Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/y3_gGJV9Cbm8RpYHM0ukeqb1Ia4.roa
File: y3_gGJV9Cbm8RpYHM0ukeqb1Ia4.roa (raw, json)
Hash identifier: 9VA1NaOgLMny6cOA+SzprUrcyo2ONpGeN2QtN8j9Qr8=
Subject key identifier: CB:7F:E0:18:95:7D:09:B9:BC:46:96:07:33:4B:A4:7A:A6:F5:21:AE
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018901751A2E01A622AB1E56C2852CA750BB
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/y3_gGJV9Cbm8RpYHM0ukeqb1Ia4.roa
Signing time: Wed 28 Jun 2023 10:03:18 +0000
ROA not before: Wed 28 Jun 2023 10:03:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39326
IP address blocks: 192.121.112.0/24 maxlen: 24
192.121.113.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:01:75:1a:2e:01:a6:22:ab:1e:56:c2:85:2c:a7:50:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jun 28 10:03:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb7fe018957d09b9bc469607334ba47aa6f521ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:97:65:7e:dd:f8:c9:67:dc:19:28:2d:21:6c:
05:a5:03:3b:a6:1c:d1:a3:c1:d6:12:12:ee:05:51:
08:0e:68:06:1f:1d:12:b4:e2:1a:f2:b6:8a:58:b4:
93:17:26:dd:a9:eb:6b:40:7d:91:03:e7:2f:27:49:
79:61:91:d7:3a:53:50:40:c1:ea:be:57:49:ac:4d:
97:48:5a:0d:24:57:73:47:ba:5f:3f:63:cc:85:ce:
37:3e:81:82:9f:dd:31:e5:c3:10:a1:63:e5:ab:e0:
b8:de:af:91:c6:9a:e4:43:cc:b9:77:21:3e:3e:2d:
5e:24:f1:c4:0b:de:fb:95:15:e9:50:77:25:33:17:
a4:5d:f9:1f:c6:16:c6:ac:38:3e:e7:61:6b:56:f6:
1c:84:1c:92:b0:45:1a:8e:3d:26:70:ee:5f:f6:5e:
85:db:2a:c3:aa:62:84:44:57:34:f5:a9:7e:7a:f9:
36:fa:fa:27:52:85:35:d3:b8:b8:db:44:29:0a:87:
e4:4e:bc:1e:3e:39:b2:eb:58:9e:d4:4b:ae:09:15:
de:c1:5e:d6:88:ed:3e:0f:ca:dd:84:7b:44:f4:97:
dd:20:30:f0:43:19:85:78:05:46:ca:bd:2c:c9:80:
c4:f0:3b:26:60:5f:e3:b2:72:5f:0b:31:22:d4:58:
94:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:7F:E0:18:95:7D:09:B9:BC:46:96:07:33:4B:A4:7A:A6:F5:21:AE
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/y3_gGJV9Cbm8RpYHM0ukeqb1Ia4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.121.112.0/23
Signature Algorithm: sha256WithRSAEncryption
46:57:f4:21:67:9e:34:c7:9e:a4:0e:fb:e5:f2:da:91:27:6c:
41:7a:8e:37:bd:45:48:b7:ba:89:42:95:c1:1e:3a:f9:38:2f:
04:e1:29:a8:c9:cc:e2:53:fb:a8:80:d6:ca:51:d9:57:df:bb:
ff:22:59:52:92:0a:a8:0c:ce:1e:f8:27:73:d6:0c:44:49:78:
5c:18:b1:4f:87:19:a4:6f:6e:2b:0f:98:e3:3a:1b:0a:6b:49:
d6:0b:dd:5c:42:fe:7a:c3:e3:d8:00:be:3f:d2:04:9a:aa:49:
8a:e8:c1:f2:42:61:1e:8c:ce:d2:6b:9c:97:55:91:42:26:f6:
85:1e:1e:03:6a:3a:a6:92:e5:7a:85:cc:a1:79:6c:a1:a6:13:
25:1b:9f:d4:b1:03:e4:59:47:65:38:6f:00:1a:0f:1e:b9:bb:
c0:33:78:b4:8c:00:b3:9b:8f:3a:b9:6e:b4:f8:44:dd:4d:00:
4b:de:cc:7a:51:1a:12:6a:06:6a:fc:f4:31:e6:d7:0d:c2:60:
35:71:d2:e4:63:09:b9:03:5c:07:67:3a:d4:d9:f2:46:56:1a:
8c:05:56:d9:6d:7b:49:f7:b7:46:f9:45:35:58:8a:f8:25:0f:
70:ab:75:29:1a:90:63:c1:31:c6:e2:04:03:25:9b:d2:4c:16:
62:c9:85:70
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkBdRouAaYiqx5WwoUsp1C7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjMwNjI4MTAwMzE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjdmZTAxODk1N2QwOWI5YmM0Njk2MDczMzRiYTQ3YWE2ZjUyMWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAipdlft34yWfcGSgtIWwFpQM7phzR
o8HWEhLuBVEIDmgGHx0StOIa8raKWLSTFybdqetrQH2RA+cvJ0l5YZHXOlNQQMHq
vldJrE2XSFoNJFdzR7pfP2PMhc43PoGCn90x5cMQoWPlq+C43q+RxprkQ8y5dyE+
Pi1eJPHEC977lRXpUHclMxekXfkfxhbGrDg+52FrVvYchBySsEUajj0mcO5f9l6F
2yrDqmKERFc09al+evk2+vonUoU107i420QpCofkTrwePjmy61ie1EuuCRXewV7W
iO0+D8rdhHtE9JfdIDDwQxmFeAVGyr0syYDE8DsmYF/jsnJfCzEi1FiUIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMt/4BiVfQm5vEaWBzNLpHqm9SGuMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEveTNfZ0dKVjlDYm04UnBZSE0wdWtlcWIxSWE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwHlwMA0G
CSqGSIb3DQEBCwUAA4IBAQBGV/QhZ540x56kDvvl8tqRJ2xBeo43vUVIt7qJQpXB
Hjr5OC8E4SmoycziU/uogNbKUdlX37v/IllSkgqoDM4e+Cdz1gxESXhcGLFPhxmk
b24rD5jjOhsKa0nWC91cQv56w+PYAL4/0gSaqkmK6MHyQmEejM7Sa5yXVZFCJvaF
Hh4DajqmkuV6hcyheWyhphMlG5/UsQPkWUdlOG8AGg8eubvAM3i0jACzm486uW60
+ETdTQBL3sx6URoSagZq/PQx5tcNwmA1cdLkYwm5A1wHZzrU2fJGVhqMBVbZbXtJ
97dG+UU1WIr4JQ9wq3UpGpBjwTHG4gQDJZvSTBZiyYVw
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:53 2024 by rpki-client on console-fra.rpki-client.org