Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/A3FlIBvi-7w7kArXfdJIeo0G2Bo.roa
File: A3FlIBvi-7w7kArXfdJIeo0G2Bo.roa (raw, json)
Hash identifier: +MwSOKvD7plB88y2M2ud+57caoRmAqNqGvhadQZ+lLQ=
Subject key identifier: 03:71:65:20:1B:E2:FB:BC:3B:90:0A:D7:7D:D2:48:7A:8D:06:D8:1A
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018889D49D400C38B03022B97178321A6B67
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/A3FlIBvi-7w7kArXfdJIeo0G2Bo.roa
Signing time: Mon 05 Jun 2023 04:33:12 +0000
ROA not before: Mon 05 Jun 2023 04:33:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35409
IP address blocks: 89.47.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 04:33:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:89:d4:9d:40:0c:38:b0:30:22:b9:71:78:32:1a:6b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jun 5 04:33:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=037165201be2fbbc3b900ad77dd2487a8d06d81a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5d:85:cb:b3:0f:00:11:c0:0d:ea:4c:44:0b:
64:e2:45:14:f1:e0:43:85:ef:b9:b0:65:e6:70:14:
a8:96:97:bc:b7:04:46:40:17:8e:9f:d8:64:86:af:
1d:1c:7b:0e:74:04:c8:96:7d:dc:8d:44:6c:8f:33:
5b:33:bc:44:95:2a:44:d2:84:67:a0:6a:39:f0:05:
50:44:18:6f:1a:3b:26:56:91:a4:86:e7:39:4d:8b:
f5:af:c8:d1:f4:b3:9b:1b:db:2a:94:3f:8c:2f:27:
e4:78:db:8c:f9:bc:52:ed:a5:f1:55:9c:f9:63:7c:
54:30:d8:76:c5:d3:13:36:66:ab:13:53:e0:18:82:
2b:55:93:b9:2f:9f:9e:c2:99:65:3f:98:c8:81:11:
f0:33:e3:8c:fd:1b:09:50:1e:07:b2:fc:02:51:2a:
cc:b2:e9:c7:5c:05:ae:ee:26:74:17:5f:02:60:c8:
c7:f5:78:20:0a:42:12:70:d9:72:98:cf:5b:61:ba:
e5:7d:6f:b0:ca:0c:4c:6a:f5:8d:02:82:38:e9:c2:
d1:74:6a:d6:a9:e5:d6:19:4d:cb:7c:7b:1a:2f:8f:
19:6e:97:f6:fb:a0:0f:53:5c:39:bf:17:3e:42:e1:
77:6a:18:11:0f:18:e6:a2:78:14:8e:7c:a5:9b:0a:
2e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:71:65:20:1B:E2:FB:BC:3B:90:0A:D7:7D:D2:48:7A:8D:06:D8:1A
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/A3FlIBvi-7w7kArXfdJIeo0G2Bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.89.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:28:29:23:8c:d4:4b:c9:bc:2e:f0:96:b4:43:34:44:19:e1:
4c:e1:e3:a0:e4:b0:95:5a:75:26:40:4f:44:53:3a:c3:5a:9b:
36:95:97:44:61:c6:e7:ef:8f:d4:48:58:93:66:e8:5a:6a:4d:
48:67:cb:2d:07:f9:c4:f6:df:cd:f1:8c:0c:53:18:01:30:35:
42:a7:ec:3c:84:87:bc:20:2e:6f:1c:c9:1b:a9:a3:8c:c0:3d:
10:3f:ca:95:5f:2e:f7:4d:01:b0:4e:a3:6b:9f:99:7a:f7:92:
f2:a1:d4:71:2b:3e:a2:a9:49:ac:d7:ec:e2:d7:89:b7:68:66:
f9:56:c7:d9:03:96:34:bc:c1:15:87:5e:88:22:fa:14:36:e0:
32:ef:87:0f:17:5a:b9:5f:e5:bd:d8:c9:b7:9d:4a:2d:ee:6e:
4e:e2:99:ef:27:8d:72:97:69:f5:34:90:67:be:46:01:dc:64:
3b:3e:97:cb:7b:a9:dc:24:51:57:65:2c:cc:ac:a2:16:0c:46:
7c:6f:04:0b:79:5e:63:60:52:49:ca:9c:ba:7b:e2:fc:1d:16:
10:09:61:e2:15:13:47:ae:5c:88:3e:7c:c7:ae:66:55:1b:da:
29:0e:26:6d:59:b6:4f:d1:f2:d3:39:a4:bf:92:04:b2:f0:ee:
c3:26:3d:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYiJ1J1ADDiwMCK5cXgyGmtnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjMwNjA1MDQzMzEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzcxNjUyMDFiZTJmYmJjM2I5MDBhZDc3ZGQyNDg3YThkMDZkODFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqF2Fy7MPABHADepMRAtk4kUU8eBD
he+5sGXmcBSolpe8twRGQBeOn9hkhq8dHHsOdATIln3cjURsjzNbM7xElSpE0oRn
oGo58AVQRBhvGjsmVpGkhuc5TYv1r8jR9LObG9sqlD+MLyfkeNuM+bxS7aXxVZz5
Y3xUMNh2xdMTNmarE1PgGIIrVZO5L5+ewpllP5jIgRHwM+OM/RsJUB4HsvwCUSrM
sunHXAWu7iZ0F18CYMjH9XggCkIScNlymM9bYbrlfW+wygxMavWNAoI46cLRdGrW
qeXWGU3LfHsaL48Zbpf2+6APU1w5vxc+QuF3ahgRDxjmongUjnylmwousQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFANxZSAb4vu8O5AK133SSHqNBtgaMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvQTNGbElCdmktN3c3a0FyWGZkSkllbzBHMkJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWS9ZMA0G
CSqGSIb3DQEBCwUAA4IBAQCOKCkjjNRLybwu8Ja0QzREGeFM4eOg5LCVWnUmQE9E
UzrDWps2lZdEYcbn74/USFiTZuhaak1IZ8stB/nE9t/N8YwMUxgBMDVCp+w8hIe8
IC5vHMkbqaOMwD0QP8qVXy73TQGwTqNrn5l695LyodRxKz6iqUms1+zi14m3aGb5
VsfZA5Y0vMEVh16IIvoUNuAy74cPF1q5X+W92Mm3nUot7m5O4pnvJ41yl2n1NJBn
vkYB3GQ7PpfLe6ncJFFXZSzMrKIWDEZ8bwQLeV5jYFJJypy6e+L8HRYQCWHiFRNH
rlyIPnzHrmZVG9opDiZtWbZP0fLTOaS/kgSy8O7DJj3f
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:44 2024 by rpki-client on console-fra.rpki-client.org