Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/JLkW6ud6vvpc2wOw6AioJRmsCu0.roa
File: JLkW6ud6vvpc2wOw6AioJRmsCu0.roa (raw, json)
Hash identifier: 2XO/6tk0V/LWSc0w7C95WUs+eEfQjDzCyYka3oso0OA=
Subject key identifier: 24:B9:16:EA:E7:7A:BE:FA:5C:DB:03:B0:E8:08:A8:25:19:AC:0A:ED
Certificate issuer: /CN=a79bba2805a988954e4fec42570530f16f9e7093
Certificate serial: 01856BAED0ACE3ADFB50398C427A0241A02D
Authority key identifier: A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/JLkW6ud6vvpc2wOw6AioJRmsCu0.roa
Signing time: Sun 01 Jan 2023 04:54:56 +0000
ROA not before: Sun 01 Jan 2023 04:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199156
IP address blocks: 81.171.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:d0:ac:e3:ad:fb:50:39:8c:42:7a:02:41:a0:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79bba2805a988954e4fec42570530f16f9e7093
Validity
Not Before: Jan 1 04:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24b916eae77abefa5cdb03b0e808a82519ac0aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:60:cd:a1:69:f2:3f:28:d8:4d:2b:a9:19:9c:
92:ea:cd:89:7d:3d:91:aa:0c:43:e3:26:81:b0:6c:
74:c9:04:5c:7b:af:f5:a8:78:70:40:45:a4:9f:f8:
55:16:eb:5c:49:9d:94:a6:a0:3c:29:0c:c9:be:28:
39:ee:49:3f:53:66:ff:cc:61:d5:c0:c9:f6:bc:db:
b8:10:fe:18:c6:12:48:46:56:78:fb:d3:88:2d:07:
a8:95:d5:64:e8:f6:a4:da:ad:7f:82:44:16:e1:0f:
2b:80:54:43:ad:7a:ba:d0:32:84:b2:b4:b4:58:3b:
04:05:11:68:99:a9:78:fd:51:16:e2:43:4a:07:92:
bd:41:43:80:f6:96:0a:38:57:0c:5c:06:51:3d:75:
2c:c0:0f:a9:a2:18:29:cf:f5:74:cb:c0:f8:ee:11:
1d:69:2f:e6:36:5a:aa:5f:95:c7:52:3e:2a:a0:c8:
e5:8a:bd:4a:f4:3a:56:4c:30:3d:2a:dc:61:42:41:
1b:0c:c8:e4:14:bf:81:25:38:b2:f7:24:73:a3:a2:
96:a6:b7:bb:79:63:07:d5:db:73:20:ed:5a:88:7e:
e0:86:4e:ed:14:a3:90:2e:ff:2c:c2:fd:ef:40:16:
4e:87:c6:f2:5d:bb:de:84:b2:47:2b:e4:0c:2e:6d:
34:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B9:16:EA:E7:7A:BE:FA:5C:DB:03:B0:E8:08:A8:25:19:AC:0A:ED
X509v3 Authority Key Identifier:
keyid:A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/JLkW6ud6vvpc2wOw6AioJRmsCu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.171.123.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:1f:bc:18:da:ca:ed:dc:a1:33:7a:5c:53:7c:5c:0c:db:7d:
73:e7:f1:fc:9e:2b:d8:da:bf:6a:af:8c:25:0e:d8:7c:f6:80:
4e:3e:6b:01:5b:6a:9f:bd:ca:02:11:b3:3e:04:3d:a1:eb:bd:
91:0d:aa:1c:7a:d3:d5:5b:37:52:90:25:fb:b4:e4:52:da:2b:
37:31:8a:51:b6:d3:9c:82:1c:45:51:2d:fc:7a:4e:9f:a3:98:
85:ea:6b:ab:b9:e3:6e:1e:4b:3a:a3:e1:d1:60:fb:4c:c5:26:
a1:bc:39:21:9e:ce:f5:f1:47:eb:8c:bc:32:8e:92:63:d8:4b:
c9:84:22:2f:3a:7c:69:f2:7b:26:2a:c1:48:73:c4:50:40:85:
bd:a1:fc:c7:23:0e:26:90:db:9b:5f:3a:da:d3:72:78:bf:28:
44:48:d5:02:2b:66:df:d8:0f:20:70:30:55:e6:ff:4c:6e:ec:
bf:26:dc:3f:f5:ee:16:a2:09:03:8c:9d:cd:bd:c4:f2:fd:f7:
58:b8:98:eb:40:70:18:98:54:d8:b1:59:83:6f:72:32:bf:b0:
ca:ae:db:09:27:6c:79:88:96:9c:2b:9f:39:25:d1:5c:7e:9a:
66:74:ab:aa:7e:0c:08:e5:58:b8:09:3a:e9:d5:6a:24:87:d8:
61:fc:8d:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrrtCs4637UDmMQnoCQaAtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3OWJiYTI4MDVhOTg4OTU0ZTRmZWM0MjU3MDUzMGYxNmY5
ZTcwOTMwHhcNMjMwMTAxMDQ1NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGI5MTZlYWU3N2FiZWZhNWNkYjAzYjBlODA4YTgyNTE5YWMwYWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGDNoWnyPyjYTSupGZyS6s2JfT2R
qgxD4yaBsGx0yQRce6/1qHhwQEWkn/hVFutcSZ2UpqA8KQzJvig57kk/U2b/zGHV
wMn2vNu4EP4YxhJIRlZ4+9OILQeoldVk6Pak2q1/gkQW4Q8rgFRDrXq60DKEsrS0
WDsEBRFomal4/VEW4kNKB5K9QUOA9pYKOFcMXAZRPXUswA+pohgpz/V0y8D47hEd
aS/mNlqqX5XHUj4qoMjlir1K9DpWTDA9KtxhQkEbDMjkFL+BJTiy9yRzo6KWpre7
eWMH1dtzIO1aiH7ghk7tFKOQLv8swv3vQBZOh8byXbvehLJHK+QMLm000QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCS5Furner76XNsDsOgIqCUZrArtMB8GA1UdIwQY
MBaAFKebuigFqYiVTk/sQlcFMPFvnnCTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDV1NktBV3BpSlZPVC14Q1Z3VXc4Vy1lY0pNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9kMTQwZmItMDNhZS00NWQ5LThkZGMt
ZTFlZDlkZDJhMDJhLzEvSkxrVzZ1ZDZ2dnBjMndPdzZBaW9KUm1zQ3UwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9kMTQwZmItMDNhZS00NWQ5LThkZGMtZTFlZDlkZDJhMDJh
LzEvcDV1NktBV3BpSlZPVC14Q1Z3VXc4Vy1lY0pNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUat7MA0G
CSqGSIb3DQEBCwUAA4IBAQC0H7wY2srt3KEzelxTfFwM231z5/H8nivY2r9qr4wl
Dth89oBOPmsBW2qfvcoCEbM+BD2h672RDaocetPVWzdSkCX7tORS2is3MYpRttOc
ghxFUS38ek6fo5iF6murueNuHks6o+HRYPtMxSahvDkhns718UfrjLwyjpJj2EvJ
hCIvOnxp8nsmKsFIc8RQQIW9ofzHIw4mkNubXzra03J4vyhESNUCK2bf2A8gcDBV
5v9Mbuy/Jtw/9e4WogkDjJ3NvcTy/fdYuJjrQHAYmFTYsVmDb3Iyv7DKrtsJJ2x5
iJacK585JdFcfppmdKuqfgwI5Vi4CTrp1Wokh9hh/I1n
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:51 2024 by rpki-client on console-fra.rpki-client.org