Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/P6NLoh09_YEFz5NdP2bjiqJBTzI.roa
File: P6NLoh09_YEFz5NdP2bjiqJBTzI.roa (raw, json)
Hash identifier: SBls0HRUeVeYY2pSK6T7Nz/cFMO1BiVWCFEG4VYut6w=
Subject key identifier: 3F:A3:4B:A2:1D:3D:FD:81:05:CF:93:5D:3F:66:E3:8A:A2:41:4F:32
Certificate issuer: /CN=d7c148761b67005329aa89135d35ad235173bc48
Certificate serial: 018572031815D9DCB23E2186EF8C27A94ED2
Authority key identifier: D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/P6NLoh09_YEFz5NdP2bjiqJBTzI.roa
Signing time: Mon 02 Jan 2023 10:24:43 +0000
ROA not before: Mon 02 Jan 2023 10:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200276
IP address blocks: 81.28.248.0/24 maxlen: 24
81.28.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:18:15:d9:dc:b2:3e:21:86:ef:8c:27:a9:4e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c148761b67005329aa89135d35ad235173bc48
Validity
Not Before: Jan 2 10:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fa34ba21d3dfd8105cf935d3f66e38aa2414f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:dd:1d:c3:82:5b:8a:bb:90:bd:db:eb:1c:c9:
83:05:6d:97:bc:c0:de:2f:49:fe:11:ac:c4:61:6f:
e9:55:46:d6:cc:32:ef:66:c2:18:de:2c:c3:4a:4a:
a4:ef:19:c0:64:54:42:01:9d:41:70:c3:a6:eb:13:
a0:dd:2a:d1:44:d2:2e:19:92:c6:f8:ef:33:54:0e:
57:80:0f:36:a9:51:91:9b:17:91:63:55:95:3f:b9:
77:2d:b1:96:19:5a:c1:f4:7c:52:b1:f1:84:55:20:
dd:84:b1:dc:b3:94:7b:ea:d9:69:38:0d:f3:8e:d5:
61:be:c1:f4:53:e8:42:13:53:16:01:b0:06:e5:d2:
8b:26:a0:0a:de:56:7b:72:cf:b2:9a:04:02:bc:d1:
9a:2d:7d:c0:fa:37:a2:8d:29:20:a8:a1:4e:df:e8:
06:35:6a:94:bc:1a:2c:07:a5:31:eb:a7:ab:35:ba:
36:c9:c4:33:c0:94:dd:9e:f0:cf:5a:67:8e:52:a6:
65:1b:75:0f:27:23:78:7b:99:ca:af:fb:6e:27:36:
52:60:b6:1f:7e:f0:c2:63:1a:8e:b2:dc:91:a8:d8:
0f:4c:91:08:96:53:4e:35:58:1b:b6:c8:4c:0d:1f:
62:2a:db:2b:4c:e6:35:70:2c:10:5c:c7:b9:18:3c:
44:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A3:4B:A2:1D:3D:FD:81:05:CF:93:5D:3F:66:E3:8A:A2:41:4F:32
X509v3 Authority Key Identifier:
keyid:D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/P6NLoh09_YEFz5NdP2bjiqJBTzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.248.0/23
Signature Algorithm: sha256WithRSAEncryption
42:fb:ac:66:96:91:da:ad:87:8e:cd:05:81:5e:9f:d6:96:4d:
6e:f2:47:6c:e8:f9:c9:cd:0b:b8:63:79:43:65:a2:ed:c0:5c:
61:6b:ac:7a:93:35:4f:b3:20:25:94:61:be:64:4f:71:fd:19:
