Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/cd63ea-faa9-404e-9f57-0dae0d653e38/1/MivJgzBP-lTDJzYBe_Tknlq7ThY.roa
File: MivJgzBP-lTDJzYBe_Tknlq7ThY.roa (raw, json)
Hash identifier: huHG9/YEg5/mjL5rTovmr0GWsmyGiewedGDvMNVMdN0=
Subject key identifier: 32:2B:C9:83:30:4F:FA:54:C3:27:36:01:7B:F4:E4:9E:5A:BB:4E:16
Certificate issuer: /CN=07f5ccf6abd7582cc51940a76f99505633982bb4
Certificate serial: 01877E2FE9673E6BEA9C95505A6BEC5CE277
Authority key identifier: 07:F5:CC:F6:AB:D7:58:2C:C5:19:40:A7:6F:99:50:56:33:98:2B:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_XM9qvXWCzFGUCnb5lQVjOYK7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/cd63ea-faa9-404e-9f57-0dae0d653e38/1/MivJgzBP-lTDJzYBe_Tknlq7ThY.roa
Signing time: Fri 14 Apr 2023 05:14:41 +0000
ROA not before: Fri 14 Apr 2023 05:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 217.114.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7e:2f:e9:67:3e:6b:ea:9c:95:50:5a:6b:ec:5c:e2:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f5ccf6abd7582cc51940a76f99505633982bb4
Validity
Not Before: Apr 14 05:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=322bc983304ffa54c32736017bf4e49e5abb4e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:17:01:4f:54:c3:06:b9:0d:41:63:33:d9:77:
46:59:c2:18:15:fd:fa:bb:88:ff:c5:5a:9d:de:ee:
22:49:40:ec:8e:97:ae:fe:15:83:80:e8:55:70:2c:
68:3b:f8:be:9e:1b:e8:b2:3b:49:c1:b8:a5:92:90:
60:1b:0b:e5:31:7e:e8:d1:aa:f0:da:26:05:41:79:
1e:d6:3b:5f:3a:96:8f:63:7a:3e:5f:a9:a2:db:c6:
05:8a:0e:0b:62:35:37:87:26:9f:01:40:db:f5:03:
6d:27:a1:bf:a5:a7:c7:89:79:87:d4:9f:b6:e0:77:
02:53:ff:eb:14:7d:e5:c6:25:90:fb:6b:e5:51:1f:
c7:09:0d:e2:7e:e1:02:e5:aa:42:d8:2c:0e:89:da:
2e:71:1d:fb:89:e5:73:b9:53:cb:84:a2:cc:b7:22:
56:fa:8b:66:08:ce:ad:8f:56:ed:e0:39:bd:57:21:
12:a9:d5:d8:ad:6a:89:24:91:bf:b3:ed:34:ef:60:
8b:97:82:53:9d:9e:18:0d:68:48:01:1e:7f:27:4a:
5e:cc:d5:04:26:7b:64:86:ef:d5:6d:51:7b:ec:0f:
f9:a2:d9:56:ce:01:19:97:19:5c:1d:e5:6d:a7:74:
88:79:bd:46:a1:4e:99:e1:17:37:f4:af:16:7e:bb:
59:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:2B:C9:83:30:4F:FA:54:C3:27:36:01:7B:F4:E4:9E:5A:BB:4E:16
X509v3 Authority Key Identifier:
keyid:07:F5:CC:F6:AB:D7:58:2C:C5:19:40:A7:6F:99:50:56:33:98:2B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_XM9qvXWCzFGUCnb5lQVjOYK7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/cd63ea-faa9-404e-9f57-0dae0d653e38/1/MivJgzBP-lTDJzYBe_Tknlq7ThY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/cd63ea-faa9-404e-9f57-0dae0d653e38/1/B_XM9qvXWCzFGUCnb5lQVjOYK7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.39.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:f2:3a:28:83:af:ce:57:57:32:33:99:8c:08:80:18:6c:a0:
