Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/giZQ2QmJwanXWB5utMpTJuro1Ag.roa
File: giZQ2QmJwanXWB5utMpTJuro1Ag.roa (raw, json)
Hash identifier: aCcNEMnaNtMqQ4jCIIk+Nl4u1qzoGqSGaCktr+GqMvI=
Subject key identifier: 82:26:50:D9:09:89:C1:A9:D7:58:1E:6E:B4:CA:53:26:EA:E8:D4:08
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018B8FA7BA42A04A03BF2033A206E7D1B806
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/giZQ2QmJwanXWB5utMpTJuro1Ag.roa
Signing time: Thu 02 Nov 2023 10:50:15 +0000
ROA not before: Thu 02 Nov 2023 10:50:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34858
IP address blocks: 89.23.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:a7:ba:42:a0:4a:03:bf:20:33:a2:06:e7:d1:b8:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Nov 2 10:50:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=822650d90989c1a9d7581e6eb4ca5326eae8d408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4e:ec:91:be:db:4c:35:a5:a7:39:09:7d:84:
db:88:ac:19:bc:05:ea:23:19:74:c3:ec:03:cc:74:
97:4b:6e:01:34:2b:64:6a:66:02:f0:38:b6:a9:69:
45:ec:5a:2d:b3:89:b4:ee:66:40:c0:58:ee:3a:15:
67:19:c0:39:19:7d:91:49:f5:fb:68:75:9e:2b:bf:
73:13:fd:ed:24:2e:a3:7c:6f:8f:87:f3:ff:97:7b:
19:78:61:0d:b6:e9:fa:a8:34:67:68:43:e8:b1:43:
1c:f6:ee:94:3d:6d:96:12:e2:f1:4b:06:29:9d:89:
9c:06:be:11:f3:41:94:29:5d:19:a2:b5:a4:12:dd:
70:85:de:25:90:8b:c0:b6:90:a1:8a:ed:90:a1:5d:
e3:59:34:2f:b9:7a:ac:18:36:c3:9d:5c:10:83:9e:
53:b2:62:b2:54:dd:08:57:23:88:44:53:7f:cc:8b:
4c:5c:62:3c:2a:3f:72:19:88:c6:4b:37:15:6a:e1:
97:8b:38:98:6f:d6:34:71:b2:96:56:53:23:29:7a:
b0:0c:7e:0c:97:8f:a3:1f:00:90:77:f5:2a:c7:2c:
49:0b:19:bf:00:5a:87:89:31:be:cd:59:58:7e:d7:
3b:42:ac:9c:61:e7:44:bc:f6:5c:fb:4b:6b:19:54:
e7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:26:50:D9:09:89:C1:A9:D7:58:1E:6E:B4:CA:53:26:EA:E8:D4:08
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/giZQ2QmJwanXWB5utMpTJuro1Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.121.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:1e:eb:40:b1:53:72:1b:b0:39:81:c7:be:69:29:6a:51:86:
37:d3:e7:f7:ec:bd:dc:b2:ca:d9:ea:aa:ec:9c:56:ff:bf:2d:
6b:ea:f0:1e:b3:96:da:6f:95:e6:af:cc:34:48:69:48:fe:f9:
56:35:75:33:5b:f8:d2:4b:27:f5:65:f0:8c:ad:82:dd:16:3a:
e9:76:63:21:b7:17:1b:ed:f9:29:03:82:c7:69:84:19:57:cc:
54:e5:7a:e9:ef:25:28:d7:44:0f:1a:8e:6e:00:f5:da:dd:99:
30:0e:ad:7b:b9:fa:ea:10:83:27:03:e5:0b:ba:8e:61:bd:a7:
ec:73:19:ef:5f:ce:cb:98:4b:8a:ae:a1:63:64:4f:17:47:7a:
72:ea:ea:5d:b1:cc:a6:b4:d9:3c:6d:83:6f:e4:77:96:11:53:
c3:30:d1:a3:18:cd:29:3f:a5:e1:a1:86:67:30:b4:15:df:6e:
60:7d:09:72:e0:72:93:8e:2b:d4:2a:11:81:29:cd:c6:e3:6a:
16:d7:7f:9c:78:20:af:21:7d:59:ae:39:fe:b4:eb:9d:75:35:
98:8b:cb:4d:4a:4d:db:4d:1a:a2:a4:e5:71:5f:ae:5e:2e:23:
de:f5:9a:06:e6:c5:48:b1:69:81:2e:3f:31:33:fb:ed:5e:a7:
8f:0c:58:ee
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuPp7pCoEoDvyAzogbn0bgGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl
NWVjZjIwHhcNMjMxMTAyMTA1MDE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjI2NTBkOTA5ODljMWE5ZDc1ODFlNmViNGNhNTMyNmVhZThkNDA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2E7skb7bTDWlpzkJfYTbiKwZvAXq
Ixl0w+wDzHSXS24BNCtkamYC8Di2qWlF7Fots4m07mZAwFjuOhVnGcA5GX2RSfX7
aHWeK79zE/3tJC6jfG+Ph/P/l3sZeGENtun6qDRnaEPosUMc9u6UPW2WEuLxSwYp
nYmcBr4R80GUKV0ZorWkEt1whd4lkIvAtpChiu2QoV3jWTQvuXqsGDbDnVwQg55T
smKyVN0IVyOIRFN/zItMXGI8Kj9yGYjGSzcVauGXiziYb9Y0cbKWVlMjKXqwDH4M
l4+jHwCQd/UqxyxJCxm/AFqHiTG+zVlYftc7QqycYedEvPZc+0trGVTnsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIImUNkJicGp11gebrTKUybq6NQIMB8GA1UdIwQY
MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt
MTcxYzM2N2JlNzgyLzEvZ2laUTJRbUp3YW5YV0I1dXRNcFRKdXJvMUFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy
LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWRd5MA0G
CSqGSIb3DQEBCwUAA4IBAQBPHutAsVNyG7A5gce+aSlqUYY30+f37L3cssrZ6qrs
nFb/vy1r6vAes5bab5Xmr8w0SGlI/vlWNXUzW/jSSyf1ZfCMrYLdFjrpdmMhtxcb
7fkpA4LHaYQZV8xU5Xrp7yUo10QPGo5uAPXa3ZkwDq17ufrqEIMnA+ULuo5hvafs
cxnvX87LmEuKrqFjZE8XR3py6updscymtNk8bYNv5HeWEVPDMNGjGM0pP6XhoYZn
MLQV325gfQly4HKTjivUKhGBKc3G42oW13+ceCCvIX1Zrjn+tOuddTWYi8tNSk3b
TRqipOVxX65eLiPe9ZoG5sVIsWmBLj8xM/vtXqePDFju
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org