Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/najPtf1_pMuoeDyvwo1eQ_69TW4.roa
File: najPtf1_pMuoeDyvwo1eQ_69TW4.roa (raw, json)
Hash identifier: ZjVdOYwWFM5hY2YxU6N04s2Q2ZAoLQWG7jRvPb+Ynbw=
Subject key identifier: 9D:A8:CF:B5:FD:7F:A4:CB:A8:78:3C:AF:C2:8D:5E:43:FE:BD:4D:6E
Certificate issuer: /CN=8d2f0791b0525159720b191c411bcc47420f1ce2
Certificate serial: 01856FDDD983ACB9D017DFE375C65425DE90
Authority key identifier: 8D:2F:07:91:B0:52:51:59:72:0B:19:1C:41:1B:CC:47:42:0F:1C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jS8HkbBSUVlyCxkcQRvMR0IPHOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/najPtf1_pMuoeDyvwo1eQ_69TW4.roa
Signing time: Mon 02 Jan 2023 00:24:48 +0000
ROA not before: Mon 02 Jan 2023 00:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24641
IP address blocks: 185.146.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:d9:83:ac:b9:d0:17:df:e3:75:c6:54:25:de:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d2f0791b0525159720b191c411bcc47420f1ce2
Validity
Not Before: Jan 2 00:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9da8cfb5fd7fa4cba8783cafc28d5e43febd4d6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:18:20:2a:b6:31:07:bb:65:39:e9:61:a7:46:
c5:a7:59:2a:b5:d3:6f:99:1c:8a:6f:71:04:f6:7f:
f1:1a:5b:07:8b:b2:34:41:69:09:43:db:46:ff:ae:
23:35:80:20:00:2f:78:00:93:66:77:29:11:eb:91:
7a:02:35:56:bb:2e:68:27:53:b1:51:96:76:eb:51:
a3:ac:ae:b6:16:35:f1:84:0d:be:cf:0c:a3:bb:72:
68:f9:49:91:ea:c5:89:5b:55:aa:1d:6a:16:27:b7:
10:37:27:d1:45:6b:ae:7e:ad:29:93:92:1d:f0:b2:
f8:b1:ef:6d:52:ff:aa:c5:42:dc:f5:eb:91:7b:ee:
51:c1:e4:49:53:b8:68:ad:30:49:05:fe:60:e1:af:
f0:e0:f1:e7:d6:c2:ff:75:62:39:de:49:69:15:57:
3c:98:a8:38:3d:cb:92:75:cf:97:ff:6e:d6:41:87:
d2:12:57:9d:48:0e:4b:1c:1a:0e:69:d4:36:51:bf:
d8:ca:b9:7b:fa:64:81:6c:6d:a4:b3:37:7a:1e:d8:
b6:bb:4b:cf:9e:fb:8a:9f:48:5b:67:18:1d:e0:6c:
56:aa:bb:12:00:70:04:de:81:58:a5:4e:19:82:1f:
29:bf:3f:e7:e2:2c:26:91:78:8a:db:2a:99:ce:58:
de:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A8:CF:B5:FD:7F:A4:CB:A8:78:3C:AF:C2:8D:5E:43:FE:BD:4D:6E
X509v3 Authority Key Identifier:
keyid:8D:2F:07:91:B0:52:51:59:72:0B:19:1C:41:1B:CC:47:42:0F:1C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jS8HkbBSUVlyCxkcQRvMR0IPHOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/najPtf1_pMuoeDyvwo1eQ_69TW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/jS8HkbBSUVlyCxkcQRvMR0IPHOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.4.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:48:6e:e7:8e:13:af:22:58:9e:b8:d1:df:eb:b8:9e:0a:a0:
