Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/iNIL7nbnd3-R02MoriRnI8kjwPk.roa
File: iNIL7nbnd3-R02MoriRnI8kjwPk.roa (raw, json)
Hash identifier: Xxe9uCx5PjNt3uoPgamO72q52kYhD+y/2//rJj4cPMk=
Subject key identifier: 88:D2:0B:EE:76:E7:77:7F:91:D3:63:28:AE:24:67:23:C9:23:C0:F9
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 018CC56E00670138EDDC71950148F8D0B6EA
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/iNIL7nbnd3-R02MoriRnI8kjwPk.roa
Signing time: Mon 01 Jan 2024 14:29:29 +0000
ROA not before: Mon 01 Jan 2024 14:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39150
IP address blocks: 146.185.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 11:13:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:00:67:01:38:ed:dc:71:95:01:48:f8:d0:b6:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 14:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88d20bee76e7777f91d36328ae246723c923c0f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:7e:01:10:b2:01:1e:15:09:09:06:3b:ea:4f:
5a:a5:de:73:49:fd:80:f7:54:74:e8:ef:8a:52:f1:
30:78:a9:86:45:e1:8d:54:28:3e:25:42:b8:eb:64:
cb:d7:54:e8:6c:67:54:ff:04:d5:2e:b4:ca:79:3b:
be:f3:a2:9e:53:a7:2b:6f:e6:e3:af:6b:42:b0:64:
1a:02:8b:2f:ec:58:cb:b8:7c:be:a3:fb:e3:a5:39:
73:9f:10:cc:1f:59:f1:75:e9:90:3b:2d:53:f0:5f:
4d:10:4a:d9:d8:5b:c3:3e:98:2a:ae:09:a8:9a:14:
04:7e:ff:9a:c7:2b:de:48:d6:80:86:0f:d1:8b:80:
21:ed:a3:f9:11:52:ad:9f:1e:34:47:cc:b4:f8:81:
66:d6:7e:74:80:0f:de:b2:29:71:dc:ec:04:ea:2b:
45:cd:f8:87:29:21:89:71:e9:23:79:f0:07:33:6e:
5e:78:e4:1b:45:40:db:53:cf:6e:71:44:fe:c1:f6:
14:0c:fc:6d:36:fd:46:9e:83:af:20:52:9f:15:53:
81:a6:76:14:61:c9:38:f9:22:2d:c2:19:55:9d:ed:
f7:14:3d:b5:e4:a7:79:44:96:ca:bb:b6:30:20:ba:
fc:e3:a8:9b:d7:7d:eb:fd:5c:04:7c:89:62:12:b5:
fa:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D2:0B:EE:76:E7:77:7F:91:D3:63:28:AE:24:67:23:C9:23:C0:F9
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/iNIL7nbnd3-R02MoriRnI8kjwPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.238.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:53:8c:cc:e6:14:3f:15:20:29:83:0f:86:23:07:3d:8d:ea:
d4:7d:72:0b:3b:60:3f:c7:18:c7:50:cd:8a:f0:9b:fd:9b:02:
89:e9:dd:73:eb:2e:2a:ed:f1:f0:f6:79:9f:64:35:16:92:67:
b0:7a:35:b1:57:d9:32:7d:17:d6:3c:f8:49:46:6e:81:bb:ab:
07:e5:88:e6:da:de:3e:cb:99:57:78:51:dc:da:c5:c6:b3:ab:
2e:f7:1f:d5:5a:d5:66:4f:20:d8:d1:ef:a0:4a:82:83:ef:c2:
9b:da:bc:48:e3:32:2c:7c:8d:6d:51:50:82:6e:9d:c9:c2:1f:
61:08:90:aa:c1:da:80:6a:b9:c2:bc:31:4b:6a:85:a0:e2:df:
e2:88:fe:ff:70:8c:f4:03:f4:b1:18:8a:2c:3c:f4:c7:9f:ba:
67:7a:f7:2e:6d:da:c7:85:79:ef:15:d8:b5:1f:ac:2f:91:46:
73:cb:fc:29:66:c6:f1:8a:f9:db:1b:df:3b:f9:7a:87:cf:31:
10:25:7e:63:03:f0:25:b8:62:94:e2:00:88:c7:c8:2a:ac:e4:
46:a7:3c:68:4c:1d:20:d7:4a:78:13:a9:84:8a:9d:4a:d1:b2:
2a:ee:8d:35:88:b7:93:7e:03:bb:7c:82:1b:e8:83:2b:e6:ff:
fc:58:fb:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbgBnATjt3HGVAUj40LbqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl
Y2EwNzEwHhcNMjQwMTAxMTQyOTI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OGQyMGJlZTc2ZTc3NzdmOTFkMzYzMjhhZTI0NjcyM2M5MjNjMGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhX4BELIBHhUJCQY76k9apd5zSf2A
91R06O+KUvEweKmGReGNVCg+JUK462TL11TobGdU/wTVLrTKeTu+86KeU6crb+bj
r2tCsGQaAosv7FjLuHy+o/vjpTlznxDMH1nxdemQOy1T8F9NEErZ2FvDPpgqrgmo
mhQEfv+axyveSNaAhg/Ri4Ah7aP5EVKtnx40R8y0+IFm1n50gA/esilx3OwE6itF
zfiHKSGJcekjefAHM25eeOQbRUDbU89ucUT+wfYUDPxtNv1GnoOvIFKfFVOBpnYU
Yck4+SItwhlVne33FD215Kd5RJbKu7YwILr846ib133r/VwEfIliErX6TwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIjSC+5253d/kdNjKK4kZyPJI8D5MB8GA1UdIwQY
MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt
ODlkMDkyNDBjNDNiLzEvaU5JTDduYm5kMy1SMDJNb3JpUm5JOGtqd1BrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi
LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkrnuMA0G
CSqGSIb3DQEBCwUAA4IBAQCeU4zM5hQ/FSApgw+GIwc9jerUfXILO2A/xxjHUM2K
8Jv9mwKJ6d1z6y4q7fHw9nmfZDUWkmewejWxV9kyfRfWPPhJRm6Bu6sH5Yjm2t4+
y5lXeFHc2sXGs6su9x/VWtVmTyDY0e+gSoKD78Kb2rxI4zIsfI1tUVCCbp3Jwh9h
CJCqwdqAarnCvDFLaoWg4t/iiP7/cIz0A/SxGIosPPTHn7pnevcubdrHhXnvFdi1
H6wvkUZzy/wpZsbxivnbG987+XqHzzEQJX5jA/AluGKU4gCIx8gqrORGpzxoTB0g
10p4E6mEip1K0bIq7o01iLeTfgO7fIIb6IMr5v/8WPsW
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:55 2024 by rpki-client on console-ams.rpki-client.org