Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/62ff71-c4f2-4929-8899-c38330cbd965/1/nPhaSyaaBPBIWQrfPS2f_FYO2Mk.roa
File: nPhaSyaaBPBIWQrfPS2f_FYO2Mk.roa (raw, json)
Hash identifier: H6EtM7HhIUtfdWH28WhMF5ZW7Uz4fcQrMvpfB7BGTds=
Subject key identifier: 9C:F8:5A:4B:26:9A:04:F0:48:59:0A:DF:3D:2D:9F:FC:56:0E:D8:C9
Certificate issuer: /CN=53a125890a4af092455abc7bb5abfe48cd852c06
Certificate serial: 018C44E0C329609F432577372C5054359650
Authority key identifier: 53:A1:25:89:0A:4A:F0:92:45:5A:BC:7B:B5:AB:FE:48:CD:85:2C:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6EliQpK8JJFWrx7tav-SM2FLAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/62ff71-c4f2-4929-8899-c38330cbd965/1/nPhaSyaaBPBIWQrfPS2f_FYO2Mk.roa
Signing time: Thu 07 Dec 2023 15:23:49 +0000
ROA not before: Thu 07 Dec 2023 15:23:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201869
IP address blocks: 156.51.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:44:e0:c3:29:60:9f:43:25:77:37:2c:50:54:35:96:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a125890a4af092455abc7bb5abfe48cd852c06
Validity
Not Before: Dec 7 15:23:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cf85a4b269a04f048590adf3d2d9ffc560ed8c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1d:8b:91:f5:77:38:96:ee:d4:15:d7:a3:9b:
9d:ab:5a:76:8e:a0:42:5b:8c:61:38:cc:42:dc:c0:
5f:e4:c3:fd:22:2d:a5:52:84:b1:8e:3a:d3:2a:f8:
25:c1:c8:9c:3e:10:92:9f:c5:a9:c9:a6:29:82:2c:
ca:29:14:3f:5f:05:ff:eb:d3:66:42:7b:6a:b8:b1:
a3:66:3a:1b:bb:e6:cc:3c:c0:69:0a:06:20:cb:48:
93:bc:5f:74:96:b9:b0:fe:31:ab:67:6f:14:9a:ee:
cb:f7:3c:d0:92:68:e9:d5:e4:e4:7e:bc:4d:c8:73:
57:0a:86:31:28:5e:6a:c9:72:86:00:30:58:7d:03:
f8:23:23:f0:ff:f1:37:2f:0e:cf:cc:2a:7d:b9:ba:
69:29:94:13:a8:d9:c5:c0:d8:b9:4d:e6:86:60:0c:
54:6f:da:27:bc:3e:37:e1:99:35:12:4f:c4:99:e5:
8f:dc:e8:b2:e7:4f:7d:a7:99:fd:9d:55:2a:41:e3:
a8:95:ae:84:32:ae:98:5a:29:7e:76:25:8c:61:cd:
5d:ab:6d:7d:50:f8:6e:7c:49:90:39:5d:01:81:a7:
9d:ab:67:0c:60:46:ea:36:7c:e0:b8:46:1c:e5:2f:
41:d6:76:30:3d:d3:e4:48:a9:46:84:e8:07:a1:89:
75:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F8:5A:4B:26:9A:04:F0:48:59:0A:DF:3D:2D:9F:FC:56:0E:D8:C9
X509v3 Authority Key Identifier:
keyid:53:A1:25:89:0A:4A:F0:92:45:5A:BC:7B:B5:AB:FE:48:CD:85:2C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6EliQpK8JJFWrx7tav-SM2FLAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/62ff71-c4f2-4929-8899-c38330cbd965/1/nPhaSyaaBPBIWQrfPS2f_FYO2Mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/62ff71-c4f2-4929-8899-c38330cbd965/1/U6EliQpK8JJFWrx7tav-SM2FLAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.51.200.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:45:48:ae:b5:62:65:36:ec:d2:72:f6:6d:ac:66:7e:55:ae:
