Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5737b0-bb24-4e92-b19d-5e65c7d61b9e/1/dgxHTozpzlyjmpS9e1JdnX4Jn_o.roa
File: dgxHTozpzlyjmpS9e1JdnX4Jn_o.roa (raw, json)
Hash identifier: 9cYXaoJG+XaR4lwgdgmwZPGe8TB6ud2MtMNKCp+uOZE=
Subject key identifier: 76:0C:47:4E:8C:E9:CE:5C:A3:9A:94:BD:7B:52:5D:9D:7E:09:9F:FA
Certificate issuer: /CN=dbcacaaf8ac13a964ab3d461935841c8e1c93b80
Certificate serial: 01856F4B63E6EF6EBAC6C74FB21ACBFD1C14
Authority key identifier: DB:CA:CA:AF:8A:C1:3A:96:4A:B3:D4:61:93:58:41:C8:E1:C9:3B:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28rKr4rBOpZKs9Rhk1hByOHJO4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5737b0-bb24-4e92-b19d-5e65c7d61b9e/1/dgxHTozpzlyjmpS9e1JdnX4Jn_o.roa
Signing time: Sun 01 Jan 2023 21:44:49 +0000
ROA not before: Sun 01 Jan 2023 21:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 553
IP address blocks: 141.79.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:63:e6:ef:6e:ba:c6:c7:4f:b2:1a:cb:fd:1c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcacaaf8ac13a964ab3d461935841c8e1c93b80
Validity
Not Before: Jan 1 21:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=760c474e8ce9ce5ca39a94bd7b525d9d7e099ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6e:6a:8c:92:42:1c:e6:d9:12:a1:e8:08:85:
85:0c:b8:29:a6:22:ff:03:ec:95:af:60:c5:f5:e4:
6d:6c:bc:a8:8d:0f:ab:93:33:ad:9d:09:a9:6b:f5:
6b:12:94:91:fb:e4:76:88:d2:91:a2:d9:4e:3e:fd:
f8:16:93:7e:18:56:54:0a:d6:bd:af:75:21:5c:cc:
5e:30:16:49:59:d9:8b:e6:ff:c7:4a:00:a7:80:c1:
7e:89:26:2a:d3:90:20:6e:8a:81:9a:5e:6f:d8:28:
ac:1d:6f:eb:09:4e:53:0b:b2:f4:d7:4a:8d:ea:20:
b1:c0:39:d7:08:1b:2e:dc:70:d2:35:26:8b:45:7a:
94:4b:07:f8:4c:c4:62:8f:5e:e9:39:b2:a2:a8:a1:
ba:29:c3:52:97:89:47:ed:fb:6d:61:22:33:7d:0c:
ae:f2:a5:2a:05:42:a4:de:c6:b1:d1:0a:98:97:ae:
47:ca:a9:8a:c4:d7:1a:75:30:d7:a6:2a:1a:40:49:
b3:6d:81:2e:bf:36:c5:44:d4:58:28:36:ff:c1:50:
4b:15:57:64:32:2d:c5:4e:9a:10:0a:d3:1a:f6:03:
2f:16:97:36:36:4d:4a:39:6d:f1:06:1b:31:11:6f:
c5:b6:9b:d7:12:c9:a3:7d:6c:6f:26:01:c8:6a:48:
a6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0C:47:4E:8C:E9:CE:5C:A3:9A:94:BD:7B:52:5D:9D:7E:09:9F:FA
X509v3 Authority Key Identifier:
keyid:DB:CA:CA:AF:8A:C1:3A:96:4A:B3:D4:61:93:58:41:C8:E1:C9:3B:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28rKr4rBOpZKs9Rhk1hByOHJO4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5737b0-bb24-4e92-b19d-5e65c7d61b9e/1/dgxHTozpzlyjmpS9e1JdnX4Jn_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5737b0-bb24-4e92-b19d-5e65c7d61b9e/1/28rKr4rBOpZKs9Rhk1hByOHJO4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.79.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bf:63:f2:cc:64:2a:2d:19:84:b8:71:48:9c:92:ae:8c:09:23:
