Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/idLPFlKxqbvJLHL5lPX2Cr5KxB8.roa
File: idLPFlKxqbvJLHL5lPX2Cr5KxB8.roa (raw, json)
Hash identifier: DXxTP1TQ3dtADlLWqBv1YzIfwOs0PJZhm7c8BxoQ6TI=
Subject key identifier: 89:D2:CF:16:52:B1:A9:BB:C9:2C:72:F9:94:F5:F6:0A:BE:4A:C4:1F
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01856F5DB2042C28CBCDAB25D8AF8833D903
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/idLPFlKxqbvJLHL5lPX2Cr5KxB8.roa
Signing time: Sun 01 Jan 2023 22:04:49 +0000
ROA not before: Sun 01 Jan 2023 22:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34865
IP address blocks: 87.107.168.0/22 maxlen: 22
87.107.112.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:b2:04:2c:28:cb:cd:ab:25:d8:af:88:33:d9:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 22:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89d2cf1652b1a9bbc92c72f994f5f60abe4ac41f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:35:8e:78:7e:1c:fc:58:a4:f9:35:7b:aa:ef:
c7:1c:e4:6b:5e:53:f0:6d:f4:74:10:5c:d9:b1:70:
25:a6:41:46:5a:5a:c5:06:5c:85:68:59:7a:94:0d:
e0:07:1b:04:0b:9a:77:d0:fb:b2:ea:c6:fe:6a:70:
ad:14:e7:75:1d:f6:5a:1a:39:66:89:37:cf:b2:06:
7c:b2:ad:21:3d:9c:50:b5:36:e2:f0:a2:87:73:97:
67:63:82:48:48:af:4f:da:d7:38:3c:72:c9:e3:d4:
a3:2b:ba:c3:54:96:3b:73:4d:7f:c0:39:0c:a8:31:
de:ce:10:f6:e3:e1:9d:7c:ca:e6:ca:5d:34:82:ad:
9a:15:91:f7:16:06:84:e5:8a:8c:c2:c3:c5:b3:12:
7d:c9:44:13:2e:33:4c:98:08:a9:2c:a8:b5:ba:75:
22:ec:e7:4d:2f:7a:0e:94:5a:e3:ff:bc:19:77:fa:
44:2c:b7:66:69:77:7b:1b:b0:f4:09:f3:3b:11:32:
9e:b0:a4:d7:fb:dc:d2:9c:bc:59:6a:37:52:a9:e5:
e5:bf:58:42:a9:be:3a:65:a2:64:7f:dd:07:ce:44:
18:30:67:e9:df:05:06:6d:db:77:d1:9f:0b:5d:04:
cf:0c:d7:50:59:79:63:f3:96:87:aa:3e:e3:d4:6c:
13:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D2:CF:16:52:B1:A9:BB:C9:2C:72:F9:94:F5:F6:0A:BE:4A:C4:1F
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/idLPFlKxqbvJLHL5lPX2Cr5KxB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.112.0/22
87.107.168.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:a3:f9:fc:09:40:45:47:df:48:38:7c:a4:0c:55:31:2b:ab:
43:69:5f:3e:4d:9f:f8:0f:e6:3a:6d:4e:dd:62:d5:ce:02:88:
9f:c1:4e:f7:f5:62:10:2c:40:06:56:a4:d7:e8:df:36:59:6b:
ec:bd:ab:6e:17:ac:bf:9e:1e:a1:c6:c2:6e:96:e8:f3:19:49:
f7:f2:d2:06:18:a5:ba:fe:c0:42:c3:cf:ab:12:f4:d4:4d:6f:
68:67:51:77:7a:40:93:14:a4:a2:ab:22:51:d7:73:26:e4:3d:
77:37:fb:a8:57:4c:1b:fe:9a:3f:7f:b4:c2:86:94:d1:80:d2:
30:d0:fd:38:3a:5f:22:27:9e:fa:58:d3:a2:b5:c7:6a:88:9b:
ab:63:d6:1f:d8:10:ea:1d:40:db:eb:1b:39:44:1a:c2:c0:e1:
a9:51:c7:08:b3:47:2e:4a:bf:0c:c9:2a:e1:fc:87:ed:58:f2:
15:8b:fe:b4:60:ee:87:cc:c8:4f:ab:9e:0d:9e:30:dc:f9:76:
52:70:12:06:bf:c2:31:72:6b:94:a1:e7:1f:0c:7b:1a:7f:93:
ef:15:42:dd:12:3b:f2:62:ef:21:90:77:45:d0:f2:e1:8e:63:
4a:a6:a9:d2:0a:69:64:6a:23:fa:77:4f:c4:88:bf:56:33:9f:
3c:8e:ec:e3
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVvXbIELCjLzasl2K+IM9kDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMwMTAxMjIwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWQyY2YxNjUyYjFhOWJiYzkyYzcyZjk5NGY1ZjYwYWJlNGFjNDFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszWOeH4c/Fik+TV7qu/HHORrXlPw
bfR0EFzZsXAlpkFGWlrFBlyFaFl6lA3gBxsEC5p30Puy6sb+anCtFOd1HfZaGjlm
iTfPsgZ8sq0hPZxQtTbi8KKHc5dnY4JISK9P2tc4PHLJ49SjK7rDVJY7c01/wDkM
qDHezhD24+GdfMrmyl00gq2aFZH3FgaE5YqMwsPFsxJ9yUQTLjNMmAipLKi1unUi
7OdNL3oOlFrj/7wZd/pELLdmaXd7G7D0CfM7ETKesKTX+9zSnLxZajdSqeXlv1hC
qb46ZaJkf90HzkQYMGfp3wUGbdt30Z8LXQTPDNdQWXlj85aHqj7j1GwTvwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFInSzxZSsam7ySxy+ZT19gq+SsQfMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvaWRMUEZsS3hxYnZKTEhMNWxQWDJDcjVLeEI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCV2twAwQC
V2uoMA0GCSqGSIb3DQEBCwUAA4IBAQAso/n8CUBFR99IOHykDFUxK6tDaV8+TZ/4
D+Y6bU7dYtXOAoifwU739WIQLEAGVqTX6N82WWvsvatuF6y/nh6hxsJulujzGUn3
8tIGGKW6/sBCw8+rEvTUTW9oZ1F3ekCTFKSiqyJR13Mm5D13N/uoV0wb/po/f7TC
hpTRgNIw0P04Ol8iJ576WNOitcdqiJurY9Yf2BDqHUDb6xs5RBrCwOGpUccIs0cu
Sr8MySrh/IftWPIVi/60YO6HzMhPq54NnjDc+XZScBIGv8IxcmuUoecfDHsaf5Pv
FULdEjvyYu8hkHdF0PLhjmNKpqnSCmlkaiP6d0/EiL9WM588juzj
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org