Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/9f58f2-7919-4bfc-8f73-e7073cfe134f/1/RS399fjM47uxP4KYxRcmvsrVTvI.roa
File: RS399fjM47uxP4KYxRcmvsrVTvI.roa (raw, json)
Hash identifier: D9qi3IWYgqU/DV7wlXT65tfBNiRwiLXvQQfWJN4iiWc=
Subject key identifier: 45:2D:FD:F5:F8:CC:E3:BB:B1:3F:82:98:C5:17:26:BE:CA:D5:4E:F2
Certificate issuer: /CN=4eaefc49e6cd67e25996a2c0fc57b80cc23dba44
Certificate serial: 01856F26CA4930DA4E9E5C53F0C3D6B0D4EC
Authority key identifier: 4E:AE:FC:49:E6:CD:67:E2:59:96:A2:C0:FC:57:B8:0C:C2:3D:BA:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tq78SebNZ-JZlqLA_Fe4DMI9ukQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/9f58f2-7919-4bfc-8f73-e7073cfe134f/1/RS399fjM47uxP4KYxRcmvsrVTvI.roa
Signing time: Sun 01 Jan 2023 21:04:51 +0000
ROA not before: Sun 01 Jan 2023 21:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 141.41.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:ca:49:30:da:4e:9e:5c:53:f0:c3:d6:b0:d4:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eaefc49e6cd67e25996a2c0fc57b80cc23dba44
Validity
Not Before: Jan 1 21:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=452dfdf5f8cce3bbb13f8298c51726becad54ef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:29:12:cb:5e:ca:ee:4b:e1:70:13:87:53:b1:
85:d8:17:59:c4:de:ff:7e:bf:bb:ac:72:74:7f:27:
c9:20:8a:83:a6:63:bc:a1:61:d2:95:9e:e8:3e:fe:
03:07:72:23:e6:2b:3e:80:75:96:4a:0e:49:06:c6:
00:87:87:4f:fa:06:b2:dd:c8:bf:f2:82:48:fc:f5:
47:25:4e:d5:90:d1:7e:26:e9:b9:e9:c6:50:4e:5f:
55:6f:43:1c:07:e7:06:19:c1:43:25:68:b5:25:33:
32:6e:d2:77:f8:26:d0:94:d9:a6:76:0b:5d:47:c1:
56:5c:6e:ef:b9:f8:67:9d:c6:ed:2e:86:b1:fe:02:
17:9a:8f:f0:7d:ec:20:7e:95:10:ea:9a:b0:56:c1:
d0:e5:40:74:32:6f:76:01:97:c3:1a:ff:a1:34:85:
98:f3:fb:b3:82:55:14:63:7f:24:2a:77:10:83:50:
6d:cd:b4:a4:84:36:c1:9d:52:bb:4a:13:13:3e:62:
35:28:8b:18:86:96:24:a3:02:48:ba:9a:13:62:8c:
66:ba:4f:0d:08:ef:ee:e0:cc:de:d6:53:e9:f3:cf:
52:f3:51:ff:9c:3e:76:a8:1f:43:00:da:95:68:95:
08:67:77:9d:22:53:70:2d:7e:79:b6:47:cd:37:af:
f7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:2D:FD:F5:F8:CC:E3:BB:B1:3F:82:98:C5:17:26:BE:CA:D5:4E:F2
X509v3 Authority Key Identifier:
keyid:4E:AE:FC:49:E6:CD:67:E2:59:96:A2:C0:FC:57:B8:0C:C2:3D:BA:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tq78SebNZ-JZlqLA_Fe4DMI9ukQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9f58f2-7919-4bfc-8f73-e7073cfe134f/1/RS399fjM47uxP4KYxRcmvsrVTvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9f58f2-7919-4bfc-8f73-e7073cfe134f/1/Tq78SebNZ-JZlqLA_Fe4DMI9ukQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.41.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7a:81:3f:8b:c8:b6:ad:d6:ce:df:f3:5f:b8:32:d9:e1:91:f2:
