Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/mXt5962zYnqKL5H0xidzDOYZIhQ.roa
File: mXt5962zYnqKL5H0xidzDOYZIhQ.roa (raw, json)
Hash identifier: cSp6YzuJsyj7jqvTSLuqKo8sb9eR0EUUO/J1K+meqoM=
Subject key identifier: 99:7B:79:F7:AD:B3:62:7A:8A:2F:91:F4:C6:27:73:0C:E6:19:22:14
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 018776F4B846D4E0E4BD91D1524545CAE562
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/mXt5962zYnqKL5H0xidzDOYZIhQ.roa
Signing time: Wed 12 Apr 2023 19:32:41 +0000
ROA not before: Wed 12 Apr 2023 19:32:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 80.246.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 06:21:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:76:f4:b8:46:d4:e0:e4:bd:91:d1:52:45:45:ca:e5:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Apr 12 19:32:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=997b79f7adb3627a8a2f91f4c627730ce6192214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b6:c6:ff:2d:3c:23:ac:0b:65:84:20:f6:b0:
ea:55:0c:65:93:8f:e4:bd:76:7b:23:99:56:aa:18:
34:62:2b:53:38:bf:b8:5b:c0:2c:7a:b4:52:78:c8:
64:66:11:bd:c5:30:d2:4a:71:9a:61:da:bb:86:a0:
f1:0f:31:51:96:a1:77:6a:2f:d7:ee:ce:d1:8f:af:
d1:e6:b3:67:1a:d2:1b:c8:46:05:82:a6:07:fb:a1:
02:a1:3d:7a:e7:49:a4:9d:07:31:dd:d2:d8:56:ba:
34:ce:e9:06:18:e7:88:f5:7a:db:f2:2e:75:2a:97:
4e:71:03:33:fb:01:6c:59:0f:fa:de:8d:fb:2f:ed:
35:39:0c:96:a0:48:e7:e0:39:71:cf:95:8c:2d:dd:
f1:a3:61:ef:b2:97:36:b9:78:de:a4:cd:d1:7c:ff:
ee:57:c3:c7:0a:4e:6c:ca:0c:1f:f3:22:f4:9d:fe:
4d:eb:a3:51:fd:c6:9f:01:c9:a5:80:5e:c2:ea:bc:
5a:34:30:e3:24:5e:7d:64:2a:d0:e4:1d:10:8b:67:
66:7d:87:68:be:32:4e:4b:b9:2e:b5:e1:57:b2:61:
58:6a:2e:4b:eb:3d:53:76:49:d1:62:f0:f7:4f:95:
ee:d4:06:ee:f5:c4:3a:f2:dd:1b:e9:7e:e1:e0:f4:
23:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:7B:79:F7:AD:B3:62:7A:8A:2F:91:F4:C6:27:73:0C:E6:19:22:14
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/mXt5962zYnqKL5H0xidzDOYZIhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.230.0/24
Signature Algorithm: sha256WithRSAEncryption
79:4a:d1:66:0e:76:4c:d3:4a:00:88:e9:02:76:49:01:6c:b7:
44:11:fb:db:5b:af:a7:0f:f5:09:2e:cc:7b:2d:d0:d6:36:b3:
ed:ad:8e:b4:0a:7d:d1:69:39:8a:40:7c:23:6c:13:13:34:50:
65:51:15:83:b5:73:b8:a1:0d:80:38:5b:f6:58:f0:3a:43:7e:
e4:ae:87:64:35:62:61:bd:e9:ab:c9:cc:69:ad:74:5b:95:f4:
92:40:43:46:aa:86:d1:2c:36:c4:47:19:eb:93:df:81:ad:6b:
0e:f1:03:da:74:78:9c:6c:5c:f2:f9:01:26:1c:a9:c0:57:f1:
1d:c8:fc:f6:63:75:1f:c7:bf:71:d3:ab:86:2c:1a:02:83:34:
ea:57:58:d5:c5:1f:49:ee:a6:5c:28:ee:dc:4a:0b:46:96:8d:
41:8b:d0:49:ea:64:f0:7b:fd:0c:4d:f8:da:53:32:79:33:8a:
fa:7c:33:c5:3f:25:ed:03:0d:6f:de:96:4f:61:aa:02:50:c3:
db:cd:7b:72:9c:5c:a6:f2:71:2a:53:77:7e:e4:e5:dc:1a:22:
44:54:fe:d2:a9:4d:e1:c9:4c:82:41:e2:0b:4a:8c:9b:f1:3f:
e4:23:20:16:70:be:e0:73:f6:ad:38:a0:99:da:d4:10:45:e4:
0f:f7:95:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYd29LhG1ODkvZHRUkVFyuViMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NjM3NjkyZmY1YzQ1NDg2ZDEwNTNiMTQ5ZGMxNDIwMDI2
Y2Q3MzMwHhcNMjMwNDEyMTkzMjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTdiNzlmN2FkYjM2MjdhOGEyZjkxZjRjNjI3NzMwY2U2MTkyMjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLbG/y08I6wLZYQg9rDqVQxlk4/k
vXZ7I5lWqhg0YitTOL+4W8AserRSeMhkZhG9xTDSSnGaYdq7hqDxDzFRlqF3ai/X
7s7Rj6/R5rNnGtIbyEYFgqYH+6ECoT1650mknQcx3dLYVro0zukGGOeI9Xrb8i51
KpdOcQMz+wFsWQ/63o37L+01OQyWoEjn4Dlxz5WMLd3xo2Hvspc2uXjepM3RfP/u
V8PHCk5sygwf8yL0nf5N66NR/cafAcmlgF7C6rxaNDDjJF59ZCrQ5B0Qi2dmfYdo
vjJOS7kuteFXsmFYai5L6z1TdknRYvD3T5Xu1Abu9cQ68t0b6X7h4PQjNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJl7efets2J6ii+R9MYncwzmGSIUMB8GA1UdIwQY
MBaAFNVjdpL/XEVIbRBTsUncFCACbNczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDkt
YWRlYWRlMjg2NWMxLzEvbVh0NTk2MnpZbnFLTDVIMHhpZHpET1laSWhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDktYWRlYWRlMjg2NWMx
LzEvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUPbmMA0G
CSqGSIb3DQEBCwUAA4IBAQB5StFmDnZM00oAiOkCdkkBbLdEEfvbW6+nD/UJLsx7
LdDWNrPtrY60Cn3RaTmKQHwjbBMTNFBlURWDtXO4oQ2AOFv2WPA6Q37krodkNWJh
vemrycxprXRblfSSQENGqobRLDbERxnrk9+BrWsO8QPadHicbFzy+QEmHKnAV/Ed
yPz2Y3Ufx79x06uGLBoCgzTqV1jVxR9J7qZcKO7cSgtGlo1Bi9BJ6mTwe/0MTfja
UzJ5M4r6fDPFPyXtAw1v3pZPYaoCUMPbzXtynFym8nEqU3d+5OXcGiJEVP7SqU3h
yUyCQeILSoyb8T/kIyAWcL7gc/atOKCZ2tQQReQP95Ux
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:52 2024 by rpki-client on console-fra.rpki-client.org