Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/T4hNkK2ti6t1YWstTcrIhtZjg5M.roa
File: T4hNkK2ti6t1YWstTcrIhtZjg5M.roa (raw, json)
Hash identifier: /ZZrs1SrEBeBD5Hu326YZBephsAZ2m+K5eQwFWLlFEU=
Subject key identifier: 4F:88:4D:90:AD:AD:8B:AB:75:61:6B:2D:4D:CA:C8:86:D6:63:83:93
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 01871A994DA650E759E524BBE00AECC61057
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/T4hNkK2ti6t1YWstTcrIhtZjg5M.roa
Signing time: Sat 25 Mar 2023 21:07:47 +0000
ROA not before: Sat 25 Mar 2023 21:07:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29713
IP address blocks: 185.240.87.0/24 maxlen: 24
80.76.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:1a:99:4d:a6:50:e7:59:e5:24:bb:e0:0a:ec:c6:10:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Mar 25 21:07:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f884d90adad8bab75616b2d4dcac886d6638393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:df:63:9d:49:a2:78:30:df:c4:c9:65:77:35:
3d:d6:10:bc:c5:7f:4f:03:2d:e1:c9:15:22:49:d7:
14:b3:f4:d1:68:4e:4e:7e:f7:c3:f9:b8:b3:d1:71:
49:52:ab:97:13:d6:ae:c7:d5:67:f6:20:5d:11:78:
e9:d6:ba:93:2c:ff:5f:71:f8:f1:db:97:71:2c:3c:
5f:66:34:2e:ca:3e:9b:51:b2:d4:af:2e:56:86:01:
bd:b3:f4:82:9e:87:a2:3d:60:67:72:22:77:13:b6:
10:9d:66:71:33:36:07:02:b7:47:07:d7:3d:38:74:
a1:a3:ed:ed:bd:6f:a3:3b:4b:42:6b:20:54:18:5c:
52:f8:21:c0:bd:d5:7f:f8:95:32:b2:1f:95:bc:83:
9d:58:b9:de:14:2e:d4:a1:3a:27:1a:04:0a:af:aa:
9a:d6:47:7d:ea:b3:73:9f:df:cb:00:5f:b0:c6:67:
82:a4:26:48:ac:eb:92:05:af:48:a8:e3:4b:27:e4:
f9:c5:3e:f7:22:14:9b:40:d3:c0:7a:10:d4:6b:a0:
08:08:2c:9b:76:f9:f2:3a:35:6e:d1:36:86:15:80:
96:2f:21:f4:35:56:e1:61:0b:3b:2b:30:10:db:5a:
2b:c9:dc:2a:ba:64:ad:24:59:db:7f:f7:99:60:07:
43:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:88:4D:90:AD:AD:8B:AB:75:61:6B:2D:4D:CA:C8:86:D6:63:83:93
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/T4hNkK2ti6t1YWstTcrIhtZjg5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.44.0/24
185.240.87.0/24
Signature Algorithm: sha256WithRSAEncryption
09:07:85:f4:35:7f:e5:dc:4f:54:f8:74:6d:ea:16:26:5b:a6:
e1:76:a2:84:de:e3:dc:04:7b:6e:f3:94:93:29:b7:7b:f6:1c:
fc:ee:1a:27:ba:28:01:c2:ef:82:46:36:7d:1a:82:5d:f6:a5:
55:94:b8:bd:cf:bb:ee:c0:53:dd:32:4b:8a:82:b0:b1:17:58:
09:01:a8:2d:7d:bb:83:60:6b:e6:d3:c5:07:9b:04:b1:28:62:
6b:f8:9d:eb:fe:f0:ba:b2:06:98:61:a4:74:62:47:9c:52:ae:
01:91:4c:5a:a7:b4:d5:7e:dc:f4:31:82:db:ba:76:05:49:47:
95:3e:df:95:98:f3:e9:9d:2d:ce:cf:89:8b:00:ae:dc:30:97:
1d:70:b4:9b:8b:d3:15:7e:a7:47:1c:5b:88:fe:8d:bf:72:fd:
0b:93:e8:82:1d:e2:fa:35:83:ca:92:91:5c:ab:4e:87:66:77:
29:d7:b5:9e:74:71:18:96:11:71:ed:1d:73:5b:16:2c:70:d9:
fc:bf:61:a2:f4:0b:53:c2:66:0a:e7:93:3f:c4:d6:73:c9:8d:
d3:78:62:5c:20:f9:72:79:0e:bd:76:3c:62:a8:b4:31:3f:27:
77:4f:26:0f:51:9e:91:1d:d2:3b:89:3c:11:df:78:9e:24:b1:
5f:6d:38:02
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYcamU2mUOdZ5SS74ArsxhBXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYzJiODM0ZmJjOTFhZjBlYzZiMWQzNGZkNjQwNTRkMjI2
OWExZmQwHhcNMjMwMzI1MjEwNzQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Zjg4NGQ5MGFkYWQ4YmFiNzU2MTZiMmQ0ZGNhYzg4NmQ2NjM4MzkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj99jnUmieDDfxMlldzU91hC8xX9P
Ay3hyRUiSdcUs/TRaE5OfvfD+biz0XFJUquXE9aux9Vn9iBdEXjp1rqTLP9fcfjx
25dxLDxfZjQuyj6bUbLUry5WhgG9s/SCnoeiPWBnciJ3E7YQnWZxMzYHArdHB9c9
OHSho+3tvW+jO0tCayBUGFxS+CHAvdV/+JUysh+VvIOdWLneFC7UoTonGgQKr6qa
1kd96rNzn9/LAF+wxmeCpCZIrOuSBa9IqONLJ+T5xT73IhSbQNPAehDUa6AICCyb
dvnyOjVu0TaGFYCWLyH0NVbhYQs7KzAQ21orydwqumStJFnbf/eZYAdDAQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFE+ITZCtrYurdWFrLU3KyIbWY4OTMB8GA1UdIwQY
MBaAFOLCuDT7yRrw7GsdNP1kBU0iaaH9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2Et
OTk0ODA2ZjA4MWYwLzEvVDRoTmtLMnRpNnQxWVdzdFRjcklodFpqZzVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2EtOTk0ODA2ZjA4MWYw
LzEvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUEwsAwQA
ufBXMA0GCSqGSIb3DQEBCwUAA4IBAQAJB4X0NX/l3E9U+HRt6hYmW6bhdqKE3uPc
BHtu85STKbd79hz87honuigBwu+CRjZ9GoJd9qVVlLi9z7vuwFPdMkuKgrCxF1gJ
AagtfbuDYGvm08UHmwSxKGJr+J3r/vC6sgaYYaR0YkecUq4BkUxap7TVftz0MYLb
unYFSUeVPt+VmPPpnS3Oz4mLAK7cMJcdcLSbi9MVfqdHHFuI/o2/cv0Lk+iCHeL6
NYPKkpFcq06HZncp17WedHEYlhFx7R1zWxYscNn8v2Gi9AtTwmYK55M/xNZzyY3T
eGJcIPlyeQ69djxiqLQxPyd3TyYPUZ6RHdI7iTwR33ieJLFfbTgC
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:20 2024 by rpki-client on console-ams.rpki-client.org