Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/ABtq-zHDJDDr6U8oVWnvlcs5r-Q.roa
File: ABtq-zHDJDDr6U8oVWnvlcs5r-Q.roa (raw, json)
Hash identifier: Oqb0STunqHk24PuuV6wigzbEXlkEcNAKBBd/UXSV6Pc=
Subject key identifier: 00:1B:6A:FB:31:C3:24:30:EB:E9:4F:28:55:69:EF:95:CB:39:AF:E4
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018A40A49DE75348A84AB1DF6C05B0AFD9B5
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/ABtq-zHDJDDr6U8oVWnvlcs5r-Q.roa
Signing time: Tue 29 Aug 2023 09:34:04 +0000
ROA not before: Tue 29 Aug 2023 09:34:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 89.34.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:40:a4:9d:e7:53:48:a8:4a:b1:df:6c:05:b0:af:d9:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Aug 29 09:34:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=001b6afb31c32430ebe94f285569ef95cb39afe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:51:af:c9:f7:b3:46:3f:66:f4:be:b5:ca:73:
8d:de:7d:0c:70:4c:cf:ac:f9:03:75:ca:e6:50:ee:
b6:e0:7d:34:54:d9:fb:20:36:85:ff:9c:42:c2:e5:
b4:eb:b1:3f:67:a9:65:b6:21:31:6b:73:04:f8:7a:
64:07:e7:e4:5f:d1:04:a1:88:d7:6f:24:e4:d6:bf:
37:77:0e:7d:f5:36:30:c8:8f:2c:d7:f3:07:99:52:
86:19:79:61:c6:54:13:ef:63:8c:64:00:c3:73:0e:
75:0d:f9:11:4c:6e:ef:05:be:4f:6d:ea:bb:98:c0:
b9:8a:b8:85:73:c7:fe:f4:07:4b:a3:89:d5:be:f5:
06:19:a8:ce:6c:42:25:04:af:12:28:f0:9c:09:43:
4d:98:49:23:ed:46:36:94:14:ef:dc:53:d1:df:37:
9b:ff:d4:dd:40:1d:76:c7:a4:46:46:d8:61:b5:d0:
9d:16:de:00:95:4a:04:82:d4:66:e7:f5:82:22:e7:
ec:64:37:76:87:f3:a6:72:84:f2:f5:4e:85:4a:9e:
78:ca:98:70:6f:99:b8:8d:54:7a:d5:6e:20:2a:3e:
ac:ba:bb:38:5e:3f:4f:f8:c9:85:b5:2f:a1:03:5c:
a7:02:c3:ad:50:2d:ba:c3:f5:2c:95:59:8d:1c:d2:
e4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:1B:6A:FB:31:C3:24:30:EB:E9:4F:28:55:69:EF:95:CB:39:AF:E4
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/ABtq-zHDJDDr6U8oVWnvlcs5r-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.229.0/24
Signature Algorithm: sha256WithRSAEncryption
73:a2:f2:c9:84:47:29:9d:54:b6:ba:f3:3e:1d:99:32:95:26:
af:78:6d:12:47:f3:d5:9e:93:90:6e:32:32:d9:93:93:47:6d:
f3:9a:8f:18:9b:59:cd:f0:7b:7f:18:ef:c2:c2:d9:7c:c6:d5:
d2:82:53:37:d8:4c:5c:fd:c6:7b:3d:60:40:59:0b:ab:a6:b0:
b9:f8:5b:e7:2b:55:52:5c:df:f2:89:fc:f3:4f:2c:db:ee:13:
3d:87:36:e8:16:e8:43:bb:67:a0:46:33:a4:80:30:f8:87:0f:
b4:dd:e1:60:27:f5:65:3d:de:68:e3:da:91:90:50:1c:b4:5c:
fd:8b:83:42:b9:28:d5:3f:17:d4:3f:90:33:2f:92:25:4f:fa:
ab:b2:39:32:ac:27:ad:f2:09:3f:f0:f4:7a:28:3c:f4:e6:d1:
67:e6:54:96:20:41:f3:56:57:4e:e5:08:e5:61:01:19:51:93:
5f:c1:0e:d6:e7:93:6c:70:72:b2:f8:b3:ae:9e:3b:33:85:4e:
96:db:3e:59:3e:45:72:83:77:1e:60:a6:8d:af:a1:e4:d3:01:
33:65:8c:6e:29:cd:53:16:3d:20:ee:f5:73:a7:43:2a:7f:06:
ca:1d:35:cb:68:a0:06:77:96:bb:e2:c7:8d:05:93:5a:47:22:
cf:a3:68:6b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpApJ3nU0ioSrHfbAWwr9m1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMwODI5MDkzNDA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDFiNmFmYjMxYzMyNDMwZWJlOTRmMjg1NTY5ZWY5NWNiMzlhZmU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhlGvyfezRj9m9L61ynON3n0McEzP
rPkDdcrmUO624H00VNn7IDaF/5xCwuW067E/Z6lltiExa3ME+HpkB+fkX9EEoYjX
byTk1r83dw599TYwyI8s1/MHmVKGGXlhxlQT72OMZADDcw51DfkRTG7vBb5Pbeq7
mMC5iriFc8f+9AdLo4nVvvUGGajObEIlBK8SKPCcCUNNmEkj7UY2lBTv3FPR3zeb
/9TdQB12x6RGRthhtdCdFt4AlUoEgtRm5/WCIufsZDd2h/OmcoTy9U6FSp54yphw
b5m4jVR61W4gKj6surs4Xj9P+MmFtS+hA1ynAsOtUC26w/UslVmNHNLkNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAAbavsxwyQw6+lPKFVp75XLOa/kMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvQUJ0cS16SERKRERyNlU4b1ZXbnZsY3M1ci1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSLlMA0G
CSqGSIb3DQEBCwUAA4IBAQBzovLJhEcpnVS2uvM+HZkylSaveG0SR/PVnpOQbjIy
2ZOTR23zmo8Ym1nN8Ht/GO/Cwtl8xtXSglM32Exc/cZ7PWBAWQurprC5+FvnK1VS
XN/yifzzTyzb7hM9hzboFuhDu2egRjOkgDD4hw+03eFgJ/VlPd5o49qRkFActFz9
i4NCuSjVPxfUP5AzL5IlT/qrsjkyrCet8gk/8PR6KDz05tFn5lSWIEHzVldO5Qjl
YQEZUZNfwQ7W55NscHKy+LOunjszhU6W2z5ZPkVyg3ceYKaNr6Hk0wEzZYxuKc1T
Fj0g7vVzp0MqfwbKHTXLaKAGd5a74seNBZNaRyLPo2hr
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:12 2024 by rpki-client on console-ams.rpki-client.org