Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/9vXcVSgj7GCCroP14cBF-V7w5oM.roa
File: 9vXcVSgj7GCCroP14cBF-V7w5oM.roa (raw, json)
Hash identifier: hXKVvy+q23KmJdFl35ml7mPGYlApZ/5KJixa2AfqIXg=
Subject key identifier: F6:F5:DC:55:28:23:EC:60:82:AE:83:F5:E1:C0:45:F9:5E:F0:E6:83
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018AC24AD018DB93BA8086AE6AED9C08EF6C
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/9vXcVSgj7GCCroP14cBF-V7w5oM.roa
Signing time: Sat 23 Sep 2023 13:46:37 +0000
ROA not before: Sat 23 Sep 2023 13:46:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202685
IP address blocks: 89.42.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Sep 2023 19:20:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c2:4a:d0:18:db:93:ba:80:86:ae:6a:ed:9c:08:ef:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Sep 23 13:46:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6f5dc552823ec6082ae83f5e1c045f95ef0e683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cc:d9:71:6b:cf:f5:2a:db:14:42:93:3e:91:
ff:dd:2a:cf:ea:5c:86:4a:3b:98:43:8d:2c:50:9d:
e5:5b:ef:41:ab:e9:23:2d:bd:fe:80:40:d4:29:5b:
0c:21:a0:41:45:60:a0:b9:30:8a:50:aa:e4:38:33:
08:0d:f4:4a:5d:3f:a1:ae:90:42:fc:42:81:78:7a:
09:e7:bd:fa:a9:3a:88:e3:9a:d4:40:69:06:7d:93:
61:fc:d5:d8:26:37:19:83:30:f0:97:f7:68:96:5b:
fb:b1:34:08:e6:11:ab:98:fc:5d:3d:cd:a2:b5:35:
d3:5b:c1:58:25:9d:55:a6:de:d7:b4:ee:ee:6a:5e:
9a:11:77:1c:b1:d7:7a:d2:9a:9c:58:ff:e6:51:29:
9d:ea:c4:bd:34:5b:ca:76:58:d4:ba:23:73:9b:c9:
9f:4f:32:90:89:a6:03:cd:40:07:ab:f1:13:40:3e:
0e:bc:c3:c8:12:b6:a7:10:6c:e4:45:eb:fa:79:70:
62:71:2f:0a:18:e3:ce:cc:37:9c:4d:e9:46:e6:4c:
b3:08:cf:f0:27:64:1f:b3:0a:ef:7d:85:0f:87:9c:
ea:7f:f1:76:4a:c7:ac:89:36:7b:87:e0:bd:75:af:
7d:cc:f6:0e:58:22:f4:5d:57:c9:e7:66:cc:2c:14:
5e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F5:DC:55:28:23:EC:60:82:AE:83:F5:E1:C0:45:F9:5E:F0:E6:83
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/9vXcVSgj7GCCroP14cBF-V7w5oM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.81.0/24
Signature Algorithm: sha256WithRSAEncryption
88:c8:d5:41:78:08:32:f3:51:8c:42:d4:66:73:52:e8:3a:bf:
2e:79:41:99:d7:0a:bb:ae:46:90:58:b3:31:17:d4:75:7a:c1:
bd:05:44:b2:62:ac:1e:92:c1:0a:fb:2e:f5:e1:14:1c:e2:23:
3c:70:d4:6a:21:0d:61:66:8d:40:aa:8e:a0:55:d7:6b:95:7e:
51:6d:a4:94:d7:20:ff:10:11:fe:6f:4b:51:9d:d3:7d:72:b1:
ab:98:8d:e4:37:02:2a:38:7c:85:62:54:a0:fd:86:9a:af:aa:
75:61:d2:85:b5:83:20:ba:08:3a:32:50:67:c3:ed:b4:ad:26:
db:73:8b:78:56:ad:38:67:9a:7d:2a:b0:2c:87:af:80:b4:e0:
7f:68:9e:4c:e3:04:f0:a1:ae:c0:34:59:e0:2f:81:8f:5c:39:
ba:bd:43:6d:cb:19:65:96:d7:85:dd:91:6c:b6:2f:13:00:43:
ad:b5:17:24:cb:da:a3:ef:38:9b:0f:74:ea:75:cf:76:c4:47:
d7:f1:e6:5b:96:5d:96:df:3e:67:76:a6:4a:29:2e:14:53:6d:
4c:a2:d7:2c:0d:1f:89:61:84:3e:98:89:34:64:3c:67:d2:92:
1c:87:9d:9e:65:0f:4e:b6:1b:dc:f2:c3:0b:8a:40:7d:9b:ed:
e0:d2:3e:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrCStAY25O6gIauau2cCO9sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMwOTIzMTM0NjM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNmY1ZGM1NTI4MjNlYzYwODJhZTgzZjVlMWMwNDVmOTVlZjBlNjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjszZcWvP9SrbFEKTPpH/3SrP6lyG
SjuYQ40sUJ3lW+9Bq+kjLb3+gEDUKVsMIaBBRWCguTCKUKrkODMIDfRKXT+hrpBC
/EKBeHoJ5736qTqI45rUQGkGfZNh/NXYJjcZgzDwl/dollv7sTQI5hGrmPxdPc2i
tTXTW8FYJZ1Vpt7XtO7ual6aEXccsdd60pqcWP/mUSmd6sS9NFvKdljUuiNzm8mf
TzKQiaYDzUAHq/ETQD4OvMPIEranEGzkRev6eXBicS8KGOPOzDecTelG5kyzCM/w
J2QfswrvfYUPh5zqf/F2SsesiTZ7h+C9da99zPYOWCL0XVfJ52bMLBRewwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPb13FUoI+xggq6D9eHARfle8OaDMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvOXZYY1ZTZ2o3R0NDcm9QMTRjQkYtVjd3NW9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSpRMA0G
CSqGSIb3DQEBCwUAA4IBAQCIyNVBeAgy81GMQtRmc1LoOr8ueUGZ1wq7rkaQWLMx
F9R1esG9BUSyYqweksEK+y714RQc4iM8cNRqIQ1hZo1Aqo6gVddrlX5RbaSU1yD/
EBH+b0tRndN9crGrmI3kNwIqOHyFYlSg/Yaar6p1YdKFtYMgugg6MlBnw+20rSbb
c4t4Vq04Z5p9KrAsh6+AtOB/aJ5M4wTwoa7ANFngL4GPXDm6vUNtyxlllteF3ZFs
ti8TAEOttRcky9qj7zibD3Tqdc92xEfX8eZbll2W3z5ndqZKKS4UU21MotcsDR+J
YYQ+mIk0ZDxn0pIch52eZQ9Othvc8sMLikB9m+3g0j4r
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:18 2024 by rpki-client on console-fra.rpki-client.org