Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/8zpCprMzG2FXZfeUVZf2gz2G3gI.roa
File: 8zpCprMzG2FXZfeUVZf2gz2G3gI.roa (raw, json)
Hash identifier: jOAT4Wt7uQTAK7XNaG5yZcj7tcRDeUsQKY5Z3x3bccU=
Subject key identifier: F3:3A:42:A6:B3:33:1B:61:57:65:F7:94:55:97:F6:83:3D:86:DE:02
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 018CC64B279B3D1FC91B799819721FF453AE
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/8zpCprMzG2FXZfeUVZf2gz2G3gI.roa
Signing time: Mon 01 Jan 2024 18:31:03 +0000
ROA not before: Mon 01 Jan 2024 18:31:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43754
IP address blocks: 86.57.0.0/17 maxlen: 32
Validation: Failed, certificate revoked on Thu 04 Apr 2024 13:32:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:27:9b:3d:1f:c9:1b:79:98:19:72:1f:f4:53:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Jan 1 18:31:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f33a42a6b3331b615765f7945597f6833d86de02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:12:7c:06:31:23:a2:ab:15:7c:96:7a:61:5f:
70:52:c9:bd:15:d6:f9:1f:2f:5e:a6:f3:77:4c:d8:
ed:76:90:46:7a:06:41:57:c6:f1:eb:cd:8d:81:63:
7d:3e:81:4b:a0:a2:b3:15:46:9e:92:9d:ce:28:04:
fb:62:2e:ba:df:49:d4:05:28:96:cf:ae:38:29:f3:
0a:ca:cf:1c:06:65:19:15:b8:13:9d:fd:1b:b2:83:
00:af:26:ca:7d:20:a5:92:a8:c9:63:8e:44:e0:ca:
cf:95:2e:09:ac:a3:c4:ad:e6:dc:e0:49:6d:d4:4c:
d0:6a:49:73:fa:d3:4e:32:df:b4:20:2c:1c:3d:22:
3b:52:41:27:62:81:f8:b2:ca:ee:c8:62:57:c7:fa:
56:a8:27:56:e6:96:9b:fb:ba:e9:4e:f4:18:a0:7d:
2b:d0:93:8c:91:0f:03:d5:bb:a0:5a:a2:80:5b:e2:
6b:a3:41:22:e7:b0:73:01:1e:64:58:8e:79:83:f3:
e1:48:08:30:1c:f7:45:2d:c9:22:72:62:01:e5:23:
2f:91:f0:10:e6:8d:59:ff:6e:e6:69:9a:ec:85:a0:
0f:ad:3b:b8:5c:4c:cd:69:12:31:21:0c:16:f8:63:
7e:c8:22:6e:65:19:56:74:9c:03:0d:62:f3:e7:c6:
18:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:3A:42:A6:B3:33:1B:61:57:65:F7:94:55:97:F6:83:3D:86:DE:02
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/8zpCprMzG2FXZfeUVZf2gz2G3gI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.57.0.0/17
Signature Algorithm: sha256WithRSAEncryption
52:6e:4b:59:e0:4f:30:36:6f:24:60:f6:ae:69:77:e5:c2:10:
9b:60:6e:f7:3e:f6:eb:17:fa:30:e1:c6:90:b6:6b:7d:09:4c:
ed:47:46:d1:0a:d0:72:e2:f3:ed:8e:f0:8a:34:00:6c:fa:ac:
18:3c:73:10:a8:e1:43:5e:2f:f6:26:c8:16:81:7a:21:2e:6b:
fb:60:7a:6f:0b:b3:55:68:1f:81:db:fc:01:9e:97:b2:b4:7f:
d3:3e:53:71:6d:34:3a:80:b1:71:95:69:9e:32:6d:83:56:c1:
c2:52:98:e6:d6:f4:36:c7:43:0c:89:c8:b1:60:f0:20:d6:5a:
c7:24:08:4d:72:6e:64:54:0e:23:9a:4c:d6:99:0b:b0:14:ac:
55:41:28:08:51:fb:52:c9:49:ca:da:70:16:15:26:de:69:75:
bc:99:a9:e0:e6:d6:c6:64:95:9b:c7:a5:9f:30:db:2b:6d:7b:
15:ca:c5:c1:05:b6:76:7d:2e:e5:50:09:39:f2:c7:8e:77:21:
49:5c:34:8a:99:8f:39:a4:b4:9c:db:da:9b:71:c9:ba:79:eb:
9c:35:6c:29:ef:42:07:bf:4a:69:ee:55:39:be:2e:f9:98:c3:
d9:87:c8:54:be:47:fd:93:ed:f3:6e:2a:8c:b9:e2:1a:ed:a6:
3a:3c:e8:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGSyebPR/JG3mYGXIf9FOuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4MWI3YTIyZTUxY2ZiOWNmODQyMDVlNDQ0OTk5OGFkNTVk
OGYwNjUwHhcNMjQwMTAxMTgzMTAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzNhNDJhNmIzMzMxYjYxNTc2NWY3OTQ1NTk3ZjY4MzNkODZkZTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhJ8BjEjoqsVfJZ6YV9wUsm9Fdb5
Hy9epvN3TNjtdpBGegZBV8bx682NgWN9PoFLoKKzFUaekp3OKAT7Yi6630nUBSiW
z644KfMKys8cBmUZFbgTnf0bsoMArybKfSClkqjJY45E4MrPlS4JrKPErebc4Elt
1EzQaklz+tNOMt+0ICwcPSI7UkEnYoH4ssruyGJXx/pWqCdW5pab+7rpTvQYoH0r
0JOMkQ8D1bugWqKAW+Jro0Ei57BzAR5kWI55g/PhSAgwHPdFLckicmIB5SMvkfAQ
5o1Z/27maZrshaAPrTu4XEzNaRIxIQwW+GN+yCJuZRlWdJwDDWLz58YYGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPM6QqazMxthV2X3lFWX9oM9ht4CMB8GA1UdIwQY
MBaAFAgbeiLlHPuc+EIF5ESZmK1V2PBlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0J0Nkl1VWMtNXo0UWdYa1JKbVlyVlhZOEdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9jNTE1YzktZGYwOC00MjZjLTgwZTYt
MDM2NzI2OGZmODcxLzEvOHpwQ3ByTXpHMkZYWmZlVVZaZjJnejJHM2dJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9jNTE1YzktZGYwOC00MjZjLTgwZTYtMDM2NzI2OGZmODcx
LzEvQ0J0Nkl1VWMtNXo0UWdYa1JKbVlyVlhZOEdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHVjkAMA0G
CSqGSIb3DQEBCwUAA4IBAQBSbktZ4E8wNm8kYPauaXflwhCbYG73PvbrF/ow4caQ
tmt9CUztR0bRCtBy4vPtjvCKNABs+qwYPHMQqOFDXi/2JsgWgXohLmv7YHpvC7NV
aB+B2/wBnpeytH/TPlNxbTQ6gLFxlWmeMm2DVsHCUpjm1vQ2x0MMicixYPAg1lrH
JAhNcm5kVA4jmkzWmQuwFKxVQSgIUftSyUnK2nAWFSbeaXW8mang5tbGZJWbx6Wf
MNsrbXsVysXBBbZ2fS7lUAk58seOdyFJXDSKmY85pLSc29qbccm6eeucNWwp70IH
v0pp7lU5vi75mMPZh8hUvkf9k+3zbiqMueIa7aY6POhz
-----END CERTIFICATE-----
Generated at Thu Apr 4 17:37:02 2024 by rpki-client on console-fra.rpki-client.org