Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/ORZGqGMqiHUgJZ6LSN9sk44beew.roa
File: ORZGqGMqiHUgJZ6LSN9sk44beew.roa (raw, json)
Hash identifier: IAHChv71tPjWI9P9jlwBhpf7+V6sUZADlfZzNMlGxdY=
Subject key identifier: 39:16:46:A8:63:2A:88:75:20:25:9E:8B:48:DF:6C:93:8E:1B:79:EC
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0186A85495341D8EAB76BB30DF711D130E67
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/ORZGqGMqiHUgJZ6LSN9sk44beew.roa
Signing time: Fri 03 Mar 2023 16:36:00 +0000
ROA not before: Fri 03 Mar 2023 16:36:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62019
IP address blocks: 2.58.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a8:54:95:34:1d:8e:ab:76:bb:30:df:71:1d:13:0e:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Mar 3 16:36:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=391646a8632a887520259e8b48df6c938e1b79ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fa:52:d8:2c:17:ff:45:88:99:d3:18:16:bf:
59:b1:33:80:40:d7:7e:18:48:82:b2:c2:69:9d:78:
1c:51:7f:20:70:c9:85:3e:d6:ff:82:4a:88:4d:29:
f9:f9:97:ac:84:ea:7f:87:11:c6:63:6f:ab:de:88:
e0:c6:99:08:64:47:31:de:fd:73:b8:07:5d:9b:c3:
04:91:d3:08:1b:3d:9c:6f:7e:da:de:11:ad:85:84:
da:86:cb:80:d5:31:fe:0d:42:9d:29:6e:ea:fe:28:
68:c2:1b:c0:69:a2:e1:60:62:d3:73:77:9d:d2:72:
97:f1:67:bd:17:b5:97:3b:32:4d:b4:bd:72:d6:46:
bb:80:55:e1:1a:d2:25:56:4c:3f:87:e2:de:4b:da:
f6:cb:8c:ac:1f:f8:56:b1:cb:c3:6b:f8:d8:eb:54:
a0:d1:08:72:0b:8f:f0:ce:5b:a1:0c:4a:e1:fa:2c:
ef:08:d1:bb:29:56:c6:00:56:7f:71:fe:8b:3c:8c:
c1:c8:fc:9c:65:46:c2:2b:e7:e3:2f:f7:9f:68:ed:
40:85:69:70:5d:2a:e1:aa:84:00:1e:e3:79:ec:44:
53:c7:6c:ba:ff:dc:39:be:06:0f:d2:e0:3e:fb:e0:
f6:39:5e:66:96:ba:c5:fb:99:6e:35:76:00:13:11:
d1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:16:46:A8:63:2A:88:75:20:25:9E:8B:48:DF:6C:93:8E:1B:79:EC
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/ORZGqGMqiHUgJZ6LSN9sk44beew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.97.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:f0:7f:9f:0a:f5:28:57:88:93:74:13:62:aa:a1:33:cb:99:
c6:f2:d2:18:23:29:3a:d2:22:05:97:81:52:66:14:56:eb:83:
6f:ab:1b:4e:c5:92:4d:a8:00:41:b0:13:96:96:b0:3c:af:cb:
ed:b1:93:b8:52:4d:62:07:c6:40:ac:5b:e7:a1:76:d9:91:93:
8a:40:9d:35:6b:aa:94:06:da:0f:11:1c:c3:67:eb:4b:17:6e:
93:f1:3a:01:84:fb:db:a0:39:9a:75:3a:f2:d3:56:ab:29:30:
bd:ee:00:b2:6e:f8:7a:f2:33:fc:ea:62:f8:59:8f:b9:61:e1:
55:8e:f8:4a:1d:53:28:4b:36:8b:2b:87:71:7f:fc:95:92:b8:
ed:7d:8e:58:ab:00:6a:d6:10:6f:f3:b5:64:9f:35:89:81:d3:
10:93:25:e2:76:13:eb:53:33:ac:b9:f3:b6:12:66:47:f2:ef:
47:46:23:23:ca:2f:15:8a:75:04:c0:b6:1e:c2:34:35:a5:62:
57:4d:56:b1:0f:a5:47:6d:bb:a8:32:76:7d:3a:a1:6d:48:3b:
d7:71:a2:ac:9c:ef:3f:ef:92:ed:47:92:50:97:bd:a5:72:f7:
a1:68:bb:8c:84:18:88:9d:a4:65:a8:ce:26:d2:40:9a:2e:97:
78:dc:89:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaoVJU0HY6rdrsw33EdEw5nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjMwMzAzMTYzNjAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTE2NDZhODYzMmE4ODc1MjAyNTllOGI0OGRmNmM5MzhlMWI3OWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlPpS2CwX/0WImdMYFr9ZsTOAQNd+
GEiCssJpnXgcUX8gcMmFPtb/gkqITSn5+ZeshOp/hxHGY2+r3ojgxpkIZEcx3v1z
uAddm8MEkdMIGz2cb37a3hGthYTahsuA1TH+DUKdKW7q/ihowhvAaaLhYGLTc3ed
0nKX8We9F7WXOzJNtL1y1ka7gFXhGtIlVkw/h+LeS9r2y4ysH/hWscvDa/jY61Sg
0QhyC4/wzluhDErh+izvCNG7KVbGAFZ/cf6LPIzByPycZUbCK+fjL/efaO1AhWlw
XSrhqoQAHuN57ERTx2y6/9w5vgYP0uA+++D2OV5mlrrF+5luNXYAExHR0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDkWRqhjKoh1ICWei0jfbJOOG3nsMB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvT1JaR3FHTXFpSFVnSlo2TFNOOXNrNDRiZWV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjphMA0G
CSqGSIb3DQEBCwUAA4IBAQCw8H+fCvUoV4iTdBNiqqEzy5nG8tIYIyk60iIFl4FS
ZhRW64NvqxtOxZJNqABBsBOWlrA8r8vtsZO4Uk1iB8ZArFvnoXbZkZOKQJ01a6qU
BtoPERzDZ+tLF26T8ToBhPvboDmadTry01arKTC97gCybvh68jP86mL4WY+5YeFV
jvhKHVMoSzaLK4dxf/yVkrjtfY5YqwBq1hBv87VknzWJgdMQkyXidhPrUzOsufO2
EmZH8u9HRiMjyi8VinUEwLYewjQ1pWJXTVaxD6VHbbuoMnZ9OqFtSDvXcaKsnO8/
75LtR5JQl72lcvehaLuMhBiInaRlqM4m0kCaLpd43Inj
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:38 2024 by rpki-client on console-fra.rpki-client.org