Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/iNl2vbJJ9lR149PWVryP594bclw.roa
File: iNl2vbJJ9lR149PWVryP594bclw.roa (raw, json)
Hash identifier: I8nHMfMFIDb6TUVBm6ttilJ9jIuUIuA5CfsOnxlSQYc=
Subject key identifier: 88:D9:76:BD:B2:49:F6:54:75:E3:D3:D6:56:BC:8F:E7:DE:1B:72:5C
Certificate issuer: /CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Certificate serial: 019118719D5B823C39EAF98403815E35BCD3
Authority key identifier: 76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/iNl2vbJJ9lR149PWVryP594bclw.roa
Signing time: Sat 03 Aug 2024 13:33:04 +0000
ROA not before: Sat 03 Aug 2024 13:33:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 194.62.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 18:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:18:71:9d:5b:82:3c:39:ea:f9:84:03:81:5e:35:bc:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Validity
Not Before: Aug 3 13:33:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88d976bdb249f65475e3d3d656bc8fe7de1b725c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ea:c2:34:c4:08:59:7e:70:2f:f0:8e:a4:3d:
bb:fa:7c:b8:46:5e:dd:76:9f:85:f9:e0:35:04:c4:
bf:8e:16:87:56:9c:39:89:5b:17:51:b7:db:e7:6a:
92:8d:e5:95:fb:c4:69:b8:e0:a1:13:e9:e0:4f:dd:
79:d6:5c:c3:0a:10:d6:d4:04:7c:6b:1e:62:4d:64:
a4:60:cb:27:30:43:25:97:b6:ea:1f:f1:8b:46:f6:
16:d7:74:56:4a:a8:1e:e3:9c:87:a1:fa:68:d1:47:
ec:f0:db:38:7d:79:e6:fa:3e:4c:a9:52:5f:d6:0c:
37:69:f1:e0:26:53:24:71:bb:1e:f6:76:fd:53:d5:
33:27:f0:93:a2:50:43:20:00:2c:d3:0f:6b:e9:4b:
60:c7:3e:66:d2:7c:a4:11:00:12:65:68:a0:8a:b7:
b3:7f:59:5e:91:c1:73:b4:28:70:f2:0c:9a:94:3b:
ad:50:01:b2:21:cc:78:99:45:7f:39:e6:09:ac:5e:
ed:01:06:c9:31:44:22:65:91:75:1a:8c:7c:ff:85:
78:b6:b3:55:e0:fe:f2:aa:f4:51:40:0c:a6:5d:4e:
ac:32:67:6d:a7:77:6c:ca:04:26:8b:3a:34:3b:c2:
2f:53:78:d1:af:79:a9:23:da:11:00:d4:3f:6d:a3:
50:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D9:76:BD:B2:49:F6:54:75:E3:D3:D6:56:BC:8F:E7:DE:1B:72:5C
X509v3 Authority Key Identifier:
keyid:76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/iNl2vbJJ9lR149PWVryP594bclw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/dn871L-9MHHDjNTXCSvTSQkgw9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.16.0/24
Signature Algorithm: sha256WithRSAEncryption
af:b1:1b:e7:f8:9e:69:fe:68:f4:8f:59:a3:d5:c1:4a:cf:c3:
af:45:60:3a:9f:b6:41:4c:92:d0:45:6f:80:ce:cc:b0:39:69:
