Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/6WXJNjHvYEDAMa16HQqoVAjqQrM.roa
File: 6WXJNjHvYEDAMa16HQqoVAjqQrM.roa (raw, json)
Hash identifier: b5erFST7WD1qozKsJ3/X/6r2sHWnt8wOs5DIrVQhkLY=
Subject key identifier: E9:65:C9:36:31:EF:60:40:C0:31:AD:7A:1D:0A:A8:54:08:EA:42:B3
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018966AEB3AECADB2EC022EFAEB70742277D
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/6WXJNjHvYEDAMa16HQqoVAjqQrM.roa
Signing time: Tue 18 Jul 2023 01:47:52 +0000
ROA not before: Tue 18 Jul 2023 01:47:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 89.47.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:66:ae:b3:ae:ca:db:2e:c0:22:ef:ae:b7:07:42:27:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jul 18 01:47:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e965c93631ef6040c031ad7a1d0aa85408ea42b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:17:95:64:e3:c5:6f:44:b2:7a:51:e8:15:1d:
19:d2:9f:d0:92:7e:1b:af:4d:39:c9:a8:81:3e:02:
1a:c2:f2:e0:31:f8:7f:b8:b1:ae:6f:56:9a:9a:ff:
ca:8a:32:16:71:2c:db:f9:07:47:ea:af:2b:b7:92:
2a:49:67:1d:08:68:f7:2b:d5:3e:ac:0d:22:d7:23:
94:44:f2:41:57:25:5f:f8:f3:56:32:cd:c0:f3:04:
8e:8a:c6:58:8a:09:76:64:43:e1:e2:e7:6f:89:5e:
f7:b9:5c:57:ec:1b:81:d1:18:a5:b9:13:53:36:ae:
3d:79:dc:e9:47:0b:cb:10:02:63:45:48:a7:a3:f0:
af:40:9f:25:f5:68:9b:0b:0f:73:5e:d2:2b:dd:b0:
58:92:af:77:ec:88:af:a8:42:92:a3:a3:3f:01:f6:
7b:42:db:c1:18:ec:88:be:4b:62:46:3e:36:51:d1:
08:56:fa:0d:e4:26:f4:fd:f1:e3:9e:64:eb:5e:5e:
48:67:52:ce:06:47:88:b0:d9:87:44:65:3d:a8:3d:
f3:e0:0a:79:ae:86:87:a4:c3:ba:a9:4f:2a:24:65:
e9:ba:82:06:43:0a:77:62:ce:a0:e2:11:e0:60:c0:
f5:19:64:02:67:92:0b:2a:14:31:d5:79:56:56:cd:
e8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:65:C9:36:31:EF:60:40:C0:31:AD:7A:1D:0A:A8:54:08:EA:42:B3
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/6WXJNjHvYEDAMa16HQqoVAjqQrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.249.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:a2:68:0b:1a:44:ec:c2:41:e4:0c:f0:7a:26:3b:13:72:c9:
e7:f2:9f:8f:a6:a4:b3:b9:76:1b:d7:ee:05:47:e6:6e:4a:0f:
83:59:ae:ed:89:91:df:57:d5:8a:e1:b4:04:2f:3d:18:f5:68:
35:dc:76:73:a0:7d:24:53:2c:0f:a5:b5:01:c7:ef:7e:f9:3b:
26:ce:65:4c:9e:79:82:f5:b3:3e:47:0b:5d:a3:9f:14:7b:c3:
1b:83:a3:f7:24:11:e6:8e:a6:29:0b:59:4d:41:1a:08:59:28:
fa:e4:45:21:5a:bf:23:59:17:8b:7d:a7:f1:a1:d5:68:24:78:
5b:b7:1f:31:ed:1e:0a:3a:18:db:35:6e:4a:b2:dd:db:94:e6:
b2:34:0d:2e:d8:0a:17:5f:cd:47:9a:79:c8:3d:75:24:32:ca:
36:3b:2c:f5:7d:67:79:bc:14:27:88:93:1f:8c:17:48:94:39:
55:a1:08:2c:a3:2b:51:6a:ba:04:f2:14:44:51:d8:d5:61:df:
8c:6e:8c:89:d3:ec:18:04:48:11:b5:0c:35:df:bf:7c:0f:64:
39:31:db:9f:e2:20:1a:cd:fa:49:8f:08:ff:f9:12:7d:4c:84:
20:1f:19:9f:c9:23:21:c4:f2:64:0d:ce:2c:44:27:2a:88:7a:
7b:b4:88:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlmrrOuytsuwCLvrrcHQid9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDBlOTgxOTUzMDYxOTcyYzg5NmJkNmQyNzczOGQwODNh
YWRiMGUwHhcNMjMwNzE4MDE0NzUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTY1YzkzNjMxZWY2MDQwYzAzMWFkN2ExZDBhYTg1NDA4ZWE0MmIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBeVZOPFb0SyelHoFR0Z0p/Qkn4b
r005yaiBPgIawvLgMfh/uLGub1aamv/KijIWcSzb+QdH6q8rt5IqSWcdCGj3K9U+
rA0i1yOURPJBVyVf+PNWMs3A8wSOisZYigl2ZEPh4udviV73uVxX7BuB0RiluRNT
Nq49edzpRwvLEAJjRUino/CvQJ8l9WibCw9zXtIr3bBYkq937IivqEKSo6M/AfZ7
QtvBGOyIvktiRj42UdEIVvoN5Cb0/fHjnmTrXl5IZ1LOBkeIsNmHRGU9qD3z4Ap5
roaHpMO6qU8qJGXpuoIGQwp3Ys6g4hHgYMD1GWQCZ5ILKhQx1XlWVs3oKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOllyTYx72BAwDGteh0KqFQI6kKzMB8GA1UdIwQY
MBaAFNoA6YGVMGGXLIlr1tJ3ONCDqtsOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAt
OWE0OGVjZjllMTVlLzEvNldYSk5qSHZZRURBTWExNkhRcW9WQWpxUXJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAtOWE0OGVjZjllMTVl
LzEvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWS/5MA0G
CSqGSIb3DQEBCwUAA4IBAQAKomgLGkTswkHkDPB6JjsTcsnn8p+PpqSzuXYb1+4F
R+ZuSg+DWa7tiZHfV9WK4bQELz0Y9Wg13HZzoH0kUywPpbUBx+9++TsmzmVMnnmC
9bM+Rwtdo58Ue8Mbg6P3JBHmjqYpC1lNQRoIWSj65EUhWr8jWReLfafxodVoJHhb
tx8x7R4KOhjbNW5Kst3blOayNA0u2AoXX81HmnnIPXUkMso2Oyz1fWd5vBQniJMf
jBdIlDlVoQgsoytRaroE8hREUdjVYd+MboyJ0+wYBEgRtQw13798D2Q5Mduf4iAa
zfpJjwj/+RJ9TIQgHxmfySMhxPJkDc4sRCcqiHp7tIjL
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:45 2024 by rpki-client on console-fra.rpki-client.org