Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/ICqojFI9jZJzO9p4bR0OynKKGLw.roa
File: ICqojFI9jZJzO9p4bR0OynKKGLw.roa (raw, json)
Hash identifier: /pJ/84Omvt78BitAu5FBI8+OpUZ6vIyWzT2Yc4/+6mc=
Subject key identifier: 20:2A:A8:8C:52:3D:8D:92:73:3B:DA:78:6D:1D:0E:CA:72:8A:18:BC
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 01857315FB850500C219A397179694CF8ECC
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/ICqojFI9jZJzO9p4bR0OynKKGLw.roa
Signing time: Mon 02 Jan 2023 15:24:58 +0000
ROA not before: Mon 02 Jan 2023 15:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197216
IP address blocks: 89.252.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:fb:85:05:00:c2:19:a3:97:17:96:94:cf:8e:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Jan 2 15:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=202aa88c523d8d92733bda786d1d0eca728a18bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:7f:cc:ed:d3:9a:45:43:0d:0b:90:c4:18:67:
30:d0:5e:f2:76:aa:ac:39:1b:5a:4d:59:2b:0a:ce:
28:8b:bb:27:43:57:79:35:a3:ee:52:55:b2:c6:00:
cf:03:8c:9c:fd:8f:e0:b4:3f:f6:56:7d:3b:11:ab:
53:f4:d9:de:3d:39:4f:ca:43:6d:ce:be:d9:aa:34:
2d:eb:fc:7d:bc:f5:49:10:df:55:26:8b:0a:c4:14:
4a:df:ee:1e:db:53:db:1a:6e:f9:07:8c:29:ff:10:
d4:b8:cc:8f:22:24:b7:d5:6f:74:c4:f1:52:ec:a0:
35:06:17:5e:0e:b1:5b:18:cd:09:de:eb:21:7c:54:
3d:f2:32:d0:45:20:92:2b:61:10:72:68:48:ff:61:
3b:88:9d:55:ba:26:5a:fe:13:55:74:da:e5:8e:f0:
3e:66:4e:d8:94:91:92:95:55:70:6c:49:b0:2d:fb:
80:25:4e:1c:e5:73:8f:3e:7c:c8:af:a9:3e:00:9e:
9e:dc:28:80:3e:cd:ac:e9:03:57:fd:29:dd:a0:e7:
8b:6e:93:2e:20:94:95:3c:86:3b:4c:da:42:e7:0b:
31:47:e9:16:ad:f7:9c:b6:6d:13:7c:cc:5f:ec:77:
68:b3:3a:37:02:c7:69:42:e7:64:a4:04:9b:12:9c:
80:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:2A:A8:8C:52:3D:8D:92:73:3B:DA:78:6D:1D:0E:CA:72:8A:18:BC
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/ICqojFI9jZJzO9p4bR0OynKKGLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.252.247.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:19:73:a0:f3:13:57:b0:78:8f:a2:17:b2:2d:6d:a9:c2:26:
5a:4b:30:d7:16:8a:b0:93:64:12:31:f0:df:14:ba:87:be:33:
db:41:14:5b:8f:b9:96:f0:89:3c:f5:d7:59:07:87:34:9e:0c:
5e:69:cd:8f:96:10:dc:8c:99:18:b5:c5:b0:b6:37:43:a9:0d:
ae:f3:78:f9:36:f8:74:88:80:c9:1d:0a:ac:a9:1c:69:43:d0:
f7:ae:f0:b4:73:41:7f:e2:08:5f:52:a4:06:95:6f:16:68:8c:
07:da:7c:a8:21:13:92:11:4a:56:36:be:d5:28:2c:e1:7f:e4:
b2:02:cc:86:72:a6:16:79:11:c7:98:a1:18:cb:5f:fe:77:3b:
48:ef:fb:77:80:4d:e7:36:79:e3:dd:e8:c1:6a:27:6e:36:04:
73:d1:2c:13:df:c6:9a:47:64:2e:10:87:7e:7d:44:75:07:2c:
c6:a2:a5:a4:cb:b5:98:a7:e6:fc:35:45:26:03:9d:a5:21:23:
48:eb:7a:99:72:e8:72:66:8f:80:eb:f1:49:3d:6f:6c:d6:b7:
0c:19:65:8d:ba:91:7a:26:11:b0:84:12:fd:6b:11:96:61:4f:
96:49:fe:6d:aa:8e:4d:49:60:fa:21:e3:ca:1a:30:84:d3:f9:
1b:8c:81:47
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzFfuFBQDCGaOXF5aUz47MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMDRhNDA4MjFjNDE3NmNjNDJlMjU1ZWY2YzE3Mjc0NzNj
M2YwMGEwHhcNMjMwMTAyMTUyNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDJhYTg4YzUyM2Q4ZDkyNzMzYmRhNzg2ZDFkMGVjYTcyOGExOGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgH/M7dOaRUMNC5DEGGcw0F7ydqqs
ORtaTVkrCs4oi7snQ1d5NaPuUlWyxgDPA4yc/Y/gtD/2Vn07EatT9NnePTlPykNt
zr7ZqjQt6/x9vPVJEN9VJosKxBRK3+4e21PbGm75B4wp/xDUuMyPIiS31W90xPFS
7KA1BhdeDrFbGM0J3ushfFQ98jLQRSCSK2EQcmhI/2E7iJ1VuiZa/hNVdNrljvA+
Zk7YlJGSlVVwbEmwLfuAJU4c5XOPPnzIr6k+AJ6e3CiAPs2s6QNX/SndoOeLbpMu
IJSVPIY7TNpC5wsxR+kWrfectm0TfMxf7Hdoszo3AsdpQudkpASbEpyA7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCAqqIxSPY2SczvaeG0dDspyihi8MB8GA1UdIwQY
MBaAFEEEpAghxBdsxC4lXvbBcnRzw/AKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMt
YjI3ZDZlMjc4ZTE4LzEvSUNxb2pGSTlqWkp6TzlwNGJSME95bktLR0x3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMtYjI3ZDZlMjc4ZTE4
LzEvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWfz3MA0G
CSqGSIb3DQEBCwUAA4IBAQB+GXOg8xNXsHiPoheyLW2pwiZaSzDXFoqwk2QSMfDf
FLqHvjPbQRRbj7mW8Ik89ddZB4c0ngxeac2PlhDcjJkYtcWwtjdDqQ2u83j5Nvh0
iIDJHQqsqRxpQ9D3rvC0c0F/4ghfUqQGlW8WaIwH2nyoIROSEUpWNr7VKCzhf+Sy
AsyGcqYWeRHHmKEYy1/+dztI7/t3gE3nNnnj3ejBaiduNgRz0SwT38aaR2QuEId+
fUR1ByzGoqWky7WYp+b8NUUmA52lISNI63qZcuhyZo+A6/FJPW9s1rcMGWWNupF6
JhGwhBL9axGWYU+WSf5tqo5NSWD6IePKGjCE0/kbjIFH
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:19 2024 by rpki-client on console-ams.rpki-client.org