Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/bLZGBLd084QT_yR4Fnlwt6DFpBA.roa
File: bLZGBLd084QT_yR4Fnlwt6DFpBA.roa (raw, json)
Hash identifier: 4RclEWrh+J4A4nhiE2WaMOxu+wGk4Cb6h/khD4OSJuw=
Subject key identifier: 6C:B6:46:04:B7:74:F3:84:13:FF:24:78:16:79:70:B7:A0:C5:A4:10
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 018BFAEA4F187A02D1C40946820B38D4D0F5
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/bLZGBLd084QT_yR4Fnlwt6DFpBA.roa
Signing time: Thu 23 Nov 2023 06:42:21 +0000
ROA not before: Thu 23 Nov 2023 06:42:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 77.73.132.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fa:ea:4f:18:7a:02:d1:c4:09:46:82:0b:38:d4:d0:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Nov 23 06:42:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cb64604b774f38413ff2478167970b7a0c5a410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:83:13:08:03:bf:9a:d3:ee:b9:4f:d7:fd:8b:
88:93:11:e9:e6:3d:64:43:de:1f:8a:61:42:7d:56:
a5:76:5d:0b:70:29:ee:37:e7:18:a1:20:33:72:a4:
42:8e:40:ed:1b:3f:75:a1:54:48:f5:b6:31:6c:06:
71:14:0d:5f:d3:8d:67:5c:fc:48:17:ca:cc:32:53:
65:1f:fc:f5:5c:9b:2a:cc:59:41:44:a4:d9:ac:ff:
4d:10:51:2d:cf:96:c5:fe:da:be:d9:57:b8:22:65:
5d:ab:a2:27:1c:fb:96:ac:e3:b7:0c:0e:dc:c1:03:
f1:03:dd:c1:09:6d:dd:5e:b7:79:e5:3f:fd:c3:b3:
5e:be:e7:04:2b:48:ba:d8:0a:16:5f:1e:00:96:78:
00:a0:ab:64:de:7e:3c:5e:00:a8:68:d4:0a:13:a9:
0e:df:d7:a8:22:24:f1:09:5c:20:06:88:72:1e:5e:
9b:84:75:88:e1:8c:0c:2d:fa:73:75:c2:4a:05:0f:
d3:35:9d:60:83:07:7a:33:67:64:5a:62:d1:d8:08:
47:27:77:b7:29:47:e4:1c:d4:e2:5f:bf:fa:20:f3:
e7:54:30:da:c0:ca:30:d7:2d:63:02:e0:2c:ae:d9:
c9:88:9f:38:cf:c1:38:91:09:9a:ac:0f:8a:07:29:
f0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B6:46:04:B7:74:F3:84:13:FF:24:78:16:79:70:B7:A0:C5:A4:10
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/bLZGBLd084QT_yR4Fnlwt6DFpBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.132.0/24
Signature Algorithm: sha256WithRSAEncryption
82:cb:63:44:ec:db:43:52:14:0f:0a:e5:0e:c7:55:92:9d:65:
c3:a1:7a:8f:4d:e9:00:0b:f2:57:ba:f4:a9:8b:58:9a:f3:da:
af:15:e1:16:8d:bf:56:89:0d:22:6b:1a:a7:70:bd:b3:6d:f9:
66:4d:4e:55:19:17:01:dc:85:a7:a2:cb:82:2c:1a:f2:60:bf:
5e:70:3a:88:35:eb:e5:a1:18:56:47:82:cb:cb:99:d8:c0:3b:
d3:c1:84:c4:c1:34:94:3d:ab:64:e1:86:54:70:53:0b:73:d4:
f7:17:be:a8:b0:8d:b7:29:0e:20:fe:1a:26:67:5e:ff:f2:75:
e4:0d:7f:71:b4:c8:7b:cb:3e:c6:d5:9a:b3:81:b4:93:8a:fe:
51:71:c8:a9:c9:c2:be:99:f9:f1:ee:da:5e:ec:b1:ed:c3:b3:
ee:7f:2b:9f:40:5d:f5:6e:d1:03:b3:75:96:e8:65:66:5f:ea:
38:53:15:83:6e:89:4e:e1:e0:c0:d3:0e:45:f2:02:5e:02:9c:
f7:02:2c:ed:bf:70:58:ab:d3:c0:a4:fc:cb:e1:9b:ad:9c:9c:
8a:69:45:53:43:41:3b:22:ad:0d:a2:d0:e2:74:f0:a3:cf:fc:
40:97:68:6f:5c:39:09:8e:65:3d:15:25:4d:61:89:8c:e4:57:
9d:be:dc:ff
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYv66k8YegLRxAlGggs41ND1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmZmExM2YxYWUwNTM5MTYyODBlYzY4ZWUxYjA5NzZmOWVi
ZDNlYTgwHhcNMjMxMTIzMDY0MjIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2I2NDYwNGI3NzRmMzg0MTNmZjI0NzgxNjc5NzBiN2EwYzVhNDEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoMTCAO/mtPuuU/X/YuIkxHp5j1k
Q94fimFCfValdl0LcCnuN+cYoSAzcqRCjkDtGz91oVRI9bYxbAZxFA1f041nXPxI
F8rMMlNlH/z1XJsqzFlBRKTZrP9NEFEtz5bF/tq+2Ve4ImVdq6InHPuWrOO3DA7c
wQPxA93BCW3dXrd55T/9w7NevucEK0i62AoWXx4AlngAoKtk3n48XgCoaNQKE6kO
39eoIiTxCVwgBohyHl6bhHWI4YwMLfpzdcJKBQ/TNZ1ggwd6M2dkWmLR2AhHJ3e3
KUfkHNTiX7/6IPPnVDDawMow1y1jAuAsrtnJiJ84z8E4kQmarA+KBynwlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGy2RgS3dPOEE/8keBZ5cLegxaQQMB8GA1UdIwQY
MBaAFK/6E/GuBTkWKA7GjuGwl2+evT6oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcl9vVDhhNEZPUllvRHNhTzRiQ1hiNTY5UHFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9hM2MwYTQtMzE5MS00ZTUxLThkODAt
NDc4YzJjOGNiMmEwLzEvYkxaR0JMZDA4NFFUX3lSNEZubHd0NkRGcEJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9hM2MwYTQtMzE5MS00ZTUxLThkODAtNDc4YzJjOGNiMmEw
LzEvcl9vVDhhNEZPUllvRHNhTzRiQ1hiNTY5UHFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUmEMA0G
CSqGSIb3DQEBCwUAA4IBAQCCy2NE7NtDUhQPCuUOx1WSnWXDoXqPTekAC/JXuvSp
i1ia89qvFeEWjb9WiQ0iaxqncL2zbflmTU5VGRcB3IWnosuCLBryYL9ecDqINevl
oRhWR4LLy5nYwDvTwYTEwTSUPatk4YZUcFMLc9T3F76osI23KQ4g/homZ17/8nXk
DX9xtMh7yz7G1ZqzgbSTiv5RccipycK+mfnx7tpe7LHtw7PufyufQF31btEDs3WW
6GVmX+o4UxWDbolO4eDA0w5F8gJeApz3Aiztv3BYq9PApPzL4ZutnJyKaUVTQ0E7
Iq0NotDidPCjz/xAl2hvXDkJjmU9FSVNYYmM5Fedvtz/
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:38:00 2024 by rpki-client on console-fra.rpki-client.org