Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Un16RHW-qkykeaGmkRWHcKUyLXs.roa
File: Un16RHW-qkykeaGmkRWHcKUyLXs.roa (raw, json)
Hash identifier: MCdevHVqVOgezpyyhiWE17zCAgOI9NhbF5h0gGShvm8=
Subject key identifier: 52:7D:7A:44:75:BE:AA:4C:A4:79:A1:A6:91:15:87:70:A5:32:2D:7B
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01881FEEE42E9BFF8E3296BD2E16A4741799
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Un16RHW-qkykeaGmkRWHcKUyLXs.roa
Signing time: Mon 15 May 2023 15:02:09 +0000
ROA not before: Mon 15 May 2023 15:02:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61209
IP address blocks: 87.107.186.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:ee:e4:2e:9b:ff:8e:32:96:bd:2e:16:a4:74:17:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: May 15 15:02:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=527d7a4475beaa4ca479a1a691158770a5322d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2e:e5:ad:78:62:36:cf:8b:e8:a3:6a:c9:c0:
c1:62:aa:91:b1:ee:85:d1:fe:ca:ad:96:06:6a:30:
cb:96:1b:fa:b3:aa:23:9f:0e:6b:f9:d8:fb:95:c0:
0a:f9:8c:e8:ca:b1:00:59:30:3a:24:94:b0:28:a2:
9c:66:ab:27:c6:3f:a8:38:10:55:78:22:c2:13:34:
a3:46:00:d2:a3:18:d4:6a:5b:23:cb:f5:9d:c7:b2:
c3:b7:ea:a4:67:cd:18:da:35:55:c7:e4:65:17:d9:
e4:f1:b5:f8:d1:bf:55:7c:dd:b7:88:b3:79:f1:04:
b3:40:b6:e0:e8:3f:92:10:3c:69:23:88:d2:10:d0:
d6:77:a5:a9:05:02:83:ba:c0:86:e8:e8:a3:9b:56:
13:56:4d:00:e1:8b:a7:4f:f3:d9:5e:9d:01:66:da:
f6:ea:2f:f6:fe:ab:9e:41:d3:49:49:12:d3:c9:53:
6f:a3:58:b1:76:39:e8:20:8c:da:e7:55:15:76:50:
e4:d5:f1:86:0b:be:4d:5f:eb:6f:21:66:56:fa:0c:
f8:4f:49:29:0a:d5:23:07:ce:81:82:cc:8b:d0:02:
0a:ad:e3:c0:2e:90:a4:2b:fc:c4:56:ae:8c:d1:61:
bf:7e:30:a7:92:37:5f:1e:21:b5:e3:88:47:ea:de:
cc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7D:7A:44:75:BE:AA:4C:A4:79:A1:A6:91:15:87:70:A5:32:2D:7B
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Un16RHW-qkykeaGmkRWHcKUyLXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.186.0/23
Signature Algorithm: sha256WithRSAEncryption
69:3f:6c:e1:78:f1:f0:20:11:3f:dc:1e:d8:9d:34:f2:7f:03:
02:e8:31:4a:37:dd:8e:6e:35:63:35:5c:28:02:8e:41:00:c5:
78:e3:31:b7:4e:51:63:9c:d8:2c:49:ce:bb:32:84:12:c2:e1:
4f:4b:60:47:9d:fd:7a:83:e3:30:71:ca:c8:22:bc:a6:00:34:
e5:f2:28:2d:44:da:11:36:0c:a9:1b:5a:fb:2f:e4:fd:97:ab:
83:0a:11:ff:ec:f8:ee:13:53:b4:8a:c5:4f:93:ee:bb:cf:6c:
ff:99:5f:92:c7:e3:f8:37:55:ba:2a:96:76:ec:c6:bd:39:6e:
a0:ac:49:34:80:8a:d3:62:7f:68:7a:89:43:e7:28:15:d1:37:
60:05:11:47:13:89:fd:7c:04:75:b0:0c:f9:7e:90:4b:59:5e:
79:ca:da:6f:be:28:3a:22:bf:b3:22:64:02:28:d8:ac:ca:c5:
58:54:31:8c:c0:7b:8f:18:39:80:ee:78:e7:ab:77:c4:de:2b:
71:c9:29:c8:8d:4c:ea:fd:70:5f:47:4d:b1:ec:28:8b:a7:26:
d6:af:cf:4a:de:96:e2:dd:42:4f:48:01:46:c3:59:a2:20:9b:
2d:37:a8:73:d7:2c:eb:3a:64:bb:ae:e7:04:7e:5c:ad:6e:c6:
e1:4f:6d:b2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgf7uQum/+OMpa9LhakdBeZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMwNTE1MTUwMjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjdkN2E0NDc1YmVhYTRjYTQ3OWExYTY5MTE1ODc3MGE1MzIyZDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnC7lrXhiNs+L6KNqycDBYqqRse6F
0f7KrZYGajDLlhv6s6ojnw5r+dj7lcAK+YzoyrEAWTA6JJSwKKKcZqsnxj+oOBBV
eCLCEzSjRgDSoxjUalsjy/Wdx7LDt+qkZ80Y2jVVx+RlF9nk8bX40b9VfN23iLN5
8QSzQLbg6D+SEDxpI4jSENDWd6WpBQKDusCG6Oijm1YTVk0A4YunT/PZXp0BZtr2
6i/2/queQdNJSRLTyVNvo1ixdjnoIIza51UVdlDk1fGGC75NX+tvIWZW+gz4T0kp
CtUjB86BgsyL0AIKrePALpCkK/zEVq6M0WG/fjCnkjdfHiG144hH6t7MCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFJ9ekR1vqpMpHmhppEVh3ClMi17MB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvVW4xNlJIVy1xa3lrZWFHbWtSV0hjS1V5TFhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBV2u6MA0G
CSqGSIb3DQEBCwUAA4IBAQBpP2zhePHwIBE/3B7YnTTyfwMC6DFKN92ObjVjNVwo
Ao5BAMV44zG3TlFjnNgsSc67MoQSwuFPS2BHnf16g+MwccrIIrymADTl8igtRNoR
NgypG1r7L+T9l6uDChH/7PjuE1O0isVPk+67z2z/mV+Sx+P4N1W6KpZ27Ma9OW6g
rEk0gIrTYn9oeolD5ygV0TdgBRFHE4n9fAR1sAz5fpBLWV55ytpvvig6Ir+zImQC
KNisysVYVDGMwHuPGDmA7njnq3fE3itxySnIjUzq/XBfR02x7CiLpybWr89K3pbi
3UJPSAFGw1miIJstN6hz1yzrOmS7rucEflytbsbhT22y
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:35 2024 by rpki-client on console-fra.rpki-client.org