Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/kaU463tAzr0nuJV-zLNRzG24snA.roa
File: kaU463tAzr0nuJV-zLNRzG24snA.roa (raw, json)
Hash identifier: stZVoN6BMqcM0txvfNRnydZralHnBY3YhXYyTPqXbIY=
Subject key identifier: 91:A5:38:EB:7B:40:CE:BD:27:B8:95:7E:CC:B3:51:CC:6D:B8:B2:70
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 0185711E324677152B346ABABC4B9D36701B
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/kaU463tAzr0nuJV-zLNRzG24snA.roa
Signing time: Mon 02 Jan 2023 06:14:42 +0000
ROA not before: Mon 02 Jan 2023 06:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2600
IP address blocks: 212.109.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:32:46:77:15:2b:34:6a:ba:bc:4b:9d:36:70:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: Jan 2 06:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91a538eb7b40cebd27b8957eccb351cc6db8b270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b9:c4:f7:8e:07:ab:88:04:2c:0b:06:cc:d7:
db:6e:f9:dd:cf:5b:26:ad:43:ba:16:71:f3:8c:3d:
9c:89:6c:e7:9c:3a:d3:e4:4a:77:e1:19:1f:45:10:
81:69:de:b7:e6:d2:4a:45:9e:3e:40:aa:0a:f9:a6:
ad:29:b8:01:0b:87:40:01:8a:c8:4f:20:8a:fa:10:
20:4f:4a:a0:32:e5:21:bb:fc:8a:d0:20:6b:6c:fd:
44:3a:a3:0f:17:1a:c0:2a:35:80:42:65:4f:6e:4b:
31:c1:b8:44:a2:46:16:0e:d3:05:96:e6:f6:c6:7e:
2e:04:5b:74:1c:ba:e5:2b:e9:30:9d:97:fb:c8:8a:
56:22:7a:13:36:53:fe:8b:f5:6e:fa:24:f4:ac:61:
b8:9c:be:11:63:00:02:6f:b4:bb:82:1c:2d:bc:ce:
a9:fb:4f:36:73:f9:6b:87:8e:87:80:b4:5b:bd:bc:
5c:67:a2:dc:f5:29:b1:a8:c8:9f:42:63:52:ad:79:
d3:e3:0f:a3:ae:75:69:09:08:4e:1a:7a:09:ec:6e:
23:98:00:e0:94:27:55:49:55:8b:c4:6c:57:d5:77:
f8:d1:8b:e4:4c:b3:ff:c4:c7:2e:bc:65:ca:65:22:
64:14:6e:58:02:be:0c:52:03:39:2d:89:aa:d7:fc:
eb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A5:38:EB:7B:40:CE:BD:27:B8:95:7E:CC:B3:51:CC:6D:B8:B2:70
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/kaU463tAzr0nuJV-zLNRzG24snA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.109.224.0/24
Signature Algorithm: sha256WithRSAEncryption
81:a2:33:a5:4e:5e:5d:7a:e7:8f:94:ff:52:1e:4c:68:b9:95:
05:36:73:a2:3d:5a:52:40:ad:7b:90:78:16:8e:a1:8d:03:50:
0a:88:16:74:d1:79:cb:22:1f:e6:fc:a1:31:5c:8f:97:74:b7:
af:54:19:bd:8c:ae:15:f8:7c:e1:44:30:b8:e0:2c:65:99:62:
47:c5:73:48:f3:f6:a8:ed:09:65:8b:89:dd:cf:34:9d:cd:54:
65:5d:8e:eb:87:91:09:dd:ff:cb:ef:32:51:9c:1b:8b:08:4c:
34:9f:a0:ae:db:15:0b:97:79:87:f9:00:69:43:c1:7c:80:5e:
e8:ce:f1:fa:e1:2c:16:76:0b:74:3a:66:c5:44:ec:e9:a2:07:
40:10:25:a4:48:1b:01:67:77:85:27:02:64:1c:8d:18:fd:6b:
02:26:dd:7a:68:6a:a8:27:78:83:2a:76:3e:57:b4:ee:39:d2:
67:77:38:9a:64:ee:f6:b0:5c:d4:06:72:fb:02:7d:b0:a1:50:
92:a3:b0:7b:8d:8f:7b:5c:22:79:41:ad:f6:bd:3c:76:c0:6d:
14:03:6f:f8:44:13:22:87:d3:06:91:9d:b9:06:9c:3f:e8:31:
06:c6:98:1f:2b:14:dd:b3:fe:8a:e4:36:6c:40:7d:f9:b2:b8:
97:62:5f:3f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxHjJGdxUrNGq6vEudNnAbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MTk5NTZkZGNlYWUwMjJjZmUxMjNkYTM3M2M2YjExMTY0
MDM2OGQwHhcNMjMwMTAyMDYxNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MWE1MzhlYjdiNDBjZWJkMjdiODk1N2VjY2IzNTFjYzZkYjhiMjcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvrnE944Hq4gELAsGzNfbbvndz1sm
rUO6FnHzjD2ciWznnDrT5Ep34RkfRRCBad635tJKRZ4+QKoK+aatKbgBC4dAAYrI
TyCK+hAgT0qgMuUhu/yK0CBrbP1EOqMPFxrAKjWAQmVPbksxwbhEokYWDtMFlub2
xn4uBFt0HLrlK+kwnZf7yIpWInoTNlP+i/Vu+iT0rGG4nL4RYwACb7S7ghwtvM6p
+082c/lrh46HgLRbvbxcZ6Lc9SmxqMifQmNSrXnT4w+jrnVpCQhOGnoJ7G4jmADg
lCdVSVWLxGxX1Xf40YvkTLP/xMcuvGXKZSJkFG5YAr4MUgM5LYmq1/zrLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJGlOOt7QM69J7iVfsyzUcxtuLJwMB8GA1UdIwQY
MBaAFIgZlW3c6uAiz+Ej2jc8axEWQDaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDkt
MmRlYjE0YzI5MGVkLzEva2FVNDYzdEF6cjBudUpWLXpMTlJ6RzI0c25BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDktMmRlYjE0YzI5MGVk
LzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1G3gMA0G
CSqGSIb3DQEBCwUAA4IBAQCBojOlTl5deuePlP9SHkxouZUFNnOiPVpSQK17kHgW
jqGNA1AKiBZ00XnLIh/m/KExXI+XdLevVBm9jK4V+HzhRDC44CxlmWJHxXNI8/ao
7Qlli4ndzzSdzVRlXY7rh5EJ3f/L7zJRnBuLCEw0n6Cu2xULl3mH+QBpQ8F8gF7o
zvH64SwWdgt0OmbFROzpogdAECWkSBsBZ3eFJwJkHI0Y/WsCJt16aGqoJ3iDKnY+
V7TuOdJndziaZO72sFzUBnL7An2woVCSo7B7jY97XCJ5Qa32vTx2wG0UA2/4RBMi
h9MGkZ25Bpw/6DEGxpgfKxTds/6K5DZsQH35sriXYl8/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:33 2024 by rpki-client on console-fra.rpki-client.org