7d:07:61:df:af:e4:d0:d3:a7:30:9b:4c:4e:61:69:bd:3f:db:
1e:3e:d9:56:61:dc:a6:7b:01:a8:8a:29:cf:67:5b:89:ed:8d:
fe:ff:37:2d:d5:80:36:bf:85:58:b7:92:86:9e:2c:36:52:6e:
31:01:9f:24:27:15:e3:a9:0e:64:7e:d6:5f:0a:90:ae:bc:2b:
93:46:eb:2e:cb:ba:f5:4e:cf:59:94:46:84:fa:ec:6c:44:98:
53:24:6c:38:bd:bc:ae:27:b3:4a:21:4c:c1:cb:9c:8c:fb:c7:
95:98:07:d3:b0:48:36:a1:a8:03:c5:c8:04:13:be:67:7b:6e:
1a:14:02:ce:94:2c:7c:2c:95:c6:36:13:dd:a1:88:69:8a:68:
b5:ae:52:4a:f8:0e:1c:0b:8e:d3:5d:e3:a2:b3:6c:bd:b4:60:
71:1b:e9:06:d7:05:2a:d5:21:e7:45:f0:e2:e2:1c:74:57:3d:
a7:eb:72:69:9f:aa:7d:cc:79:e8:70:6e:ef:7f:37:cb:33:8b:
09:1a:e0:db:34:a8:00:98:14:6d:bb:f5:68:ab:e5:c4:91:05:
5a:91:92:0d:61:b7:56:21:4b:3d:a8:5c:3c:af:ae:5e:1e:75:
5f:05:ac:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxE4MMpYJ9DJXc3LFBUNZZQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYTEyNTg5MGE0YWYwOTI0NTVhYmM3YmI1YWJmZTQ4Y2Q4
NTJjMDYwHhcNMjMxMjA3MTUyMzQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Y2Y4NWE0YjI2OWEwNGYwNDg1OTBhZGYzZDJkOWZmYzU2MGVkOGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnx2LkfV3OJbu1BXXo5udq1p2jqBC
W4xhOMxC3MBf5MP9Ii2lUoSxjjrTKvglwcicPhCSn8WpyaYpgizKKRQ/XwX/69Nm
QntquLGjZjobu+bMPMBpCgYgy0iTvF90lrmw/jGrZ28Umu7L9zzQkmjp1eTkfrxN
yHNXCoYxKF5qyXKGADBYfQP4IyPw//E3Lw7PzCp9ubppKZQTqNnFwNi5TeaGYAxU
b9onvD434Zk1Ek/EmeWP3Oiy5099p5n9nVUqQeOola6EMq6YWil+diWMYc1dq219
UPhufEmQOV0Bgaedq2cMYEbqNnzguEYc5S9B1nYwPdPkSKlGhOgHoYl1GwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJz4WksmmgTwSFkK3z0tn/xWDtjJMB8GA1UdIwQY
MBaAFFOhJYkKSvCSRVq8e7Wr/kjNhSwGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTZFbGlRcEs4SkpGV3J4N3Rhdi1TTTJGTEFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi82MmZmNzEtYzRmMi00OTI5LTg4OTkt
YzM4MzMwY2JkOTY1LzEvblBoYVN5YWFCUEJJV1FyZlBTMmZfRllPMk1rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi82MmZmNzEtYzRmMi00OTI5LTg4OTktYzM4MzMwY2JkOTY1
LzEvVTZFbGlRcEs4SkpGV3J4N3Rhdi1TTTJGTEFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnDPIMA0G
CSqGSIb3DQEBCwUAA4IBAQAvRUiutWJlNuzScvZtrGZ+Va59B2Hfr+TQ06cwm0xO
YWm9P9sePtlWYdymewGoiinPZ1uJ7Y3+/zct1YA2v4VYt5KGniw2Um4xAZ8kJxXj
qQ5kftZfCpCuvCuTRusuy7r1Ts9ZlEaE+uxsRJhTJGw4vbyuJ7NKIUzBy5yM+8eV
mAfTsEg2oagDxcgEE75ne24aFALOlCx8LJXGNhPdoYhpimi1rlJK+A4cC47TXeOi
s2y9tGBxG+kG1wUq1SHnRfDi4hx0Vz2n63Jpn6p9zHnocG7vfzfLM4sJGuDbNKgA
mBRtu/Voq+XEkQVakZINYbdWIUs9qFw8r65eHnVfBaw9
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:28 2024 by rpki-client on console-ams.rpki-client.org