Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/V1PARPPx0WmgDsXHghzNE7OLjhs.roa
File: V1PARPPx0WmgDsXHghzNE7OLjhs.roa (raw, json)
Hash identifier: 6SyV/H/wE1KFytETlJB5QFguZDfVeLxz6uewwzmNPHM=
Subject key identifier: 57:53:C0:44:F3:F1:D1:69:A0:0E:C5:C7:82:1C:CD:13:B3:8B:8E:1B
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018BFA324B68B63073F51D43A4A61194CEB5
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/V1PARPPx0WmgDsXHghzNE7OLjhs.roa
Signing time: Thu 23 Nov 2023 03:21:21 +0000
ROA not before: Thu 23 Nov 2023 03:21:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211134
IP address blocks: 89.23.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fa:32:4b:68:b6:30:73:f5:1d:43:a4:a6:11:94:ce:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Nov 23 03:21:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5753c044f3f1d169a00ec5c7821ccd13b38b8e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:cf:3a:ae:64:88:53:98:34:d5:08:68:72:19:
35:7d:8e:75:e4:0c:0b:6e:79:fd:8e:f2:1b:85:bc:
2e:a2:b4:d8:9c:45:3a:a8:95:72:80:ac:a5:f5:1e:
d3:8b:a8:72:36:fc:bd:d4:c3:2c:52:24:be:c1:52:
97:62:a1:08:29:5f:eb:a2:98:06:90:76:e5:11:37:
82:55:be:00:9d:7f:e3:e6:6b:f3:4d:a4:0c:69:d4:
b7:39:f5:b6:01:ed:19:a7:f8:b5:56:40:d8:ef:3e:
19:eb:80:53:74:71:f2:8c:12:7f:27:dc:fa:24:e8:
e6:0d:52:96:47:5a:32:50:79:45:3a:60:9e:05:97:
7a:67:8e:cb:31:14:e1:f7:93:c2:81:b0:f9:ad:fe:
da:0c:32:62:52:b4:e4:32:ca:f1:0b:8e:31:05:0e:
99:55:bd:c5:75:25:ae:8a:9a:68:82:3a:e2:44:b1:
cf:94:d2:c1:ff:f7:08:69:9d:02:dc:66:e0:ea:55:
be:43:7d:00:b5:e8:84:f2:9d:15:de:c6:9b:e3:0e:
3d:68:23:87:69:07:e7:ad:5d:b4:72:26:63:6e:57:
60:90:fa:33:08:ca:6a:fe:c8:07:72:62:24:dc:cd:
59:dd:23:3f:ea:90:14:5c:14:3d:20:26:a9:b3:36:
50:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:53:C0:44:F3:F1:D1:69:A0:0E:C5:C7:82:1C:CD:13:B3:8B:8E:1B
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/V1PARPPx0WmgDsXHghzNE7OLjhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.122.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:0e:77:c3:b0:c5:73:02:bb:98:59:2e:bb:87:01:8f:e4:9c:
1d:11:e9:e0:98:dc:ac:0f:3c:5f:ac:67:c5:6e:53:d4:c6:39:
d3:33:8e:a3:59:56:e9:77:2d:44:b5:94:6e:cf:21:ac:37:96:
63:3f:e2:39:58:ea:1f:5d:de:12:48:30:50:7c:0a:5a:22:7a:
1c:b9:9a:23:9a:ad:8a:cd:68:5c:21:aa:e0:ed:70:a7:04:e0:
f1:bf:1d:97:9c:81:f3:da:fc:f1:4d:e3:9c:75:0b:b3:07:f3:
07:55:b5:c5:a7:ae:1a:fb:bb:b4:a6:ef:99:09:38:c0:dd:ee:
ef:d9:94:25:48:af:65:5b:77:09:86:84:5d:b5:b5:d3:d4:e9:
43:5d:3b:6d:61:b8:5d:71:13:e1:ff:87:52:e3:6b:6e:04:70:
6a:a0:b9:e5:69:a7:b1:ff:c6:9a:03:57:7d:52:bf:09:00:40:
f4:0e:dc:f6:82:9b:2d:ad:b5:59:db:9e:05:69:73:03:d9:79:
fe:c0:b4:d4:08:bc:9b:3e:d1:ea:f2:7e:8e:75:4c:86:61:ed:
0a:02:67:72:b8:09:df:a2:c4:bc:c7:f9:94:db:6d:53:33:25:
79:db:b5:c7:b6:ef:45:8b:94:3f:27:23:4c:df:80:cb:80:5f:
73:a0:f5:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYv6MktotjBz9R1DpKYRlM61MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl
NWVjZjIwHhcNMjMxMTIzMDMyMTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzUzYzA0NGYzZjFkMTY5YTAwZWM1Yzc4MjFjY2QxM2IzOGI4ZTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq886rmSIU5g01Qhochk1fY515AwL
bnn9jvIbhbwuorTYnEU6qJVygKyl9R7Ti6hyNvy91MMsUiS+wVKXYqEIKV/ropgG
kHblETeCVb4AnX/j5mvzTaQMadS3OfW2Ae0Zp/i1VkDY7z4Z64BTdHHyjBJ/J9z6
JOjmDVKWR1oyUHlFOmCeBZd6Z47LMRTh95PCgbD5rf7aDDJiUrTkMsrxC44xBQ6Z
Vb3FdSWuippogjriRLHPlNLB//cIaZ0C3Gbg6lW+Q30AteiE8p0V3sab4w49aCOH
aQfnrV20ciZjbldgkPozCMpq/sgHcmIk3M1Z3SM/6pAUXBQ9ICapszZQ5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFdTwETz8dFpoA7Fx4IczROzi44bMB8GA1UdIwQY
MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt
MTcxYzM2N2JlNzgyLzEvVjFQQVJQUHgwV21nRHNYSGdoek5FN09MamhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy
LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWRd6MA0G
CSqGSIb3DQEBCwUAA4IBAQBbDnfDsMVzAruYWS67hwGP5JwdEengmNysDzxfrGfF
blPUxjnTM46jWVbpdy1EtZRuzyGsN5ZjP+I5WOofXd4SSDBQfApaInocuZojmq2K
zWhcIarg7XCnBODxvx2XnIHz2vzxTeOcdQuzB/MHVbXFp64a+7u0pu+ZCTjA3e7v
2ZQlSK9lW3cJhoRdtbXT1OlDXTttYbhdcRPh/4dS42tuBHBqoLnlaaex/8aaA1d9
Ur8JAED0Dtz2gpstrbVZ254FaXMD2Xn+wLTUCLybPtHq8n6OdUyGYe0KAmdyuAnf
osS8x/mU221TMyV527XHtu9Fi5Q/JyNM34DLgF9zoPUb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:33 2024 by rpki-client on console-ams.rpki-client.org