Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/xu172wBLt0r77fOCa6Dl-UFqNdM.roa
File: xu172wBLt0r77fOCa6Dl-UFqNdM.roa (raw, json)
Hash identifier: DI/0ydQTRBaHwwQWaEBXNFVn5XphVzpeIOsnWDXFl+w=
Subject key identifier: C6:ED:7B:DB:00:4B:B7:4A:FB:ED:F3:82:6B:A0:E5:F9:41:6A:35:D3
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 01856E54155384CD44F99490DF63B52F9F28
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/xu172wBLt0r77fOCa6Dl-UFqNdM.roa
Signing time: Sun 01 Jan 2023 17:14:42 +0000
ROA not before: Sun 01 Jan 2023 17:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25178
IP address blocks: 212.9.96.0/19 maxlen: 24
2a02:2b90::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:15:53:84:cd:44:f9:94:90:df:63:b5:2f:9f:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Jan 1 17:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6ed7bdb004bb74afbedf3826ba0e5f9416a35d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ba:e6:c1:10:58:f3:ca:53:85:e4:c0:b3:cd:
6f:3f:a9:e3:a4:83:39:69:cf:62:86:fa:f9:d7:ee:
05:83:48:75:f3:57:c0:c7:e3:0b:f2:be:6b:48:a8:
0a:a9:42:d3:4d:ee:3b:bc:4e:eb:5b:e3:74:77:f7:
11:e6:88:6e:8f:c0:55:90:ac:6d:b8:68:03:f3:d0:
b3:d2:b8:5c:ec:36:2f:10:5d:24:18:7b:56:7f:ed:
3b:a5:16:84:f1:aa:e9:b4:24:e8:2b:ec:76:50:d8:
45:2a:e9:35:77:69:5b:46:b7:81:c4:68:ad:45:96:
1c:39:a4:9a:36:2d:e3:07:13:87:1e:e6:28:7d:56:
c5:56:12:fd:18:21:63:3f:e7:51:33:e7:55:ae:39:
8d:3e:e3:90:ea:32:d8:ba:8e:b9:28:47:b0:b1:81:
03:92:c0:80:1b:54:08:ca:80:62:23:d3:fe:6e:9b:
09:37:22:67:42:78:2e:9e:1a:c0:c6:ca:5f:86:63:
36:c4:7b:2f:75:3c:df:71:50:3b:72:60:0f:c6:51:
33:7b:3d:63:a7:87:1b:cb:89:74:c2:1b:e1:56:90:
6d:93:fb:ae:93:3e:0c:f1:39:e4:1a:89:ae:4d:06:
20:76:47:f9:a7:9c:9d:91:f3:da:80:9d:4b:d3:8f:
e6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:ED:7B:DB:00:4B:B7:4A:FB:ED:F3:82:6B:A0:E5:F9:41:6A:35:D3
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/xu172wBLt0r77fOCa6Dl-UFqNdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.9.96.0/19
IPv6:
2a02:2b90::/29
Signature Algorithm: sha256WithRSAEncryption
12:78:cf:c3:4b:01:8a:87:fa:e0:e5:2e:f0:cb:e8:7a:fe:98:
58:4f:32:f2:a0:6c:ef:8d:d0:fc:17:e7:d6:2e:30:a0:48:d7:
a1:38:97:96:e3:de:c6:9b:15:f9:47:31:4d:4b:b7:72:9a:f6:
a1:24:5f:2a:9c:3f:26:33:4e:e5:29:f4:5b:47:ef:39:0e:90:
4d:ec:b9:bc:f5:46:99:54:98:5f:1c:7b:9c:d0:cc:75:b7:18:
61:3e:da:80:ec:03:d5:e1:4f:36:10:8a:3d:62:5c:0a:53:7c:
a5:4f:51:6b:75:b1:12:6d:e5:0d:e3:7c:1d:a7:e8:57:93:43:
60:47:0a:e3:95:9f:02:b8:9e:09:ba:cd:52:f2:52:cb:26:24:
65:e1:6e:7a:af:e0:f2:0d:93:ed:18:d4:54:8c:67:f4:dc:fc:
5f:14:69:09:87:fe:72:74:73:2e:4c:fb:7d:05:72:72:ee:23:
52:26:28:49:27:c9:97:35:e0:af:83:87:48:31:9c:28:b9:7e:
61:d1:5c:61:62:25:26:31:73:75:7c:ae:e6:fc:51:a5:d4:66:
d5:e5:50:02:35:d8:11:d2:93:5b:63:5d:99:af:ae:2c:2a:e2:
54:fd:7e:d8:c3:b1:3c:39:1e:57:d7:b4:96:a3:20:f9:11:f5:
64:7b:88:fe
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVuVBVThM1E+ZSQ32O1L58oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjM2MzOWQxODk5ZTY5OWJmNTE3NzQxOGVlMzgxNDg5ZWRm
ZjQzODAwHhcNMjMwMTAxMTcxNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmVkN2JkYjAwNGJiNzRhZmJlZGYzODI2YmEwZTVmOTQxNmEzNWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvrrmwRBY88pTheTAs81vP6njpIM5
ac9ihvr51+4Fg0h181fAx+ML8r5rSKgKqULTTe47vE7rW+N0d/cR5ohuj8BVkKxt
uGgD89Cz0rhc7DYvEF0kGHtWf+07pRaE8arptCToK+x2UNhFKuk1d2lbRreBxGit
RZYcOaSaNi3jBxOHHuYofVbFVhL9GCFjP+dRM+dVrjmNPuOQ6jLYuo65KEewsYED
ksCAG1QIyoBiI9P+bpsJNyJnQngunhrAxspfhmM2xHsvdTzfcVA7cmAPxlEzez1j
p4cby4l0whvhVpBtk/uukz4M8TnkGomuTQYgdkf5p5ydkfPagJ1L04/m7wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFMbte9sAS7dK++3zgmug5flBajXTMB8GA1UdIwQY
MBaAFHw8OdGJnmmb9Rd0GO44FInt/0OAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkR3NTBZbWVhWnYxRjNRWTdqZ1VpZTNfUTRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9jODAwYzktNTFiNS00NTg5LTkyNjAt
MDYzZmNkZDNhMDU3LzEveHUxNzJ3Qkx0MHI3N2ZPQ2E2RGwtVUZxTmRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9jODAwYzktNTFiNS00NTg5LTkyNjAtMDYzZmNkZDNhMDU3
LzEvZkR3NTBZbWVhWnYxRjNRWTdqZ1VpZTNfUTRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQF1AlgMA0E
AgACMAcDBQMqAiuQMA0GCSqGSIb3DQEBCwUAA4IBAQASeM/DSwGKh/rg5S7wy+h6
/phYTzLyoGzvjdD8F+fWLjCgSNehOJeW497GmxX5RzFNS7dymvahJF8qnD8mM07l
KfRbR+85DpBN7Lm89UaZVJhfHHuc0Mx1txhhPtqA7APV4U82EIo9YlwKU3ylT1Fr
dbESbeUN43wdp+hXk0NgRwrjlZ8CuJ4Jus1S8lLLJiRl4W56r+DyDZPtGNRUjGf0
3PxfFGkJh/5ydHMuTPt9BXJy7iNSJihJJ8mXNeCvg4dIMZwouX5h0VxhYiUmMXN1
fK7m/FGl1GbV5VACNdgR0pNbY12Zr64sKuJU/X7Yw7E8OR5X17SWoyD5EfVke4j+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:25 2024 by rpki-client on console-fra.rpki-client.org