8e:ec:b3:e6:0e:64:44:2d:38:24:4f:df:88:21:ad:26:d2:c7:
5a:3b:d8:8e:e7:ff:cf:b6:11:d0:ac:6a:91:65:ac:66:c6:e2:
e2:ce:ad:24:58:66:b6:92:e0:53:e4:ff:3d:ce:e9:e5:83:10:
74:6b:97:4c:b0:fc:d5:1f:e0:c7:08:83:87:17:30:7e:4b:7e:
8a:55:ac:c0:f1:3c:1f:88:29:56:5b:3a:1b:e0:41:a8:fc:f1:
2b:38:e2:2d:c0:da:e3:17:e3:a2:0d:08:3d:82:4a:e4:3f:c6:
0f:57:62:87:db:27:69:2b:79:33:93:7d:9c:33:2a:e1:06:79:
f4:1e:3d:3d:72:41:ad:2b:d2:9c:f9:92:0c:94:b2:38:3e:47:
c5:55:b4:f7:da:83:15:aa:59:5a:a9:ad:be:f7:6c:83:15:d7:
2b:71:7c:80:83:c4:77:77:04:06:ee:5e:49:d0:34:8b:4d:91:
84:c1:d7:20:15:47:b9:3e:1c:05:4c:8f:55:01:da:67:f8:b8:
d5:4e:33:67:c0:e1:f2:51:8c:05:46:37:7b:83:2b:35:ec:2c:
f8:a3:56:ba:8c:79:61:fc:de:53:2a:ec:91:d0:4e:ae:81:78:
00:c7:05:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv3dmDrLnQF9/jdcZUJd6QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMmYwNzkxYjA1MjUxNTk3MjBiMTkxYzQxMWJjYzQ3NDIw
ZjFjZTIwHhcNMjMwMTAyMDAyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZGE4Y2ZiNWZkN2ZhNGNiYTg3ODNjYWZjMjhkNWU0M2ZlYmQ0ZDZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhggKrYxB7tlOelhp0bFp1kqtdNv
mRyKb3EE9n/xGlsHi7I0QWkJQ9tG/64jNYAgAC94AJNmdykR65F6AjVWuy5oJ1Ox
UZZ261GjrK62FjXxhA2+zwyju3Jo+UmR6sWJW1WqHWoWJ7cQNyfRRWuufq0pk5Id
8LL4se9tUv+qxULc9euRe+5RweRJU7horTBJBf5g4a/w4PHn1sL/dWI53klpFVc8
mKg4PcuSdc+X/27WQYfSEledSA5LHBoOadQ2Ub/Yyrl7+mSBbG2kszd6Hti2u0vP
nvuKn0hbZxgd4GxWqrsSAHAE3oFYpU4Zgh8pvz/n4iwmkXiK2yqZzljeoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ2oz7X9f6TLqHg8r8KNXkP+vU1uMB8GA1UdIwQY
MBaAFI0vB5GwUlFZcgsZHEEbzEdCDxziMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalM4SGtiQlNVVmx5Q3hrY1FSdk1SMElQSE9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS84YzUyYTctNjYwOS00NTBhLWIzNjEt
NjM5Mzk1MDVmZTY2LzEvbmFqUHRmMV9wTXVvZUR5dndvMWVRXzY5VFc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS84YzUyYTctNjYwOS00NTBhLWIzNjEtNjM5Mzk1MDVmZTY2
LzEvalM4SGtiQlNVVmx5Q3hrY1FSdk1SMElQSE9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZIEMA0G
CSqGSIb3DQEBCwUAA4IBAQDISG7njhOvIlieuNHf67ieCqCO7LPmDmRELTgkT9+I
Ia0m0sdaO9iO5//PthHQrGqRZaxmxuLizq0kWGa2kuBT5P89zunlgxB0a5dMsPzV
H+DHCIOHFzB+S36KVazA8TwfiClWWzob4EGo/PErOOItwNrjF+OiDQg9gkrkP8YP
V2KH2ydpK3kzk32cMyrhBnn0Hj09ckGtK9Kc+ZIMlLI4PkfFVbT32oMVqllaqa2+
92yDFdcrcXyAg8R3dwQG7l5J0DSLTZGEwdcgFUe5PhwFTI9VAdpn+LjVTjNnwOHy
UYwFRjd7gys17Cz4o1a6jHlh/N5TKuyR0E6ugXgAxwU1
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:36 2024 by rpki-client on console-fra.rpki-client.org