Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/rFgKEs66VZZV8wB8QnImr4IZrgA.roa
File: rFgKEs66VZZV8wB8QnImr4IZrgA.roa (raw, json)
Hash identifier: vLq1f+3dgTXh6CtAa4wtfJ2P+hOU6CODsYT1l2SobGk=
Subject key identifier: AC:58:0A:12:CE:BA:55:96:55:F3:00:7C:42:72:26:AF:82:19:AE:00
Certificate issuer: /CN=3deb104463e920b45542b6af1a27d5950e86e9a0
Certificate serial: 01856E0AF46AF357AE83178B2491AADD8598
Authority key identifier: 3D:EB:10:44:63:E9:20:B4:55:42:B6:AF:1A:27:D5:95:0E:86:E9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PesQRGPpILRVQravGifVlQ6G6aA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/rFgKEs66VZZV8wB8QnImr4IZrgA.roa
Signing time: Sun 01 Jan 2023 15:54:49 +0000
ROA not before: Sun 01 Jan 2023 15:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48506
IP address blocks: 178.76.64.0/21 maxlen: 32
178.76.72.0/22 maxlen: 32
Validation: Failed, certificate revoked on Tue 05 Dec 2023 09:51:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:f4:6a:f3:57:ae:83:17:8b:24:91:aa:dd:85:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3deb104463e920b45542b6af1a27d5950e86e9a0
Validity
Not Before: Jan 1 15:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac580a12ceba559655f3007c427226af8219ae00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d5:d5:aa:69:04:43:17:ea:00:d0:c1:3d:fc:
57:c3:ed:3e:d6:51:3d:7e:15:e2:c2:8a:23:bb:2d:
af:94:b9:67:3a:a8:fa:17:04:4c:04:97:d1:b1:05:
b9:29:ef:ed:78:59:70:25:0c:90:62:62:d5:f7:20:
50:9d:e8:a6:fa:7e:d5:43:19:03:d3:6e:9a:8d:f9:
24:b3:eb:cd:f6:be:24:f1:9c:b0:9f:fd:eb:11:4b:
59:da:e9:ea:0f:30:2f:29:7d:ac:34:0c:08:c9:0a:
bb:3c:9a:d6:49:b7:ec:7a:d1:49:c7:4b:6d:43:32:
01:84:83:d9:a7:1e:a2:24:5f:59:44:d5:c0:33:cd:
1f:fb:37:60:bf:10:28:7b:a8:44:07:9a:0c:5f:ab:
e8:0a:d1:1d:39:be:70:b4:4b:b5:f4:af:4a:94:0d:
e4:bf:58:28:0c:3b:b3:c4:90:98:3b:4c:e9:07:cd:
d8:f6:d4:57:97:33:84:7a:e1:5d:2a:77:a5:c9:83:
13:18:a9:5a:9f:9a:ee:8e:f1:8d:67:2c:99:31:0d:
f6:f3:59:39:40:98:74:df:b6:a6:99:89:de:6a:d9:
e3:d8:56:af:ea:7f:d5:ad:03:e9:54:02:0b:bd:39:
fe:86:3f:76:4e:62:ec:41:f7:08:e7:bc:0d:10:2e:
e6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:58:0A:12:CE:BA:55:96:55:F3:00:7C:42:72:26:AF:82:19:AE:00
X509v3 Authority Key Identifier:
keyid:3D:EB:10:44:63:E9:20:B4:55:42:B6:AF:1A:27:D5:95:0E:86:E9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PesQRGPpILRVQravGifVlQ6G6aA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/rFgKEs66VZZV8wB8QnImr4IZrgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/PesQRGPpILRVQravGifVlQ6G6aA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.76.64.0-178.76.75.255
