Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/75xBMsPnmD53UTofTrs0B9px8hk.roa
File: 75xBMsPnmD53UTofTrs0B9px8hk.roa (raw, json)
Hash identifier: nH187EpJfQktla+NGMQLTbB3NKbYQL2XhP7uVX9DlnA=
Subject key identifier: EF:9C:41:32:C3:E7:98:3E:77:51:3A:1F:4E:BB:34:07:DA:71:F2:19
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 018705E32FF9EE312B1D9EED5813F13B5D77
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/75xBMsPnmD53UTofTrs0B9px8hk.roa
Signing time: Tue 21 Mar 2023 20:36:27 +0000
ROA not before: Tue 21 Mar 2023 20:36:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 178.20.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Jun 2023 17:37:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:e3:2f:f9:ee:31:2b:1d:9e:ed:58:13:f1:3b:5d:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Mar 21 20:36:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef9c4132c3e7983e77513a1f4ebb3407da71f219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:57:50:0e:e4:cd:1c:f9:a3:23:0c:fb:e6:d0:
98:e4:68:7a:77:cd:c8:8e:05:cd:67:ac:44:07:cc:
cc:a5:e8:69:11:09:98:1c:8d:6c:eb:51:8c:e4:00:
5c:53:69:24:71:29:dc:b7:08:74:f8:92:74:7b:e4:
e5:5a:55:5d:bc:c7:54:71:ec:5d:fa:bb:f7:7e:96:
7b:22:a8:71:b6:73:d2:e8:4c:f5:02:8d:50:94:a1:
a9:33:ea:b7:d6:ff:76:fc:90:2b:5d:91:5b:5c:6d:
4e:0c:0c:82:ca:74:bd:b9:4f:11:49:a9:9b:0d:eb:
e4:98:5e:6c:aa:88:de:d5:c9:60:d2:8a:b6:a1:04:
23:a0:ac:a8:1c:5e:65:7e:1d:be:45:96:c2:f7:e3:
c8:f1:5d:ae:68:af:7b:cb:33:86:29:67:99:5b:ef:
b0:82:90:cc:16:a2:72:d9:ae:cf:9a:4c:ee:84:6b:
61:12:37:c1:07:9e:96:e6:1d:3f:14:38:a4:c0:22:
2c:9a:32:06:7a:c6:3f:70:8c:61:3f:33:86:c7:b6:
e0:34:58:52:06:40:23:6b:de:dd:62:7b:e2:25:45:
45:3f:69:1d:cd:4f:e1:bd:b1:f8:4a:49:7f:d4:a3:
ab:19:a8:b6:4b:99:82:58:c7:84:4e:64:2c:9d:5a:
37:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:9C:41:32:C3:E7:98:3E:77:51:3A:1F:4E:BB:34:07:DA:71:F2:19
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/75xBMsPnmD53UTofTrs0B9px8hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.20.28.0/22
Signature Algorithm: sha256WithRSAEncryption
03:3b:f3:6f:ad:20:61:06:ae:23:a0:14:71:32:d5:f5:59:5a:
6e:e2:4a:28:61:ac:4e:67:52:dd:88:06:71:94:67:af:5a:aa:
43:6b:8e:41:ef:74:3e:d0:33:5e:26:67:d1:ff:fd:4f:52:fc:
05:c0:07:d4:fd:59:ba:43:ce:c0:f2:74:7c:a2:70:d8:b1:07:
5c:ce:89:55:96:67:de:b9:26:4e:46:e5:9b:88:51:c3:2a:d1:
ef:2c:be:9b:80:e9:c5:56:2f:1e:64:2a:35:4a:ed:f0:ae:0a:
b2:07:5a:2b:5a:da:c2:3e:0f:f1:2f:29:5d:1b:61:66:16:3a:
10:df:54:ef:05:ac:b3:b6:c2:d2:c7:a1:42:5c:ba:e8:3c:e2:
d0:bc:b6:03:88:f7:53:9b:d4:33:39:67:b4:23:ac:7e:e8:4d:
62:9d:f7:0b:e1:02:aa:3b:dc:02:45:52:2d:4a:69:d8:9a:98:
a3:d6:a1:d2:53:60:2f:c4:81:ef:7a:6b:ac:3e:92:a4:bd:7c:
98:d7:f5:57:5f:f9:d6:30:9d:00:b8:19:fb:5c:a0:78:c9:29:
4b:63:8b:d0:b6:a0:94:de:23:c5:e4:f7:dd:a2:70:93:40:52:
d1:1a:77:8d:f9:cf:e5:96:74:52:ba:7e:2d:fb:96:eb:78:99:
ca:4d:82:37
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcF4y/57jErHZ7tWBPxO113MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYzJiODM0ZmJjOTFhZjBlYzZiMWQzNGZkNjQwNTRkMjI2
OWExZmQwHhcNMjMwMzIxMjAzNjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjljNDEzMmMzZTc5ODNlNzc1MTNhMWY0ZWJiMzQwN2RhNzFmMjE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg1dQDuTNHPmjIwz75tCY5Gh6d83I
jgXNZ6xEB8zMpehpEQmYHI1s61GM5ABcU2kkcSnctwh0+JJ0e+TlWlVdvMdUcexd
+rv3fpZ7IqhxtnPS6Ez1Ao1QlKGpM+q31v92/JArXZFbXG1ODAyCynS9uU8RSamb
DevkmF5sqoje1clg0oq2oQQjoKyoHF5lfh2+RZbC9+PI8V2uaK97yzOGKWeZW++w
gpDMFqJy2a7PmkzuhGthEjfBB56W5h0/FDikwCIsmjIGesY/cIxhPzOGx7bgNFhS
BkAja97dYnviJUVFP2kdzU/hvbH4Skl/1KOrGai2S5mCWMeETmQsnVo3ZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO+cQTLD55g+d1E6H067NAfacfIZMB8GA1UdIwQY
MBaAFOLCuDT7yRrw7GsdNP1kBU0iaaH9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2Et
OTk0ODA2ZjA4MWYwLzEvNzV4Qk1zUG5tRDUzVVRvZlRyczBCOXB4OGhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2EtOTk0ODA2ZjA4MWYw
LzEvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCshQcMA0G
CSqGSIb3DQEBCwUAA4IBAQADO/NvrSBhBq4joBRxMtX1WVpu4kooYaxOZ1LdiAZx
lGevWqpDa45B73Q+0DNeJmfR//1PUvwFwAfU/Vm6Q87A8nR8onDYsQdczolVlmfe
uSZORuWbiFHDKtHvLL6bgOnFVi8eZCo1Su3wrgqyB1orWtrCPg/xLyldG2FmFjoQ
31TvBayztsLSx6FCXLroPOLQvLYDiPdTm9QzOWe0I6x+6E1infcL4QKqO9wCRVIt
SmnYmpij1qHSU2AvxIHvemusPpKkvXyY1/VXX/nWMJ0AuBn7XKB4ySlLY4vQtqCU
3iPF5PfdonCTQFLRGneN+c/llnRSun4t+5breJnKTYI3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:20 2024 by rpki-client on console-ams.rpki-client.org