Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/IhzDwW8pilQu5c0-EZjO3fw_AdE.roa
File: IhzDwW8pilQu5c0-EZjO3fw_AdE.roa (raw, json)
Hash identifier: MNgar8ILaQT294OG97KQa2JgZpjJTe7Ptv//fLzMOK8=
Subject key identifier: 22:1C:C3:C1:6F:29:8A:54:2E:E5:CD:3E:11:98:CE:DD:FC:3F:01:D1
Certificate issuer: /CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Certificate serial: 0188DE5ADCEB72C147987430928861DC79F0
Authority key identifier: FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/IhzDwW8pilQu5c0-EZjO3fw_AdE.roa
Signing time: Wed 21 Jun 2023 14:27:56 +0000
ROA not before: Wed 21 Jun 2023 14:27:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 217.28.130.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:de:5a:dc:eb:72:c1:47:98:74:30:92:88:61:dc:79:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Validity
Not Before: Jun 21 14:27:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=221cc3c16f298a542ee5cd3e1198ceddfc3f01d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5f:b2:ce:f4:44:9e:4f:13:20:5a:69:8d:35:
05:07:ad:e5:5b:e3:b4:af:33:9d:33:b7:42:c7:ec:
0f:90:82:b7:77:f1:3f:20:8c:ce:23:74:f1:1a:4b:
40:50:ed:72:5e:19:60:cd:ea:d1:51:d4:6d:f7:be:
2a:ad:35:9b:93:76:bf:cb:a8:46:18:e2:6f:5d:3b:
2a:38:1d:fd:de:7d:20:37:9f:97:98:d3:f6:73:72:
67:87:86:50:85:a6:ee:07:d6:8c:2a:22:5a:85:5f:
c8:58:67:cd:49:d6:b0:7a:5c:75:4b:4a:c6:27:21:
42:8b:dd:a1:06:49:a2:3f:1c:b9:6b:bd:56:99:46:
00:0a:b1:b0:0b:77:ec:6b:e0:f8:1a:70:c7:b6:aa:
a8:24:6d:d0:10:e2:53:37:39:97:98:ac:f3:b7:e2:
34:ec:59:a0:93:3e:45:d2:47:ab:b0:5b:c8:ce:19:
41:aa:7f:90:76:87:56:4f:9b:01:70:bd:7d:0b:14:
58:56:04:63:6d:c7:21:2d:48:70:3a:28:5b:f0:49:
20:e3:ab:72:da:2c:f2:b7:5b:02:6c:0f:5f:6d:86:
d0:2d:02:8a:c5:ca:db:7b:3f:8d:96:81:82:2b:e5:
ca:0a:ee:24:c8:3a:7c:7f:62:bc:f9:be:fd:9d:bb:
c9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1C:C3:C1:6F:29:8A:54:2E:E5:CD:3E:11:98:CE:DD:FC:3F:01:D1
X509v3 Authority Key Identifier:
keyid:FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/IhzDwW8pilQu5c0-EZjO3fw_AdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.130.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:dc:a1:ca:78:37:62:fd:82:d0:99:f4:84:af:77:ce:e7:48:
35:8c:b4:f3:dd:bc:39:3f:22:62:c5:78:7a:15:72:76:95:67:
76:30:b8:b3:20:12:47:b8:44:dd:f0:cd:94:e6:b4:c8:f3:88:
ef:b8:05:9a:7d:cb:c6:0c:64:14:b5:c1:80:01:05:ee:6c:20:
92:f6:d0:f1:bb:b2:69:b6:aa:17:7a:29:db:4f:d9:1d:4d:fd:
82:34:31:6d:a1:e9:2a:89:42:78:02:5f:22:84:8f:4c:c1:3d:
b0:79:8e:07:cd:d1:10:83:a6:44:83:77:9a:d5:6f:89:f3:8b:
2b:63:4c:31:3f:29:9b:ff:3e:9b:d5:7a:d5:76:75:3c:85:60:
7c:1d:ee:89:e6:76:96:2c:76:7c:bd:e0:db:7c:df:d2:2a:34:
e4:e7:5c:26:8a:b2:b1:a9:f4:a0:52:17:9b:b4:b0:09:5a:f5:
5c:1d:5d:b5:59:b0:45:37:de:64:44:bb:8a:d1:0d:0f:cd:b0:
38:a2:39:8d:2b:19:fa:72:d3:68:53:14:18:a5:4a:06:d4:19:
fe:9f:a3:c1:15:8e:65:7a:5f:fb:b6:d0:1a:84:0a:e2:07:bd:
a6:af:b9:1c:5f:33:a0:53:84:3e:4f:41:50:0e:7f:5d:04:2a:
2d:df:bf:31
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYjeWtzrcsFHmHQwkohh3HnwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiMjljZjIzZmM5Y2U2ZTJiOGMzOTMyM2QyNzBjZTUyZTg5
Mzg3MDIwHhcNMjMwNjIxMTQyNzU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjFjYzNjMTZmMjk4YTU0MmVlNWNkM2UxMTk4Y2VkZGZjM2YwMWQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkl+yzvREnk8TIFppjTUFB63lW+O0
rzOdM7dCx+wPkIK3d/E/IIzOI3TxGktAUO1yXhlgzerRUdRt974qrTWbk3a/y6hG
GOJvXTsqOB393n0gN5+XmNP2c3Jnh4ZQhabuB9aMKiJahV/IWGfNSdawelx1S0rG
JyFCi92hBkmiPxy5a71WmUYACrGwC3fsa+D4GnDHtqqoJG3QEOJTNzmXmKzzt+I0
7Fmgkz5F0kersFvIzhlBqn+QdodWT5sBcL19CxRYVgRjbcchLUhwOihb8Ekg46ty
2izyt1sCbA9fbYbQLQKKxcrbez+NloGCK+XKCu4kyDp8f2K8+b79nbvJuQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFCIcw8FvKYpULuXNPhGYzt38PwHRMB8GA1UdIwQY
MBaAFPspzyP8nObiuMOTI9JwzlLok4cCMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS15blBJX3ljNXVLNHc1TWowbkRPVXVpVGh3SS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAvOWZkMDAzLTA2ZjctNDVkOC1hNWRk
LTA3NmJmMDJkY2RkOS8xL0loekR3VzhwaWxRdTVjMC1FWmpPM2Z3X0FkRS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYjAvOWZkMDAzLTA2ZjctNDVkOC1hNWRkLTA3NmJmMDJkY2Rk
OS8xLzEteW5QSV95YzV1SzR3NU1qMG5ET1V1aVRod0kuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADZHIIw
DQYJKoZIhvcNAQELBQADggEBAK7cocp4N2L9gtCZ9ISvd87nSDWMtPPdvDk/ImLF
eHoVcnaVZ3YwuLMgEke4RN3wzZTmtMjziO+4BZp9y8YMZBS1wYABBe5sIJL20PG7
smm2qhd6KdtP2R1N/YI0MW2h6SqJQngCXyKEj0zBPbB5jgfN0RCDpkSDd5rVb4nz
iytjTDE/KZv/PpvVetV2dTyFYHwd7onmdpYsdny94Nt839IqNOTnXCaKsrGp9KBS
F5u0sAla9VwdXbVZsEU33mREu4rRDQ/NsDiiOY0rGfpy02hTFBilSgbUGf6fo8EV
jmV6X/u20BqECuIHvaavuRxfM6BThD5PQVAOf10EKi3fvzE=
-----END CERTIFICATE-----
Generated at Thu Sep 21 16:49:31 2023 by rpki-client on console-fra.rpki-client.org