Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/LjhawYzq4MRaU1KmAidTJsATCAM.roa
File: LjhawYzq4MRaU1KmAidTJsATCAM.roa (raw, json)
Hash identifier: 9ScqsXor0r9NjhOHbuLzspQtemFngV/nqUqe2BImYak=
Subject key identifier: 2E:38:5A:C1:8C:EA:E0:C4:5A:53:52:A6:02:27:53:26:C0:13:08:03
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 01856E26794DFED7169AAB0015915742C156
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/LjhawYzq4MRaU1KmAidTJsATCAM.roa
Signing time: Sun 01 Jan 2023 16:24:53 +0000
ROA not before: Sun 01 Jan 2023 16:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208911
IP address blocks: 77.73.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Feb 2023 07:59:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:79:4d:fe:d7:16:9a:ab:00:15:91:57:42:c1:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Jan 1 16:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e385ac18ceae0c45a5352a602275326c0130803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:78:9e:6b:f4:66:91:4f:91:52:fd:70:a0:db:
20:2d:7b:a1:3a:dd:03:1f:a3:fd:a9:f5:c9:34:0c:
76:23:7b:56:ff:3d:fb:e7:9b:ad:06:d8:15:af:ef:
13:c7:65:0a:28:62:71:f8:dc:c5:07:2f:b9:90:9e:
58:d2:a1:67:ff:0c:e5:5d:ce:37:5b:70:12:12:13:
c7:c8:0d:09:25:a8:28:54:c6:7b:61:e8:4f:18:e4:
56:9b:bc:0f:eb:66:04:c2:60:83:83:04:a2:6c:90:
87:79:b2:38:4c:35:9e:5e:18:15:7e:ec:19:a2:85:
97:78:22:d9:cf:59:79:f0:2e:a2:00:f9:48:e1:ec:
3d:80:de:c1:5c:d7:1a:be:85:a7:00:e1:2a:02:cf:
43:74:81:88:09:0d:6a:02:2c:7b:31:3d:fd:a8:69:
10:9f:a9:6e:73:ff:b1:7f:23:96:a8:81:6d:2c:59:
12:a9:29:5b:b9:ad:70:70:77:d0:82:b7:06:a4:c5:
2d:b3:7a:d5:90:a5:e7:86:0b:86:81:29:d9:ff:ec:
5f:d4:28:33:c5:0f:98:96:66:42:f6:1f:5a:a8:be:
14:46:88:7f:96:df:b0:b4:cf:d4:ef:1f:a3:32:60:
92:4c:43:d9:a5:a1:86:df:29:00:43:dc:71:95:a9:
6a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:38:5A:C1:8C:EA:E0:C4:5A:53:52:A6:02:27:53:26:C0:13:08:03
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/LjhawYzq4MRaU1KmAidTJsATCAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.132.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:1a:e9:a5:22:4d:f8:0b:90:41:ec:65:ac:40:1b:e4:56:e5:
dc:cf:2f:25:13:b0:2a:8d:4c:6c:6c:b9:d7:15:d9:80:05:10:
f8:84:be:d8:ed:83:65:1e:2b:0d:80:eb:38:b4:cb:ff:bd:a2:
85:8d:91:33:c0:99:bb:2c:65:43:e6:1c:d3:dd:4d:3c:7f:a2:
59:45:e4:ae:87:65:c5:c8:ab:a6:ef:12:a5:9c:66:b2:0b:9c:
e0:23:f0:04:0e:d7:62:f7:3a:d4:1e:9a:53:59:c2:46:08:d9:
4b:df:d9:d1:13:99:78:6d:61:b0:da:0f:71:04:54:6c:cf:05:
31:0d:03:77:57:48:73:29:83:a2:22:71:16:d8:6e:a8:fe:2c:
83:36:27:af:18:37:cc:d4:32:b2:08:87:d5:19:fc:cd:58:8d:
89:7c:e4:9e:49:cc:57:04:8e:5c:54:4c:a5:29:a5:7f:fa:3a:
04:e5:53:84:21:37:2a:95:00:02:0a:47:5f:0d:b1:9f:58:aa:
16:cb:18:b7:08:69:b1:0c:56:17:7a:15:60:94:94:bf:4c:d9:
12:68:c3:d7:36:91:a8:d8:ce:f9:4c:b2:6d:66:48:4d:10:fb:
7c:69:00:c3:69:aa:5d:af:04:c1:0d:bf:6c:89:1b:82:08:d3:
a2:09:b4:e9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuJnlN/tcWmqsAFZFXQsFWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmZmExM2YxYWUwNTM5MTYyODBlYzY4ZWUxYjA5NzZmOWVi
ZDNlYTgwHhcNMjMwMTAxMTYyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTM4NWFjMThjZWFlMGM0NWE1MzUyYTYwMjI3NTMyNmMwMTMwODAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlXiea/RmkU+RUv1woNsgLXuhOt0D
H6P9qfXJNAx2I3tW/z3755utBtgVr+8Tx2UKKGJx+NzFBy+5kJ5Y0qFn/wzlXc43
W3ASEhPHyA0JJagoVMZ7YehPGORWm7wP62YEwmCDgwSibJCHebI4TDWeXhgVfuwZ
ooWXeCLZz1l58C6iAPlI4ew9gN7BXNcavoWnAOEqAs9DdIGICQ1qAix7MT39qGkQ
n6luc/+xfyOWqIFtLFkSqSlbua1wcHfQgrcGpMUts3rVkKXnhguGgSnZ/+xf1Cgz
xQ+YlmZC9h9aqL4URoh/lt+wtM/U7x+jMmCSTEPZpaGG3ykAQ9xxlalqCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC44WsGM6uDEWlNSpgInUybAEwgDMB8GA1UdIwQY
MBaAFK/6E/GuBTkWKA7GjuGwl2+evT6oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcl9vVDhhNEZPUllvRHNhTzRiQ1hiNTY5UHFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9hM2MwYTQtMzE5MS00ZTUxLThkODAt
NDc4YzJjOGNiMmEwLzEvTGpoYXdZenE0TVJhVTFLbUFpZFRKc0FUQ0FNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9hM2MwYTQtMzE5MS00ZTUxLThkODAtNDc4YzJjOGNiMmEw
LzEvcl9vVDhhNEZPUllvRHNhTzRiQ1hiNTY5UHFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUmEMA0G
CSqGSIb3DQEBCwUAA4IBAQB7GumlIk34C5BB7GWsQBvkVuXczy8lE7AqjUxsbLnX
FdmABRD4hL7Y7YNlHisNgOs4tMv/vaKFjZEzwJm7LGVD5hzT3U08f6JZReSuh2XF
yKum7xKlnGayC5zgI/AEDtdi9zrUHppTWcJGCNlL39nRE5l4bWGw2g9xBFRszwUx
DQN3V0hzKYOiInEW2G6o/iyDNievGDfM1DKyCIfVGfzNWI2JfOSeScxXBI5cVEyl
KaV/+joE5VOEITcqlQACCkdfDbGfWKoWyxi3CGmxDFYXehVglJS/TNkSaMPXNpGo
2M75TLJtZkhNEPt8aQDDaapdrwTBDb9siRuCCNOiCbTp
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:18 2024 by rpki-client on console-ams.rpki-client.org