Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/5F2yg8y0iOJIrxqkSUnpu6z36tA.roa
File: 5F2yg8y0iOJIrxqkSUnpu6z36tA.roa (raw, json)
Hash identifier: /MQx7WgqzznJ7CJIAwOKYSyfyWejPaF8hHzBA2j+AIA=
Subject key identifier: E4:5D:B2:83:CC:B4:88:E2:48:AF:1A:A4:49:49:E9:BB:AC:F7:EA:D0
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 01865F0E9984A25CEFF139B407EEE4356312
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/5F2yg8y0iOJIrxqkSUnpu6z36tA.roa
Signing time: Fri 17 Feb 2023 11:07:17 +0000
ROA not before: Fri 17 Feb 2023 11:07:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210644
IP address blocks: 77.73.131.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5f:0e:99:84:a2:5c:ef:f1:39:b4:07:ee:e4:35:63:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Feb 17 11:07:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e45db283ccb488e248af1aa44949e9bbacf7ead0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e0:64:f4:30:db:01:6a:a0:87:07:e8:d0:93:
72:ea:96:8d:cd:ef:10:65:ce:4c:ae:a4:e2:4b:9d:
24:00:97:88:eb:ab:c9:69:75:e6:21:67:cc:56:62:
fa:77:4f:43:fc:ac:b4:df:c7:a7:18:26:8d:35:9d:
fe:d8:43:56:00:11:dc:3a:2a:1a:b4:59:d4:ee:c5:
c1:5c:a4:1e:c0:f3:86:70:bd:44:00:d3:42:dd:44:
04:2e:36:b2:96:7c:4e:37:f8:3a:84:01:c6:af:25:
fd:31:41:1f:03:06:0e:57:74:79:0e:c9:ea:5d:3a:
7d:4b:4a:7d:bb:1c:1d:25:16:99:e2:56:0a:40:80:
e3:3d:24:21:bc:3a:cd:ed:34:e7:e7:13:33:81:72:
0a:5f:64:b1:34:1b:f1:b0:47:75:78:e7:ab:70:ca:
09:60:b7:79:73:d5:35:83:e6:3b:5d:75:b7:e5:7a:
5b:7d:a9:28:d3:ee:5a:c9:c5:30:a9:80:0e:d4:ca:
2e:63:55:57:46:e8:b3:c0:1a:2c:03:d1:3f:bb:2b:
67:b2:75:55:ed:2b:de:70:f1:6f:19:b0:8b:72:30:
66:70:00:bf:0c:c7:b2:5d:08:15:30:26:1c:17:ba:
e6:2f:dd:6a:b6:f3:97:c3:df:5c:6b:fb:a7:f7:d4:
ec:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5D:B2:83:CC:B4:88:E2:48:AF:1A:A4:49:49:E9:BB:AC:F7:EA:D0
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/5F2yg8y0iOJIrxqkSUnpu6z36tA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.131.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:0c:c2:4f:ce:31:42:50:78:19:7e:f6:53:5e:6f:71:34:9a:
21:e4:4c:8f:01:70:0b:8a:96:8c:69:51:41:41:f4:22:7b:75:
13:30:31:54:d7:14:c2:69:b0:7d:df:37:90:04:a8:06:02:91:
63:2f:a3:b3:c2:47:2c:b6:d4:9c:55:7b:a1:6b:4f:a9:c0:f6:
48:65:28:df:57:87:1c:a1:23:0a:43:34:59:f9:6a:0a:53:9d:
e4:92:f3:ba:be:ec:47:d0:0f:79:41:f5:b1:af:93:47:4e:1a:
5a:db:d8:27:8a:a9:86:b8:48:6b:08:fa:c9:ae:aa:6f:27:d7:
3f:ad:51:56:0b:67:ac:32:14:17:3e:42:fb:92:1a:5e:c1:17:
4f:6b:83:63:36:2e:03:e8:28:62:dc:b6:c2:37:8f:e2:aa:d6:
d9:54:49:47:ff:5f:fa:61:29:0d:ef:35:a8:db:6c:1a:52:db:
da:8b:a4:51:9b:45:d9:52:fb:5f:a1:9e:21:bd:f5:1b:23:59:
b2:f7:55:94:0d:01:83:2a:58:10:55:9b:f0:a6:2e:17:6b:ac:
b1:1b:1a:1e:bf:4e:39:4a:e9:14:9d:ef:ee:6b:6c:dc:09:8c:
a3:f5:93:15:d9:bf:ce:73:96:b2:82:44:98:f8:80:4f:83:34:
0b:ed:25:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZfDpmEolzv8Tm0B+7kNWMSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmZmExM2YxYWUwNTM5MTYyODBlYzY4ZWUxYjA5NzZmOWVi
ZDNlYTgwHhcNMjMwMjE3MTEwNzE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDVkYjI4M2NjYjQ4OGUyNDhhZjFhYTQ0OTQ5ZTliYmFjZjdlYWQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueBk9DDbAWqghwfo0JNy6paNze8Q
Zc5MrqTiS50kAJeI66vJaXXmIWfMVmL6d09D/Ky038enGCaNNZ3+2ENWABHcOioa
tFnU7sXBXKQewPOGcL1EANNC3UQELjaylnxON/g6hAHGryX9MUEfAwYOV3R5Dsnq
XTp9S0p9uxwdJRaZ4lYKQIDjPSQhvDrN7TTn5xMzgXIKX2SxNBvxsEd1eOercMoJ
YLd5c9U1g+Y7XXW35Xpbfako0+5aycUwqYAO1MouY1VXRuizwBosA9E/uytnsnVV
7SvecPFvGbCLcjBmcAC/DMeyXQgVMCYcF7rmL91qtvOXw99ca/un99TsgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFORdsoPMtIjiSK8apElJ6bus9+rQMB8GA1UdIwQY
MBaAFK/6E/GuBTkWKA7GjuGwl2+evT6oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcl9vVDhhNEZPUllvRHNhTzRiQ1hiNTY5UHFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9hM2MwYTQtMzE5MS00ZTUxLThkODAt
NDc4YzJjOGNiMmEwLzEvNUYyeWc4eTBpT0pJcnhxa1NVbnB1NnozNnRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9hM2MwYTQtMzE5MS00ZTUxLThkODAtNDc4YzJjOGNiMmEw
LzEvcl9vVDhhNEZPUllvRHNhTzRiQ1hiNTY5UHFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUmDMA0G
CSqGSIb3DQEBCwUAA4IBAQDIDMJPzjFCUHgZfvZTXm9xNJoh5EyPAXALipaMaVFB
QfQie3UTMDFU1xTCabB93zeQBKgGApFjL6OzwkcsttScVXuha0+pwPZIZSjfV4cc
oSMKQzRZ+WoKU53kkvO6vuxH0A95QfWxr5NHThpa29gniqmGuEhrCPrJrqpvJ9c/
rVFWC2esMhQXPkL7khpewRdPa4NjNi4D6Chi3LbCN4/iqtbZVElH/1/6YSkN7zWo
22waUtvai6RRm0XZUvtfoZ4hvfUbI1my91WUDQGDKlgQVZvwpi4Xa6yxGxoev045
SukUne/ua2zcCYyj9ZMV2b/Oc5aygkSY+IBPgzQL7SXP
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:16 2024 by rpki-client on console-ams.rpki-client.org