Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/0fIbRk2ZxZlWDk08NtPUJy1neSY.roa
File: 0fIbRk2ZxZlWDk08NtPUJy1neSY.roa (raw, json)
Hash identifier: ffhSTaYoPvcb3SMbry6cbERBRY30Xj03+2bvLSddHNg=
Subject key identifier: D1:F2:1B:46:4D:99:C5:99:56:0E:4D:3C:36:D3:D4:27:2D:67:79:26
Certificate issuer: /CN=1cee91296c94992d151a232240e6cf3a176d2039
Certificate serial: 01857102CF9D0C1EE7B69CEB5EF8C8161B9C
Authority key identifier: 1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/0fIbRk2ZxZlWDk08NtPUJy1neSY.roa
Signing time: Mon 02 Jan 2023 05:44:47 +0000
ROA not before: Mon 02 Jan 2023 05:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208531
IP address blocks: 46.172.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:cf:9d:0c:1e:e7:b6:9c:eb:5e:f8:c8:16:1b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cee91296c94992d151a232240e6cf3a176d2039
Validity
Not Before: Jan 2 05:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1f21b464d99c599560e4d3c36d3d4272d677926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b5:47:00:f1:26:98:0d:48:28:71:d2:7f:ca:
87:3f:0a:ec:04:5b:69:a1:1b:4f:e9:86:3e:6f:18:
e3:94:e8:d2:30:cc:00:73:ad:db:f8:3f:36:58:49:
a7:d3:7f:0b:b1:a3:07:90:be:71:5a:0d:12:37:84:
84:65:00:72:11:a2:cb:18:a9:ac:85:1c:55:47:41:
42:8f:73:a7:68:74:8c:dd:36:fd:a3:26:d5:b2:dc:
69:a7:18:6b:8c:92:41:c2:99:5b:68:8b:a5:0a:8f:
8e:f1:74:b3:a0:7b:dd:f5:da:66:ca:9f:dd:df:9d:
03:f5:fb:3d:6d:c1:d9:a2:6f:85:96:6f:73:95:5c:
0f:ce:ee:35:00:38:33:af:b7:8e:de:d9:6b:b7:fe:
df:45:aa:89:fd:19:1d:c6:19:c5:1d:a5:1c:85:e5:
b8:a6:4c:f7:56:3a:a4:90:59:fb:2c:bb:ce:8d:03:
8d:53:29:64:74:b0:93:a8:7f:db:08:e7:79:e5:38:
74:9c:5c:ae:0a:d8:b1:01:c5:f7:03:f7:be:c2:00:
76:d8:b0:40:12:99:7e:cd:e1:8e:34:24:6f:16:2e:
66:ea:b6:f6:3b:06:7f:6c:05:7d:59:aa:29:d5:72:
ac:36:bf:de:08:49:15:7d:c5:57:44:39:07:c6:a7:
d9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F2:1B:46:4D:99:C5:99:56:0E:4D:3C:36:D3:D4:27:2D:67:79:26
X509v3 Authority Key Identifier:
keyid:1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/0fIbRk2ZxZlWDk08NtPUJy1neSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.172.74.0/24
Signature Algorithm: sha256WithRSAEncryption
39:d0:77:f3:ed:60:97:fb:1e:3b:c5:8f:7a:31:06:ce:0e:04:
0a:95:85:8d:39:ba:9e:f4:b8:ac:30:cb:cf:4b:23:01:f4:83:
5a:8d:8a:1e:f5:9c:55:b4:1e:7b:b3:2b:6a:fd:d9:b4:78:d8:
