Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4707b4-0032-4ac7-bcc7-40c1a72702ef/1/dRo63Nm7AQmX3T2BVG2KgHAm-WU.roa
File: dRo63Nm7AQmX3T2BVG2KgHAm-WU.roa (raw, json)
Hash identifier: NNpsdol9lOmy/++9Uw7gN0z6nePz/QWdP45CKTU24Oc=
Subject key identifier: 75:1A:3A:DC:D9:BB:01:09:97:DD:3D:81:54:6D:8A:80:70:26:F9:65
Certificate issuer: /CN=fa1e9b4e8dc49be3aba597425aefd8b3a5362ffc
Certificate serial: 01856F67084C880CFF63D90FFCC3A4A3BF87
Authority key identifier: FA:1E:9B:4E:8D:C4:9B:E3:AB:A5:97:42:5A:EF:D8:B3:A5:36:2F:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-h6bTo3Em-OrpZdCWu_Ys6U2L_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4707b4-0032-4ac7-bcc7-40c1a72702ef/1/dRo63Nm7AQmX3T2BVG2KgHAm-WU.roa
Signing time: Sun 01 Jan 2023 22:15:01 +0000
ROA not before: Sun 01 Jan 2023 22:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42923
IP address blocks: 217.79.144.0/23 maxlen: 23
217.79.146.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:08:4c:88:0c:ff:63:d9:0f:fc:c3:a4:a3:bf:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1e9b4e8dc49be3aba597425aefd8b3a5362ffc
Validity
Not Before: Jan 1 22:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=751a3adcd9bb010997dd3d81546d8a807026f965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ba:d8:cd:36:06:a6:a7:17:fd:dc:1e:00:dc:
24:34:8b:8c:81:b3:b4:0f:ec:c3:4a:88:fc:b9:a7:
3b:e6:d5:fb:02:04:03:fd:f6:af:05:ce:d9:db:00:
87:df:e2:f9:fd:84:ef:6b:aa:5f:ca:ee:be:cb:16:
e6:7b:f2:53:06:04:ad:25:a4:31:6c:80:54:eb:aa:
44:ba:db:5f:80:4c:37:54:4c:f3:69:67:43:bf:d7:
fa:79:00:21:8d:75:0d:2f:25:63:c2:4a:61:72:92:
aa:e9:97:ad:50:12:05:5b:b1:9b:03:f6:60:b1:9b:
42:b4:0b:ba:8e:f0:2f:43:12:f6:b2:47:68:41:b0:
26:c4:43:15:2b:af:68:08:c2:0d:a8:7a:21:40:cc:
f6:43:1c:98:d8:9d:11:3e:bc:a6:7a:36:f4:c6:cf:
b8:08:92:e4:18:13:f4:66:86:9f:34:25:27:72:a8:
70:f7:a0:0d:29:6f:5b:66:2f:d4:f9:69:8d:7d:83:
28:56:5a:4c:74:14:73:96:8a:e4:86:cd:19:c8:79:
88:8f:ce:b2:c7:bc:5f:71:0b:30:80:53:13:53:01:
a0:66:89:68:5a:b8:60:de:49:cf:48:98:a0:d5:37:
e1:de:97:08:8a:28:33:92:7b:fc:4e:6a:7c:2e:f3:
9e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:1A:3A:DC:D9:BB:01:09:97:DD:3D:81:54:6D:8A:80:70:26:F9:65
X509v3 Authority Key Identifier:
keyid:FA:1E:9B:4E:8D:C4:9B:E3:AB:A5:97:42:5A:EF:D8:B3:A5:36:2F:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-h6bTo3Em-OrpZdCWu_Ys6U2L_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4707b4-0032-4ac7-bcc7-40c1a72702ef/1/dRo63Nm7AQmX3T2BVG2KgHAm-WU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4707b4-0032-4ac7-bcc7-40c1a72702ef/1/1-h6bTo3Em-OrpZdCWu_Ys6U2L_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.79.144.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:7a:52:4e:c8:3e:48:66:ee:1d:bc:b0:e9:18:af:c0:90:ce:
