Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/_YHfLt_7uFu7uF8LOipSGAitrD4.roa
File: _YHfLt_7uFu7uF8LOipSGAitrD4.roa (raw, json)
Hash identifier: ZVIsfOmpdt2IbWeG8D3k5LExsncFuLXRxu9alRhe0JM=
Subject key identifier: FD:81:DF:2E:DF:FB:B8:5B:BB:B8:5F:0B:3A:2A:52:18:08:AD:AC:3E
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018D9D1D565AFCAF91389F19C42AB545522B
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/_YHfLt_7uFu7uF8LOipSGAitrD4.roa
Signing time: Mon 12 Feb 2024 11:39:21 +0000
ROA not before: Mon 12 Feb 2024 11:39:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 147.45.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 21:03:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9d:1d:56:5a:fc:af:91:38:9f:19:c4:2a:b5:45:52:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Feb 12 11:39:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd81df2edffbb85bbbb85f0b3a2a521808adac3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:14:5f:ef:9c:b8:a0:48:00:a1:42:96:db:6a:
2b:f8:14:d9:ca:06:4a:13:58:cf:42:03:be:39:10:
ca:9b:ef:c7:26:40:64:12:14:30:49:0b:81:e3:8e:
19:8a:c1:f6:d4:96:c9:0b:50:2d:67:75:c7:d6:f5:
de:d5:38:85:dc:d3:da:61:94:ae:f3:3c:17:6f:07:
57:20:1e:f2:df:90:34:87:8b:1f:db:12:51:b8:8b:
79:66:d1:25:bf:d6:54:0d:d9:c4:8c:e0:d2:71:70:
31:f0:8f:46:9b:3f:e8:94:fb:de:52:cb:ce:fb:df:
f8:a1:c9:50:75:59:27:66:db:bf:a6:bf:46:90:13:
62:c8:db:22:ce:34:fa:e8:a1:e4:d6:14:12:4f:49:
81:d2:06:23:86:1a:c0:59:89:fb:84:92:b3:e9:cb:
f5:0d:3a:22:dd:ad:36:b9:b6:29:31:70:04:cd:f7:
5c:25:54:76:6c:50:ae:bd:67:2e:f8:d2:77:70:b8:
77:28:38:64:f3:00:88:10:c0:aa:f3:52:2e:c7:c4:
66:0a:01:2b:41:3d:2b:aa:1c:45:33:45:96:02:5e:
8a:3d:bc:ac:f4:c0:39:1d:11:67:bf:d5:9d:c3:d2:
af:ff:66:2f:41:b7:d9:85:b9:ca:59:a4:ad:67:65:
1f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:81:DF:2E:DF:FB:B8:5B:BB:B8:5F:0B:3A:2A:52:18:08:AD:AC:3E
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/_YHfLt_7uFu7uF8LOipSGAitrD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.116.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:f4:d4:e7:dc:8f:06:c4:c9:12:87:62:de:c0:67:89:b3:79:
2c:a7:9e:42:2d:58:bc:49:16:14:53:11:8e:24:98:01:d3:09:
1a:f6:03:3b:90:dc:e4:ef:f8:4f:01:d8:da:19:af:36:51:29:
b9:b3:5b:9b:08:4d:05:ff:5c:bf:e9:89:95:61:41:aa:63:1b:
27:0e:ac:86:9c:1d:92:d5:53:97:75:a5:f5:8a:89:37:ee:2f:
56:86:c2:8b:18:02:ce:2b:5c:f7:f0:f8:20:a9:44:ee:b6:86:
4f:bc:d4:6d:e6:b2:11:54:71:bc:84:b8:fc:e0:e6:34:e0:5a:
8c:3a:ca:2d:39:12:ee:3d:ac:6d:a9:93:65:b4:a4:f7:e8:da:
8a:cc:4e:31:3a:af:60:20:78:62:79:bf:fa:e7:d8:4a:26:83:
79:2d:48:58:a3:1c:ae:b4:12:f1:9a:12:50:de:9d:05:b2:52:
64:d7:0c:55:86:8f:41:be:55:ed:d1:26:d3:04:bb:eb:8e:1b:
01:4f:49:8d:3d:df:5b:88:6c:43:4e:55:69:5f:0d:cb:34:bc:
c1:ff:4e:04:df:dd:be:7e:5b:4f:58:4c:64:ef:37:2a:4a:ca:
ff:fb:85:87:29:0a:e6:27:d8:28:2b:82:92:0f:6e:b0:08:0c:
fd:02:89:c9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2dHVZa/K+ROJ8ZxCq1RVIrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjQwMjEyMTEzOTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDgxZGYyZWRmZmJiODViYmJiODVmMGIzYTJhNTIxODA4YWRhYzNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRRf75y4oEgAoUKW22or+BTZygZK
E1jPQgO+ORDKm+/HJkBkEhQwSQuB444ZisH21JbJC1AtZ3XH1vXe1TiF3NPaYZSu
8zwXbwdXIB7y35A0h4sf2xJRuIt5ZtElv9ZUDdnEjODScXAx8I9Gmz/olPveUsvO
+9/4oclQdVknZtu/pr9GkBNiyNsizjT66KHk1hQST0mB0gYjhhrAWYn7hJKz6cv1
DToi3a02ubYpMXAEzfdcJVR2bFCuvWcu+NJ3cLh3KDhk8wCIEMCq81Iux8RmCgEr
QT0rqhxFM0WWAl6KPbys9MA5HRFnv9Wdw9Kv/2YvQbfZhbnKWaStZ2Uf5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP2B3y7f+7hbu7hfCzoqUhgIraw+MB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvX1lIZkx0Xzd1RnU3dUY4TE9pcFNHQWl0ckQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAky10MA0G
CSqGSIb3DQEBCwUAA4IBAQCd9NTn3I8GxMkSh2LewGeJs3ksp55CLVi8SRYUUxGO
JJgB0wka9gM7kNzk7/hPAdjaGa82USm5s1ubCE0F/1y/6YmVYUGqYxsnDqyGnB2S
1VOXdaX1iok37i9WhsKLGALOK1z38PggqUTutoZPvNRt5rIRVHG8hLj84OY04FqM
OsotORLuPaxtqZNltKT36NqKzE4xOq9gIHhieb/659hKJoN5LUhYoxyutBLxmhJQ
3p0FslJk1wxVho9BvlXt0SbTBLvrjhsBT0mNPd9biGxDTlVpXw3LNLzB/04E392+
fltPWExk7zcqSsr/+4WHKQrmJ9goK4KSD26wCAz9AonJ
-----END CERTIFICATE-----
Generated at Wed Feb 14 22:46:22 2024 by rpki-client on console-fra.rpki-client.org