f9:0b:52:1f:79:ba:a2:84:38:5e:b7:d6:93:40:d4:73:28:7d:
57:8e:5d:28:c8:11:d7:ea:a8:03:11:ba:92:f6:e7:28:53:ae:
6a:5a:23:69:53:f7:46:87:1d:55:8d:58:7e:2e:44:e7:fb:fa:
e1:54:9b:90:4e:8c:bb:09:ec:69:25:d5:98:76:c0:ec:17:03:
cc:e7:d0:5e:67:e1:66:36:b0:bc:f8:0f:4f:11:92:9b:e7:cf:
22:f1:63:15:b2:6e:2a:84:7b:b1:ad:2a:a1:bb:64:0d:ec:b1:
b0:ad:83:e8:49:8f:7f:c0:8d:38:6f:6a:11:fc:ba:9c:0d:7f:
32:74:12:16:7d:c6:e4:ed:3f:56:a8:46:c9:b5:63:49:e6:23:
bb:4d:0b:a8:5a:fc:4f:9b:e3:65:53:d5:28:f6:f6:6e:27:ca:
ce:d7:bd:8a:a2:88:c6:a8:23:31:40:67:3a:8c:8d:94:96:2c:
06:3b:fd:17:a1:f5:5b:de:b5:f6:33:b3:5b:0c:23:fb:20:ee:
49:0a:77:7e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyAxgV2dyyPiGG74wnqU7SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3YzE0ODc2MWI2NzAwNTMyOWFhODkxMzVkMzVhZDIzNTE3
M2JjNDgwHhcNMjMwMTAyMTAyNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZmEzNGJhMjFkM2RmZDgxMDVjZjkzNWQzZjY2ZTM4YWEyNDE0ZjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApt0dw4JbiruQvdvrHMmDBW2XvMDe
L0n+EazEYW/pVUbWzDLvZsIY3izDSkqk7xnAZFRCAZ1BcMOm6xOg3SrRRNIuGZLG
+O8zVA5XgA82qVGRmxeRY1WVP7l3LbGWGVrB9HxSsfGEVSDdhLHcs5R76tlpOA3z
jtVhvsH0U+hCE1MWAbAG5dKLJqAK3lZ7cs+ymgQCvNGaLX3A+jeijSkgqKFO3+gG
NWqUvBosB6Ux66erNbo2ycQzwJTdnvDPWmeOUqZlG3UPJyN4e5nKr/tuJzZSYLYf
fvDCYxqOstyRqNgPTJEIllNONVgbtshMDR9iKtsrTOY1cCwQXMe5GDxEcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD+jS6IdPf2BBc+TXT9m44qiQU8yMB8GA1UdIwQY
MBaAFNfBSHYbZwBTKaqJE101rSNRc7xIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMThGSWRodG5BRk1wcW9rVFhUV3RJMUZ6dkVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9lOGY2OWEtMTczYS00NDc1LWE2ZmIt
MDExNjUwZmJkNGM0LzEvUDZOTG9oMDlfWUVGejVOZFAyYmppcUpCVHpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS9lOGY2OWEtMTczYS00NDc1LWE2ZmItMDExNjUwZmJkNGM0
LzEvMThGSWRodG5BRk1wcW9rVFhUV3RJMUZ6dkVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBURz4MA0G
CSqGSIb3DQEBCwUAA4IBAQBC+6xmlpHarYeOzQWBXp/Wlk1u8kds6PnJzQu4Y3lD
ZaLtwFxha6x6kzVPsyAllGG+ZE9x/Rn5C1IfebqihDhet9aTQNRzKH1Xjl0oyBHX
6qgDEbqS9ucoU65qWiNpU/dGhx1VjVh+LkTn+/rhVJuQToy7CexpJdWYdsDsFwPM
59BeZ+FmNrC8+A9PEZKb588i8WMVsm4qhHuxrSqhu2QN7LGwrYPoSY9/wI04b2oR
/LqcDX8ydBIWfcbk7T9WqEbJtWNJ5iO7TQuoWvxPm+NlU9Uo9vZuJ8rO172KoojG
qCMxQGc6jI2UliwGO/0XofVb3rX2M7NbDCP7IO5JCnd+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:38 2024 by rpki-client on console-fra.rpki-client.org