0a:52:08:d6:86:00:d8:7e:d2:3e:50:36:db:c8:a2:45:70:c1:
9e:6c:1c:0d:c2:07:59:46:0b:d5:6b:77:f2:30:8c:9d:f3:c4:
bd:a6:db:17:a0:f2:f8:c2:15:41:81:26:34:89:13:87:a6:99:
90:3d:50:de:f9:4b:5b:6e:f9:dc:22:b1:15:8c:93:c8:2c:3e:
09:58:ef:98:e7:2e:dd:81:a1:40:7c:36:54:b7:12:10:0e:13:
65:9f:a2:3c:75:81:84:86:5d:2f:e9:8e:4e:40:38:52:e4:f7:
e5:60:68:81:f8:b2:42:b5:54:bb:38:07:38:e3:35:80:24:10:
d1:5a:4f:f8:0b:c5:62:46:51:ab:97:92:80:1e:21:6f:1f:7d:
d3:77:7a:5e:cc:c5:24:68:a9:7b:25:4c:d1:20:2b:3c:a7:26:
b5:f9:6f:a0:b8:7e:c5:f2:49:5d:18:ef:d3:ea:7d:c0:0e:91:
6d:ca:ff:8b:7b:7c:dd:e8:e6:bf:fe:ec:ad:6b:7e:f3:35:ba:
24:f7:c9:8c:6b:06:80:ce:22:c8:c8:85:54:16:de:23:7b:d3:
27:90:5b:92:9a:83:66:e0:a8:2a:a9:e9:91:51:0a:93:cb:34:
4f:71:59:79
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVvS2Pm7266xsdPshrL/RwUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiY2FjYWFmOGFjMTNhOTY0YWIzZDQ2MTkzNTg0MWM4ZTFj
OTNiODAwHhcNMjMwMTAxMjE0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjBjNDc0ZThjZTljZTVjYTM5YTk0YmQ3YjUyNWQ5ZDdlMDk5ZmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl25qjJJCHObZEqHoCIWFDLgppiL/
A+yVr2DF9eRtbLyojQ+rkzOtnQmpa/VrEpSR++R2iNKRotlOPv34FpN+GFZUCta9
r3UhXMxeMBZJWdmL5v/HSgCngMF+iSYq05AgboqBml5v2CisHW/rCU5TC7L010qN
6iCxwDnXCBsu3HDSNSaLRXqUSwf4TMRij17pObKiqKG6KcNSl4lH7fttYSIzfQyu
8qUqBUKk3sax0QqYl65HyqmKxNcadTDXpioaQEmzbYEuvzbFRNRYKDb/wVBLFVdk
Mi3FTpoQCtMa9gMvFpc2Nk1KOW3xBhsxEW/FtpvXEsmjfWxvJgHIakimLQIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFHYMR06M6c5co5qUvXtSXZ1+CZ/6MB8GA1UdIwQY
MBaAFNvKyq+KwTqWSrPUYZNYQcjhyTuAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjhyS3I0ckJPcFpLczlSaGsxaEJ5T0hKTzRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy81NzM3YjAtYmIyNC00ZTkyLWIxOWQt
NWU2NWM3ZDYxYjllLzEvZGd4SFRvenB6bHlqbXBTOWUxSmRuWDRKbl9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy81NzM3YjAtYmIyNC00ZTkyLWIxOWQtNWU2NWM3ZDYxYjll
LzEvMjhyS3I0ckJPcFpLczlSaGsxaEJ5T0hKTzRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjU8wDQYJ
KoZIhvcNAQELBQADggEBAL9j8sxkKi0ZhLhxSJySrowJIwpSCNaGANh+0j5QNtvI
okVwwZ5sHA3CB1lGC9Vrd/IwjJ3zxL2m2xeg8vjCFUGBJjSJE4emmZA9UN75S1tu
+dwisRWMk8gsPglY75jnLt2BoUB8NlS3EhAOE2Wfojx1gYSGXS/pjk5AOFLk9+Vg
aIH4skK1VLs4BzjjNYAkENFaT/gLxWJGUauXkoAeIW8ffdN3el7MxSRoqXslTNEg
KzynJrX5b6C4fsXySV0Y79PqfcAOkW3K/4t7fN3o5r/+7K1rfvM1uiT3yYxrBoDO
IsjIhVQW3iN70yeQW5Kag2bgqCqp6ZFRCpPLNE9xWXk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:42 2024 by rpki-client on console-fra.rpki-client.org