Signature Algorithm: sha256WithRSAEncryption
57:51:a1:7d:c0:88:a8:06:76:ec:c1:b8:b5:72:d0:bb:98:21:
05:ec:36:e4:18:10:a4:25:d7:8f:45:fa:c1:d9:76:31:11:d6:
a9:5b:6c:37:d3:06:10:b4:c7:98:fc:e5:aa:e9:47:3e:b2:bf:
87:23:a6:24:00:a9:c4:c6:69:9d:e9:5d:c3:37:a2:55:69:6d:
74:ee:59:49:a9:93:69:38:b2:53:87:77:2c:97:ec:9e:69:b8:
93:9d:0d:9d:da:e6:cc:e0:1f:43:2d:e7:9a:35:3e:99:74:52:
4f:83:8f:2d:89:5e:ba:bf:39:ed:09:7b:51:7b:30:51:b8:35:
ac:96:34:eb:15:f4:95:83:0e:e9:66:67:97:7a:54:5d:71:de:
69:70:30:a8:12:f0:6a:9a:d3:68:f7:e5:89:df:03:e9:cf:89:
90:25:a3:50:0c:fa:c9:88:68:1e:92:a1:c7:b2:e5:97:23:21:
7f:38:e1:76:2b:c7:66:b5:c8:70:c4:b2:da:90:71:e7:a8:f4:
be:7b:2b:85:03:cc:1c:f2:69:22:a0:53:69:af:d2:11:fd:17:
e0:57:81:f0:12:e6:5f:62:e7:2b:a9:6c:e8:99:9a:ec:2f:b8:
bd:65:e6:22:ee:a0:53:88:4a:c0:35:33:0b:b2:75:d7:97:a0:
12:31:0f:c4
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVuCvRq81eugxeLJJGq3YWYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkZWIxMDQ0NjNlOTIwYjQ1NTQyYjZhZjFhMjdkNTk1MGU4
NmU5YTAwHhcNMjMwMTAxMTU1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzU4MGExMmNlYmE1NTk2NTVmMzAwN2M0MjcyMjZhZjgyMTlhZTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjNXVqmkEQxfqANDBPfxXw+0+1lE9
fhXiwoojuy2vlLlnOqj6FwRMBJfRsQW5Ke/teFlwJQyQYmLV9yBQneim+n7VQxkD
026ajfkks+vN9r4k8Zywn/3rEUtZ2unqDzAvKX2sNAwIyQq7PJrWSbfsetFJx0tt
QzIBhIPZpx6iJF9ZRNXAM80f+zdgvxAoe6hEB5oMX6voCtEdOb5wtEu19K9KlA3k
v1goDDuzxJCYO0zpB83Y9tRXlzOEeuFdKnelyYMTGKlan5rujvGNZyyZMQ3281k5
QJh037ammYneatnj2Fav6n/VrQPpVAILvTn+hj92TmLsQfcI57wNEC7mtwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFKxYChLOulWWVfMAfEJyJq+CGa4AMB8GA1UdIwQY
MBaAFD3rEERj6SC0VUK2rxon1ZUOhumgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGVzUVJHUHBJTFJWUXJhdkdpZlZsUTZHNmFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9jNjg2YjMtZTdhOS00ZjljLTg0MmMt
MTE5ZDhiZjcxN2JiLzEvckZnS0VzNjZWWlpWOHdCOFFuSW1yNElacmdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9jNjg2YjMtZTdhOS00ZjljLTg0MmMtMTE5ZDhiZjcxN2Ji
LzEvUGVzUVJHUHBJTFJWUXJhdkdpZlZsUTZHNmFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAayTEAD
BAKyTEgwDQYJKoZIhvcNAQELBQADggEBAFdRoX3AiKgGduzBuLVy0LuYIQXsNuQY
EKQl149F+sHZdjER1qlbbDfTBhC0x5j85arpRz6yv4cjpiQAqcTGaZ3pXcM3olVp
bXTuWUmpk2k4slOHdyyX7J5puJOdDZ3a5szgH0Mt55o1Ppl0Uk+Djy2JXrq/Oe0J
e1F7MFG4NayWNOsV9JWDDulmZ5d6VF1x3mlwMKgS8Gqa02j35YnfA+nPiZAlo1AM
+smIaB6Socey5ZcjIX844XYrx2a1yHDEstqQceeo9L57K4UDzBzyaSKgU2mv0hH9
F+BXgfAS5l9i5yupbOiZmuwvuL1l5iLuoFOISsA1MwuyddeXoBIxD8Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:52 2024 by rpki-client on console-fra.rpki-client.org