Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/dgRdsN5ZZR9PD_ip1WU0DbQpAFg.roa
File: dgRdsN5ZZR9PD_ip1WU0DbQpAFg.roa (raw, json)
Hash identifier: WaFfrpNYlSoTS7c5K5G0Thfqnlo3bD8LCdRpdrd+7vo=
Subject key identifier: 76:04:5D:B0:DE:59:65:1F:4F:0F:F8:A9:D5:65:34:0D:B4:29:00:58
Certificate issuer: /CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e
Certificate serial: 01857246D4D3A63E969A18E34835BD374421
Authority key identifier: BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/dgRdsN5ZZR9PD_ip1WU0DbQpAFg.roa
Signing time: Mon 02 Jan 2023 11:38:42 +0000
ROA not before: Mon 02 Jan 2023 11:38:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46557
IP address blocks: 157.23.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:d4:d3:a6:3e:96:9a:18:e3:48:35:bd:37:44:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e
Validity
Not Before: Jan 2 11:38:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76045db0de59651f4f0ff8a9d565340db4290058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:29:98:ae:ef:b5:67:b6:56:e1:97:24:42:1e:
c7:fa:17:15:80:8d:d4:50:82:f3:4b:56:e8:7f:d8:
b8:4c:2e:d5:e8:db:90:d0:92:c9:61:ec:6f:16:24:
55:4c:ee:48:25:62:fe:24:9a:09:9a:b4:ef:f9:35:
f3:80:ca:81:59:f2:78:42:a8:9b:d1:3f:f8:0d:26:
43:db:67:0c:a4:bc:99:74:3f:42:a7:c7:b2:ec:6b:
9f:53:00:3b:9d:16:83:1b:36:dc:ac:e2:2e:54:9e:
5e:3c:4d:71:90:12:1b:cd:be:10:dd:9d:8d:42:61:
13:ff:fe:47:5f:9c:3c:a9:b9:06:fc:a6:66:2a:b5:
21:51:8b:1f:9a:69:3c:e2:9c:3d:83:b5:a0:a7:a5:
60:34:43:ab:e9:e4:22:cd:97:16:1d:13:ba:5e:d4:
09:a5:66:72:7a:45:80:d8:9f:73:0f:0b:9c:90:26:
15:c1:35:de:7e:40:87:44:f3:29:05:18:e4:31:27:
9b:cf:d0:ed:2a:17:11:ca:a4:ae:df:8a:55:35:fd:
20:c6:48:5f:2c:b3:0b:7d:f6:6c:d3:e6:90:04:a2:
a0:15:1d:ba:3f:e2:ac:a4:43:41:59:93:14:b5:bd:
81:41:b6:5b:e2:29:18:3d:7b:1c:71:61:f2:46:b6:
30:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:04:5D:B0:DE:59:65:1F:4F:0F:F8:A9:D5:65:34:0D:B4:29:00:58
X509v3 Authority Key Identifier:
keyid:BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/dgRdsN5ZZR9PD_ip1WU0DbQpAFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/u6Nc-KtvPqoq663Z4jc97AiTYl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.23.250.0/24
Signature Algorithm: sha256WithRSAEncryption
26:1c:40:04:4b:90:23:3b:22:58:e1:23:7d:90:de:c0:fa:93:
09:2f:4a:2c:5e:6b:30:f5:db:47:81:d2:70:89:e0:94:41:9e:
9f:ba:60:58:90:d8:f0:a2:9b:20:91:d6:c9:18:07:24:32:a2:
15:54:b9:5c:99:1d:44:b7:a2:20:25:64:47:f3:d5:85:f7:77:
b2:6d:4b:3c:f2:de:91:1e:f4:db:42:50:9e:aa:17:22:bc:f4:
19:30:0b:0f:51:71:a0:8b:f0:35:16:76:13:68:6b:7d:33:71:
17:6e:c3:88:54:82:4e:8e:38:5d:5c:94:38:f8:12:45:c9:c1:
b1:90:e2:0e:94:e2:5d:39:bf:f6:02:41:ae:fa:6f:93:71:9e:
65:70:a3:f4:d2:28:bd:4e:1c:aa:7b:00:17:5c:75:51:d8:5b:
a6:bb:f0:72:d1:ee:5a:22:f9:63:21:24:13:e9:e9:f7:c6:f2:
40:a1:a3:7c:89:0e:e3:63:ce:f8:d6:c2:85:45:3c:ee:a5:78:
9b:65:73:b3:fd:52:38:d3:f7:a7:95:ba:db:45:be:82:42:45:
6c:16:bd:59:04:12:b4:2b:31:5e:23:8d:23:c9:65:12:2e:49:
bc:8e:75:bf:8e:18:72:b0:23:5d:80:68:5c:78:cb:53:ed:30:
58:34:ab:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyRtTTpj6WmhjjSDW9N0QhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiYTM1Y2Y4YWI2ZjNlYWEyYWViYWRkOWUyMzczZGVjMDg5
MzYyNWUwHhcNMjMwMTAyMTEzODQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjA0NWRiMGRlNTk2NTFmNGYwZmY4YTlkNTY1MzQwZGI0MjkwMDU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CmYru+1Z7ZW4ZckQh7H+hcVgI3U
UILzS1bof9i4TC7V6NuQ0JLJYexvFiRVTO5IJWL+JJoJmrTv+TXzgMqBWfJ4Qqib
0T/4DSZD22cMpLyZdD9Cp8ey7GufUwA7nRaDGzbcrOIuVJ5ePE1xkBIbzb4Q3Z2N
QmET//5HX5w8qbkG/KZmKrUhUYsfmmk84pw9g7Wgp6VgNEOr6eQizZcWHRO6XtQJ
pWZyekWA2J9zDwuckCYVwTXefkCHRPMpBRjkMSebz9DtKhcRyqSu34pVNf0gxkhf
LLMLffZs0+aQBKKgFR26P+KspENBWZMUtb2BQbZb4ikYPXsccWHyRrYwgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHYEXbDeWWUfTw/4qdVlNA20KQBYMB8GA1UdIwQY
MBaAFLujXPirbz6qKuut2eI3PewIk2JeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTZOYy1LdHZQcW9xNjYzWjRqYzk3QWlUWWw0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9hMGUwMWEtOWJiYy00NGVlLTk4YTMt
NTk3YjZlMjQ5MmFiLzEvZGdSZHNONVpaUjlQRF9pcDFXVTBEYlFwQUZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9hMGUwMWEtOWJiYy00NGVlLTk4YTMtNTk3YjZlMjQ5MmFi
LzEvdTZOYy1LdHZQcW9xNjYzWjRqYzk3QWlUWWw0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRf6MA0G
CSqGSIb3DQEBCwUAA4IBAQAmHEAES5AjOyJY4SN9kN7A+pMJL0osXmsw9dtHgdJw
ieCUQZ6fumBYkNjwopsgkdbJGAckMqIVVLlcmR1Et6IgJWRH89WF93eybUs88t6R
HvTbQlCeqhcivPQZMAsPUXGgi/A1FnYTaGt9M3EXbsOIVIJOjjhdXJQ4+BJFycGx
kOIOlOJdOb/2AkGu+m+TcZ5lcKP00ii9ThyqewAXXHVR2Fumu/By0e5aIvljISQT
6en3xvJAoaN8iQ7jY8741sKFRTzupXibZXOz/VI40/enlbrbRb6CQkVsFr1ZBBK0
KzFeI40jyWUSLkm8jnW/jhhysCNdgGhceMtT7TBYNKu1
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:32 2024 by rpki-client on console-fra.rpki-client.org