Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/045986-b3a4-49e4-8f45-126d5e60fdd1/1/BuYrN3LSstLA43v-offNZhDpDX8.roa
File: BuYrN3LSstLA43v-offNZhDpDX8.roa (raw, json)
Hash identifier: 3/72hu1LvcOAH/DkPBGRz0/CZQ0wg/qvS7Z5XU8wy80=
Subject key identifier: 06:E6:2B:37:72:D2:B2:D2:C0:E3:7B:FE:A1:F7:CD:66:10:E9:0D:7F
Certificate issuer: /CN=e3710607ba7a815e911c4892f968b18ae6604389
Certificate serial: 018570028A3B25831B58F06A337BAF08C582
Authority key identifier: E3:71:06:07:BA:7A:81:5E:91:1C:48:92:F9:68:B1:8A:E6:60:43:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43EGB7p6gV6RHEiS-WixiuZgQ4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/045986-b3a4-49e4-8f45-126d5e60fdd1/1/BuYrN3LSstLA43v-offNZhDpDX8.roa
Signing time: Mon 02 Jan 2023 01:04:52 +0000
ROA not before: Mon 02 Jan 2023 01:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12337
IP address blocks: 194.77.145.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:8a:3b:25:83:1b:58:f0:6a:33:7b:af:08:c5:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3710607ba7a815e911c4892f968b18ae6604389
Validity
Not Before: Jan 2 01:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06e62b3772d2b2d2c0e37bfea1f7cd6610e90d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:47:b1:6f:f4:24:f6:4f:0e:5e:ca:a1:17:60:
a6:ae:0f:57:42:37:d7:d9:6c:60:54:db:12:36:7a:
2c:f4:cb:c6:d4:60:63:9b:22:a8:fa:ef:4f:93:7a:
95:bf:9a:fb:9b:fe:53:5d:32:3c:8d:21:d6:02:3e:
17:4d:c6:a8:4e:e1:c5:81:1f:65:36:71:3b:81:5d:
a8:ab:2c:41:b6:94:92:bd:be:38:a0:c8:e0:7e:ca:
48:f5:7a:5b:57:b2:60:be:13:76:e4:2b:b3:57:77:
d6:6e:39:a1:47:30:71:84:98:22:c8:e8:fc:7e:5e:
34:80:18:b1:57:dc:e0:7f:d0:dd:59:2b:26:a2:71:
4c:41:e0:c5:c4:74:e5:e2:d0:d9:b8:59:88:93:1b:
f9:20:91:7b:bc:6f:5f:fd:82:51:27:1e:6f:1a:a2:
12:01:dc:92:93:e5:0b:bb:7a:af:8c:64:23:f7:9c:
c8:eb:49:16:83:74:ab:46:e9:70:2e:1e:0e:d9:e0:
20:11:5c:63:5d:b5:6a:f8:c0:67:60:34:d2:f9:c8:
7d:b5:a5:b2:7c:c3:8c:54:eb:67:60:29:b1:03:c1:
31:d7:29:ce:a4:be:24:17:2b:62:b5:42:d7:6c:a5:
e4:c7:f2:96:11:88:24:17:3a:d4:72:19:60:7a:c9:
3c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E6:2B:37:72:D2:B2:D2:C0:E3:7B:FE:A1:F7:CD:66:10:E9:0D:7F
X509v3 Authority Key Identifier:
keyid:E3:71:06:07:BA:7A:81:5E:91:1C:48:92:F9:68:B1:8A:E6:60:43:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43EGB7p6gV6RHEiS-WixiuZgQ4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/045986-b3a4-49e4-8f45-126d5e60fdd1/1/BuYrN3LSstLA43v-offNZhDpDX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/045986-b3a4-49e4-8f45-126d5e60fdd1/1/43EGB7p6gV6RHEiS-WixiuZgQ4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.77.145.0/24
