Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/lR6JBWyJp-PEIDMKl7LTt4uy6iU.roa
File: lR6JBWyJp-PEIDMKl7LTt4uy6iU.roa (raw, json)
Hash identifier: 7jAuBUFiBwcaEiam++p91CEeKhmxSsnmZZamfRw4ECc=
Subject key identifier: 95:1E:89:05:6C:89:A7:E3:C4:20:33:0A:97:B2:D3:B7:8B:B2:EA:25
Certificate issuer: /CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Certificate serial: 0187C6FE36FEDB951A3D4FA2B8AFD424A605
Authority key identifier: 3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/lR6JBWyJp-PEIDMKl7LTt4uy6iU.roa
Signing time: Fri 28 Apr 2023 08:32:41 +0000
ROA not before: Fri 28 Apr 2023 08:32:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 86.104.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c6:fe:36:fe:db:95:1a:3d:4f:a2:b8:af:d4:24:a6:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Validity
Not Before: Apr 28 08:32:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=951e89056c89a7e3c420330a97b2d3b78bb2ea25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:87:96:4c:78:33:5c:87:7b:fc:20:c8:83:09:
c2:ac:2d:b2:90:ad:93:90:5d:ac:cd:22:1d:75:dd:
45:54:7a:86:ed:fc:d4:f7:78:02:63:9f:70:fb:4c:
1d:92:d5:15:0b:a5:8b:f5:e7:c7:71:e4:e2:d1:ea:
80:5e:dc:ff:48:17:46:96:3a:6f:d9:a3:85:b0:36:
06:90:30:28:c0:c6:72:93:12:d2:12:a9:d8:67:f2:
de:d3:76:51:13:fe:55:0b:25:fa:87:c3:08:af:6e:
f9:f1:ce:54:5d:ae:2d:ea:aa:fa:5a:27:85:49:ec:
f1:c4:54:df:64:66:b8:40:b2:0a:e2:e4:db:5d:db:
14:29:a9:b0:68:da:15:00:e1:9a:e7:b1:24:79:b1:
d7:fa:13:4a:f9:4c:ad:66:80:70:e8:4a:79:77:41:
29:b0:e4:1e:a3:aa:93:6b:ba:69:03:45:e9:6a:2b:
4d:21:b9:a6:b7:a3:f0:70:5f:ea:60:13:35:29:9e:
65:ca:f8:2f:93:5c:c3:db:97:92:67:c3:c4:ba:98:
de:03:2c:36:75:27:cc:1e:cf:51:df:1d:48:4f:e0:
26:fb:ce:bf:c4:24:42:70:59:9e:56:0c:4b:ab:a2:
4c:ff:8b:e4:18:fc:90:1b:49:1b:aa:50:8b:ad:b4:
9b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1E:89:05:6C:89:A7:E3:C4:20:33:0A:97:B2:D3:B7:8B:B2:EA:25
X509v3 Authority Key Identifier:
keyid:3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/lR6JBWyJp-PEIDMKl7LTt4uy6iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.8.0/24
Signature Algorithm: sha256WithRSAEncryption
76:c2:b9:c9:81:04:c4:27:5c:66:68:cc:25:20:51:a0:24:d1:
0b:b9:59:59:d9:f5:30:81:c4:e2:0d:17:8f:53:05:df:4d:19:
89:d9:f6:70:90:f7:56:0d:6e:be:c9:db:d4:1d:48:71:d9:fa:
e0:09:40:dd:78:b3:59:0f:e8:3e:68:9c:83:2e:a8:64:7f:f2:
4f:18:87:9e:34:43:5d:a8:ed:bd:f3:86:e5:73:33:29:df:6e:
aa:0a:16:4f:52:84:9d:ee:12:c0:a6:e7:ec:1b:fa:30:27:69:
c8:e8:50:ad:d4:2c:ef:44:90:98:1a:54:a5:90:48:58:c7:1d:
b0:b7:8f:17:71:ed:79:29:c8:33:61:79:4d:0f:ac:8d:c0:38:
3b:66:44:66:a2:fc:ff:cf:7b:53:29:bf:e6:54:a0:fd:82:e0:
ec:d0:cb:b9:7a:de:d4:b3:75:41:7a:1c:d9:42:49:48:5a:d7:
26:79:63:2f:fe:5b:8b:f2:1a:85:7b:78:12:20:ea:4b:3b:d3:
31:fb:6f:e0:1b:3b:70:2d:a1:60:ad:40:bc:53:4d:22:4b:21:
05:52:f9:b8:b8:e7:ed:ed:6b:c2:c0:f7:a6:c2:d2:a8:c0:af:
bc:e1:5c:fa:59:23:f1:91:05:50:6e:96:96:8a:82:52:b8:65:
53:df:f5:44
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfG/jb+25UaPU+iuK/UJKYFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlMWYzMmQwY2ZhN2E4NmQzMGU3ZTExYTczZWJiZDBiMjRk
YmY0MWYwHhcNMjMwNDI4MDgzMjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTFlODkwNTZjODlhN2UzYzQyMDMzMGE5N2IyZDNiNzhiYjJlYTI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3oeWTHgzXId7/CDIgwnCrC2ykK2T
kF2szSIddd1FVHqG7fzU93gCY59w+0wdktUVC6WL9efHceTi0eqAXtz/SBdGljpv
2aOFsDYGkDAowMZykxLSEqnYZ/Le03ZRE/5VCyX6h8MIr2758c5UXa4t6qr6WieF
SezxxFTfZGa4QLIK4uTbXdsUKamwaNoVAOGa57EkebHX+hNK+UytZoBw6Ep5d0Ep
sOQeo6qTa7ppA0XpaitNIbmmt6PwcF/qYBM1KZ5lyvgvk1zD25eSZ8PEupjeAyw2
dSfMHs9R3x1IT+Am+86/xCRCcFmeVgxLq6JM/4vkGPyQG0kbqlCLrbSbKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJUeiQVsiafjxCAzCpey07eLsuolMB8GA1UdIwQY
MBaAFD4fMtDPp6htMOfhGnPrvQsk2/QfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGg4eTBNLW5xRzB3NS1FYWMtdTlDeVRiOUI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS81ZjA0OGItMmRmMy00MTQwLTlmNGUt
NjA2OGMwNGQxYmUwLzEvbFI2SkJXeUpwLVBFSURNS2w3TFR0NHV5NmlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS81ZjA0OGItMmRmMy00MTQwLTlmNGUtNjA2OGMwNGQxYmUw
LzEvUGg4eTBNLW5xRzB3NS1FYWMtdTlDeVRiOUI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVmgIMA0G
CSqGSIb3DQEBCwUAA4IBAQB2wrnJgQTEJ1xmaMwlIFGgJNELuVlZ2fUwgcTiDReP
UwXfTRmJ2fZwkPdWDW6+ydvUHUhx2frgCUDdeLNZD+g+aJyDLqhkf/JPGIeeNENd
qO2984blczMp326qChZPUoSd7hLApufsG/owJ2nI6FCt1CzvRJCYGlSlkEhYxx2w
t48Xce15KcgzYXlND6yNwDg7ZkRmovz/z3tTKb/mVKD9guDs0Mu5et7Us3VBehzZ
QklIWtcmeWMv/luL8hqFe3gSIOpLO9Mx+2/gGztwLaFgrUC8U00iSyEFUvm4uOft
7WvCwPemwtKowK+84Vz6WSPxkQVQbpaWioJSuGVT3/VE
Generated at Mon Sep 11 21:21:19 2023 by rpki-client on console-fra.rpki-client.org