Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/hSZaZp0798AFX7hIUp1SiJOC9LA.roa
File: hSZaZp0798AFX7hIUp1SiJOC9LA.roa (raw, json)
Hash identifier: KoQCaVN0+dfHrAp95sdfNt/EhSgEB2IYhRh6OufRMM8=
Subject key identifier: 85:26:5A:66:9D:3B:F7:C0:05:5F:B8:48:52:9D:52:88:93:82:F4:B0
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0188AE3ADA30E8279BA2615158D93838086F
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/hSZaZp0798AFX7hIUp1SiJOC9LA.roa
Signing time: Mon 12 Jun 2023 06:11:12 +0000
ROA not before: Mon 12 Jun 2023 06:11:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 77.242.150.0/24 maxlen: 24
77.242.149.0/24 maxlen: 24
88.209.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Jun 2023 15:13:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ae:3a:da:30:e8:27:9b:a2:61:51:58:d9:38:38:08:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 12 06:11:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85265a669d3bf7c0055fb848529d52889382f4b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:25:81:96:0e:3f:2f:a1:15:84:46:05:a4:a5:
46:74:13:33:a4:c4:d1:3b:56:96:c7:b5:dd:5d:fa:
58:7e:16:5c:75:ed:9f:17:04:0f:c5:3a:c3:e4:af:
ce:1c:90:49:90:94:e9:07:2f:3d:89:c3:5b:21:fd:
35:1e:12:51:1c:9e:64:39:83:52:75:c5:07:f7:a6:
fd:85:c5:af:fd:31:b8:ce:f9:1f:c8:23:80:d9:32:
3c:94:47:8a:a8:3e:9c:b7:0c:a4:6f:ba:dd:db:08:
eb:df:a2:a4:4b:c6:3a:e7:4b:a3:9c:2f:ed:58:78:
b6:40:ad:e5:bb:19:9c:c5:66:f7:af:c9:83:c0:6a:
a3:7c:a2:ee:13:b3:f3:42:7c:63:26:32:09:eb:d1:
cd:a6:15:08:72:62:f8:29:cc:44:a5:80:71:c9:93:
6f:f2:4f:ba:8c:46:2a:48:e7:e1:19:6f:e9:e5:4c:
f7:98:c7:27:ec:99:11:c9:29:5f:78:11:82:de:f3:
f4:e4:b2:3e:a2:5e:d4:ee:38:ba:d6:95:65:18:27:
91:2f:8e:af:be:f5:de:cc:60:ee:19:2a:98:68:bd:
0c:fa:12:56:a8:13:8b:e7:e7:cd:b1:83:44:6d:ae:
a0:3b:3d:c1:79:12:cd:45:eb:e0:21:b4:62:75:44:
fc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:26:5A:66:9D:3B:F7:C0:05:5F:B8:48:52:9D:52:88:93:82:F4:B0
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/hSZaZp0798AFX7hIUp1SiJOC9LA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.149.0-77.242.150.255
88.209.195.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:58:10:0e:90:84:01:11:9e:b6:b6:48:e3:82:44:f2:bd:1a:
c0:7e:4e:96:a1:27:6a:97:78:5d:1b:6c:10:ee:af:d1:ea:3b:
97:4b:53:ba:39:d8:f9:da:25:4c:03:69:df:1d:e0:06:93:22:
36:4c:85:2e:20:c0:ff:60:fb:2b:2d:67:4f:70:5c:df:b1:56:
de:d1:d2:60:42:bb:d3:99:7c:7e:42:13:c9:88:de:23:d7:29:
61:48:22:12:eb:42:38:49:5d:7e:23:e3:ca:e1:2c:a9:8c:61:
b5:05:32:8e:94:b2:31:81:a6:a2:c4:07:cc:2b:88:e0:01:c7:
19:a3:1f:7a:0a:f4:02:b1:de:4b:b6:99:a0:d2:72:cb:cb:88:
0e:cf:b3:a4:72:9a:62:c6:33:e3:03:82:3c:d1:d5:b5:b7:54:
cd:ae:41:97:95:f7:28:fe:c1:00:59:09:ca:e1:76:c5:4c:17:
6b:51:ca:53:a6:cb:25:ea:b2:3b:fe:16:fa:35:1b:6a:6f:fa:
5f:98:33:92:a4:75:87:59:86:74:d7:87:15:d8:a4:ff:b6:90:
64:df:df:e5:f8:58:46:1d:58:3f:e8:74:73:88:b8:92:15:34:
7d:8a:54:a3:13:a6:1e:92:17:1e:d3:90:71:8a:57:ed:a3:69:
fe:3d:31:81
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYiuOtow6CebomFRWNk4OAhvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwNjEyMDYxMTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTI2NWE2NjlkM2JmN2MwMDU1ZmI4NDg1MjlkNTI4ODkzODJmNGIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkCWBlg4/L6EVhEYFpKVGdBMzpMTR
O1aWx7XdXfpYfhZcde2fFwQPxTrD5K/OHJBJkJTpBy89icNbIf01HhJRHJ5kOYNS
dcUH96b9hcWv/TG4zvkfyCOA2TI8lEeKqD6ctwykb7rd2wjr36KkS8Y650ujnC/t
WHi2QK3luxmcxWb3r8mDwGqjfKLuE7PzQnxjJjIJ69HNphUIcmL4KcxEpYBxyZNv
8k+6jEYqSOfhGW/p5Uz3mMcn7JkRySlfeBGC3vP05LI+ol7U7ji61pVlGCeRL46v
vvXezGDuGSqYaL0M+hJWqBOL5+fNsYNEba6gOz3BeRLNRevgIbRidUT8AwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFIUmWmadO/fABV+4SFKdUoiTgvSwMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvaFNaYVpwMDc5OEFGWDdoSVVwMVNpSk9DOUxBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBABN8pUD
BABN8pYDBABY0cMwDQYJKoZIhvcNAQELBQADggEBALFYEA6QhAERnra2SOOCRPK9
GsB+TpahJ2qXeF0bbBDur9HqO5dLU7o52PnaJUwDad8d4AaTIjZMhS4gwP9g+yst
Z09wXN+xVt7R0mBCu9OZfH5CE8mI3iPXKWFIIhLrQjhJXX4j48rhLKmMYbUFMo6U
sjGBpqLEB8wriOABxxmjH3oK9AKx3ku2maDScsvLiA7Ps6RymmLGM+MDgjzR1bW3
VM2uQZeV9yj+wQBZCcrhdsVMF2tRylOmyyXqsjv+Fvo1G2pv+l+YM5KkdYdZhnTX
hxXYpP+2kGTf3+X4WEYdWD/odHOIuJIVNH2KVKMTph6SFx7TkHGKV+2jaf49MYE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org