Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/3JJTkVD-sW70mYdqB-zYliFmqco.roa
File: 3JJTkVD-sW70mYdqB-zYliFmqco.roa (raw, json)
Hash identifier: CiWypjbUuOJTy8aJufnszxioh09gt471M8VxblPhdZQ=
Subject key identifier: DC:92:53:91:50:FE:B1:6E:F4:99:87:6A:07:EC:D8:96:21:66:A9:CA
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018CC56E12859B8F5060BCD77F317C091B0F
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/3JJTkVD-sW70mYdqB-zYliFmqco.roa
Signing time: Mon 01 Jan 2024 14:29:34 +0000
ROA not before: Mon 01 Jan 2024 14:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200017
IP address blocks: 212.69.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 08:19:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:12:85:9b:8f:50:60:bc:d7:7f:31:7c:09:1b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 1 14:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc92539150feb16ef499876a07ecd8962166a9ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:80:54:20:1c:1e:9c:40:ea:8c:05:1f:d6:db:
dd:bf:c4:0d:5b:5f:13:fe:e7:f1:30:76:f9:ab:d5:
d9:49:54:5e:bb:b6:32:c4:96:d1:34:58:d8:6f:6d:
18:98:15:53:d5:4b:f8:6d:11:55:c4:60:4a:90:ca:
c9:06:de:fb:05:34:b0:20:0b:36:8a:06:ed:ad:4a:
59:08:41:24:c9:85:de:20:07:51:3d:e9:31:82:84:
ac:c8:18:ac:59:28:07:e9:e1:de:de:40:bf:46:69:
95:65:42:f6:0a:58:a4:dc:84:07:17:ff:1f:71:be:
7f:df:c1:21:e8:00:9a:67:f7:3b:60:de:07:f8:ba:
b5:b5:d0:a4:60:8a:c0:67:3b:3c:a7:39:4a:3c:4b:
a9:89:4e:71:d8:52:ef:ad:6e:08:ba:0d:c6:0a:51:
dc:3e:48:e5:54:a5:9d:f0:57:bb:52:29:71:6d:3a:
f1:03:1b:bd:10:7d:5e:29:43:80:92:39:55:f2:5e:
2e:6c:db:18:a2:51:bc:e9:8b:1e:70:e1:67:65:1c:
d7:92:a8:2d:83:97:96:79:45:85:9e:18:cf:33:d5:
5c:95:2e:b5:ef:8c:01:6a:7f:a2:b8:b0:6a:48:32:
d7:8a:0a:b8:fa:2c:61:b8:43:82:77:9d:af:86:74:
a5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:92:53:91:50:FE:B1:6E:F4:99:87:6A:07:EC:D8:96:21:66:A9:CA
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/3JJTkVD-sW70mYdqB-zYliFmqco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.18.0/24
Signature Algorithm: sha256WithRSAEncryption
91:e8:b4:d3:f5:06:4e:e6:77:b6:bd:0a:f9:d2:2c:6a:c2:49:
33:88:3e:8d:3e:ff:e4:2d:a9:e9:22:c8:70:b6:7c:bc:23:14:
2b:b0:6c:62:55:70:26:0c:9a:dc:00:c1:02:c4:d5:bb:7a:37:
2a:f9:64:3a:2c:a2:20:0c:81:6e:1e:c2:4c:c1:8e:a8:ab:08:
aa:c5:eb:b1:6a:06:65:55:5e:b2:29:4e:de:ab:96:1a:e0:cc:
ec:45:a0:7a:47:d2:73:d6:91:df:63:a1:e2:96:ec:79:64:f7:
4c:7e:55:31:f1:06:2e:9b:86:39:f8:74:21:0b:73:3e:6b:07:
6a:c8:36:0b:1f:73:b2:a1:5c:75:2a:4e:5c:a7:a7:26:ad:c6:
2f:1d:63:ab:1f:b2:f3:bb:0b:90:c4:24:a5:73:1d:c6:34:da:
99:6e:14:73:02:25:9d:d8:ee:05:90:fc:f7:22:7a:29:cf:47:
d1:83:b4:fb:45:d7:3d:13:ae:1e:51:5b:49:95:09:18:c6:cd:
29:1d:a5:7c:dc:ae:cd:53:c6:f1:a8:ec:4f:48:19:cb:c7:50:
00:46:f1:e5:98:e2:52:22:7e:c7:01:22:a0:7a:d9:e9:2a:c7:
84:8a:77:c5:1f:cd:f4:e7:ba:64:04:91:1e:4e:07:b3:c1:79:
47:8e:14:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbhKFm49QYLzXfzF8CRsPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjQwMTAxMTQyOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzkyNTM5MTUwZmViMTZlZjQ5OTg3NmEwN2VjZDg5NjIxNjZhOWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIBUIBwenEDqjAUf1tvdv8QNW18T
/ufxMHb5q9XZSVReu7YyxJbRNFjYb20YmBVT1Uv4bRFVxGBKkMrJBt77BTSwIAs2
igbtrUpZCEEkyYXeIAdRPekxgoSsyBisWSgH6eHe3kC/RmmVZUL2Clik3IQHF/8f
cb5/38Eh6ACaZ/c7YN4H+Lq1tdCkYIrAZzs8pzlKPEupiU5x2FLvrW4Iug3GClHc
PkjlVKWd8Fe7UilxbTrxAxu9EH1eKUOAkjlV8l4ubNsYolG86YsecOFnZRzXkqgt
g5eWeUWFnhjPM9VclS6174wBan+iuLBqSDLXigq4+ixhuEOCd52vhnSljQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNySU5FQ/rFu9JmHagfs2JYhZqnKMB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvM0pKVGtWRC1zVzcwbVlkcUItellsaUZtcWNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1EUSMA0G
CSqGSIb3DQEBCwUAA4IBAQCR6LTT9QZO5ne2vQr50ixqwkkziD6NPv/kLanpIshw
tny8IxQrsGxiVXAmDJrcAMECxNW7ejcq+WQ6LKIgDIFuHsJMwY6oqwiqxeuxagZl
VV6yKU7eq5Ya4MzsRaB6R9Jz1pHfY6Hilux5ZPdMflUx8QYum4Y5+HQhC3M+awdq
yDYLH3OyoVx1Kk5cp6cmrcYvHWOrH7LzuwuQxCSlcx3GNNqZbhRzAiWd2O4FkPz3
Inopz0fRg7T7Rdc9E64eUVtJlQkYxs0pHaV83K7NU8bxqOxPSBnLx1AARvHlmOJS
In7HASKgetnpKseEinfFH83057pkBJEeTgezwXlHjhT9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:25 2024 by rpki-client on console-fra.rpki-client.org