67:05:c3:fc:a9:94:66:0b:d5:a9:df:6a:8b:96:d8:de:0a:10:
90:47:1e:1a:69:37:5c:00:2b:26:ee:7e:10:c1:6c:62:84:2a:
f1:24:13:60:48:02:aa:ce:3f:3e:c6:6e:91:36:f0:ea:36:c1:
0c:ce:ba:38:0c:a8:20:16:f3:04:3d:ac:75:c5:6b:3a:db:ff:
cb:3f:55:be:32:26:2f:9d:25:70:41:d7:fa:e8:c2:d0:f6:2f:
3b:e1:f6:d6:64:f0:64:99:c1:b8:0d:f0:fd:e6:a4:30:a5:4d:
2f:61:d4:91:46:d2:7c:0f:ad:1f:2b:ae:d8:f1:5b:f2:8e:af:
97:f2:39:66:8c:17:45:6e:db:f8:39:d5:a0:92:26:41:04:b2:
51:04:65:be:b6:4e:f9:53:78:3f:9a:f3:42:1a:bf:f0:54:79:
2c:81:5a:c8:e0:d8:7c:e3:1f:c9:12:ec:86:3c:9f:2a:3e:56:
4d:c6:35:19:41:eb:2a:89:28:a5:40:9f:69:e9:e1:24:dc:38:
b5:10:4f:4f:0d:81:ee:70:a2:77:36:38:ba:e5:69:7e:6f:03:
cb:da:23:a0:e8:ba:26:28:a2:ff:f4:a4:30:7c:a3:d4:73:13:
f9:ce:cd:d1
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVvZwhMiAz/Y9kP/MOko7+HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhMWU5YjRlOGRjNDliZTNhYmE1OTc0MjVhZWZkOGIzYTUz
NjJmZmMwHhcNMjMwMTAxMjIxNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTFhM2FkY2Q5YmIwMTA5OTdkZDNkODE1NDZkOGE4MDcwMjZmOTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLrYzTYGpqcX/dweANwkNIuMgbO0
D+zDSoj8uac75tX7AgQD/favBc7Z2wCH3+L5/YTva6pfyu6+yxbme/JTBgStJaQx
bIBU66pEuttfgEw3VEzzaWdDv9f6eQAhjXUNLyVjwkphcpKq6ZetUBIFW7GbA/Zg
sZtCtAu6jvAvQxL2skdoQbAmxEMVK69oCMINqHohQMz2QxyY2J0RPrymejb0xs+4
CJLkGBP0ZoafNCUncqhw96ANKW9bZi/U+WmNfYMoVlpMdBRzlorkhs0ZyHmIj86y
x7xfcQswgFMTUwGgZoloWrhg3knPSJig1Tfh3pcIiigzknv8Tmp8LvOeXwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFHUaOtzZuwEJl909gVRtioBwJvllMB8GA1UdIwQY
MBaAFPoem06NxJvjq6WXQlrv2LOlNi/8MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1oNmJUbzNFbS1PcnBaZENXdV9ZczZVMkxfdy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUvNDcwN2I0LTAwMzItNGFjNy1iY2M3
LTQwYzFhNzI3MDJlZi8xL2RSbzYzTm03QVFtWDNUMkJWRzJLZ0hBbS1XVS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYzUvNDcwN2I0LTAwMzItNGFjNy1iY2M3LTQwYzFhNzI3MDJl
Zi8xLzEtaDZiVG8zRW0tT3JwWmRDV3VfWXM2VTJMX3cuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALZT5Aw
DQYJKoZIhvcNAQELBQADggEBALR6Uk7IPkhm7h28sOkYr8CQzmcFw/yplGYL1anf
aouW2N4KEJBHHhppN1wAKybufhDBbGKEKvEkE2BIAqrOPz7GbpE28Oo2wQzOujgM
qCAW8wQ9rHXFazrb/8s/Vb4yJi+dJXBB1/rowtD2Lzvh9tZk8GSZwbgN8P3mpDCl
TS9h1JFG0nwPrR8rrtjxW/KOr5fyOWaMF0Vu2/g51aCSJkEEslEEZb62TvlTeD+a
80Iav/BUeSyBWsjg2HzjH8kS7IY8nyo+Vk3GNRlB6yqJKKVAn2np4STcOLUQT08N
ge5wonc2OLrlaX5vA8vaI6DouiYoov/0pDB8o9RzE/nOzdE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:05 2024 by rpki-client on console-fra.rpki-client.org