Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/5F-OVtbb6wIQ8kmZgTdg9GrKjm4.roa
File: 5F-OVtbb6wIQ8kmZgTdg9GrKjm4.roa (raw, json)
Hash identifier: jpC/ybD10rhamZvVqUCMx03s6xyyOjiF2rdrhoU0ZMA=
Subject key identifier: E4:5F:8E:56:D6:DB:EB:02:10:F2:49:99:81:37:60:F4:6A:CA:8E:6E
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 01867C99C488B797C6A67C8A14E672B16106
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/5F-OVtbb6wIQ8kmZgTdg9GrKjm4.roa
Signing time: Thu 23 Feb 2023 04:48:17 +0000
ROA not before: Thu 23 Feb 2023 04:48:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 89.37.128.0/24 maxlen: 24
176.223.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 21:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7c:99:c4:88:b7:97:c6:a6:7c:8a:14:e6:72:b1:61:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Feb 23 04:48:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e45f8e56d6dbeb0210f24999813760f46aca8e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:65:7f:45:11:b0:65:4d:9c:99:6a:43:ea:94:
ba:e8:f4:cb:92:ca:48:f9:6b:f7:42:64:7a:dd:a9:
35:b5:25:dd:4f:aa:21:57:b5:e9:5f:70:cc:21:75:
64:51:17:d1:7b:b5:74:34:07:46:c0:d0:c5:8f:af:
38:ea:f2:d1:69:bb:33:7c:a4:0c:6e:bf:b8:41:0a:
e2:c7:ad:36:ad:66:e6:08:eb:14:d1:db:f1:af:5d:
0f:8c:75:09:08:56:06:3b:4e:4d:f5:04:ff:7e:f3:
28:e5:e2:4b:c8:b7:d2:ca:bd:e0:aa:6f:52:6a:25:
17:6d:07:94:ce:9f:12:ef:82:c4:e6:32:2a:66:75:
fb:55:2e:e0:8e:96:b3:95:10:e1:41:f4:dc:e1:f2:
d0:90:49:44:d5:be:06:2c:9b:fa:67:7a:e9:53:5f:
1d:f0:2a:c4:4a:7e:9b:7d:3f:10:de:cc:4e:51:c5:
5d:3b:04:87:2f:32:8d:27:92:3c:be:99:84:99:b3:
25:67:f4:e6:ac:85:f1:94:3f:b7:af:74:1b:a1:07:
71:d8:8d:cd:19:5b:65:f1:8b:fd:90:60:27:7c:2c:
f2:33:61:09:ad:b3:6c:d6:2f:c5:f6:8c:fd:c4:24:
a9:9e:c0:6f:aa:53:c1:fc:be:d0:01:ca:5e:a1:55:
39:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5F:8E:56:D6:DB:EB:02:10:F2:49:99:81:37:60:F4:6A:CA:8E:6E
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/5F-OVtbb6wIQ8kmZgTdg9GrKjm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.128.0/24
176.223.190.0/24
Signature Algorithm: sha256WithRSAEncryption
93:dd:bd:1b:43:90:96:bd:29:1d:57:2b:e5:dd:92:a6:eb:63:
e1:7c:48:b0:d0:d2:cb:c9:0d:f3:60:8b:1c:47:92:0c:a5:eb:
87:07:1d:9f:b5:c3:b0:41:5a:ac:d4:c2:eb:26:b2:56:88:52:
07:95:6e:7d:65:6f:b9:1b:5d:e2:3a:c9:5f:de:a8:b7:7d:5b:
36:ae:54:9f:fe:70:d9:5d:f5:52:ab:7c:60:9e:13:cb:15:55:
8b:8b:32:5a:ed:6b:2a:3c:9d:72:0b:2f:cd:8f:41:55:7e:dc:
09:e0:2e:8f:35:4e:50:86:31:cc:37:81:52:61:2f:35:77:6f:
93:36:3e:9a:19:81:ed:c9:2d:21:0c:a0:d2:b6:88:ba:3f:71:
03:49:69:3d:51:ab:9f:6a:24:16:30:0e:2d:c5:e7:b9:d8:49:
48:db:27:2f:21:31:e2:03:f5:a5:cf:40:50:14:ca:84:7b:81:
7b:3b:94:8c:d3:66:02:75:a0:7a:9d:a2:50:04:d2:5f:7a:5a:
c6:e5:00:37:96:a6:4b:84:c5:3b:e7:32:84:f8:86:a4:38:f2:
f7:0b:0b:26:61:eb:2b:5f:fb:d4:4b:1c:73:11:f4:b9:2f:16:
17:97:90:f5:a6:9c:ab:80:82:8a:19:f7:1b:77:06:db:59:51:
98:ff:03:48
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYZ8mcSIt5fGpnyKFOZysWEGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDBlOTgxOTUzMDYxOTcyYzg5NmJkNmQyNzczOGQwODNh
YWRiMGUwHhcNMjMwMjIzMDQ0ODE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDVmOGU1NmQ2ZGJlYjAyMTBmMjQ5OTk4MTM3NjBmNDZhY2E4ZTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2V/RRGwZU2cmWpD6pS66PTLkspI
+Wv3QmR63ak1tSXdT6ohV7XpX3DMIXVkURfRe7V0NAdGwNDFj6846vLRabszfKQM
br+4QQrix602rWbmCOsU0dvxr10PjHUJCFYGO05N9QT/fvMo5eJLyLfSyr3gqm9S
aiUXbQeUzp8S74LE5jIqZnX7VS7gjpazlRDhQfTc4fLQkElE1b4GLJv6Z3rpU18d
8CrESn6bfT8Q3sxOUcVdOwSHLzKNJ5I8vpmEmbMlZ/TmrIXxlD+3r3QboQdx2I3N
GVtl8Yv9kGAnfCzyM2EJrbNs1i/F9oz9xCSpnsBvqlPB/L7QAcpeoVU5tQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFORfjlbW2+sCEPJJmYE3YPRqyo5uMB8GA1UdIwQY
MBaAFNoA6YGVMGGXLIlr1tJ3ONCDqtsOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAt
OWE0OGVjZjllMTVlLzEvNUYtT1Z0YmI2d0lROGttWmdUZGc5R3JLam00LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAtOWE0OGVjZjllMTVl
LzEvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWSWAAwQA
sN++MA0GCSqGSIb3DQEBCwUAA4IBAQCT3b0bQ5CWvSkdVyvl3ZKm62PhfEiw0NLL
yQ3zYIscR5IMpeuHBx2ftcOwQVqs1MLrJrJWiFIHlW59ZW+5G13iOslf3qi3fVs2
rlSf/nDZXfVSq3xgnhPLFVWLizJa7WsqPJ1yCy/Nj0FVftwJ4C6PNU5QhjHMN4FS
YS81d2+TNj6aGYHtyS0hDKDStoi6P3EDSWk9UaufaiQWMA4txee52ElI2ycvITHi
A/Wlz0BQFMqEe4F7O5SM02YCdaB6naJQBNJfelrG5QA3lqZLhMU75zKE+IakOPL3
CwsmYesrX/vUSxxzEfS5LxYXl5D1ppyrgIKKGfcbdwbbWVGY/wNI
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:48 2024 by rpki-client on console-ams.rpki-client.org