Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/6PzpffNMB3Fr3hUse7N1H1W5lHM.roa
File: 6PzpffNMB3Fr3hUse7N1H1W5lHM.roa (raw, json)
Hash identifier: u2YB1igAGPoOdHn8o4FIJOOVpvZX9urV8hWwhEIeE9E=
Subject key identifier: E8:FC:E9:7D:F3:4C:07:71:6B:DE:15:2C:7B:B3:75:1F:55:B9:94:73
Certificate issuer: /CN=d44de659759b0274124a7b481d0976840b7ade06
Certificate serial: 01856CAF345207EC580B277694163BB2DFAD
Authority key identifier: D4:4D:E6:59:75:9B:02:74:12:4A:7B:48:1D:09:76:84:0B:7A:DE:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/6PzpffNMB3Fr3hUse7N1H1W5lHM.roa
Signing time: Sun 01 Jan 2023 09:34:59 +0000
ROA not before: Sun 01 Jan 2023 09:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39211
IP address blocks: 37.143.174.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:34:52:07:ec:58:0b:27:76:94:16:3b:b2:df:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d44de659759b0274124a7b481d0976840b7ade06
Validity
Not Before: Jan 1 09:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8fce97df34c07716bde152c7bb3751f55b99473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:e4:8b:ee:57:a2:14:04:a0:11:c5:ac:29:
ee:fd:c3:65:d3:03:06:ad:92:d8:f2:24:ea:51:ea:
10:c7:82:cb:e5:1a:c3:f7:b3:f2:f7:14:50:fa:9f:
b8:30:ec:68:53:35:3b:97:6c:40:c8:b9:39:57:6b:
ca:5c:85:a9:42:6f:8e:c3:14:25:fa:b7:6d:d6:7d:
c2:c6:e2:1a:bd:d0:75:5d:ce:11:e4:a6:08:1a:4b:
b7:2c:97:f1:a6:b7:0d:a6:67:64:0c:a2:bd:44:47:
fe:1f:36:db:0d:99:3c:8b:27:33:ea:e4:b3:93:36:
8e:0c:11:a3:18:0e:e4:68:82:d9:e9:88:d0:f9:60:
f2:da:a2:bf:fc:1c:b7:13:5b:00:d3:f8:16:dc:6d:
64:7d:6e:58:7b:7e:2b:61:22:eb:80:37:46:5a:a7:
04:08:c5:89:ba:6b:a8:98:ba:02:f0:7a:ee:8f:5e:
02:1b:8a:f2:bf:94:7c:4c:e7:8b:33:fe:74:ed:4e:
4c:1f:0c:c9:c5:41:20:88:c3:94:8c:d6:21:5f:c0:
4a:9d:c6:0e:b1:2b:5f:75:5f:23:9e:b4:91:6b:57:
ae:eb:d8:e8:84:bb:91:2d:f3:94:79:d2:c2:d3:51:
b7:72:ba:0d:ec:90:e6:3a:20:95:ad:2d:24:69:9a:
6a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:FC:E9:7D:F3:4C:07:71:6B:DE:15:2C:7B:B3:75:1F:55:B9:94:73
X509v3 Authority Key Identifier:
keyid:D4:4D:E6:59:75:9B:02:74:12:4A:7B:48:1D:09:76:84:0B:7A:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/6PzpffNMB3Fr3hUse7N1H1W5lHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/1E3mWXWbAnQSSntIHQl2hAt63gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.174.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:8f:6e:9b:3c:9e:87:03:a6:a0:56:63:10:fd:fd:45:de:9d:
