Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/n4Q1i9VEGKjfhZTMpDG5YsXo8Ds.roa
File: n4Q1i9VEGKjfhZTMpDG5YsXo8Ds.roa (raw, json)
Hash identifier: Iy4bk3eNsVc4K5Fp5zjL4oGh6FRluL+NyW6KHooKTcc=
Subject key identifier: 9F:84:35:8B:D5:44:18:A8:DF:85:94:CC:A4:31:B9:62:C5:E8:F0:3B
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 018D421F6C0E0DFFE86685378E9958F23765
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/n4Q1i9VEGKjfhZTMpDG5YsXo8Ds.roa
Signing time: Thu 25 Jan 2024 19:36:11 +0000
ROA not before: Thu 25 Jan 2024 19:36:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 212.46.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 06:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:42:1f:6c:0e:0d:ff:e8:66:85:37:8e:99:58:f2:37:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 25 19:36:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f84358bd54418a8df8594cca431b962c5e8f03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d3:b7:c7:fe:11:b9:da:21:e0:b5:31:67:1e:
10:6c:ef:a4:b8:7b:3d:46:05:0a:cd:c6:de:91:7a:
3e:6b:ed:eb:f1:53:39:32:68:96:f5:86:bc:69:de:
4f:aa:18:4d:e5:58:12:5f:8a:dc:85:b0:6a:0d:79:
75:43:40:31:5f:e0:67:b9:7d:e1:29:99:d9:44:ab:
32:88:88:cf:3a:96:4c:a6:25:21:7b:41:20:15:a7:
74:bb:69:3f:b2:d2:35:0b:18:47:68:57:84:21:26:
80:f8:f0:a2:35:ea:71:20:14:dc:3c:2e:ab:f3:d2:
58:de:ab:cd:f9:46:07:d3:71:26:57:ed:92:a1:01:
ae:3f:a1:4b:d2:57:c2:8e:97:8d:80:0e:59:44:e1:
f0:4c:ac:bc:da:5e:89:43:e4:a3:b5:bc:75:11:27:
cd:bf:1c:46:3d:b3:f1:83:27:74:30:92:22:e2:5a:
bd:76:9a:60:dc:44:a0:73:44:68:a5:1f:a5:1e:4d:
43:23:e4:37:e8:92:99:6d:ff:f1:ab:8f:d1:14:b2:
40:94:c5:98:10:11:47:38:e7:ac:bd:83:fb:87:5c:
0a:a7:24:4c:8e:e4:64:30:c0:b9:69:79:e3:98:93:
c1:91:b9:d1:8d:71:71:d7:1c:5a:73:f3:c6:d8:35:
fc:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:84:35:8B:D5:44:18:A8:DF:85:94:CC:A4:31:B9:62:C5:E8:F0:3B
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/n4Q1i9VEGKjfhZTMpDG5YsXo8Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
38:6d:15:25:36:5d:11:70:5a:fb:93:9a:92:c6:ef:96:62:72:
60:a7:2d:45:94:c5:e3:8e:ec:4d:68:ba:94:47:46:4b:d8:8f:
c5:e2:3e:0a:78:87:4b:95:bb:dc:a7:be:39:59:32:bc:3c:d3:
6b:3d:6e:a0:f8:3f:2f:93:e9:90:17:41:a5:5f:36:6e:8e:4c:
62:ac:74:cc:d3:6d:9e:a8:47:88:9c:ef:11:0a:6a:da:73:b0:
11:d1:7c:ef:38:55:94:03:46:2c:6b:5e:75:cd:f4:24:44:a5:
00:09:7e:93:d1:a5:bd:b4:83:5d:61:a0:6a:9b:65:97:c5:11:
0d:79:33:dd:2f:61:aa:5c:f0:68:27:60:39:72:ac:ba:cb:16:
79:16:cb:26:2f:ba:ee:02:6e:f4:94:6a:e0:92:3e:1e:17:d3:
f1:e9:ce:fe:b7:a1:ef:f6:41:88:a4:03:ed:3e:89:0e:ec:a7:
7d:67:e7:f9:62:1c:8a:05:8c:d7:76:6f:96:42:8f:94:3b:e2:
72:4b:e1:71:bf:7b:5e:4a:89:65:2f:90:20:63:1e:35:a6:f1:
9e:96:db:a7:ee:e2:96:8e:ec:49:c4:d1:4d:27:8b:b0:fd:ff:
b0:96:45:b1:48:db:03:d4:9a:93:43:c7:57:f3:73:b9:7e:b2:
ca:17:13:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1CH2wODf/oZoU3jplY8jdlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMTQ1YThiZGYyYmNhMTUwZjI1ZWQ1NGEyNzdiOGY2NTNl
ZmRiM2UwHhcNMjQwMTI1MTkzNjExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Zjg0MzU4YmQ1NDQxOGE4ZGY4NTk0Y2NhNDMxYjk2MmM1ZThmMDNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAidO3x/4Rudoh4LUxZx4QbO+kuHs9
RgUKzcbekXo+a+3r8VM5MmiW9Ya8ad5PqhhN5VgSX4rchbBqDXl1Q0AxX+BnuX3h
KZnZRKsyiIjPOpZMpiUhe0EgFad0u2k/stI1CxhHaFeEISaA+PCiNepxIBTcPC6r
89JY3qvN+UYH03EmV+2SoQGuP6FL0lfCjpeNgA5ZROHwTKy82l6JQ+Sjtbx1ESfN
vxxGPbPxgyd0MJIi4lq9dppg3ESgc0RopR+lHk1DI+Q36JKZbf/xq4/RFLJAlMWY
EBFHOOesvYP7h1wKpyRMjuRkMMC5aXnjmJPBkbnRjXFx1xxac/PG2DX8wwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ+ENYvVRBio34WUzKQxuWLF6PA7MB8GA1UdIwQY
MBaAFCsUWovfK8oVDyXtVKJ3uPZT79s+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMt
MzA0MGJlZDNjY2NkLzEvbjRRMWk5VkVHS2pmaFpUTXBERzVZc1hvOERzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMtMzA0MGJlZDNjY2Nk
LzEvS3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1C4lMA0G
CSqGSIb3DQEBCwUAA4IBAQA4bRUlNl0RcFr7k5qSxu+WYnJgpy1FlMXjjuxNaLqU
R0ZL2I/F4j4KeIdLlbvcp745WTK8PNNrPW6g+D8vk+mQF0GlXzZujkxirHTM022e
qEeInO8RCmrac7AR0XzvOFWUA0Ysa151zfQkRKUACX6T0aW9tINdYaBqm2WXxREN
eTPdL2GqXPBoJ2A5cqy6yxZ5FssmL7ruAm70lGrgkj4eF9Px6c7+t6Hv9kGIpAPt
PokO7Kd9Z+f5YhyKBYzXdm+WQo+UO+JyS+Fxv3teSollL5AgYx41pvGeltun7uKW
juxJxNFNJ4uw/f+wlkWxSNsD1JqTQ8dX83O5frLKFxMq
-----END CERTIFICATE-----
Generated at Wed Feb 28 11:44:38 2024 by rpki-client on console-fra.rpki-client.org