Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/hj3pbPJB_eD0V-FY91jqlzQVPAA.roa
File: hj3pbPJB_eD0V-FY91jqlzQVPAA.roa (raw, json)
Hash identifier: AfZ/6x0B19KtxMDWe/Z8sJ/3ihBJupntiThhqQG86pQ=
Subject key identifier: 86:3D:E9:6C:F2:41:FD:E0:F4:57:E1:58:F7:58:EA:97:34:15:3C:00
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 01857102DB12568FDE5587EA11C0A9C879B8
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/hj3pbPJB_eD0V-FY91jqlzQVPAA.roa
Signing time: Mon 02 Jan 2023 05:44:50 +0000
ROA not before: Mon 02 Jan 2023 05:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205361
IP address blocks: 147.161.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Apr 2023 09:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:db:12:56:8f:de:55:87:ea:11:c0:a9:c8:79:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Jan 2 05:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=863de96cf241fde0f457e158f758ea9734153c00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e8:ac:d1:5a:1f:26:40:e6:a7:a2:3a:5e:dc:
cd:2e:7c:6d:b3:f7:fa:ed:81:04:84:b3:f0:b9:4b:
bc:bd:d6:3d:33:f0:fb:50:d6:92:36:75:d0:54:9a:
9f:90:4b:0b:ae:cc:d2:c1:e8:09:32:f2:c4:32:0c:
d7:a6:ac:be:a6:e4:2f:b7:f5:33:25:36:e7:ab:43:
be:3f:78:d9:d3:69:e7:ec:1f:8d:df:b0:85:7a:50:
ab:c9:cf:2b:b0:12:eb:ee:15:06:04:ea:01:55:85:
79:f3:bf:a6:3d:9d:e5:21:b3:a6:d6:d1:d4:50:a8:
a8:8f:44:2e:94:80:d4:5e:c4:40:83:0e:15:1a:6a:
1c:a5:04:8a:00:6e:f9:f7:d0:42:89:53:8d:64:7b:
79:e1:b3:c3:62:12:2d:75:53:20:b8:4b:54:ee:37:
2f:ee:18:38:38:28:60:6e:c8:90:42:ef:45:2d:e5:
d5:f6:f3:07:5c:4f:c9:0e:c7:bd:ec:87:64:a0:b4:
e0:b3:95:c8:d7:f5:c3:9f:bc:8d:69:71:82:93:de:
97:7d:32:14:2f:12:37:b6:cd:cc:c5:51:2b:dd:82:
f6:4e:29:d3:de:63:f2:ad:15:27:a3:f4:7c:8b:30:
7b:33:a1:5f:05:fd:7e:69:7b:1b:71:db:36:75:eb:
0c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:3D:E9:6C:F2:41:FD:E0:F4:57:E1:58:F7:58:EA:97:34:15:3C:00
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/hj3pbPJB_eD0V-FY91jqlzQVPAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.3.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:2f:ca:b2:7b:3f:75:36:a7:f1:e3:39:76:00:cc:a0:c3:eb:
a2:08:dd:0d:8e:7a:3b:ad:f7:b8:22:d6:84:ac:03:b0:25:3a:
e1:de:22:4e:d2:18:bc:04:fb:b0:11:1f:0e:75:e1:03:b1:d3:
da:7f:25:05:9e:89:8a:fe:e1:08:74:e6:d1:13:06:2e:65:37:
d2:78:1e:1c:3d:47:17:c2:c5:83:96:6e:97:24:e5:c9:ac:79:
81:be:b0:75:79:71:8b:17:8a:7c:88:f1:98:5e:cf:c2:0a:df:
68:13:88:1c:89:63:f2:00:cd:c0:8b:88:36:ca:3b:e7:0f:6d:
1e:3d:92:b9:ab:99:af:1e:e0:22:6b:48:31:34:89:e7:3c:4a:
14:08:4e:d5:2e:74:c6:4d:b3:86:30:03:32:57:e7:b7:4d:44:
54:48:56:f1:ad:bc:6f:c9:d8:85:cd:4a:32:db:cf:96:27:18:
59:e9:41:9b:b8:26:03:6f:cd:40:9e:6b:25:9e:87:67:27:1a:
4b:32:07:6e:7e:ab:fe:af:08:d0:ba:f8:0f:d1:9e:3f:b5:47:
53:cf:a3:25:c1:12:c8:95:4d:23:cb:ac:19:34:e8:a2:67:67:
e9:c1:84:fe:dc:08:0b:ae:a0:fb:10:bf:9e:24:42:19:6c:ff:
d7:ad:42:7e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxAtsSVo/eVYfqEcCpyHm4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZTcyMDQ2NWM1Y2QwZGE5YzZhMTNiNDRmYTBkODZmNjQ5
ZTUwNTUwHhcNMjMwMTAyMDU0NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjNkZTk2Y2YyNDFmZGUwZjQ1N2UxNThmNzU4ZWE5NzM0MTUzYzAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+is0VofJkDmp6I6XtzNLnxts/f6
7YEEhLPwuUu8vdY9M/D7UNaSNnXQVJqfkEsLrszSwegJMvLEMgzXpqy+puQvt/Uz
JTbnq0O+P3jZ02nn7B+N37CFelCryc8rsBLr7hUGBOoBVYV587+mPZ3lIbOm1tHU
UKioj0QulIDUXsRAgw4VGmocpQSKAG7599BCiVONZHt54bPDYhItdVMguEtU7jcv
7hg4OChgbsiQQu9FLeXV9vMHXE/JDse97IdkoLTgs5XI1/XDn7yNaXGCk96XfTIU
LxI3ts3MxVEr3YL2TinT3mPyrRUno/R8izB7M6FfBf1+aXsbcds2desMWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIY96WzyQf3g9FfhWPdY6pc0FTwAMB8GA1UdIwQY
MBaAFJLnIEZcXNDanGoTtE+g2G9knlBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3VjZ1JseGMwTnFjYWhPMFQ2RFliMlNlVUZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9mOGE5ZWItN2Y4ZC00YmY3LTgzZDkt
OTA5NmUxNjc0ZTIyLzEvaGozcGJQSkJfZUQwVi1GWTkxanFselFWUEFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS9mOGE5ZWItN2Y4ZC00YmY3LTgzZDktOTA5NmUxNjc0ZTIy
LzEva3VjZ1JseGMwTnFjYWhPMFQ2RFliMlNlVUZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk6EDMA0G
CSqGSIb3DQEBCwUAA4IBAQB8L8qyez91Nqfx4zl2AMygw+uiCN0Njno7rfe4ItaE
rAOwJTrh3iJO0hi8BPuwER8OdeEDsdPafyUFnomK/uEIdObREwYuZTfSeB4cPUcX
wsWDlm6XJOXJrHmBvrB1eXGLF4p8iPGYXs/CCt9oE4gciWPyAM3Ai4g2yjvnD20e
PZK5q5mvHuAia0gxNInnPEoUCE7VLnTGTbOGMAMyV+e3TURUSFbxrbxvydiFzUoy
28+WJxhZ6UGbuCYDb81AnmslnodnJxpLMgdufqv+rwjQuvgP0Z4/tUdTz6MlwRLI
lU0jy6wZNOiiZ2fpwYT+3AgLrqD7EL+eJEIZbP/XrUJ+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:20 2024 by rpki-client on console-fra.rpki-client.org