Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/DDSZn_gngFmmr7GFMaUWlYWTXmk.roa
File: DDSZn_gngFmmr7GFMaUWlYWTXmk.roa (raw, json)
Hash identifier: GzW/XvxJkJ7gdL2jF7Ilhv4eEt/sXu2pTm7ReQQegG8=
Subject key identifier: 0C:34:99:9F:F8:27:80:59:A6:AF:B1:85:31:A5:16:95:85:93:5E:69
Certificate issuer: /CN=fed77339d938bef087599293c201b3b9f8223623
Certificate serial: 01857321E2853AC4B794302ECF944F43D952
Authority key identifier: FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/DDSZn_gngFmmr7GFMaUWlYWTXmk.roa
Signing time: Mon 02 Jan 2023 15:37:58 +0000
ROA not before: Mon 02 Jan 2023 15:37:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 141.53.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:e2:85:3a:c4:b7:94:30:2e:cf:94:4f:43:d9:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fed77339d938bef087599293c201b3b9f8223623
Validity
Not Before: Jan 2 15:37:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c34999ff8278059a6afb18531a5169585935e69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3e:26:e2:b9:f0:cc:2c:43:1c:e4:55:b5:eb:
2d:e8:4b:d0:07:26:12:c2:f3:99:12:c6:75:4e:b4:
65:23:d3:1c:fe:ba:5c:bf:2a:50:fa:33:4c:78:e9:
62:f5:b4:25:71:20:82:3b:64:c4:70:17:af:01:7f:
f3:8e:5d:b8:fc:f3:e7:8f:00:56:9c:d6:62:83:90:
d3:ab:15:74:97:6e:34:93:09:e7:56:df:90:b4:f3:
f9:40:ae:7a:6e:34:64:46:09:6c:d4:28:88:bf:4f:
b4:3e:2a:69:c6:a7:f6:6c:72:a0:84:f5:6d:e5:09:
95:06:75:65:1e:60:03:1d:0a:00:a6:0e:3e:6b:46:
71:dd:33:f1:e9:d2:00:ce:6e:37:36:f3:a5:a1:96:
b3:59:2a:6b:53:b4:68:ac:55:2a:fc:a9:a6:a0:6d:
99:3f:2e:57:8e:3a:ba:59:f8:a6:81:ed:30:5c:03:
0b:7a:9a:13:72:7e:15:25:14:9b:2e:9d:17:80:47:
d1:41:d6:c5:f6:71:50:51:69:1e:50:85:a2:75:ce:
86:26:c4:df:18:74:75:f2:ba:d6:03:e0:13:70:ba:
b9:36:ec:ac:76:de:3d:46:85:9c:5b:53:e4:57:0c:
61:39:76:57:7c:8b:e6:39:4d:74:f7:e8:d5:55:d1:
e2:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:34:99:9F:F8:27:80:59:A6:AF:B1:85:31:A5:16:95:85:93:5E:69
X509v3 Authority Key Identifier:
keyid:FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/DDSZn_gngFmmr7GFMaUWlYWTXmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.53.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8f:72:12:c8:e6:14:2f:48:85:53:85:e5:07:20:7c:be:ca:52:
55:8f:ad:c6:a6:83:f0:51:0d:df:c2:1b:52:c3:fb:4d:f6:93:
40:3a:cc:56:83:f9:f3:82:c9:7a:de:52:bb:29:c0:b0:c8:59:
54:41:7c:82:9d:69:3e:dc:f4:71:a0:68:5a:3f:62:6e:1d:6a:
d8:a9:db:a4:ba:ea:1b:c4:6a:f3:e8:ca:9c:fb:89:7a:82:b3:
cb:e7:c2:70:57:47:f5:16:22:44:cc:10:50:1c:1a:5d:98:87:
4b:19:a8:7c:6d:c9:eb:c3:72:89:82:47:7d:52:2d:a5:cd:29:
4b:5a:61:90:9a:6e:21:34:13:15:f1:01:48:b4:03:cf:f2:4b:
f0:cd:af:9e:20:f8:3b:30:49:b5:04:0a:d3:4a:12:e3:09:41:
1e:d4:da:7a:90:08:34:e9:32:47:b6:94:95:a7:51:a9:87:6e:
66:a3:bf:40:88:a6:ad:8b:58:18:a1:21:d8:8b:a6:30:fe:2c:
c7:80:3e:2d:70:78:23:e2:70:93:80:c5:72:20:97:e9:0b:a9:
ee:15:3c:09:b8:f9:f2:f1:95:a9:55:91:be:06:a9:14:41:22:
be:17:c7:dc:b1:14:1e:94:0f:0e:f1:b2:88:30:29:86:70:8a:
2b:66:01:e7
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVzIeKFOsS3lDAuz5RPQ9lSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlZDc3MzM5ZDkzOGJlZjA4NzU5OTI5M2MyMDFiM2I5Zjgy
MjM2MjMwHhcNMjMwMTAyMTUzNzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzM0OTk5ZmY4Mjc4MDU5YTZhZmIxODUzMWE1MTY5NTg1OTM1ZTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgz4m4rnwzCxDHORVtest6EvQByYS
wvOZEsZ1TrRlI9Mc/rpcvypQ+jNMeOli9bQlcSCCO2TEcBevAX/zjl24/PPnjwBW
nNZig5DTqxV0l240kwnnVt+QtPP5QK56bjRkRgls1CiIv0+0Pippxqf2bHKghPVt
5QmVBnVlHmADHQoApg4+a0Zx3TPx6dIAzm43NvOloZazWSprU7RorFUq/KmmoG2Z
Py5Xjjq6Wfimge0wXAMLepoTcn4VJRSbLp0XgEfRQdbF9nFQUWkeUIWidc6GJsTf
GHR18rrWA+ATcLq5Nuysdt49RoWcW1PkVwxhOXZXfIvmOU109+jVVdHizwIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFAw0mZ/4J4BZpq+xhTGlFpWFk15pMB8GA1UdIwQY
MBaAFP7XcznZOL7wh1mSk8IBs7n4IjYjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iZmI4MTctN2UyZC00NDU4LWJhYjEt
ZDE3NTAwMjBjYWY1LzEvRERTWm5fZ25nRm1tcjdHRk1hVVdsWVdUWG1rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iZmI4MTctN2UyZC00NDU4LWJhYjEtZDE3NTAwMjBjYWY1
LzEvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjTUwDQYJ
KoZIhvcNAQELBQADggEBAI9yEsjmFC9IhVOF5QcgfL7KUlWPrcamg/BRDd/CG1LD
+032k0A6zFaD+fOCyXreUrspwLDIWVRBfIKdaT7c9HGgaFo/Ym4datip26S66hvE
avPoypz7iXqCs8vnwnBXR/UWIkTMEFAcGl2Yh0sZqHxtyevDcomCR31SLaXNKUta
YZCabiE0ExXxAUi0A8/yS/DNr54g+DswSbUECtNKEuMJQR7U2nqQCDTpMke2lJWn
UamHbmajv0CIpq2LWBihIdiLpjD+LMeAPi1weCPicJOAxXIgl+kLqe4VPAm4+fLx
lalVkb4GqRRBIr4Xx9yxFB6UDw7xsogwKYZwiitmAec=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:06 2024 by rpki-client on console-fra.rpki-client.org