6:87:b0:86:42:8b:b0:26:
c1:ba:62:d6:fb:66:63:3a:ca:64:df:b0:26:c4:c4:
5b:41:26:d6:87:a5:d7:e7:54:b3:29:f3:d0:bd:53:
32:1b:05:9e:29:6c:ff:6f:b2:27:77:01:0f:f5:4a:
b5:e1:7c:34:85:fb:0e:77:b6:c6:57:61:27:bb:2e:
96:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:79:8F:27:1D:E9:1B:75:B4:DF:FF:6D:2D:E7:D8:77:9B:45:95:73
X509v3 Authority Key Identifier:
keyid:E7:8B:A5:D9:8D:48:CE:BD:5A:D0:4C:08:BF:09:08:2B:12:A7:E3:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/54ul2Y1Izr1a0EwIvwkIKxKn46s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c52293-0678-4b42-8ae0-4891653eeb67/1/83mPJx3pG3W03_9tLefYd5tFlXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c52293-0678-4b42-8ae0-4891653eeb67/1/54ul2Y1Izr1a0EwIvwkIKxKn46s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.0.0/24
Signature Algorithm: sha256WithRSAEncryption
14:14:b9:ae:53:bd:e4:53:fa:10:8d:42:ad:f1:64:8d:25:ce:
36:06:77:26:ef:e5:b7:a7:2c:b0:0a:59:32:f4:54:d6:84:c9:
bd:d1:f2:ed:74:d6:08:a6:f1:64:b8:9d:22:3f:2f:40:5d:da:
02:a1:e2:b2:fa:3f:10:6f:9d:35:0f:99:bc:f4:ad:cd:9f:a2:
e0:4a:4b:a5:13:b1:a1:ba:77:2a:6e:33:52:46:1d:08:c2:6a:
24:97:cd:f5:97:45:82:68:ad:c7:c2:17:b7:3c:89:4f:31:62:
a1:eb:07:f3:0b:35:20:2e:bd:0c:dc:25:2b:e9:54:1c:8b:b8:
0a:e5:3b:d3:1f:03:bf:66:b6:d8:a7:fa:1e:10:83:90:ab:af:
17:46:a7:d0:7f:a4:14:85:60:18:03:8d:f4:e9:48:b9:49:10:
1a:9a:f9:ea:61:b6:dd:28:99:55:97:ed:96:ed:58:12:d8:ed:
74:41:13:88:4c:39:69:ad:69:88:e6:29:80:57:64:8b:d3:d7:
5c:4a:a7:0d:e7:8c:eb:62:d1:2f:78:62:c0:37:d4:ce:91:d1:
c3:ff:94:d7:e8:17:a3:c3:86:70:dd:1d:21:f5:a9:09:24:8a:
0b:10:b4:99:9a:4a:e1:f2:0b:46:55:1e:06:50:f3:71:2b:28:
9a:c4:10:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYa3SGcuOgOMHf16UuDIrj1FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3OGJhNWQ5OGQ0OGNlYmQ1YWQwNGMwOGJmMDkwODJiMTJh
N2UzYWIwHhcNMjMwMzA2MTQxNzAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzc5OGYyNzFkZTkxYjc1YjRkZmZmNmQyZGU3ZDg3NzliNDU5NTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAhXrOFHFsXtY3Gt40io98VpfVdG
tQ4Tosv9vQmOSsSPDedxdWbZ1moIgyevsmt9jRjIatViwWrM9Rh3dyN8e5D9MDvJ
ihu3ak00UMYsiSv5yl9I5yJruPmEvS+1B5l4EnYhedzcFSqCjtDDGdkb2CTLJ2/h
xBTR2jO8b5aAixPdbTfzHR26H/4PAvYrOGPdHjPZy4UmCmXqFHhHW52YBSJxLR1u
nZ3J5/VzDwjib4HnjzFyUKXv54eK5oewhkKLsCbBumLW+2ZjOspk37AmxMRbQSbW
h6XX51SzKfPQvVMyGwWeKWz/b7IndwEP9Uq14Xw0hfsOd7bGV2Enuy6WqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPN5jycd6Rt1tN//bS3n2HebRZVzMB8GA1UdIwQY
MBaAFOeLpdmNSM69WtBMCL8JCCsSp+OrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTR1bDJZMUl6cjFhMEV3SXZ3a0lLeEtuNDZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9jNTIyOTMtMDY3OC00YjQyLThhZTAt
NDg5MTY1M2VlYjY3LzEvODNtUEp4M3BHM1cwM185dExlZllkNXRGbFhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9jNTIyOTMtMDY3OC00YjQyLThhZTAtNDg5MTY1M2VlYjY3
LzEvNTR1bDJZMUl6cjFhMEV3SXZ3a0lLeEtuNDZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVEAMA0G
CSqGSIb3DQEBCwUAA4IBAQAUFLmuU73kU/oQjUKt8WSNJc42Bncm7+W3pyywClky
9FTWhMm90fLtdNYIpvFkuJ0iPy9AXdoCoeKy+j8Qb501D5m89K3Nn6LgSkulE7Gh
uncqbjNSRh0Iwmokl831l0WCaK3Hwhe3PIlPMWKh6wfzCzUgLr0M3CUr6VQci7gK
5TvTHwO/ZrbYp/oeEIOQq68XRqfQf6QUhWAYA4306Ui5SRAamvnqYbbdKJlVl+2W
7VgS2O10QROITDlprWmI5imAV2SL09dcSqcN54zrYtEveGLAN9TOkdHD/5TX6Bej
w4Zw3R0h9akJJIoLELSZmkrh8gtGVR4GUPNxKyiaxBCp
-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:37 2024 by rpki-client on console-ams.rpki-client.org