94:6b:c7:a8:d9:d5:13:a3:c1:8e:a9:14:85:e6:05:66:bc:20:
97:63:00:7e:89:65:af:5e:74:04:4d:a2:a6:41:9e:43:9d:da:
41:89:7f:97:c7:11:99:84:01:ed:de:c1:3e:4d:2c:77:80:5f:
4b:fa:c1:3f:96:f1:9a:48:9d:b9:a7:33:dc:02:b1:d0:d9:8d:
a4:2e:aa:0a:ca:2f:c3:43:a9:64:0c:3f:1e:f6:bb:72:ae:41:
fc:46:fe:00:ce:6f:95:c8:07:a7:41:48:67:49:58:95:3f:7c:
22:7b:3f:cc:bd:56:65:d2:9b:10:86:fb:18:a0:85:78:83:5d:
ed:a4:fd:86:69:8e:19:44:cf:bd:6f:3c:5c:83:42:c5:9f:05:
2e:55:67:04:e1:02:c3:47:36:c5:97:e2:69:3c:71:dc:7b:66:
41:24:3b:f3:6a:56:f0:98:9d:ee:24:bf:cb:51:a1:f7:e8:6a:
72:c5:7f:32:69:11:ae:4c:77:1b:21:bc:b1:7e:9b:bf:bc:78:
61:f5:06:b6:80:d3:de:3d:f2:ed:57:68:7a:9c:ee:5d:ff:99:
9a:61:9e:2d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZEYcZ1bgjw56vmEA4FeNbzTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2N2YzYmQ0YmZiZDMwNzFjMzhjZDRkNzA5MmJkMzQ5MDky
MGMzZDkwHhcNMjQwODAzMTMzMzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OGQ5NzZiZGIyNDlmNjU0NzVlM2QzZDY1NmJjOGZlN2RlMWI3MjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxerCNMQIWX5wL/COpD27+ny4Rl7d
dp+F+eA1BMS/jhaHVpw5iVsXUbfb52qSjeWV+8RpuOChE+ngT9151lzDChDW1AR8
ax5iTWSkYMsnMEMll7bqH/GLRvYW13RWSqge45yHofpo0Ufs8Ns4fXnm+j5MqVJf
1gw3afHgJlMkcbse9nb9U9UzJ/CTolBDIAAs0w9r6Utgxz5m0nykEQASZWigirez
f1lekcFztChw8gyalDutUAGyIcx4mUV/OeYJrF7tAQbJMUQiZZF1Gox8/4V4trNV
4P7yqvRRQAymXU6sMmdtp3dsygQmizo0O8IvU3jRr3mpI9oRANQ/baNQZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIjZdr2ySfZUdePT1la8j+feG3JcMB8GA1UdIwQY
MBaAFHZ/O9S/vTBxw4zU1wkr00kJIMPZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG44NzFMLTlNSEhEak5UWENTdlRTUWtndzlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9mZjVjYzYtOGY2MS00NDdiLWI2NTgt
NGZiNTU5YjNiOWIzLzEvaU5sMnZiSko5bFIxNDlQV1ZyeVA1OTRiY2x3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi9mZjVjYzYtOGY2MS00NDdiLWI2NTgtNGZiNTU5YjNiOWIz
LzEvZG44NzFMLTlNSEhEak5UWENTdlRTUWtndzlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwj4QMA0G
CSqGSIb3DQEBCwUAA4IBAQCvsRvn+J5p/mj0j1mj1cFKz8OvRWA6n7ZBTJLQRW+A
zsywOWmUa8eo2dUTo8GOqRSF5gVmvCCXYwB+iWWvXnQETaKmQZ5DndpBiX+XxxGZ
hAHt3sE+TSx3gF9L+sE/lvGaSJ25pzPcArHQ2Y2kLqoKyi/DQ6lkDD8e9rtyrkH8
Rv4Azm+VyAenQUhnSViVP3wiez/MvVZl0psQhvsYoIV4g13tpP2GaY4ZRM+9bzxc
g0LFnwUuVWcE4QLDRzbFl+JpPHHce2ZBJDvzalbwmJ3uJL/LUaH36GpyxX8yaRGu
THcbIbyxfpu/vHhh9Qa2gNPePfLtV2h6nO5d/5maYZ4t
-----END CERTIFICATE-----
Generated at Wed Aug 21 23:31:39 2024 by rpki-client on console-ams.rpki-client.org