Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/sSV98pN-HtuOSWqbS-zLt1bC3rQ.roa
File: sSV98pN-HtuOSWqbS-zLt1bC3rQ.roa (raw, json)
Hash identifier: DJniZbsti4O/0BYpGi+g1wRjgZK6Kvp0o36fk9Hqs9Y=
Subject key identifier: B1:25:7D:F2:93:7E:1E:DB:8E:49:6A:9B:4B:EC:CB:B7:56:C2:DE:B4
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018B3805814BE688CC1D5BD2323357458158
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/sSV98pN-HtuOSWqbS-zLt1bC3rQ.roa
Signing time: Mon 16 Oct 2023 10:26:06 +0000
ROA not before: Mon 16 Oct 2023 10:26:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51026
IP address blocks: 81.12.24.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:38:05:81:4b:e6:88:cc:1d:5b:d2:32:33:57:45:81:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Oct 16 10:26:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1257df2937e1edb8e496a9b4beccbb756c2deb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:26:02:14:56:64:f6:ac:de:36:00:83:db:e9:
f1:9e:17:9a:87:96:a9:de:bf:70:ed:dd:a1:1f:03:
f8:d6:ea:c4:b1:89:24:47:aa:c7:1b:98:a2:de:13:
7f:c3:1e:2b:2a:91:6a:b4:a6:dc:ee:62:d3:15:f3:
05:b5:1c:99:05:a1:d5:92:05:ce:d7:80:cb:f0:e8:
f3:b1:53:7b:32:20:76:e8:ba:9b:7e:c4:e1:ca:e2:
ba:0c:97:3d:cf:92:27:31:d9:d9:21:79:cb:47:3a:
81:a7:d0:23:bf:e8:f7:ae:b0:42:c6:15:90:60:17:
bf:71:ef:51:3b:32:ae:5c:bf:57:f0:4d:e9:b8:0e:
2f:ce:b2:f9:8c:c6:bf:74:db:11:f4:ea:1e:17:82:
5d:21:7f:e3:ea:44:0a:9c:92:c5:ce:86:98:7a:2e:
e3:4e:44:81:7b:91:f7:7a:39:a9:97:40:85:5a:ec:
77:5b:8c:c6:d4:84:10:84:64:da:e9:bc:c4:9a:8e:
a8:26:28:bc:25:2a:fc:41:21:08:0d:a1:ae:97:30:
98:b0:ad:5f:ae:38:14:6f:76:7c:8e:76:89:3b:19:
e4:0b:3e:8d:c9:e7:9e:68:87:6f:61:5f:48:aa:97:
38:e4:7e:34:97:1f:1a:e4:8d:2f:1c:b9:a3:61:11:
48:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:25:7D:F2:93:7E:1E:DB:8E:49:6A:9B:4B:EC:CB:B7:56:C2:DE:B4
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/sSV98pN-HtuOSWqbS-zLt1bC3rQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.24.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:31:4d:1d:b1:47:f3:61:4b:02:2c:2b:a5:37:73:9a:0f:db:
f8:25:cf:44:b2:2c:97:0f:87:94:60:f8:e2:16:b3:e1:3b:2f:
0b:96:43:da:62:0b:4e:f1:b6:3b:e9:97:35:f2:53:fe:75:93:
c9:b4:90:c8:38:ad:93:e0:d4:2a:83:51:68:e1:10:08:d4:9c:
66:f5:33:9c:3a:32:db:21:89:a2:c1:85:7a:a6:10:94:f5:cd:
7b:eb:02:66:f4:81:fd:34:45:6f:c4:e2:87:03:cb:62:40:2b:
88:cf:9e:9e:b8:3f:82:eb:83:29:46:04:37:c6:ba:70:bf:10:
e6:47:c4:61:30:b7:9a:76:6e:9e:06:c0:bd:a3:79:aa:a7:c0:
ad:a6:fd:99:49:4c:a2:85:52:33:4b:46:76:50:00:01:c0:0e:
0d:ed:b0:7a:ab:26:c5:fb:98:d7:c1:74:1e:3e:e8:22:a3:d9:
f0:47:6f:f0:6e:6e:a9:ef:2e:3b:83:0d:86:0e:2e:a8:a7:90:
dc:9a:91:17:53:02:be:47:98:3c:18:bf:30:86:a0:29:a6:1c:
86:33:35:a2:c6:0c:2b:d1:4e:74:2c:93:5b:92:90:82:6f:5e:
8e:92:7b:13:fb:97:fd:11:b9:c6:93:c9:44:c7:ce:3c:25:41:
f4:55:35:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYs4BYFL5ojMHVvSMjNXRYFYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMxMDE2MTAyNjA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTI1N2RmMjkzN2UxZWRiOGU0OTZhOWI0YmVjY2JiNzU2YzJkZWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryYCFFZk9qzeNgCD2+nxnheah5ap
3r9w7d2hHwP41urEsYkkR6rHG5ii3hN/wx4rKpFqtKbc7mLTFfMFtRyZBaHVkgXO
14DL8OjzsVN7MiB26LqbfsThyuK6DJc9z5InMdnZIXnLRzqBp9Ajv+j3rrBCxhWQ
YBe/ce9ROzKuXL9X8E3puA4vzrL5jMa/dNsR9OoeF4JdIX/j6kQKnJLFzoaYei7j
TkSBe5H3ejmpl0CFWux3W4zG1IQQhGTa6bzEmo6oJii8JSr8QSEIDaGulzCYsK1f
rjgUb3Z8jnaJOxnkCz6NyeeeaIdvYV9Iqpc45H40lx8a5I0vHLmjYRFI3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLElffKTfh7bjklqm0vsy7dWwt60MB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvc1NWOThwTi1IdHVPU1dxYlMtekx0MWJDM3JRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCUQwYMA0G
CSqGSIb3DQEBCwUAA4IBAQAeMU0dsUfzYUsCLCulN3OaD9v4Jc9EsiyXD4eUYPji
FrPhOy8LlkPaYgtO8bY76Zc18lP+dZPJtJDIOK2T4NQqg1Fo4RAI1Jxm9TOcOjLb
IYmiwYV6phCU9c176wJm9IH9NEVvxOKHA8tiQCuIz56euD+C64MpRgQ3xrpwvxDm
R8RhMLeadm6eBsC9o3mqp8Ctpv2ZSUyihVIzS0Z2UAABwA4N7bB6qybF+5jXwXQe
Pugio9nwR2/wbm6p7y47gw2GDi6op5DcmpEXUwK+R5g8GL8whqApphyGMzWixgwr
0U50LJNbkpCCb16OknsT+5f9EbnGk8lEx848JUH0VTWl
-----END CERTIFICATE-----
Generated at Wed Nov 1 10:20:39 2023 by rpki-client on console-ams.rpki-client.org