ee:89:13:a6:b6:2a:91:02:a2:6b:5e:fd:8e:7b:19:6f:13:3f:
8a:c4:a7:48:3c:86:45:68:da:86:4a:3a:b0:09:83:76:c6:35:
a0:d2:8f:f0:22:ea:62:21:f4:1c:23:d9:f7:c5:9c:91:1a:92:
13:7b:8f:d4:d4:3b:53:ca:3b:03:8e:31:20:72:9c:f5:a1:ae:
3d:cf:73:d0:92:b3:52:67:58:41:c5:65:c0:c0:54:90:b4:a3:
f3:a0:93:9c:98:92:05:d5:e4:3e:cd:1c:95:60:9b:a5:0f:88:
68:8a:38:15:b8:96:ea:78:a2:fd:67:2e:7a:b6:6d:7f:91:cd:
7f:31:81:1f:8c:a7:34:24:79:82:70:bd:92:f6:d1:7c:32:16:
79:52:b6:b1:e3:7e:f4:60:f8:c8:f8:a0:1a:4f:f4:45:0f:3d:
5b:9e:5b:3d:10:53:c4:7e:7c:bb:bf:9c:ca:d9:46:54:49:a2:
04:33:89:09:8e:ff:45:aa:0f:67:4d:a0:bc:ae:32:ee:68:b0:
7f:bf:fc:d3:e5:0f:34:da:9f:d0:b7:77:5c:2a:af:dd:9a:ba:
b8:7f:8b:67:8f:99:8b:4d:0f:ae:30:2c:29:e3:02:51:49:7d:
62:e7:95:14
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVvJspJMNpOnlxT8MPWsNTsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlYWVmYzQ5ZTZjZDY3ZTI1OTk2YTJjMGZjNTdiODBjYzIz
ZGJhNDQwHhcNMjMwMTAxMjEwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTJkZmRmNWY4Y2NlM2JiYjEzZjgyOThjNTE3MjZiZWNhZDU0ZWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlCkSy17K7kvhcBOHU7GF2BdZxN7/
fr+7rHJ0fyfJIIqDpmO8oWHSlZ7oPv4DB3Ij5is+gHWWSg5JBsYAh4dP+gay3ci/
8oJI/PVHJU7VkNF+Jum56cZQTl9Vb0McB+cGGcFDJWi1JTMybtJ3+CbQlNmmdgtd
R8FWXG7vufhnncbtLoax/gIXmo/wfewgfpUQ6pqwVsHQ5UB0Mm92AZfDGv+hNIWY
8/uzglUUY38kKncQg1BtzbSkhDbBnVK7ShMTPmI1KIsYhpYkowJIupoTYoxmuk8N
CO/u4Mze1lPp889S81H/nD52qB9DANqVaJUIZ3edIlNwLX55tkfNN6/3YwIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFEUt/fX4zOO7sT+CmMUXJr7K1U7yMB8GA1UdIwQY
MBaAFE6u/EnmzWfiWZaiwPxXuAzCPbpEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHE3OFNlYk5aLUpabHFMQV9GZTRETUk5dWtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi85ZjU4ZjItNzkxOS00YmZjLThmNzMt
ZTcwNzNjZmUxMzRmLzEvUlMzOTlmak00N3V4UDRLWXhSY212c3JWVHZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi85ZjU4ZjItNzkxOS00YmZjLThmNzMtZTcwNzNjZmUxMzRm
LzEvVHE3OFNlYk5aLUpabHFMQV9GZTRETUk5dWtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjSkwDQYJ
KoZIhvcNAQELBQADggEBAHqBP4vItq3Wzt/zX7gy2eGR8u6JE6a2KpEComte/Y57
GW8TP4rEp0g8hkVo2oZKOrAJg3bGNaDSj/Ai6mIh9Bwj2ffFnJEakhN7j9TUO1PK
OwOOMSBynPWhrj3Pc9CSs1JnWEHFZcDAVJC0o/Ogk5yYkgXV5D7NHJVgm6UPiGiK
OBW4lup4ov1nLnq2bX+RzX8xgR+MpzQkeYJwvZL20XwyFnlStrHjfvRg+Mj4oBpP
9EUPPVueWz0QU8R+fLu/nMrZRlRJogQziQmO/0WqD2dNoLyuMu5osH+//NPlDzTa
n9C3d1wqr92aurh/i2ePmYtND64wLCnjAlFJfWLnlRQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:09 2024 by rpki-client on console-fra.rpki-client.org