Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/fYzsWnUxdWqpXPQVvGlIG_SyNds.roa
File: fYzsWnUxdWqpXPQVvGlIG_SyNds.roa (raw, json)
Hash identifier: 5VgqQxH76inKgTVd0dR/csQ/g+YawL7RrEvMRuott60=
Subject key identifier: 7D:8C:EC:5A:75:31:75:6A:A9:5C:F4:15:BC:69:48:1B:F4:B2:35:DB
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0185734CAF698C6143B2A436D797ACEA4AAC
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/fYzsWnUxdWqpXPQVvGlIG_SyNds.roa
Signing time: Mon 02 Jan 2023 16:24:43 +0000
ROA not before: Mon 02 Jan 2023 16:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15613
IP address blocks: 213.173.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:af:69:8c:61:43:b2:a4:36:d7:97:ac:ea:4a:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 2 16:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d8cec5a7531756aa95cf415bc69481bf4b235db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:91:f7:88:ac:ef:ff:17:11:ee:aa:f9:8d:4d:
43:07:bc:2e:75:d9:84:67:ec:09:bf:f7:a8:f0:e4:
7c:78:82:38:39:38:ea:75:01:ae:3d:39:08:40:1c:
d4:53:7b:93:84:09:65:2a:e3:6b:c8:2c:cf:1e:75:
a7:75:36:43:37:71:ec:54:9a:de:0c:01:92:a0:cd:
83:af:ae:0f:35:45:4e:b9:bd:3a:13:29:9f:7c:83:
5d:35:6d:9a:1e:38:78:62:b4:fa:04:ba:c8:de:bf:
cb:26:2e:57:a5:a4:b8:aa:62:14:c3:f5:68:54:ce:
0f:59:43:92:b3:0a:db:6c:65:73:db:1f:30:87:4b:
16:fc:ef:5a:9d:70:cd:64:6e:c9:d5:cb:66:0b:58:
38:f3:ff:b7:ab:a7:b2:9b:e6:b7:9a:79:56:41:81:
11:c6:bf:bc:b2:29:93:0f:fc:d8:c1:b4:39:ca:2e:
6d:ce:c4:40:c6:29:a0:d3:68:2d:b7:8a:99:dc:bf:
33:49:b7:56:1f:67:1e:fd:5c:b2:e2:7b:20:ae:1b:
b5:63:20:20:4c:a5:45:5c:de:7d:e2:66:3b:00:3c:
8a:11:97:1b:71:ab:c0:82:ec:e9:0c:43:ae:0d:b6:
9e:c2:d0:95:3f:82:ad:71:1e:bb:a6:6e:a7:4c:ca:
d5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:8C:EC:5A:75:31:75:6A:A9:5C:F4:15:BC:69:48:1B:F4:B2:35:DB
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/fYzsWnUxdWqpXPQVvGlIG_SyNds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.171.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:20:10:2d:01:c1:2f:1a:d7:68:4f:b3:2e:cc:d7:cb:20:f7:
dc:4c:00:a1:c9:ca:6e:08:77:fb:1d:1f:65:b8:41:83:cf:1f:
85:e7:e9:a0:31:e4:f6:47:c4:50:9c:93:77:98:79:af:3f:f3:
00:ad:a4:c8:77:3a:e2:88:73:96:ba:4d:c8:33:78:ce:31:7f:
6a:ee:68:a0:ec:82:26:ae:cd:fc:ee:49:0c:61:6e:34:09:e5:
d7:8a:ef:64:72:9d:bc:b2:f8:d9:17:77:87:7e:38:24:15:6e:
7b:63:da:4d:2f:85:0e:02:5b:4a:2d:51:c2:92:fa:61:46:5a:
ae:c8:5f:fa:d0:57:7f:6d:1c:f2:3d:55:22:bd:73:5b:4b:92:
d7:dd:51:10:45:e8:86:6c:44:cc:87:c3:49:fc:1c:4e:19:c0:
6a:d1:31:97:15:06:ea:88:d6:d7:e6:b0:d4:d4:dc:67:47:9d:
4b:49:0e:90:ed:ba:54:d4:e4:fd:de:e7:b5:d5:82:e5:bf:8a:
0d:27:d1:00:8e:60:2e:8a:9a:2f:de:05:71:f2:22:fa:ad:c6:
91:83:8b:0b:ff:54:f2:e3:2f:e9:3f:35:ad:5d:a1:6f:cf:e8:
be:f5:51:10:b1:46:0d:d2:60:8d:a7:8f:d6:71:ca:c4:e2:44:
cc:99:4a:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzTK9pjGFDsqQ215es6kqsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjZjhmZmMwODg1OTFlNGYyNDNiYWFmYTIxYjQyOThiZmIz
NjYwMjYwHhcNMjMwMTAyMTYyNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDhjZWM1YTc1MzE3NTZhYTk1Y2Y0MTViYzY5NDgxYmY0YjIzNWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5H3iKzv/xcR7qr5jU1DB7wuddmE
Z+wJv/eo8OR8eII4OTjqdQGuPTkIQBzUU3uThAllKuNryCzPHnWndTZDN3HsVJre
DAGSoM2Dr64PNUVOub06EymffINdNW2aHjh4YrT6BLrI3r/LJi5XpaS4qmIUw/Vo
VM4PWUOSswrbbGVz2x8wh0sW/O9anXDNZG7J1ctmC1g48/+3q6eym+a3mnlWQYER
xr+8simTD/zYwbQ5yi5tzsRAximg02gtt4qZ3L8zSbdWH2ce/Vyy4nsgrhu1YyAg
TKVFXN594mY7ADyKEZcbcavAguzpDEOuDbaewtCVP4KtcR67pm6nTMrVoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH2M7Fp1MXVqqVz0FbxpSBv0sjXbMB8GA1UdIwQY
MBaAFEz4/8CIWR5PJDuq+iG0KYv7NmAmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMt
YjNiNzhiMGI2NmVhLzEvZll6c1duVXhkV3FwWFBRVnZHbElHX1N5TmRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMtYjNiNzhiMGI2NmVh
LzEvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1a2rMA0G
CSqGSIb3DQEBCwUAA4IBAQBeIBAtAcEvGtdoT7MuzNfLIPfcTAChycpuCHf7HR9l
uEGDzx+F5+mgMeT2R8RQnJN3mHmvP/MAraTIdzriiHOWuk3IM3jOMX9q7mig7IIm
rs387kkMYW40CeXXiu9kcp28svjZF3eHfjgkFW57Y9pNL4UOAltKLVHCkvphRlqu
yF/60Fd/bRzyPVUivXNbS5LX3VEQReiGbETMh8NJ/BxOGcBq0TGXFQbqiNbX5rDU
1NxnR51LSQ6Q7bpU1OT93ue11YLlv4oNJ9EAjmAuipov3gVx8iL6rcaRg4sL/1Ty
4y/pPzWtXaFvz+i+9VEQsUYN0mCNp4/WccrE4kTMmUr9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:42 2024 by rpki-client on console-fra.rpki-client.org