Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/ht3faSXEvzO5wny3BoWrI-bY3mw.roa
File: ht3faSXEvzO5wny3BoWrI-bY3mw.roa (raw, json)
Hash identifier: KUWLdJtbe12doToeyHViDOmuA2CMnOikRS/UYL1lbPk=
Subject key identifier: 86:DD:DF:69:25:C4:BF:33:B9:C2:7C:B7:06:85:AB:23:E6:D8:DE:6C
Certificate issuer: /CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Certificate serial: 01856EA6C084F54BC55113D0436C38989C36
Authority key identifier: 2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/ht3faSXEvzO5wny3BoWrI-bY3mw.roa
Signing time: Sun 01 Jan 2023 18:45:00 +0000
ROA not before: Sun 01 Jan 2023 18:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210911
IP address blocks: 78.159.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:c0:84:f5:4b:c5:51:13:d0:43:6c:38:98:9c:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Validity
Not Before: Jan 1 18:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86dddf6925c4bf33b9c27cb70685ab23e6d8de6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bd:ec:0e:64:c7:ad:dc:f5:23:4f:68:36:f5:
96:4a:19:6b:20:3e:9d:93:ba:f6:10:ba:e2:a7:d2:
05:a5:45:52:89:9a:19:80:97:af:6a:20:1c:f8:47:
c1:7f:e2:14:e5:ef:c0:c8:87:17:68:97:0d:8c:33:
00:36:35:d2:2e:55:8e:3c:ac:1f:d5:31:03:92:e0:
9d:fc:1a:dd:5d:84:b6:dc:94:9a:95:5d:7f:24:c4:
49:a4:f4:aa:39:5b:53:ea:a7:30:fa:d4:cf:39:f8:
a4:93:e1:5f:41:35:46:15:fd:75:7c:c2:c2:79:19:
53:39:c8:7f:02:a7:b4:db:64:76:ff:8a:73:89:1b:
13:8d:18:66:68:7f:9b:22:b0:b6:af:08:0e:8e:e3:
1b:54:fc:90:83:b0:bb:1e:c1:13:29:df:b9:ee:2c:
b6:c4:17:cf:29:1f:24:70:15:ed:5e:ca:63:77:29:
56:2e:ac:32:03:12:4c:31:40:ee:b8:c4:43:c0:8c:
1b:3e:49:6b:9d:b9:15:60:1c:01:82:e5:92:8b:c5:
54:25:01:fc:40:5f:8a:42:67:d7:44:85:fa:3d:1a:
34:44:a7:cd:30:83:e0:19:27:b8:5f:cf:11:bd:69:
1a:13:70:2e:1b:52:68:f5:1e:dd:51:62:54:10:f8:
3a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DD:DF:69:25:C4:BF:33:B9:C2:7C:B7:06:85:AB:23:E6:D8:DE:6C
X509v3 Authority Key Identifier:
keyid:2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/ht3faSXEvzO5wny3BoWrI-bY3mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.92.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:8e:0d:43:dd:12:32:d6:37:54:d9:9b:1f:33:5c:38:e9:cf:
6b:d5:29:e0:8d:44:a6:d2:90:e2:52:e7:29:a7:77:ab:f8:b4:
f8:ba:b0:a9:ee:68:06:3b:d1:b0:69:cd:a9:d0:8f:7e:46:43:
4e:a7:a7:04:e7:22:ba:19:fb:60:6d:47:c7:0f:73:bb:8d:58:
a1:e8:12:7f:b8:7d:65:27:9e:7a:e5:b7:9a:19:76:34:83:2a:
fc:dc:0f:aa:01:5a:fb:55:58:a1:4a:6a:a3:52:7e:38:93:4c:
8a:04:48:1f:6e:26:4b:37:a5:5a:5a:0b:ae:ee:c4:90:d9:61:
8e:4e:21:ee:37:fb:f0:32:b0:85:d4:ec:42:f1:70:c5:ba:d5:
82:d5:50:b9:9f:e7:9f:8c:35:7d:fc:5c:28:3f:94:60:c1:18:
c5:0d:52:47:32:47:18:fc:64:3f:35:a4:df:7b:7c:2a:da:53:
52:1c:ab:b9:e7:3c:8b:10:58:06:f1:5f:72:61:fd:fc:8d:3e:
96:e5:1e:9a:51:30:ee:f2:a5:f5:54:5d:33:3f:96:9d:4d:e6:
90:58:57:90:7c:ca:77:79:69:4c:13:84:89:fb:00:73:0f:ca:
4e:62:54:ff:01:7b:0c:de:04:24:e9:83:d4:d3:5c:40:06:2b:
13:b9:7d:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVupsCE9UvFURPQQ2w4mJw2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjMzk2M2JhMmFhZTVhYmQzOGE2ZWVkMDlkYTk4NTYxMWYx
YjUwMjEwHhcNMjMwMTAxMTg0NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmRkZGY2OTI1YzRiZjMzYjljMjdjYjcwNjg1YWIyM2U2ZDhkZTZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArb3sDmTHrdz1I09oNvWWShlrID6d
k7r2ELrip9IFpUVSiZoZgJevaiAc+EfBf+IU5e/AyIcXaJcNjDMANjXSLlWOPKwf
1TEDkuCd/BrdXYS23JSalV1/JMRJpPSqOVtT6qcw+tTPOfikk+FfQTVGFf11fMLC
eRlTOch/Aqe022R2/4pziRsTjRhmaH+bIrC2rwgOjuMbVPyQg7C7HsETKd+57iy2
xBfPKR8kcBXtXspjdylWLqwyAxJMMUDuuMRDwIwbPklrnbkVYBwBguWSi8VUJQH8
QF+KQmfXRIX6PRo0RKfNMIPgGSe4X88RvWkaE3AuG1Jo9R7dUWJUEPg61QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIbd32klxL8zucJ8twaFqyPm2N5sMB8GA1UdIwQY
MBaAFCw5Y7oqrlq9OKbu0J2phWEfG1AhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTERsanVpcXVXcjA0cHU3UW5hbUZZUjhiVUNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8zODFlY2MtOWQ3NS00MWJhLTg1ZjYt
MTc2OTNlN2VhNjdhLzEvaHQzZmFTWEV2ek81d255M0JvV3JJLWJZM213LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy8zODFlY2MtOWQ3NS00MWJhLTg1ZjYtMTc2OTNlN2VhNjdh
LzEvTERsanVpcXVXcjA0cHU3UW5hbUZZUjhiVUNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATp9cMA0G
CSqGSIb3DQEBCwUAA4IBAQA+jg1D3RIy1jdU2ZsfM1w46c9r1SngjUSm0pDiUucp
p3er+LT4urCp7mgGO9Gwac2p0I9+RkNOp6cE5yK6GftgbUfHD3O7jVih6BJ/uH1l
J5565beaGXY0gyr83A+qAVr7VVihSmqjUn44k0yKBEgfbiZLN6VaWguu7sSQ2WGO
TiHuN/vwMrCF1OxC8XDFutWC1VC5n+efjDV9/FwoP5RgwRjFDVJHMkcY/GQ/NaTf
e3wq2lNSHKu55zyLEFgG8V9yYf38jT6W5R6aUTDu8qX1VF0zP5adTeaQWFeQfMp3
eWlME4SJ+wBzD8pOYlT/AXsM3gQk6YPU01xABisTuX39
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:18 2024 by rpki-client on console-fra.rpki-client.org