9a:1e:cb:63:20:30:f8:c5:a0:e8:1c:53:67:c1:15:0f:ad:c7:
fb:5d:9a:25:ce:df:e8:71:97:76:b0:c7:bc:06:39:ff:e3:f5:
b2:5f:9e:bf:dd:34:5d:2c:77:5d:2f:69:d1:30:2d:6a:be:4b:
94:d9:b9:25:84:63:e4:4a:55:cf:4f:8c:f4:ae:fe:13:ee:63:
ca:8e:04:a2:b1:ef:8e:29:3c:83:f1:06:e7:03:96:be:f0:3f:
1c:df:19:b4:74:31:84:23:50:98:d5:08:06:84:a7:be:7f:38:
76:25:27:c8:6f:b3:c7:94:0a:d5:e4:2b:27:0e:35:0f:13:0a:
3f:06:26:8a:a5:44:6e:9f:38:f0:1e:aa:bd:29:33:df:c2:d0:
5c:b4:16:2b:1b:cf:0f:58:5e:49:9e:4d:d3:7c:4e:2f:cc:10:
e2:0c:8b:d6:07:6c:3f:c9:00:53:64:3a:b4:db:71:81:9a:2f:
c0:4a:0c:be:11:4c:a2:da:32:66:41:93:4b:33:ec:7d:80:55:
c1:72:5e:65:40:98:d9:fd:12:bf:2c:82:90:ef:08:9a:77:f5:
e7:2b:d5:7a:ad:f9:a7:9d:99:55:7b:0b:a1:10:2c:68:64:ef:
b6:e2:e4:aa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsrzRSB+xYCyd2lBY7st+tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NGRlNjU5NzU5YjAyNzQxMjRhN2I0ODFkMDk3Njg0MGI3
YWRlMDYwHhcNMjMwMTAxMDkzNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGZjZTk3ZGYzNGMwNzcxNmJkZTE1MmM3YmIzNzUxZjU1Yjk5NDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo97ki+5XohQEoBHFrCnu/cNl0wMG
rZLY8iTqUeoQx4LL5RrD97Py9xRQ+p+4MOxoUzU7l2xAyLk5V2vKXIWpQm+OwxQl
+rdt1n3CxuIavdB1Xc4R5KYIGku3LJfxprcNpmdkDKK9REf+HzbbDZk8iycz6uSz
kzaODBGjGA7kaILZ6YjQ+WDy2qK//By3E1sA0/gW3G1kfW5Ye34rYSLrgDdGWqcE
CMWJumuomLoC8Hruj14CG4ryv5R8TOeLM/507U5MHwzJxUEgiMOUjNYhX8BKncYO
sStfdV8jnrSRa1eu69johLuRLfOUedLC01G3croN7JDmOiCVrS0kaZpqkwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOj86X3zTAdxa94VLHuzdR9VuZRzMB8GA1UdIwQY
MBaAFNRN5ll1mwJ0Ekp7SB0JdoQLet4GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUUzbVdYV2JBblFTU250SUhRbDJoQXQ2M2dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83NTIxNmQtNjg0Yi00N2NjLWE5NWUt
ZGI0ZDM5ZGM0ZWM3LzEvNlB6cGZmTk1CM0ZyM2hVc2U3TjFIMVc1bEhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy83NTIxNmQtNjg0Yi00N2NjLWE5NWUtZGI0ZDM5ZGM0ZWM3
LzEvMUUzbVdYV2JBblFTU250SUhRbDJoQXQ2M2dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJY+uMA0G
CSqGSIb3DQEBCwUAA4IBAQDAj26bPJ6HA6agVmMQ/f1F3p2aHstjIDD4xaDoHFNn
wRUPrcf7XZolzt/ocZd2sMe8Bjn/4/WyX56/3TRdLHddL2nRMC1qvkuU2bklhGPk
SlXPT4z0rv4T7mPKjgSise+OKTyD8QbnA5a+8D8c3xm0dDGEI1CY1QgGhKe+fzh2
JSfIb7PHlArV5CsnDjUPEwo/BiaKpURunzjwHqq9KTPfwtBctBYrG88PWF5Jnk3T
fE4vzBDiDIvWB2w/yQBTZDq023GBmi/ASgy+EUyi2jJmQZNLM+x9gFXBcl5lQJjZ
/RK/LIKQ7wiad/XnK9V6rfmnnZlVewuhECxoZO+24uSq
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:35:56 2024 by rpki-client on console-fra.rpki-client.org