Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/oNz9aor5V7hr-bKd_AJqGOJe8fY.roa
File: oNz9aor5V7hr-bKd_AJqGOJe8fY.roa (raw, json)
Hash identifier: M8zBXjLd06bwUE+0HY3bB8MbrvaSpUFN1Xp6hvEwltA=
Subject key identifier: A0:DC:FD:6A:8A:F9:57:B8:6B:F9:B2:9D:FC:02:6A:18:E2:5E:F1:F6
Certificate issuer: /CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Certificate serial: 01856FCBBF3655D923294D87E1E94E7CD7EC
Authority key identifier: 70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/oNz9aor5V7hr-bKd_AJqGOJe8fY.roa
Signing time: Mon 02 Jan 2023 00:05:01 +0000
ROA not before: Mon 02 Jan 2023 00:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201091
IP address blocks: 217.11.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:bf:36:55:d9:23:29:4d:87:e1:e9:4e:7c:d7:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Validity
Not Before: Jan 2 00:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0dcfd6a8af957b86bf9b29dfc026a18e25ef1f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:49:89:83:0d:05:e4:c0:3d:b0:68:29:f6:bd:
82:df:4e:e5:fa:87:32:9e:1d:0e:c4:bb:88:27:1a:
6f:4f:ec:cc:61:7c:f0:95:3a:31:34:71:12:c4:63:
88:0b:d4:00:4c:41:fd:07:3a:41:ff:2f:36:69:db:
e1:57:4b:f3:18:92:5b:cd:37:b9:08:6a:51:5c:24:
0b:ee:5c:73:ee:3a:01:8f:c1:74:eb:17:e4:c4:d7:
31:b4:df:b5:55:b7:c0:e3:7a:dc:25:ec:98:3b:fa:
e1:2b:75:9d:69:bb:11:b0:72:b6:c8:14:f6:9a:95:
56:1d:84:03:e5:a1:bc:fe:56:79:d4:b0:be:fd:85:
66:11:66:3b:c2:b9:d3:c8:c7:87:0c:43:3d:91:7f:
b0:63:3d:b8:ce:db:8d:e6:8f:27:5e:95:13:29:19:
53:4e:d7:79:cd:f7:6d:fe:41:54:6d:c0:fa:99:41:
fc:d0:ff:8e:6d:13:30:03:7b:6a:40:a1:d1:62:18:
e1:fd:cd:55:70:84:c2:dd:0f:6a:4f:49:a8:0a:5e:
0a:fd:91:4e:fd:a0:a8:5d:d7:1c:ca:4e:67:51:42:
68:cd:a3:3f:34:dd:e2:b9:dd:fc:9b:fa:78:3e:ab:
eb:7b:fa:71:ba:42:5a:7d:d5:0d:c8:5c:b3:5d:fe:
5b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:DC:FD:6A:8A:F9:57:B8:6B:F9:B2:9D:FC:02:6A:18:E2:5E:F1:F6
X509v3 Authority Key Identifier:
keyid:70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/oNz9aor5V7hr-bKd_AJqGOJe8fY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/cAoSMdHCenVORu8Q6SpzCuFdD1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.11.134.0/24
Signature Algorithm: sha256WithRSAEncryption
14:4a:f7:d2:0f:cf:92:96:9c:5f:95:34:42:e2:6e:b0:83:93:
86:c4:d8:8b:8e:c9:93:5d:37:44:98:ed:1d:15:81:0c:e3:ba:
b0:7c:e4:ec:db:3e:e8:e8:46:0f:ed:5f:90:c7:af:9b:a6:ab:
de:bb:e4:65:35:f3:99:da:07:df:e9:f4:fb:c5:3d:10:e7:a9:
de:64:53:83:ec:21:4f:72:e9:84:8d:f2:b0:43:a9:6f:64:de:
2f:0b:80:34:e8:c2:93:b6:72:78:6c:7f:06:6a:6b:12:1b:a6:
42:7f:52:a2:9c:1a:a8:30:4b:be:66:3e:46:fd:64:40:af:f1:
8d:52:89:57:13:6f:4a:97:6e:9c:89:83:6b:ff:22:56:f9:f9:
40:f0:58:12:09:ec:86:41:16:43:c9:11:eb:62:99:28:29:fe:
ed:83:54:3a:99:04:eb:c9:4a:03:5e:74:0c:25:a0:a7:1a:50:
a0:14:a1:52:2c:b0:c4:85:ab:ce:35:c1:de:a8:39:b6:31:2e:
ec:9f:fc:d3:aa:71:f8:4e:03:21:e8:b9:15:50:c2:fe:76:5b:
53:02:f2:40:83:22:c7:d5:bf:93:21:fd:f7:5e:f4:aa:16:96:
cd:f1:c7:20:71:05:23:ea:d1:ff:5a:62:a9:66:a6:9a:ba:65:
9b:d5:fd:8b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvy782VdkjKU2H4elOfNfsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwMGExMjMxZDFjMjdhNzU0ZTQ2ZWYxMGU5MmE3MzBhZTE1
ZDBmNTUwHhcNMjMwMTAyMDAwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMGRjZmQ2YThhZjk1N2I4NmJmOWIyOWRmYzAyNmExOGUyNWVmMWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgkmJgw0F5MA9sGgp9r2C307l+ocy
nh0OxLuIJxpvT+zMYXzwlToxNHESxGOIC9QATEH9BzpB/y82advhV0vzGJJbzTe5
CGpRXCQL7lxz7joBj8F06xfkxNcxtN+1VbfA43rcJeyYO/rhK3WdabsRsHK2yBT2
mpVWHYQD5aG8/lZ51LC+/YVmEWY7wrnTyMeHDEM9kX+wYz24ztuN5o8nXpUTKRlT
Ttd5zfdt/kFUbcD6mUH80P+ObRMwA3tqQKHRYhjh/c1VcITC3Q9qT0moCl4K/ZFO
/aCoXdccyk5nUUJozaM/NN3iud38m/p4Pqvre/pxukJafdUNyFyzXf5bZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKDc/WqK+Ve4a/mynfwCahjiXvH2MB8GA1UdIwQY
MBaAFHAKEjHRwnp1TkbvEOkqcwrhXQ9VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0FvU01kSENlblZPUnU4UTZTcHpDdUZkRDFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kY2MyYjQtOWRlZC00Njc4LTgzOTgt
YWI3OWEzNzg5ZjhmLzEvb056OWFvcjVWN2hyLWJLZF9BSnFHT0plOGZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9kY2MyYjQtOWRlZC00Njc4LTgzOTgtYWI3OWEzNzg5Zjhm
LzEvY0FvU01kSENlblZPUnU4UTZTcHpDdUZkRDFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2QuGMA0G
CSqGSIb3DQEBCwUAA4IBAQAUSvfSD8+SlpxflTRC4m6wg5OGxNiLjsmTXTdEmO0d
FYEM47qwfOTs2z7o6EYP7V+Qx6+bpqveu+RlNfOZ2gff6fT7xT0Q56neZFOD7CFP
cumEjfKwQ6lvZN4vC4A06MKTtnJ4bH8GamsSG6ZCf1KinBqoMEu+Zj5G/WRAr/GN
UolXE29Kl26ciYNr/yJW+flA8FgSCeyGQRZDyRHrYpkoKf7tg1Q6mQTryUoDXnQM
JaCnGlCgFKFSLLDEhavONcHeqDm2MS7sn/zTqnH4TgMh6LkVUML+dltTAvJAgyLH
1b+TIf33XvSqFpbN8ccgcQUj6tH/WmKpZqaaumWb1f2L
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-fra.rpki-client.org