Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vsfxTlP3OCdRJpGLVLZHh3Fy3Bw.roa
File: vsfxTlP3OCdRJpGLVLZHh3Fy3Bw.roa (raw, json)
Hash identifier: FSFBtbhlbJqfQYbi2vzl0LbsbefgV+qfr5Q7Ip4Jp6M=
Subject key identifier: BE:C7:F1:4E:53:F7:38:27:51:26:91:8B:54:B6:47:87:71:72:DC:1C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019154DD613373ABC0E6DA7A03543CACAEB4
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vsfxTlP3OCdRJpGLVLZHh3Fy3Bw.roa
Signing time: Thu 15 Aug 2024 07:08:00 +0000
ROA not before: Thu 15 Aug 2024 07:08:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21840
IP address blocks: 212.87.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 06:36:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:54:dd:61:33:73:ab:c0:e6:da:7a:03:54:3c:ac:ae:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 15 07:08:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bec7f14e53f738275126918b54b647877172dc1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2c:94:0e:73:99:7b:15:11:94:c8:0c:99:1e:
a3:90:a9:3b:c6:b0:6d:d4:9f:44:07:19:5d:25:9d:
de:e2:41:20:b5:9b:ea:a5:fe:50:92:4b:45:56:0b:
59:3e:3d:c8:d1:fb:e5:86:c3:0d:6d:4a:79:01:3e:
07:ff:1a:4a:11:6f:19:03:12:7e:72:b1:30:db:e9:
96:ec:72:fc:1d:66:9e:eb:bb:72:fe:43:30:72:48:
a3:c1:35:00:4c:bc:22:59:eb:be:c1:85:b6:6b:c8:
53:11:1b:74:c3:d2:3b:06:ba:7f:87:8b:dc:c9:fb:
32:18:25:90:24:6f:70:28:b1:5f:20:db:c5:03:d2:
33:7e:ba:17:73:ab:d6:8f:cd:e5:9d:98:e1:70:8d:
45:3a:6b:16:6f:b9:a6:67:73:17:62:0f:e4:c7:d5:
89:6b:45:a0:1a:3b:bc:1a:4d:90:f9:1f:93:dd:e1:
57:f0:52:c1:19:21:dd:b3:79:a6:de:7b:62:79:ed:
fe:8d:a5:cb:85:c0:a6:fb:61:bf:31:77:b4:15:f6:
7f:09:60:53:fb:28:f0:8d:a5:aa:de:da:be:ee:76:
af:5b:80:57:67:07:a7:b6:d8:40:04:76:29:bd:2a:
5b:53:30:70:cf:1c:e4:a8:ab:3b:c2:e1:d3:60:c5:
5d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C7:F1:4E:53:F7:38:27:51:26:91:8B:54:B6:47:87:71:72:DC:1C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vsfxTlP3OCdRJpGLVLZHh3Fy3Bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.87.204.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:0e:f1:86:e6:22:0b:59:f8:26:b4:05:4e:83:bb:15:ed:0b:
36:81:1e:1f:7b:ee:56:0b:14:75:78:cf:ea:06:e8:b6:be:39:
4f:64:54:1a:00:c3:ca:3d:1f:62:c9:c6:d6:ae:ea:e7:54:84:
0d:9b:2c:04:59:68:2c:fe:85:4e:ed:8b:f3:ac:36:02:c8:df:
01:89:c3:73:8c:dd:79:50:29:c0:bb:8c:31:46:96:4c:f2:f2:
7f:e5:1c:dc:64:b3:3f:1a:ca:74:de:41:cc:5d:41:95:af:f1:
51:be:39:44:bb:8f:88:81:15:16:c5:79:c5:11:2d:13:00:5f:
f7:f0:19:a5:c8:90:79:03:7f:f0:ee:85:fa:dc:6e:10:6d:b5:
3c:ae:75:83:93:15:72:86:c4:54:47:d9:4e:5b:b0:33:4f:f2:
50:67:d3:a5:2a:12:4f:d4:32:8f:89:10:43:12:87:88:21:0e:
f4:7f:d5:ea:33:22:25:21:8a:99:56:47:e2:e4:7a:ff:c5:c9:
af:1e:c3:cf:00:35:c4:6a:45:f5:5f:3f:26:b4:28:79:32:a5:
87:c3:27:8b:96:50:6f:d1:89:54:78:1c:00:64:53:dd:f2:55:
43:f4:77:3b:00:67:21:2d:64:25:6f:c3:40:78:af:75:2c:cd:
03:4a:a0:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFU3WEzc6vA5tp6A1Q8rK60MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwODE1MDcwODAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWM3ZjE0ZTUzZjczODI3NTEyNjkxOGI1NGI2NDc4NzcxNzJkYzFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCyUDnOZexURlMgMmR6jkKk7xrBt
1J9EBxldJZ3e4kEgtZvqpf5QkktFVgtZPj3I0fvlhsMNbUp5AT4H/xpKEW8ZAxJ+
crEw2+mW7HL8HWae67ty/kMwckijwTUATLwiWeu+wYW2a8hTERt0w9I7Brp/h4vc
yfsyGCWQJG9wKLFfINvFA9IzfroXc6vWj83lnZjhcI1FOmsWb7mmZ3MXYg/kx9WJ
a0WgGju8Gk2Q+R+T3eFX8FLBGSHds3mm3ntiee3+jaXLhcCm+2G/MXe0FfZ/CWBT
+yjwjaWq3tq+7navW4BXZwentthABHYpvSpbUzBwzxzkqKs7wuHTYMVdrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL7H8U5T9zgnUSaRi1S2R4dxctwcMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvdnNmeFRsUDNPQ2RSSnBHTFZMWkhoM0Z5M0J3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1FfMMA0G
CSqGSIb3DQEBCwUAA4IBAQAbDvGG5iILWfgmtAVOg7sV7Qs2gR4fe+5WCxR1eM/q
Bui2vjlPZFQaAMPKPR9iycbWrurnVIQNmywEWWgs/oVO7YvzrDYCyN8BicNzjN15
UCnAu4wxRpZM8vJ/5RzcZLM/Gsp03kHMXUGVr/FRvjlEu4+IgRUWxXnFES0TAF/3
8BmlyJB5A3/w7oX63G4QbbU8rnWDkxVyhsRUR9lOW7AzT/JQZ9OlKhJP1DKPiRBD
EoeIIQ70f9XqMyIlIYqZVkfi5Hr/xcmvHsPPADXEakX1Xz8mtCh5MqWHwyeLllBv
0YlUeBwAZFPd8lVD9Hc7AGchLWQlb8NAeK91LM0DSqCb
-----END CERTIFICATE-----
Generated at Fri Aug 23 09:30:53 2024 by rpki-client on console-fra.rpki-client.org