Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/xQijJ4x9QapxS44rU-sVCRvhXrM.roa
File: xQijJ4x9QapxS44rU-sVCRvhXrM.roa (raw, json)
Hash identifier: 0cAgs/GwIsERWD4jMt5PftEZ0pKy1Oif2upYkf5EeVc=
Subject key identifier: C5:08:A3:27:8C:7D:41:AA:71:4B:8E:2B:53:EB:15:09:1B:E1:5E:B3
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 018934DD617BFE68F5AA6F245BCA6C01934D
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/xQijJ4x9QapxS44rU-sVCRvhXrM.roa
Signing time: Sat 08 Jul 2023 09:37:50 +0000
ROA not before: Sat 08 Jul 2023 09:37:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 141.98.139.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:34:dd:61:7b:fe:68:f5:aa:6f:24:5b:ca:6c:01:93:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Jul 8 09:37:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c508a3278c7d41aa714b8e2b53eb15091be15eb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f2:91:80:24:4b:24:bd:e5:d0:f3:04:c1:e9:
b0:7e:42:db:af:33:65:6b:67:5e:37:ab:a9:ef:ea:
92:fd:e8:09:ad:36:da:68:aa:ea:99:16:52:59:df:
23:19:b3:a0:22:47:e6:32:6e:70:6b:fa:b9:83:8c:
47:2b:ae:8e:8a:4a:94:07:8a:2f:3e:51:15:98:5a:
61:60:bc:03:32:33:a3:f9:a6:af:51:5b:7f:09:62:
84:a1:1a:a9:f0:f5:d3:1a:6b:28:45:bd:93:bf:37:
f0:f1:23:3e:fa:c7:cf:8d:b7:62:92:e9:3d:c3:f1:
de:a4:5c:dd:ff:1f:d6:2c:ca:c6:a3:43:05:74:29:
94:34:49:c8:8f:fb:63:69:85:23:1f:23:94:64:80:
69:86:b9:01:77:e8:f7:ed:d5:d4:b9:ca:29:ef:79:
4a:eb:2e:e0:fa:c6:06:ba:13:57:de:30:6e:84:fd:
46:1b:db:c1:1c:ce:c2:a6:2b:6e:a5:2b:cf:e2:fe:
7f:b8:cc:e1:0c:66:85:95:fb:42:69:e8:51:98:94:
36:b9:98:39:a9:23:3c:22:eb:d1:46:fd:26:0b:35:
9a:0f:74:53:86:3b:db:fe:16:0c:e4:35:3b:e9:60:
d7:a3:e4:87:14:eb:14:ff:fb:c9:8b:2f:e6:33:dc:
c8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:08:A3:27:8C:7D:41:AA:71:4B:8E:2B:53:EB:15:09:1B:E1:5E:B3
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/xQijJ4x9QapxS44rU-sVCRvhXrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.139.0/24
Signature Algorithm: sha256WithRSAEncryption
65:e1:4b:39:d4:1f:27:6b:31:62:c3:e0:99:1d:80:9e:38:2c:
f6:65:9e:73:1f:ef:04:6f:bb:54:0f:66:78:d1:2a:83:c2:8f:
d2:df:01:47:a1:34:a9:04:2d:5f:b0:92:9f:10:17:7c:34:71:
25:ad:14:74:48:3b:0c:83:47:56:58:6b:f3:4d:fe:18:67:3b:
38:67:25:6f:01:de:3a:96:48:53:26:82:34:58:b6:ad:c4:19:
c3:a5:b2:a1:3f:e1:fa:52:6f:0b:44:02:e5:fc:55:60:59:c7:
83:d9:b9:4d:8f:76:a7:5a:03:41:d6:01:c8:c6:dc:73:f4:53:
d0:af:27:3b:ab:3b:6a:13:3c:f9:91:71:95:90:cc:69:2c:14:
51:3d:ca:24:94:78:0d:ee:51:d3:ae:f6:81:81:65:3a:f2:80:
8a:e6:1a:76:6b:c2:fd:7e:f9:cc:00:55:f4:99:cf:35:01:83:
cf:e5:7a:9c:d1:a1:d8:6d:04:0b:2e:f2:35:6e:f8:5a:c8:98:
16:e2:20:c8:c3:31:be:99:92:53:3c:34:a8:ab:a2:16:46:a2:
87:0c:32:06:7c:62:da:78:ab:10:6e:5f:58:25:3f:0d:19:9b:
26:b4:d4:f9:7f:b4:7a:4f:4b:eb:e7:7a:81:19:ef:49:75:f0:
ef:fc:04:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYk03WF7/mj1qm8kW8psAZNNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNGViMjA0ZjM1ODAwNDc4ODIyNGUyZmIxOGU0ZDVlNzRi
ZWJmOGQwHhcNMjMwNzA4MDkzNzUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTA4YTMyNzhjN2Q0MWFhNzE0YjhlMmI1M2ViMTUwOTFiZTE1ZWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPKRgCRLJL3l0PMEwemwfkLbrzNl
a2deN6up7+qS/egJrTbaaKrqmRZSWd8jGbOgIkfmMm5wa/q5g4xHK66OikqUB4ov
PlEVmFphYLwDMjOj+aavUVt/CWKEoRqp8PXTGmsoRb2Tvzfw8SM++sfPjbdikuk9
w/HepFzd/x/WLMrGo0MFdCmUNEnIj/tjaYUjHyOUZIBphrkBd+j37dXUucop73lK
6y7g+sYGuhNX3jBuhP1GG9vBHM7CpitupSvP4v5/uMzhDGaFlftCaehRmJQ2uZg5
qSM8IuvRRv0mCzWaD3RThjvb/hYM5DU76WDXo+SHFOsU//vJiy/mM9zIWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMUIoyeMfUGqcUuOK1PrFQkb4V6zMB8GA1UdIwQY
MBaAFPBOsgTzWABHiCJOL7GOTV50vr+NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEU2eUJQTllBRWVJSWs0dnNZNU5YblMtdjQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS85YWI0MmEtZGY5Mi00ZTQyLTllMzMt
NWM1ODkyYWZhNDg3LzEveFFpako0eDlRYXB4UzQ0clUtc1ZDUnZoWHJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS85YWI0MmEtZGY5Mi00ZTQyLTllMzMtNWM1ODkyYWZhNDg3
LzEvOEU2eUJQTllBRWVJSWs0dnNZNU5YblMtdjQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjWKLMA0G
CSqGSIb3DQEBCwUAA4IBAQBl4Us51B8nazFiw+CZHYCeOCz2ZZ5zH+8Eb7tUD2Z4
0SqDwo/S3wFHoTSpBC1fsJKfEBd8NHElrRR0SDsMg0dWWGvzTf4YZzs4ZyVvAd46
lkhTJoI0WLatxBnDpbKhP+H6Um8LRALl/FVgWceD2blNj3anWgNB1gHIxtxz9FPQ
ryc7qztqEzz5kXGVkMxpLBRRPcoklHgN7lHTrvaBgWU68oCK5hp2a8L9fvnMAFX0
mc81AYPP5Xqc0aHYbQQLLvI1bvhayJgW4iDIwzG+mZJTPDSoq6IWRqKHDDIGfGLa
eKsQbl9YJT8NGZsmtNT5f7R6T0vr53qBGe9JdfDv/AS1
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:38 2023 by rpki-client on console-fra.rpki-client.org