Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/B8f2DURg5jH0_z3OUQZV5cWCC5w.roa
File: B8f2DURg5jH0_z3OUQZV5cWCC5w.roa (raw, json)
Hash identifier: dF7t1Mf313DmwSLmNXUTRfJlnfoZwOhN3mxxQxIr29s=
Subject key identifier: 07:C7:F6:0D:44:60:E6:31:F4:FF:3D:CE:51:06:55:E5:C5:82:0B:9C
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018CC4255CD6C5881A06A3ADFA2044AA70E4
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/B8f2DURg5jH0_z3OUQZV5cWCC5w.roa
Signing time: Mon 01 Jan 2024 08:30:32 +0000
ROA not before: Mon 01 Jan 2024 08:30:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43233
IP address blocks: 178.218.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 16:14:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:5c:d6:c5:88:1a:06:a3:ad:fa:20:44:aa:70:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 08:30:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07c7f60d4460e631f4ff3dce510655e5c5820b9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:4b:52:7c:29:61:27:ab:fc:de:6d:e7:fc:a6:
8a:d0:0e:ff:69:4c:14:ae:9b:c9:fa:f4:e9:09:19:
09:47:31:2c:a5:f6:09:8a:cc:31:05:a1:2e:51:66:
27:82:1e:dc:24:bb:27:1a:23:ed:f8:23:e9:24:b1:
e1:fd:1b:62:06:fa:ab:68:8f:18:3e:6f:fb:f6:0e:
8c:a1:d7:f6:0a:e0:f9:87:58:57:98:54:f1:42:c1:
bb:04:03:4e:48:7b:00:d2:c0:f3:2d:97:ae:c7:d0:
56:37:c6:47:c1:b8:1b:be:66:88:7e:8d:8f:69:69:
a0:2b:1f:3e:da:0f:60:d9:9e:55:89:6b:70:82:e9:
f0:87:82:d3:e7:e6:9e:55:49:aa:7f:2f:43:fd:3e:
6c:42:ea:c3:42:bb:08:f5:18:b2:52:f6:52:02:b0:
73:4b:67:23:eb:14:65:c0:f0:31:e3:2a:fe:aa:fb:
bf:0f:65:67:49:a5:14:11:6f:35:67:6d:38:73:7a:
c6:5b:4c:4b:73:36:cc:ce:08:7b:8c:f8:78:72:ec:
d8:50:d9:8f:71:73:e8:6c:18:e5:b5:aa:bf:23:27:
8c:6d:3e:fd:78:15:1e:20:26:cf:9f:d7:18:ae:02:
01:49:16:45:dc:b8:93:64:1e:01:7d:71:66:cb:c8:
7e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C7:F6:0D:44:60:E6:31:F4:FF:3D:CE:51:06:55:E5:C5:82:0B:9C
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/B8f2DURg5jH0_z3OUQZV5cWCC5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.218.145.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:1b:6a:2b:0f:98:53:11:7e:7a:5d:b2:12:7d:05:bd:ba:c0:
53:28:ed:12:10:58:2a:08:83:75:bf:25:a2:2a:34:d3:6d:02:
a4:24:68:dd:53:46:ef:1d:ee:6c:fd:6d:e0:b1:36:d3:b1:d8:
a5:7a:55:22:af:8d:77:1c:5a:76:9f:15:b7:3d:39:e3:d5:d4:
c3:b4:c9:e9:5a:c8:93:cd:aa:5b:92:02:d5:82:2b:2f:f3:0d:
45:46:a5:0d:c5:21:d5:66:ec:dc:42:f5:95:ce:5e:a2:83:12:
f2:8d:0c:c9:d4:bb:ee:46:bb:22:10:5d:45:62:34:75:7a:28:
26:a0:e0:b2:72:15:f5:d9:a0:7c:5a:59:df:7b:cf:b2:37:37:
da:01:a2:25:cf:89:d2:45:de:bd:1b:e1:e2:7f:a3:ed:9e:47:
d5:c5:f3:c9:b7:98:d6:10:dd:42:f9:2e:05:ba:71:02:77:4d:
f1:a3:4e:9b:b7:e9:88:65:b6:b6:06:77:07:dd:03:01:e6:4c:
bd:5d:c2:b2:3a:55:36:1f:64:34:41:ec:8c:79:67:ee:b8:b3:
8f:52:0d:d5:83:f3:5d:4c:d9:b2:0e:ea:e8:2c:08:ae:c5:ac:
cb:3c:f3:62:1c:9c:88:11:a8:5d:90:6d:44:f6:a5:49:f5:d9:
ae:eb:7d:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJVzWxYgaBqOt+iBEqnDkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjQwMTAxMDgzMDMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2M3ZjYwZDQ0NjBlNjMxZjRmZjNkY2U1MTA2NTVlNWM1ODIwYjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg0tSfClhJ6v83m3n/KaK0A7/aUwU
rpvJ+vTpCRkJRzEspfYJiswxBaEuUWYngh7cJLsnGiPt+CPpJLHh/RtiBvqraI8Y
Pm/79g6Modf2CuD5h1hXmFTxQsG7BANOSHsA0sDzLZeux9BWN8ZHwbgbvmaIfo2P
aWmgKx8+2g9g2Z5ViWtwgunwh4LT5+aeVUmqfy9D/T5sQurDQrsI9RiyUvZSArBz
S2cj6xRlwPAx4yr+qvu/D2VnSaUUEW81Z204c3rGW0xLczbMzgh7jPh4cuzYUNmP
cXPobBjltaq/IyeMbT79eBUeICbPn9cYrgIBSRZF3LiTZB4BfXFmy8h+TQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAfH9g1EYOYx9P89zlEGVeXFggucMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvQjhmMkRVUmc1akgwX3ozT1VRWlY1Y1dDQzV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAstqRMA0G
CSqGSIb3DQEBCwUAA4IBAQCpG2orD5hTEX56XbISfQW9usBTKO0SEFgqCIN1vyWi
KjTTbQKkJGjdU0bvHe5s/W3gsTbTsdilelUir413HFp2nxW3PTnj1dTDtMnpWsiT
zapbkgLVgisv8w1FRqUNxSHVZuzcQvWVzl6igxLyjQzJ1LvuRrsiEF1FYjR1eigm
oOCychX12aB8Wlnfe8+yNzfaAaIlz4nSRd69G+Hif6PtnkfVxfPJt5jWEN1C+S4F
unECd03xo06bt+mIZba2BncH3QMB5ky9XcKyOlU2H2Q0QeyMeWfuuLOPUg3Vg/Nd
TNmyDuroLAiuxazLPPNiHJyIEahdkG1E9qVJ9dmu632m
-----END CERTIFICATE-----
Generated at Thu Mar 21 20:35:48 2024 by rpki-client on console-fra.rpki-client.org