Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03cc4f-60c2-475e-9e09-524803ee2949/1/dmpKTDnhQFeTVM4xGkEdARjndE0.roa
File: dmpKTDnhQFeTVM4xGkEdARjndE0.roa (raw, json)
Hash identifier: e/LiSic6AdjWNuGSBJh4PGwprZ9ywpQWilJcQoZAxFY=
Subject key identifier: 76:6A:4A:4C:39:E1:40:57:93:54:CE:31:1A:41:1D:01:18:E7:74:4D
Certificate issuer: /CN=780f86d044a4a2a233319418aa8da9ad837c76ea
Certificate serial: 01856F2FEDEEBBFF20037CC0C6BFCBBBDE78
Authority key identifier: 78:0F:86:D0:44:A4:A2:A2:33:31:94:18:AA:8D:A9:AD:83:7C:76:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eA-G0ESkoqIzMZQYqo2prYN8duo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03cc4f-60c2-475e-9e09-524803ee2949/1/dmpKTDnhQFeTVM4xGkEdARjndE0.roa
Signing time: Sun 01 Jan 2023 21:14:50 +0000
ROA not before: Sun 01 Jan 2023 21:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209591
IP address blocks: 141.98.124.0/22 maxlen: 24
2a10:2980::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:ed:ee:bb:ff:20:03:7c:c0:c6:bf:cb:bb:de:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=780f86d044a4a2a233319418aa8da9ad837c76ea
Validity
Not Before: Jan 1 21:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=766a4a4c39e140579354ce311a411d0118e7744d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:9e:9a:13:53:10:cb:d4:05:f8:7b:e1:bf:3b:
29:ab:96:35:a2:a0:11:96:67:6e:ca:64:6a:ad:0f:
d0:03:c8:e7:9e:77:ae:f9:3f:6d:bc:59:78:97:5c:
fd:0d:d2:bc:c0:25:b2:f2:da:99:63:69:6c:f7:ac:
2a:71:f9:49:31:55:a8:47:7f:89:8a:30:0a:4c:30:
97:9b:4c:39:97:34:be:93:4a:75:aa:84:74:f1:eb:
ff:6f:b5:99:03:9c:a8:17:31:31:72:57:71:f0:53:
89:3f:2b:9d:03:98:00:9d:38:c2:c3:ab:f8:c6:a6:
a1:b9:ee:2f:b6:17:53:30:73:ca:21:65:cc:cb:28:
77:8c:a1:e4:7d:31:05:7b:52:e0:94:63:0c:bf:f6:
93:bf:e3:16:ea:e6:3d:ae:52:f1:59:f4:01:92:ed:
1c:7d:df:bf:82:00:a8:c6:18:4a:12:b1:ee:a7:c5:
b8:73:41:85:3b:60:dd:ac:60:e6:81:e6:14:f7:cd:
c5:ec:69:85:bb:ea:68:80:69:bc:b2:1a:7c:e6:e0:
82:7f:d9:44:a8:ac:7f:27:6a:27:80:54:de:ba:1d:
e9:e7:66:5a:17:70:e0:fb:22:c5:98:32:2e:fd:6e:
21:8b:d8:85:70:d3:87:24:26:a0:61:dc:96:ca:ec:
84:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:6A:4A:4C:39:E1:40:57:93:54:CE:31:1A:41:1D:01:18:E7:74:4D
X509v3 Authority Key Identifier:
keyid:78:0F:86:D0:44:A4:A2:A2:33:31:94:18:AA:8D:A9:AD:83:7C:76:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eA-G0ESkoqIzMZQYqo2prYN8duo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03cc4f-60c2-475e-9e09-524803ee2949/1/dmpKTDnhQFeTVM4xGkEdARjndE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03cc4f-60c2-475e-9e09-524803ee2949/1/eA-G0ESkoqIzMZQYqo2prYN8duo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.124.0/22
