Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/ejQ8nKFjRq1_gI6yE_YM0N95sxQ.roa
File: ejQ8nKFjRq1_gI6yE_YM0N95sxQ.roa (raw, json)
Hash identifier: KOisopcPiXGSuhZHiKh4/KyhGJeZ8NypToJ9DCe0zYA=
Subject key identifier: 7A:34:3C:9C:A1:63:46:AD:7F:80:8E:B2:13:F6:0C:D0:DF:79:B3:14
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018BC0DEEE12C79F7410CBE6909C5DCC8534
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/ejQ8nKFjRq1_gI6yE_YM0N95sxQ.roa
Signing time: Sun 12 Nov 2023 00:11:57 +0000
ROA not before: Sun 12 Nov 2023 00:11:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 77.246.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Nov 2023 07:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c0:de:ee:12:c7:9f:74:10:cb:e6:90:9c:5d:cc:85:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Nov 12 00:11:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a343c9ca16346ad7f808eb213f60cd0df79b314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b5:9b:a2:77:22:d8:34:eb:b1:03:07:48:e9:
4e:55:de:a0:5b:8f:eb:5d:a2:1b:13:63:f1:25:ba:
19:0e:05:51:69:1b:61:9f:7a:fb:35:98:0d:40:1f:
f4:3b:83:b4:01:81:63:4e:62:cb:dd:7c:81:5e:29:
63:c9:ab:60:8a:55:f4:8d:43:f1:bf:38:2f:cf:18:
0b:8d:0d:c0:42:fb:4e:04:b8:8e:68:52:e2:af:7d:
a6:12:18:25:00:78:7e:da:eb:61:f7:cf:c5:c7:92:
f2:44:2c:d9:8a:b9:b4:e3:0e:e8:f5:1c:9e:e9:a3:
ea:67:db:0e:b1:49:41:d9:56:ea:34:4c:5d:f5:54:
6a:d8:26:bb:88:76:ce:fc:8f:04:51:79:71:8f:9a:
dd:b0:0a:ca:33:1f:1f:8e:d4:34:de:a1:fe:63:f5:
5e:ab:e0:0b:c9:3e:35:38:36:a9:4c:18:c3:8a:ca:
f7:d1:fc:29:a6:af:06:77:ce:91:f1:19:e2:f8:f8:
62:b1:89:91:cc:00:75:8d:c4:04:7e:46:f9:25:95:
68:d9:f6:ec:a5:25:ea:e7:a9:f4:03:f5:c4:81:62:
cf:98:4b:eb:41:00:a7:7f:7f:95:f6:84:6c:f4:3c:
7a:6a:3e:1e:47:70:2d:84:83:c8:ba:95:9f:75:5f:
42:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:34:3C:9C:A1:63:46:AD:7F:80:8E:B2:13:F6:0C:D0:DF:79:B3:14
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/ejQ8nKFjRq1_gI6yE_YM0N95sxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.212.0/22
Signature Algorithm: sha256WithRSAEncryption
01:1c:23:35:47:64:c6:96:22:57:c0:87:83:1f:cc:03:e9:ca:
2a:3a:25:04:a7:e1:57:67:e6:22:c0:98:c7:d6:9d:27:69:a7:
aa:f0:a8:5e:64:a2:17:8d:ed:5e:08:c7:f2:eb:04:ec:1b:b9:
d4:64:f8:68:ad:7c:89:90:7d:62:60:4b:01:73:a1:91:6d:64:
20:cf:87:48:47:11:aa:96:35:75:46:65:58:4b:ba:f3:55:26:
ad:a5:45:2d:0c:25:98:f0:6e:da:a2:22:cf:74:0f:70:a3:62:
3e:8b:b4:18:67:2b:fe:84:eb:ea:b7:5d:fa:59:bb:6a:e6:84:
7c:db:47:ba:3e:10:bd:e0:48:93:99:af:37:7c:24:fc:95:cb:
de:6e:7d:71:13:9c:77:8a:60:f1:f5:d6:e0:1f:13:ae:75:be:
4a:7a:02:1b:ff:cc:0d:2c:6d:0f:d7:4b:30:08:c7:79:93:5f:
42:a9:10:03:11:30:22:2c:cc:9d:a0:75:1a:b1:0f:e8:81:06:
a0:35:16:d3:bb:28:71:41:b3:3f:7c:1e:de:23:c9:1f:57:95:
0a:e7:be:d4:12:ec:75:8a:35:52:48:6f:6b:aa:1a:36:c4:6e:
e7:65:03:b7:a2:10:fd:0a:d7:68:8c:3b:9b:25:aa:d3:17:d4:
b1:7e:94:71
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvA3u4Sx590EMvmkJxdzIU0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMjRmYmExZTQwMWMwM2U1YmExY2Q3N2FlOWVlMzljZmQ2
MzFiZmIwHhcNMjMxMTEyMDAxMTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTM0M2M5Y2ExNjM0NmFkN2Y4MDhlYjIxM2Y2MGNkMGRmNzliMzE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrWbonci2DTrsQMHSOlOVd6gW4/r
XaIbE2PxJboZDgVRaRthn3r7NZgNQB/0O4O0AYFjTmLL3XyBXiljyatgilX0jUPx
vzgvzxgLjQ3AQvtOBLiOaFLir32mEhglAHh+2uth98/Fx5LyRCzZirm04w7o9Rye
6aPqZ9sOsUlB2VbqNExd9VRq2Ca7iHbO/I8EUXlxj5rdsArKMx8fjtQ03qH+Y/Ve
q+ALyT41ODapTBjDisr30fwppq8Gd86R8Rni+PhisYmRzAB1jcQEfkb5JZVo2fbs
pSXq56n0A/XEgWLPmEvrQQCnf3+V9oRs9Dx6aj4eR3AthIPIupWfdV9C9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHo0PJyhY0atf4COshP2DNDfebMUMB8GA1UdIwQY
MBaAFFEk+6HkAcA+W6HNd66e45z9Yxv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEt
YWI4ZjFmMzM4N2VlLzEvZWpROG5LRmpScTFfZ0k2eUVfWU0wTjk1c3hRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEtYWI4ZjFmMzM4N2Vl
LzEvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCTfbUMA0G
CSqGSIb3DQEBCwUAA4IBAQABHCM1R2TGliJXwIeDH8wD6coqOiUEp+FXZ+YiwJjH
1p0naaeq8KheZKIXje1eCMfy6wTsG7nUZPhorXyJkH1iYEsBc6GRbWQgz4dIRxGq
ljV1RmVYS7rzVSatpUUtDCWY8G7aoiLPdA9wo2I+i7QYZyv+hOvqt136Wbtq5oR8
20e6PhC94EiTma83fCT8lcvebn1xE5x3imDx9dbgHxOudb5KegIb/8wNLG0P10sw
CMd5k19CqRADETAiLMydoHUasQ/ogQagNRbTuyhxQbM/fB7eI8kfV5UK577UEux1
ijVSSG9rqho2xG7nZQO3ohD9CtdojDubJarTF9SxfpRx
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:13 2024 by rpki-client on console-fra.rpki-client.org