1b:be:a8:bb:3f:ce:24:a6:20:9e:ae:7a:dd:09:a0:47:32:25:
06:8a:b9:6b:c3:7e:80:7e:24:06:7d:bc:71:cd:e3:96:54:8e:
c5:8a:bf:58:cd:7d:fe:51:0e:c8:fd:fe:a0:54:18:0e:90:ee:
73:7e:14:69:8d:fa:5b:6f:62:c8:dc:ab:08:79:87:21:68:be:
06:db:3b:c0:00:4b:c0:b3:64:47:a1:7b:eb:b9:df:1c:38:ca:
eb:ae:86:28:b5:1d:8e:f0:27:14:b1:92:8d:2f:b3:60:4e:89:
91:a4:fa:0e:2b:ac:60:5c:11:71:54:f8:21:c9:b8:cd:ff:30:
11:07:da:2a:17:9b:20:55:a9:0b:e3:16:4a:ce:bb:ee:d2:37:
f9:50:94:38:5c:fc:e8:3f:07:2a:64:d7:f9:7e:87:dd:2c:38:
c2:01:2c:29:e9:c3:0a:1e:35:9b:a7:a3:97:e2:9f:e9:c7:07:
1b:d4:8c:5c:e4:c0:14:80:05:2f:cf:51:32:2a:47:69:63:ba:
c5:ca:fd:a5:66:d4:17:1c:11:7b:2f:cf:17:d4:a7:97:ee:9d:
c6:11:d9:04:bd:f4:00:a2:2a:3b:c5:df:8a:81:b4:81:37:5b:
e6:e6:78:ac
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYd+L+lnPmvqnJVQWmvsXOJ3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZjVjY2Y2YWJkNzU4MmNjNTE5NDBhNzZmOTk1MDU2MzM5
ODJiYjQwHhcNMjMwNDE0MDUxNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjJiYzk4MzMwNGZmYTU0YzMyNzM2MDE3YmY0ZTQ5ZTVhYmI0ZTE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBcBT1TDBrkNQWMz2XdGWcIYFf36
u4j/xVqd3u4iSUDsjpeu/hWDgOhVcCxoO/i+nhvosjtJwbilkpBgGwvlMX7o0arw
2iYFQXke1jtfOpaPY3o+X6mi28YFig4LYjU3hyafAUDb9QNtJ6G/pafHiXmH1J+2
4HcCU//rFH3lxiWQ+2vlUR/HCQ3ifuEC5apC2CwOidoucR37ieVzuVPLhKLMtyJW
+otmCM6tj1bt4Dm9VyESqdXYrWqJJJG/s+0072CLl4JTnZ4YDWhIAR5/J0pezNUE
Jntkhu/VbVF77A/5otlWzgEZlxlcHeVtp3SIeb1GoU6Z4Rc39K8WfrtZFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDIryYMwT/pUwyc2AXv05J5au04WMB8GA1UdIwQY
MBaAFAf1zPar11gsxRlAp2+ZUFYzmCu0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQl9YTTlxdlhXQ3pGR1VDbmI1bFFWak9ZSzdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9jZDYzZWEtZmFhOS00MDRlLTlmNTct
MGRhZTBkNjUzZTM4LzEvTWl2Smd6QlAtbFRESnpZQmVfVGtubHE3VGhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9jZDYzZWEtZmFhOS00MDRlLTlmNTctMGRhZTBkNjUzZTM4
LzEvQl9YTTlxdlhXQ3pGR1VDbmI1bFFWak9ZSzdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2XInMA0G
CSqGSIb3DQEBCwUAA4IBAQCK8joog6/OV1cyM5mMCIAYbKAbvqi7P84kpiCernrd
CaBHMiUGirlrw36AfiQGfbxxzeOWVI7Fir9YzX3+UQ7I/f6gVBgOkO5zfhRpjfpb
b2LI3KsIeYchaL4G2zvAAEvAs2RHoXvrud8cOMrrroYotR2O8CcUsZKNL7NgTomR
pPoOK6xgXBFxVPghybjN/zARB9oqF5sgVakL4xZKzrvu0jf5UJQ4XPzoPwcqZNf5
fofdLDjCASwp6cMKHjWbp6OX4p/pxwcb1Ixc5MAUgAUvz1EyKkdpY7rFyv2lZtQX
HBF7L88X1KeX7p3GEdkEvfQAoio7xd+KgbSBN1vm5nis
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:58 2023 by rpki-client on console-fra.rpki-client.org