IPv6:
2a10:2980::/29
Signature Algorithm: sha256WithRSAEncryption
16:28:0a:19:72:7c:94:6f:d9:40:bd:18:14:28:8f:f6:b3:da:
04:8a:bf:bf:87:a8:37:98:f1:35:bd:61:4a:30:85:6c:4b:02:
ed:56:03:f6:9d:0b:fc:01:3c:ae:91:37:e7:64:a6:ac:0e:09:
85:ce:ca:df:a2:41:25:e5:0e:38:9a:ed:8a:c4:87:62:c5:f6:
2e:21:1a:0d:ac:e4:f5:7c:68:c3:cc:85:9a:33:7d:df:e1:7b:
ed:cb:50:6e:23:0e:03:97:20:ac:80:09:67:89:d4:6d:45:b6:
86:e2:1f:66:54:c0:ce:93:a5:f4:bc:b1:6f:a3:b2:53:7d:f9:
82:6e:39:d4:d0:90:ba:53:33:f2:e1:fc:fa:1a:eb:59:ab:a5:
7e:c2:a0:f9:50:ae:13:22:8e:d5:ee:4b:09:fe:87:ad:a6:4c:
95:b0:d0:b4:e0:f3:91:b5:60:b7:72:20:87:ac:14:43:06:6c:
10:98:f8:11:1b:3f:a2:83:46:15:0a:47:f1:37:90:22:5f:f9:
12:18:94:0b:4f:0d:db:6c:0d:82:67:3f:29:1e:c6:59:47:5e:
c9:9f:fc:95:d7:f7:8b:e9:43:97:84:09:2f:9a:b1:40:de:26:
97:91:74:a2:8f:90:32:88:97:4c:7a:60:17:ca:ff:52:4d:65:
54:b9:d6:a5
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVvL+3uu/8gA3zAxr/Lu954MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4MGY4NmQwNDRhNGEyYTIzMzMxOTQxOGFhOGRhOWFkODM3
Yzc2ZWEwHhcNMjMwMTAxMjExNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjZhNGE0YzM5ZTE0MDU3OTM1NGNlMzExYTQxMWQwMTE4ZTc3NDRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi56aE1MQy9QF+Hvhvzspq5Y1oqAR
lmduymRqrQ/QA8jnnneu+T9tvFl4l1z9DdK8wCWy8tqZY2ls96wqcflJMVWoR3+J
ijAKTDCXm0w5lzS+k0p1qoR08ev/b7WZA5yoFzExcldx8FOJPyudA5gAnTjCw6v4
xqahue4vthdTMHPKIWXMyyh3jKHkfTEFe1LglGMMv/aTv+MW6uY9rlLxWfQBku0c
fd+/ggCoxhhKErHup8W4c0GFO2DdrGDmgeYU983F7GmFu+pogGm8shp85uCCf9lE
qKx/J2ongFTeuh3p52ZaF3Dg+yLFmDIu/W4hi9iFcNOHJCagYdyWyuyEBwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFHZqSkw54UBXk1TOMRpBHQEY53RNMB8GA1UdIwQY
MBaAFHgPhtBEpKKiMzGUGKqNqa2DfHbqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUEtRzBFU2tvcUl6TVpRWXFvMnByWU44ZHVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wM2NjNGYtNjBjMi00NzVlLTllMDkt
NTI0ODAzZWUyOTQ5LzEvZG1wS1REbmhRRmVUVk00eEdrRWRBUmpuZEUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8wM2NjNGYtNjBjMi00NzVlLTllMDktNTI0ODAzZWUyOTQ5
LzEvZUEtRzBFU2tvcUl6TVpRWXFvMnByWU44ZHVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCjWJ8MA0E
AgACMAcDBQMqECmAMA0GCSqGSIb3DQEBCwUAA4IBAQAWKAoZcnyUb9lAvRgUKI/2
s9oEir+/h6g3mPE1vWFKMIVsSwLtVgP2nQv8ATyukTfnZKasDgmFzsrfokEl5Q44
mu2KxIdixfYuIRoNrOT1fGjDzIWaM33f4Xvty1BuIw4DlyCsgAlnidRtRbaG4h9m
VMDOk6X0vLFvo7JTffmCbjnU0JC6UzPy4fz6GutZq6V+wqD5UK4TIo7V7ksJ/oet
pkyVsNC04PORtWC3ciCHrBRDBmwQmPgRGz+ig0YVCkfxN5AiX/kSGJQLTw3bbA2C
Zz8pHsZZR17Jn/yV1/eL6UOXhAkvmrFA3iaXkXSij5AyiJdMemAXyv9STWVUudal
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:51 2024 by rpki-client on console-fra.rpki-client.org