Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/1-NDoQyJqJtQHbhncOGOk0IQhggU.roa
File: 1-NDoQyJqJtQHbhncOGOk0IQhggU.roa (raw, json)
Hash identifier: lmYZJpCUjDQEeJiU7sNQv1TiK+meXTcpR/CuP7h/6G8=
Subject key identifier: F8:D0:E8:43:22:6A:26:D4:07:6E:19:DC:38:63:A4:D0:84:21:82:05
Certificate issuer: /CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Certificate serial: 01856FD52624D965FFA5DBA350834F44C3C5
Authority key identifier: 52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/1-NDoQyJqJtQHbhncOGOk0IQhggU.roa
Signing time: Mon 02 Jan 2023 00:15:17 +0000
ROA not before: Mon 02 Jan 2023 00:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25210
IP address blocks: 212.82.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:26:24:d9:65:ff:a5:db:a3:50:83:4f:44:c3:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Validity
Not Before: Jan 2 00:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8d0e843226a26d4076e19dc3863a4d084218205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:b8:5c:c9:4f:f3:76:0b:e9:e7:30:9c:7a:
25:8e:c1:28:e9:7c:bb:03:e8:a2:38:ea:33:ed:d2:
bf:c7:75:10:1d:4d:3d:14:72:8c:fe:4c:1c:ab:72:
f6:f0:ce:f7:ed:07:07:48:04:0b:6f:55:49:1a:ba:
2f:f8:22:ad:46:a9:87:2a:71:f7:f7:86:22:8d:97:
25:f1:14:6b:24:7d:61:ca:63:1f:6c:6f:68:c4:22:
30:3e:71:60:d1:fe:d7:68:e4:09:5a:b4:d9:f9:40:
12:19:64:7d:32:6d:88:87:d4:15:b1:6d:73:4b:b3:
f1:7d:1b:14:2d:c3:4e:39:d0:e3:5a:b5:41:ce:4f:
fb:59:f0:b8:70:75:1d:44:d8:49:e6:a5:ce:9b:78:
31:79:bf:7d:80:29:15:18:69:5b:1d:fb:98:4f:d9:
f4:94:e4:d7:f0:a7:57:f5:ce:71:79:2c:d4:30:55:
ac:f4:4c:92:07:f6:3c:3d:b5:da:be:4c:8d:3c:20:
7e:82:9a:6e:81:63:0d:03:56:a1:40:35:da:fb:88:
30:69:e8:a9:b3:01:e6:d5:e5:68:2e:1f:59:8e:ad:
b8:82:d4:a8:82:3e:80:e9:8e:cf:3c:2d:20:e0:21:
03:de:d3:6b:2f:20:07:78:2c:a2:ad:62:4d:26:f8:
f2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D0:E8:43:22:6A:26:D4:07:6E:19:DC:38:63:A4:D0:84:21:82:05
X509v3 Authority Key Identifier:
keyid:52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/1-NDoQyJqJtQHbhncOGOk0IQhggU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Urm54lZYDENEuyQURbTVLlT91Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.82.217.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:c0:de:0e:f9:99:a0:ed:28:25:86:83:5c:a3:0e:9c:40:f1:
9a:77:f9:a9:eb:0e:2a:d8:4f:bc:10:9a:25:a1:77:ff:e1:a1:
53:15:7f:1c:b4:19:a2:19:ab:08:e4:ae:f9:65:15:02:f5:79:
07:0f:0a:78:54:ac:79:8e:88:81:ed:3b:be:55:8b:2a:9a:44:
8e:03:be:ae:ae:71:a0:8d:72:4e:9a:50:14:d3:4a:46:1a:ff:
ce:a3:da:9c:83:72:b6:0a:7b:d1:bd:6d:f7:0e:99:28:d5:da:
ef:43:5a:7c:62:ec:90:22:66:96:ff:ea:6f:59:b9:26:b5:79:
20:66:3f:6a:ee:5a:9b:9f:05:32:6d:88:79:a4:98:3c:d3:52:
10:9b:1c:86:15:20:0c:d8:62:3a:a4:8d:5c:d9:6b:ba:d2:22:
fe:9c:7d:d5:be:f8:c1:1b:5a:d3:a0:96:d8:73:b9:e8:ab:81:
a6:04:b6:ad:ce:79:82:15:01:3f:19:14:13:c0:34:e8:5e:e3:
5d:ef:18:8e:2a:16:35:85:fd:96:a6:09:d8:41:4e:3e:0f:d2:
2d:1d:d4:d2:c5:14:0c:5a:ff:32:66:a6:7a:10:b8:00:3a:42:
3a:1e:4b:99:7c:8a:f4:cb:74:c7:90:ce:05:09:d8:f9:1d:55:
fd:73:54:74
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVv1SYk2WX/pdujUINPRMPFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYjliOWUyNTY1ODBjNDM0NGJiMjQxNDQ1YjRkNTJlNTRm
ZGQ1MGIwHhcNMjMwMTAyMDAxNTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGQwZTg0MzIyNmEyNmQ0MDc2ZTE5ZGMzODYzYTRkMDg0MjE4MjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwce4XMlP83YL6ecwnHoljsEo6Xy7
A+iiOOoz7dK/x3UQHU09FHKM/kwcq3L28M737QcHSAQLb1VJGrov+CKtRqmHKnH3
94YijZcl8RRrJH1hymMfbG9oxCIwPnFg0f7XaOQJWrTZ+UASGWR9Mm2Ih9QVsW1z
S7PxfRsULcNOOdDjWrVBzk/7WfC4cHUdRNhJ5qXOm3gxeb99gCkVGGlbHfuYT9n0
lOTX8KdX9c5xeSzUMFWs9EySB/Y8PbXavkyNPCB+gppugWMNA1ahQDXa+4gwaeip
swHm1eVoLh9Zjq24gtSogj6A6Y7PPC0g4CED3tNrLyAHeCyirWJNJvjykQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPjQ6EMiaibUB24Z3DhjpNCEIYIFMB8GA1UdIwQY
MBaAFFK5ueJWWAxDRLskFEW01S5U/dULMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXJtNTRsWllERU5FdXlRVVJiVFZMbFQ5MVFzLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9lYWY4MWQtYTlkZi00YTZhLWI2MTAt
ZGUwNWM1NDA0NWJiLzEvMS1ORG9ReUpxSnRRSGJobmNPR09rMElRaGdnVS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMTgvZWFmODFkLWE5ZGYtNGE2YS1iNjEwLWRlMDVjNTQwNDVi
Yi8xL1VybTU0bFpZREVORXV5UVVSYlRWTGxUOTFRcy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANRS2TAN
BgkqhkiG9w0BAQsFAAOCAQEAT8DeDvmZoO0oJYaDXKMOnEDxmnf5qesOKthPvBCa
JaF3/+GhUxV/HLQZohmrCOSu+WUVAvV5Bw8KeFSseY6Ige07vlWLKppEjgO+rq5x
oI1yTppQFNNKRhr/zqPanINytgp70b1t9w6ZKNXa70NafGLskCJmlv/qb1m5JrV5
IGY/au5am58FMm2IeaSYPNNSEJschhUgDNhiOqSNXNlrutIi/px91b74wRta06CW
2HO56KuBpgS2rc55ghUBPxkUE8A06F7jXe8YjioWNYX9lqYJ2EFOPg/SLR3U0sUU
DFr/MmamehC4ADpCOh5LmXyK9Mt0x5DOBQnY+R1V/XNUdA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org