Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/0NEV3SRkaCmSt4QVcmV_fEK_1Yc.roa
File: 0NEV3SRkaCmSt4QVcmV_fEK_1Yc.roa (raw, json)
Hash identifier: kJS8tG1Jc/FhCD7NiHLJkV/X525ioKMuV6Zt+RbMsME=
Subject key identifier: D0:D1:15:DD:24:64:68:29:92:B7:84:15:72:65:7F:7C:42:BF:D5:87
Certificate issuer: /CN=df0198a7b3afdcdd7003562a0871878e238760ad
Certificate serial: 0187B366F4CD82982C0D9D9DDB959040945A
Authority key identifier: DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/0NEV3SRkaCmSt4QVcmV_fEK_1Yc.roa
Signing time: Mon 24 Apr 2023 13:14:41 +0000
ROA not before: Mon 24 Apr 2023 13:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206814
IP address blocks: 89.135.60.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b3:66:f4:cd:82:98:2c:0d:9d:9d:db:95:90:40:94:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df0198a7b3afdcdd7003562a0871878e238760ad
Validity
Not Before: Apr 24 13:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0d115dd2464682992b7841572657f7c42bfd587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:36:51:11:28:f7:13:7a:4e:0a:fa:2b:c9:e7:
9c:19:bd:ac:25:34:15:6a:56:a5:c3:ba:4d:5f:6f:
d3:1a:7f:3e:30:46:94:c8:71:cb:47:f3:9b:d9:90:
7c:d8:de:76:c7:0b:88:3d:4f:d6:9c:c6:11:5f:c8:
e8:4e:4d:f6:db:3a:a7:c1:99:a2:62:d9:d1:40:cc:
73:b7:3d:c7:cf:c0:0d:0c:3b:7c:e2:16:ac:f5:a4:
ee:26:69:b8:b5:39:05:02:c7:bd:28:32:8f:41:7b:
92:de:97:7d:a9:ed:0b:64:36:18:c8:24:02:a3:ec:
ce:a4:b5:59:c5:73:6b:52:7c:b3:f0:0d:77:76:48:
5c:10:77:98:10:46:3b:df:fb:f8:d5:0c:6f:a5:5a:
7f:6f:37:e5:58:f6:94:05:e0:fc:b2:14:a8:18:66:
bf:a3:08:61:6f:91:69:c8:08:62:87:ae:f6:df:0b:
c4:9f:81:3d:b3:d6:a7:c8:06:d6:88:8e:f1:3e:35:
e1:83:02:2e:c3:01:7e:ee:df:93:ec:c0:d0:7b:5c:
c4:1a:da:d3:eb:04:6c:cf:b0:44:b6:56:8f:c4:f2:
0a:35:56:27:93:a6:8d:f4:ee:3c:bf:e0:d9:9c:98:
25:42:6f:4f:5e:f2:fb:72:ad:55:ec:44:00:72:ef:
11:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D1:15:DD:24:64:68:29:92:B7:84:15:72:65:7F:7C:42:BF:D5:87
X509v3 Authority Key Identifier:
keyid:DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/0NEV3SRkaCmSt4QVcmV_fEK_1Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.135.60.0/24
Signature Algorithm: sha256WithRSAEncryption
37:5d:13:a2:61:77:13:0c:d4:c0:65:7b:e9:7f:9b:63:72:57:
68:d7:6c:63:76:06:51:0a:5e:b0:41:e3:44:ba:d0:38:d0:9a:
d6:ea:5b:94:14:df:69:ef:95:ac:d2:be:5f:91:68:d1:ab:f0:
eb:1f:b4:23:61:d0:72:66:e7:0f:ae:7a:ac:a7:2f:46:32:e6:
80:67:f3:81:4c:ca:c0:db:53:4d:27:d4:d6:9c:53:2b:83:01:
71:f3:0f:71:82:b0:13:45:86:c5:4c:aa:75:cf:b9:a9:58:39:
98:54:3d:08:9b:96:15:59:9a:02:05:22:f7:e4:03:dc:3e:d7:
9f:5b:e9:a7:92:14:64:2c:24:46:99:40:b9:d4:b1:08:6c:ef:
31:f1:d2:71:95:06:ac:b4:4b:b1:2f:2c:d9:36:c4:56:a5:a7:
47:fa:a4:5f:40:88:50:b5:65:26:2e:7d:b2:ca:b5:ae:f3:74:
c4:81:18:27:c0:98:67:b2:65:f8:dd:55:7b:56:4c:4b:da:2e:
41:e9:f9:d6:ad:b9:05:4b:ef:04:76:9f:ad:39:71:bf:8a:e9:
bb:4f:76:dc:42:bc:1c:a8:72:fd:ae:61:98:50:ac:51:6c:76:
f8:94:20:55:18:c7:9b:7f:f9:c0:f9:c1:9b:56:80:fe:ec:a7:
f4:e3:a8:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYezZvTNgpgsDZ2d25WQQJRaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmMDE5OGE3YjNhZmRjZGQ3MDAzNTYyYTA4NzE4NzhlMjM4
NzYwYWQwHhcNMjMwNDI0MTMxNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGQxMTVkZDI0NjQ2ODI5OTJiNzg0MTU3MjY1N2Y3YzQyYmZkNTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jZRESj3E3pOCvoryeecGb2sJTQV
alalw7pNX2/TGn8+MEaUyHHLR/Ob2ZB82N52xwuIPU/WnMYRX8joTk322zqnwZmi
YtnRQMxztz3Hz8ANDDt84has9aTuJmm4tTkFAse9KDKPQXuS3pd9qe0LZDYYyCQC
o+zOpLVZxXNrUnyz8A13dkhcEHeYEEY73/v41QxvpVp/bzflWPaUBeD8shSoGGa/
owhhb5FpyAhih6723wvEn4E9s9anyAbWiI7xPjXhgwIuwwF+7t+T7MDQe1zEGtrT
6wRsz7BEtlaPxPIKNVYnk6aN9O48v+DZnJglQm9PXvL7cq1V7EQAcu8R3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNDRFd0kZGgpkreEFXJlf3xCv9WHMB8GA1UdIwQY
MBaAFN8BmKezr9zdcANWKghxh44jh2CtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9kM2ZjYTYtZWNiNS00M2FhLThjOWQt
MGZjYzZjMzAxMWZjLzEvME5FVjNTUmthQ21TdDRRVmNtVl9mRUtfMVljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9kM2ZjYTYtZWNiNS00M2FhLThjOWQtMGZjYzZjMzAxMWZj
LzEvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWYc8MA0G
CSqGSIb3DQEBCwUAA4IBAQA3XROiYXcTDNTAZXvpf5tjcldo12xjdgZRCl6wQeNE
utA40JrW6luUFN9p75Ws0r5fkWjRq/DrH7QjYdByZucPrnqspy9GMuaAZ/OBTMrA
21NNJ9TWnFMrgwFx8w9xgrATRYbFTKp1z7mpWDmYVD0Im5YVWZoCBSL35APcPtef
W+mnkhRkLCRGmUC51LEIbO8x8dJxlQastEuxLyzZNsRWpadH+qRfQIhQtWUmLn2y
yrWu83TEgRgnwJhnsmX43VV7VkxL2i5B6fnWrbkFS+8Edp+tOXG/ium7T3bcQrwc
qHL9rmGYUKxRbHb4lCBVGMebf/nA+cGbVoD+7Kf046ib
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:45 2024 by rpki-client on console-ams.rpki-client.org