Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/jxdamviLS8WAS5gM4oLmFISLKac.roa
File: jxdamviLS8WAS5gM4oLmFISLKac.roa (raw, json)
Hash identifier: 6b4eb4RxzKhNgNS6H3S5bark54ysarpT9iHkGa5F5CE=
Subject key identifier: 8F:17:5A:9A:F8:8B:4B:C5:80:4B:98:0C:E2:82:E6:14:84:8B:29:A7
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 0188051C6EE532C81156F0F51A0657B6E382
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/jxdamviLS8WAS5gM4oLmFISLKac.roa
Signing time: Wed 10 May 2023 10:02:09 +0000
ROA not before: Wed 10 May 2023 10:02:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 87.246.28.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:05:1c:6e:e5:32:c8:11:56:f0:f5:1a:06:57:b6:e3:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: May 10 10:02:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f175a9af88b4bc5804b980ce282e614848b29a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:54:2a:f9:58:51:6d:16:79:ca:28:7f:7f:37:
5f:bf:a1:ca:ff:8a:9a:b9:09:10:65:64:7a:70:be:
97:d6:ee:33:29:53:0f:c6:8d:78:71:b0:9a:38:4a:
9c:47:18:09:f1:eb:b1:92:98:a5:eb:ca:36:f0:b9:
3a:8e:30:ad:8a:65:3c:41:c9:96:2e:64:2b:74:19:
d3:37:1c:6e:59:86:17:e7:3f:f2:e3:08:47:a3:38:
24:d6:aa:e7:3d:dc:4f:14:29:b7:19:9c:ea:7c:63:
96:a0:d8:2f:57:87:1f:53:88:ad:60:df:87:42:3b:
27:f2:94:f4:06:92:f3:63:35:74:2d:ef:0e:da:8a:
8a:57:92:2d:29:d4:fa:eb:8b:da:e6:af:02:41:3a:
44:4c:3e:b3:7a:d6:c6:9a:c2:32:8e:47:9c:34:a9:
9d:ea:a3:db:50:6f:61:a5:a3:c1:89:0d:3f:1c:17:
f9:03:ef:17:33:f5:bf:d9:74:16:46:13:bd:80:7c:
37:05:24:20:4c:08:54:d0:15:db:65:97:0f:7f:a4:
76:1c:f9:64:b2:da:72:f4:ab:a7:26:44:da:c0:8b:
60:2e:d0:8c:bd:71:48:5a:04:ee:d5:8b:c4:a1:d4:
cf:a8:81:40:ba:41:3d:fa:b8:2d:25:cd:a1:67:14:
33:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:17:5A:9A:F8:8B:4B:C5:80:4B:98:0C:E2:82:E6:14:84:8B:29:A7
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/jxdamviLS8WAS5gM4oLmFISLKac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.246.28.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:f0:d9:78:21:33:4f:4b:05:9a:21:8c:2b:0e:12:a5:ba:93:
f8:53:32:45:9e:fb:d2:78:6f:1c:c1:11:f9:6e:a1:2e:b6:be:
91:dc:1c:da:65:5c:d9:5a:80:4e:d1:df:bf:ac:0b:db:3e:c2:
45:44:9e:99:bb:96:94:b0:90:16:20:da:d7:80:53:90:09:1c:
a9:5c:02:32:35:51:9a:dc:f8:1a:c3:dc:0f:10:f1:32:29:cb:
c4:94:c5:a3:df:c0:30:dd:dd:05:c7:e4:d1:23:7d:cc:63:60:
f5:4c:e2:20:42:7b:6f:9d:97:80:58:cd:61:92:2a:3e:2d:f1:
32:a2:ee:0a:08:a9:4e:9b:bc:a0:5d:d7:ce:f6:c9:08:6f:d4:
f8:5b:c9:95:f2:b6:8d:bc:a2:d4:0a:98:08:0d:95:af:58:7a:
3c:d9:3f:b9:11:d9:4a:7f:2b:0d:5a:ae:e0:25:18:f9:28:bf:
eb:a9:63:f8:e9:21:e8:a5:f7:52:94:0d:1d:d4:9c:b1:ad:04:
dd:96:01:f3:da:9d:7d:0a:fa:91:dd:ee:90:3e:5c:18:37:88:
90:30:bc:d5:b9:98:fb:49:4c:67:d7:ec:3c:e4:50:1d:32:df:
dd:9f:4d:b4:1c:55:13:a4:93:c1:59:74:be:3b:26:6f:66:3e:
fc:63:a8:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgFHG7lMsgRVvD1GgZXtuOCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMmE4YzFkMzExODk1MDE2MTA4ZmZiZDE0NTc1Yzc3Y2My
ODc3M2EwHhcNMjMwNTEwMTAwMjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZjE3NWE5YWY4OGI0YmM1ODA0Yjk4MGNlMjgyZTYxNDg0OGIyOWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1Qq+VhRbRZ5yih/fzdfv6HK/4qa
uQkQZWR6cL6X1u4zKVMPxo14cbCaOEqcRxgJ8euxkpil68o28Lk6jjCtimU8QcmW
LmQrdBnTNxxuWYYX5z/y4whHozgk1qrnPdxPFCm3GZzqfGOWoNgvV4cfU4itYN+H
Qjsn8pT0BpLzYzV0Le8O2oqKV5ItKdT664va5q8CQTpETD6zetbGmsIyjkecNKmd
6qPbUG9hpaPBiQ0/HBf5A+8XM/W/2XQWRhO9gHw3BSQgTAhU0BXbZZcPf6R2HPlk
stpy9KunJkTawItgLtCMvXFIWgTu1YvEodTPqIFAukE9+rgtJc2hZxQzdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI8XWpr4i0vFgEuYDOKC5hSEiymnMB8GA1UdIwQY
MBaAFHIqjB0xGJUBYQj/vRRXXHfMKHc6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2lxTUhURVlsUUZoQ1AtOUZGZGNkOHdvZHpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iMWY2ZWUtYzRlZi00MzU1LWFmMzYt
YTU1OGVlNjU0MzFmLzEvanhkYW12aUxTOFdBUzVnTTRvTG1GSVNMS2FjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9iMWY2ZWUtYzRlZi00MzU1LWFmMzYtYTU1OGVlNjU0MzFm
LzEvY2lxTUhURVlsUUZoQ1AtOUZGZGNkOHdvZHpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCV/YcMA0G
CSqGSIb3DQEBCwUAA4IBAQCf8Nl4ITNPSwWaIYwrDhKlupP4UzJFnvvSeG8cwRH5
bqEutr6R3BzaZVzZWoBO0d+/rAvbPsJFRJ6Zu5aUsJAWINrXgFOQCRypXAIyNVGa
3Pgaw9wPEPEyKcvElMWj38Aw3d0Fx+TRI33MY2D1TOIgQntvnZeAWM1hkio+LfEy
ou4KCKlOm7ygXdfO9skIb9T4W8mV8raNvKLUCpgIDZWvWHo82T+5EdlKfysNWq7g
JRj5KL/rqWP46SHopfdSlA0d1JyxrQTdlgHz2p19CvqR3e6QPlwYN4iQMLzVuZj7
SUxn1+w85FAdMt/dn020HFUTpJPBWXS+OyZvZj78Y6j7
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-fra.rpki-client.org