Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/2nzjVpMlOxJauoNOu2i3pIoq3t8.roa
File: 2nzjVpMlOxJauoNOu2i3pIoq3t8.roa (raw, json)
Hash identifier: PTXWTsEIfHspqeoGYx6/QBKDJvv0gmYCNC3CILtgyhE=
Subject key identifier: DA:7C:E3:56:93:25:3B:12:5A:BA:83:4E:BB:68:B7:A4:8A:2A:DE:DF
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 01856B40CCC11182E2E17B3376F05128ADF4
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/2nzjVpMlOxJauoNOu2i3pIoq3t8.roa
Signing time: Sun 01 Jan 2023 02:54:46 +0000
ROA not before: Sun 01 Jan 2023 02:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209087
IP address blocks: 46.26.164.0/24 maxlen: 24
77.231.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:cc:c1:11:82:e2:e1:7b:33:76:f0:51:28:ad:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 02:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da7ce35693253b125aba834ebb68b7a48a2adedf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d6:3c:c2:54:e0:9f:3e:97:2f:c7:4f:20:b1:
36:39:53:6b:16:e7:04:0b:cd:99:3d:e5:ab:34:0c:
cc:4a:a9:f9:d5:ba:f0:42:14:4b:14:61:82:80:77:
01:85:73:2a:5f:42:7f:03:d7:41:0f:4d:9a:da:16:
84:13:a8:6c:4b:94:28:f4:e7:aa:32:55:12:55:85:
b0:0b:fe:61:e8:72:69:0b:59:b1:47:b2:c4:11:59:
40:75:3b:65:28:b1:f2:c6:8c:cb:c4:f6:ed:55:9f:
bd:49:a3:12:d6:80:2f:9a:c6:ea:6e:45:de:7d:d1:
dc:51:0d:89:19:a8:86:8e:32:e3:da:7d:cf:f7:21:
28:41:53:d3:f0:1b:51:b8:89:ce:7f:0e:c2:c3:09:
03:8d:b0:c0:d8:f9:1f:31:32:7e:7d:46:e8:bb:8f:
fd:0c:4e:4a:af:3a:ff:6b:74:bd:20:02:11:54:99:
02:25:5d:1f:35:f5:04:dd:50:aa:68:be:b1:f2:75:
79:cc:0e:10:30:36:ad:28:9a:f5:90:2c:ff:e0:41:
f0:82:c2:24:c6:10:4e:f0:66:32:2f:e7:14:e6:4b:
17:69:09:aa:06:0a:ff:75:06:2c:55:a7:72:3a:1a:
ea:87:b2:57:fa:a0:ab:61:c5:80:50:b1:63:eb:98:
51:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7C:E3:56:93:25:3B:12:5A:BA:83:4E:BB:68:B7:A4:8A:2A:DE:DF
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/2nzjVpMlOxJauoNOu2i3pIoq3t8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.26.164.0/24
77.231.181.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:9a:23:54:20:00:27:8a:ee:46:4a:75:e2:8f:2e:a0:dd:65:
90:7b:65:b3:48:2b:f7:25:e5:1d:76:33:bd:35:49:c2:37:16:
fb:ad:db:91:b1:df:36:8a:c6:a1:95:fc:6c:5c:e3:0f:4c:1b:
2e:47:02:b7:44:5f:52:9f:cc:65:74:73:c9:9a:57:c9:14:69:
f5:7e:7f:4a:ab:b9:79:cc:f7:4a:74:f2:9b:6e:0b:2c:20:f8:
5e:31:7a:b4:eb:16:6b:a7:12:86:a3:cd:a4:81:8e:fc:3e:0f:
68:c2:f5:c3:ef:75:5a:0d:a2:0c:e6:8c:ab:60:24:81:28:21:
a2:24:8c:f1:53:23:4f:02:25:61:cd:7d:a3:f5:e5:4e:50:dc:
fe:27:6c:d5:ce:e2:33:22:62:d8:84:b2:65:26:7a:a6:8b:4d:
04:6c:99:03:af:9d:75:99:c7:a5:ec:80:93:1d:f5:3c:58:21:
27:03:19:30:63:12:a3:4e:a5:76:82:78:c5:bc:00:23:b5:42:
ec:de:90:5c:e1:e7:64:17:c6:7e:08:d0:a4:ec:61:60:07:f0:
46:0b:33:41:b0:b7:8b:7b:cd:43:42:71:b1:3c:7e:6a:9c:d8:
0d:64:a8:68:8b:23:f5:56:1d:43:ec:38:0d:44:e2:98:64:23:
2c:6f:4a:23
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVrQMzBEYLi4XszdvBRKK30MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MmFlMzNiMTFiMzZhMzE5YmE4MTM0N2Q4NTI0ODBkOGU3
NGM4N2QwHhcNMjMwMTAxMDI1NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYTdjZTM1NjkzMjUzYjEyNWFiYTgzNGViYjY4YjdhNDhhMmFkZWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19Y8wlTgnz6XL8dPILE2OVNrFucE
C82ZPeWrNAzMSqn51brwQhRLFGGCgHcBhXMqX0J/A9dBD02a2haEE6hsS5Qo9Oeq
MlUSVYWwC/5h6HJpC1mxR7LEEVlAdTtlKLHyxozLxPbtVZ+9SaMS1oAvmsbqbkXe
fdHcUQ2JGaiGjjLj2n3P9yEoQVPT8BtRuInOfw7CwwkDjbDA2PkfMTJ+fUbou4/9
DE5Krzr/a3S9IAIRVJkCJV0fNfUE3VCqaL6x8nV5zA4QMDatKJr1kCz/4EHwgsIk
xhBO8GYyL+cU5ksXaQmqBgr/dQYsVadyOhrqh7JX+qCrYcWAULFj65hR4QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNp841aTJTsSWrqDTrtot6SKKt7fMB8GA1UdIwQY
MBaAFDUq4zsRs2oxm6gTR9hSSA2OdMh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlNyak94R3phakdicUJOSDJGSklEWTUweUgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jNTVhYjAtZWEyMi00YTE5LThiMzMt
MjUwNTBjNTkzYWExLzEvMm56alZwTWxPeEphdW9OT3UyaTNwSW9xM3Q4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9jNTVhYjAtZWEyMi00YTE5LThiMzMtMjUwNTBjNTkzYWEx
LzEvTlNyak94R3phakdicUJOSDJGSklEWTUweUgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALhqkAwQA
Tee1MA0GCSqGSIb3DQEBCwUAA4IBAQCwmiNUIAAniu5GSnXijy6g3WWQe2WzSCv3
JeUddjO9NUnCNxb7rduRsd82isahlfxsXOMPTBsuRwK3RF9Sn8xldHPJmlfJFGn1
fn9Kq7l5zPdKdPKbbgssIPheMXq06xZrpxKGo82kgY78Pg9owvXD73VaDaIM5oyr
YCSBKCGiJIzxUyNPAiVhzX2j9eVOUNz+J2zVzuIzImLYhLJlJnqmi00EbJkDr511
mcel7ICTHfU8WCEnAxkwYxKjTqV2gnjFvAAjtULs3pBc4edkF8Z+CNCk7GFgB/BG
CzNBsLeLe81DQnGxPH5qnNgNZKhoiyP1Vh1D7DgNROKYZCMsb0oj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:01 2024 by rpki-client on console-fra.rpki-client.org