Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/2DYNztlEzm6miVfga_Nr74WtWBk.roa
File: 2DYNztlEzm6miVfga_Nr74WtWBk.roa (raw, json)
Hash identifier: MzuElUnypwkYf/Vz0CYrb3AbcFapW8ntr+kldCEbt+M=
Subject key identifier: D8:36:0D:CE:D9:44:CE:6E:A6:89:57:E0:6B:F3:6B:EF:85:AD:58:19
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 01856CE6360B6A4A5E371850324DA4130DF8
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/2DYNztlEzm6miVfga_Nr74WtWBk.roa
Signing time: Sun 01 Jan 2023 10:35:04 +0000
ROA not before: Sun 01 Jan 2023 10:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25487
IP address blocks: 217.13.80.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:36:0b:6a:4a:5e:37:18:50:32:4d:a4:13:0d:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 1 10:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8360dced944ce6ea68957e06bf36bef85ad5819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:17:ae:19:54:ce:60:ee:a5:4b:ca:c0:f5:2e:
96:95:0f:e7:b4:96:e5:0d:28:0a:3e:aa:37:7c:ca:
24:fa:bb:46:5f:0d:65:e9:ee:a5:c6:ca:ad:5d:d3:
f7:40:50:3d:8d:a5:c6:f2:ca:37:27:93:6e:0b:49:
53:e6:6a:35:4d:f5:0c:2b:d4:fb:6e:dc:43:89:38:
66:0d:3c:86:b7:7e:6f:1b:32:d4:a6:b8:8c:4a:a7:
cb:17:ae:d2:75:c2:42:24:dd:75:71:bc:40:36:6a:
f6:2f:44:1d:86:86:1c:13:26:fa:a0:e8:8b:b7:84:
9c:4a:1a:03:2b:82:73:a0:51:1d:61:35:fa:5d:0d:
72:28:ca:da:65:ec:12:5d:48:41:46:bf:6f:45:49:
b4:b3:38:c5:31:ca:fd:6d:31:ac:cf:80:36:7a:1c:
94:79:47:43:a2:f0:8a:55:31:30:34:f7:cf:e8:1a:
89:61:c5:18:80:fe:e2:18:de:34:af:51:fd:b2:94:
a5:6a:29:c7:e8:03:ea:cc:bd:26:a6:3d:9d:e6:70:
81:04:d2:11:8c:ef:e7:55:90:45:95:54:ff:17:d1:
e6:95:3a:82:36:a2:c9:b5:ae:92:09:7e:f2:f0:ae:
27:1a:02:2a:38:b7:1c:58:7f:a2:7d:84:8f:69:6e:
14:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:36:0D:CE:D9:44:CE:6E:A6:89:57:E0:6B:F3:6B:EF:85:AD:58:19
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/2DYNztlEzm6miVfga_Nr74WtWBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.13.80.0/20
Signature Algorithm: sha256WithRSAEncryption
c4:d2:1b:3f:29:11:44:5b:dd:49:43:c3:f1:2c:4e:84:97:d5:
28:e9:ad:dd:5d:f8:2b:b4:a8:8b:ea:a0:7e:6d:f0:6d:db:aa:
c0:ba:8c:e3:8b:73:0e:c5:e7:26:08:a1:1b:13:5d:3b:6e:36:
24:40:51:5c:7d:79:8e:c7:66:2c:06:f3:af:0f:20:bd:67:56:
32:b1:89:ba:c2:09:9b:60:2a:14:0c:25:4e:30:9a:57:f0:25:
94:a3:92:82:af:b1:49:74:3f:b3:20:98:9c:77:00:2d:52:19:
d2:f8:88:81:70:75:d3:90:dc:9a:8b:d3:f9:4a:35:04:80:3e:
dc:9a:2e:85:69:d4:ca:59:81:db:ab:1a:da:1e:7c:28:49:2c:
8f:2a:6c:07:22:3f:86:1a:f6:73:30:7c:d6:f6:8b:eb:9d:b4:
1b:81:c5:33:bf:0f:df:4e:2a:24:5b:e4:1c:5b:8d:8b:89:aa:
6a:45:1b:00:db:5a:e1:3a:56:a3:98:ef:33:fd:ec:ac:fc:67:
ec:11:74:d4:1d:bc:88:78:26:ef:0f:33:e0:db:9c:fa:5c:ad:
a6:e3:ca:44:1d:9e:b3:b3:1c:69:f9:7d:4a:a4:cd:f8:42:d0:
8f:f4:15:a4:8f:31:77:49:07:38:25:34:4f:67:bd:80:9c:c4:
c1:23:09:0e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5jYLakpeNxhQMk2kEw34MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxOTNmZmU5ZGIzNzYyNmIxM2Y4NWQ3Y2M0NTdhYWQ1YzFm
MzBjOWYwHhcNMjMwMTAxMTAzNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODM2MGRjZWQ5NDRjZTZlYTY4OTU3ZTA2YmYzNmJlZjg1YWQ1ODE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApReuGVTOYO6lS8rA9S6WlQ/ntJbl
DSgKPqo3fMok+rtGXw1l6e6lxsqtXdP3QFA9jaXG8so3J5NuC0lT5mo1TfUMK9T7
btxDiThmDTyGt35vGzLUpriMSqfLF67SdcJCJN11cbxANmr2L0QdhoYcEyb6oOiL
t4ScShoDK4JzoFEdYTX6XQ1yKMraZewSXUhBRr9vRUm0szjFMcr9bTGsz4A2ehyU
eUdDovCKVTEwNPfP6BqJYcUYgP7iGN40r1H9spSlainH6APqzL0mpj2d5nCBBNIR
jO/nVZBFlVT/F9HmlTqCNqLJta6SCX7y8K4nGgIqOLccWH+ifYSPaW4URwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNg2Dc7ZRM5upolX4Gvza++FrVgZMB8GA1UdIwQY
MBaAFIGT/+nbN2JrE/hdfMRXqtXB8wyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODkt
MDhkMTI3MGMyZTcxLzEvMkRZTnp0bEV6bTZtaVZmZ2FfTnI3NFd0V0JrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODktMDhkMTI3MGMyZTcx
LzEvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE2Q1QMA0G
CSqGSIb3DQEBCwUAA4IBAQDE0hs/KRFEW91JQ8PxLE6El9Uo6a3dXfgrtKiL6qB+
bfBt26rAuozji3MOxecmCKEbE107bjYkQFFcfXmOx2YsBvOvDyC9Z1YysYm6wgmb
YCoUDCVOMJpX8CWUo5KCr7FJdD+zIJicdwAtUhnS+IiBcHXTkNyai9P5SjUEgD7c
mi6FadTKWYHbqxraHnwoSSyPKmwHIj+GGvZzMHzW9ovrnbQbgcUzvw/fTiokW+Qc
W42LiapqRRsA21rhOlajmO8z/eys/GfsEXTUHbyIeCbvDzPg25z6XK2m48pEHZ6z
sxxp+X1KpM34QtCP9BWkjzF3SQc4JTRPZ72AnMTBIwkO
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:05 2024 by rpki-client on console-ams.rpki-client.org