Signature Algorithm: sha256WithRSAEncryption
41:5d:3c:7e:83:70:94:29:26:8c:a9:02:d1:02:a6:a8:0b:47:
35:12:e3:a3:ba:78:0e:49:8e:fe:27:55:8e:fb:96:8b:fe:37:
f9:d0:bf:54:b8:70:e4:f0:23:e8:b3:75:6a:df:6c:94:1f:de:
4b:49:b0:0b:5c:99:5d:aa:5a:65:15:fd:43:cd:4d:82:29:81:
a6:88:89:af:d9:97:2d:70:c4:eb:69:26:a2:9a:ad:13:1f:f6:
df:fe:16:be:67:c1:1d:44:67:40:64:0f:88:51:21:da:bb:bf:
e1:83:7e:34:80:79:ce:e4:39:20:90:02:7b:91:c7:a9:f2:14:
d2:bc:34:a5:74:b5:4e:94:9b:e5:95:68:36:08:7f:3f:e9:e9:
6a:22:06:c0:45:f2:c1:34:4c:6a:de:89:c5:a6:a2:26:5b:48:
e5:f1:32:aa:cd:1d:e5:76:84:8f:6e:c3:1b:93:f2:4d:2d:46:
ca:04:fa:88:27:bf:43:ec:7e:d7:8e:30:38:46:16:7d:5e:04:
06:47:2e:6f:0f:bb:ea:e6:19:d9:ba:73:34:d1:71:c5:f3:10:
4c:e6:18:0f:f9:08:5b:6b:c7:16:ed:a0:a9:e1:ef:87:59:69:
67:0d:e1:14:7d:dd:a7:ab:4e:8d:16:c1:00:4a:ea:72:31:c9:
64:1b:c2:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwAoo7JYMbWPBqM3uvCMWCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzNzEwNjA3YmE3YTgxNWU5MTFjNDg5MmY5NjhiMThhZTY2
MDQzODkwHhcNMjMwMTAyMDEwNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNmU2MmIzNzcyZDJiMmQyYzBlMzdiZmVhMWY3Y2Q2NjEwZTkwZDdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0exb/Qk9k8OXsqhF2Cmrg9XQjfX
2WxgVNsSNnos9MvG1GBjmyKo+u9Pk3qVv5r7m/5TXTI8jSHWAj4XTcaoTuHFgR9l
NnE7gV2oqyxBtpSSvb44oMjgfspI9XpbV7JgvhN25CuzV3fWbjmhRzBxhJgiyOj8
fl40gBixV9zgf9DdWSsmonFMQeDFxHTl4tDZuFmIkxv5IJF7vG9f/YJRJx5vGqIS
AdySk+ULu3qvjGQj95zI60kWg3SrRulwLh4O2eAgEVxjXbVq+MBnYDTS+ch9taWy
fMOMVOtnYCmxA8Ex1ynOpL4kFytitULXbKXkx/KWEYgkFzrUchlgesk8pwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAbmKzdy0rLSwON7/qH3zWYQ6Q1/MB8GA1UdIwQY
MBaAFONxBge6eoFekRxIkvlosYrmYEOJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDNFR0I3cDZnVjZSSEVpUy1XaXhpdVpnUTRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi8wNDU5ODYtYjNhNC00OWU0LThmNDUt
MTI2ZDVlNjBmZGQxLzEvQnVZck4zTFNzdExBNDN2LW9mZk5aaERwRFg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi8wNDU5ODYtYjNhNC00OWU0LThmNDUtMTI2ZDVlNjBmZGQx
LzEvNDNFR0I3cDZnVjZSSEVpUy1XaXhpdVpnUTRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwk2RMA0G
CSqGSIb3DQEBCwUAA4IBAQBBXTx+g3CUKSaMqQLRAqaoC0c1EuOjungOSY7+J1WO
+5aL/jf50L9UuHDk8CPos3Vq32yUH95LSbALXJldqlplFf1DzU2CKYGmiImv2Zct
cMTraSaimq0TH/bf/ha+Z8EdRGdAZA+IUSHau7/hg340gHnO5DkgkAJ7kcep8hTS
vDSldLVOlJvllWg2CH8/6elqIgbARfLBNExq3onFpqImW0jl8TKqzR3ldoSPbsMb
k/JNLUbKBPqIJ79D7H7XjjA4RhZ9XgQGRy5vD7vq5hnZunM00XHF8xBM5hgP+Qhb
a8cW7aCp4e+HWWlnDeEUfd2nq06NFsEASupyMclkG8JS
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:54 2024 by rpki-client on console-fra.rpki-client.org