32:7a:07:72:09:d1:ad:43:51:de:9d:77:54:b0:7e:31:f5:a2:
e2:d4:f4:3c:c3:f2:0d:09:e1:dd:01:b9:2f:8e:d6:35:c4:ff:
c5:ab:56:2a:c2:12:74:36:9f:57:4f:ed:a1:b0:3c:29:12:19:
ce:b7:0c:03:fb:bf:ac:4d:d4:43:1e:8c:27:61:06:60:47:30:
9e:7c:8b:39:fd:c8:ff:5c:f2:92:a4:c8:f5:4b:9b:f7:14:82:
4d:7e:9e:da:f2:90:40:f3:82:ce:5a:b5:4c:d8:b5:0a:01:8c:
8f:1d:06:7d:cf:4d:c9:56:ab:f1:86:f7:7d:ee:96:ac:e2:84:
9d:79:54:4a:a7:cb:16:56:9d:12:7c:2e:fc:b9:77:d2:f7:07:
f3:b4:0e:bd:62:b7:84:8e:24:2d:5b:42:6a:d3:46:24:50:66:
c8:90:a4:36:e0:20:55:3e:68:e3:cd:5b:da:09:e8:63:16:54:
ed:01:bd:8d:68:d5:ef:4e:ac:33:e6:64:e0:2a:b5:3f:c7:02:
e6:97:77:c6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxAs+dDB7ntpzrXvjIFhucMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjZWU5MTI5NmM5NDk5MmQxNTFhMjMyMjQwZTZjZjNhMTc2
ZDIwMzkwHhcNMjMwMTAyMDU0NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMWYyMWI0NjRkOTljNTk5NTYwZTRkM2MzNmQzZDQyNzJkNjc3OTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiLVHAPEmmA1IKHHSf8qHPwrsBFtp
oRtP6YY+bxjjlOjSMMwAc63b+D82WEmn038LsaMHkL5xWg0SN4SEZQByEaLLGKms
hRxVR0FCj3OnaHSM3Tb9oybVstxppxhrjJJBwplbaIulCo+O8XSzoHvd9dpmyp/d
350D9fs9bcHZom+Flm9zlVwPzu41ADgzr7eO3tlrt/7fRaqJ/RkdxhnFHaUcheW4
pkz3VjqkkFn7LLvOjQONUylkdLCTqH/bCOd55Th0nFyuCtixAcX3A/e+wgB22LBA
Epl+zeGONCRvFi5m6rb2OwZ/bAV9Waop1XKsNr/eCEkVfcVXRDkHxqfZVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNHyG0ZNmcWZVg5NPDbT1CctZ3kmMB8GA1UdIwQY
MBaAFBzukSlslJktFRojIkDmzzoXbSA5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSE82UktXeVVtUzBWR2lNaVFPYlBPaGR0SURrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9jOTFlYzMtMjgyMC00MTdiLTlhYWQt
YmFjYWI0NzVlNmNjLzEvMGZJYlJrMlp4WmxXRGswOE50UFVKeTFuZVNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9jOTFlYzMtMjgyMC00MTdiLTlhYWQtYmFjYWI0NzVlNmNj
LzEvSE82UktXeVVtUzBWR2lNaVFPYlBPaGR0SURrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALqxKMA0G
CSqGSIb3DQEBCwUAA4IBAQA50Hfz7WCX+x47xY96MQbODgQKlYWNObqe9LisMMvP
SyMB9INajYoe9ZxVtB57sytq/dm0eNgyegdyCdGtQ1HenXdUsH4x9aLi1PQ8w/IN
CeHdAbkvjtY1xP/Fq1YqwhJ0Np9XT+2hsDwpEhnOtwwD+7+sTdRDHownYQZgRzCe
fIs5/cj/XPKSpMj1S5v3FIJNfp7a8pBA84LOWrVM2LUKAYyPHQZ9z03JVqvxhvd9
7pas4oSdeVRKp8sWVp0SfC78uXfS9wfztA69YreEjiQtW0Jq00YkUGbIkKQ24CBV
PmjjzVvaCehjFlTtAb2NaNXvTqwz5mTgKrU/xwLml3fG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:04 2024 by rpki-client on console-fra.rpki-client.org