Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/NaYiYEjDeyiR3Gi9AosHb3h_Meg.roa
File: NaYiYEjDeyiR3Gi9AosHb3h_Meg.roa (raw, json)
Hash identifier: D9tm1DKsXugKQ0gtN0SDe2zig7SppArDth4DLDHWr/c=
Subject key identifier: 35:A6:22:60:48:C3:7B:28:91:DC:68:BD:02:8B:07:6F:78:7F:31:E8
Certificate issuer: /CN=cf10ad912ef942aacb4d10add39903c6e9fbb03a
Certificate serial: 01856B2582E8E94E18CEDBCE490073E71DB3
Authority key identifier: CF:10:AD:91:2E:F9:42:AA:CB:4D:10:AD:D3:99:03:C6:E9:FB:B0:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxCtkS75QqrLTRCt05kDxun7sDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/NaYiYEjDeyiR3Gi9AosHb3h_Meg.roa
Signing time: Sun 01 Jan 2023 02:24:58 +0000
ROA not before: Sun 01 Jan 2023 02:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212598
IP address blocks: 5.42.202.0/24 maxlen: 24
194.31.64.0/24 maxlen: 24
194.31.59.0/24 maxlen: 24
194.31.79.0/24 maxlen: 24
194.31.87.0/24 maxlen: 24
2a0f:a440::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:25:82:e8:e9:4e:18:ce:db:ce:49:00:73:e7:1d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf10ad912ef942aacb4d10add39903c6e9fbb03a
Validity
Not Before: Jan 1 02:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35a6226048c37b2891dc68bd028b076f787f31e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b9:22:8f:2e:b7:b8:52:20:ec:33:c2:47:24:
a7:cb:80:76:4c:2a:24:3b:a9:b4:c1:f4:d9:1b:89:
b6:d1:5d:d4:47:82:04:fe:b4:0f:36:de:99:4e:d6:
97:67:db:73:9b:2b:37:d3:41:e0:a9:c7:36:e0:9f:
ca:29:40:4e:ee:8e:95:eb:69:ed:28:5a:ce:ef:05:
d9:80:58:90:bd:fe:dd:d0:a8:1e:3e:6c:2a:76:33:
45:b7:e2:0e:e4:77:cd:7a:4c:c7:0c:8a:82:59:ce:
69:04:f3:11:ab:43:4e:28:1f:64:e0:4c:e2:a7:59:
83:c8:5e:cc:be:62:f4:2c:58:03:50:a0:63:61:52:
0b:9e:2d:5f:9f:0a:45:91:2f:8c:c5:10:1c:2a:15:
7c:16:e3:8f:f2:cb:17:30:87:b0:33:0c:d4:da:10:
2d:1b:38:ea:01:08:21:51:49:93:82:94:46:ed:40:
b3:2d:24:b9:48:a8:28:8c:e4:4f:bf:ae:72:91:aa:
71:63:b2:aa:04:96:91:4a:1d:f5:69:cf:73:29:ae:
16:8e:6e:e6:70:55:aa:8c:4c:d3:f7:bf:2a:02:38:
28:48:ee:c1:4c:a8:d4:41:e1:10:9f:80:5e:ed:6d:
a5:d9:61:92:63:21:c4:f4:c6:f0:33:cd:81:d5:79:
e5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A6:22:60:48:C3:7B:28:91:DC:68:BD:02:8B:07:6F:78:7F:31:E8
X509v3 Authority Key Identifier:
keyid:CF:10:AD:91:2E:F9:42:AA:CB:4D:10:AD:D3:99:03:C6:E9:FB:B0:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxCtkS75QqrLTRCt05kDxun7sDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/NaYiYEjDeyiR3Gi9AosHb3h_Meg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/zxCtkS75QqrLTRCt05kDxun7sDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.202.0/24
194.31.59.0/24
194.31.64.0/24
194.31.79.0/24
194.31.87.0/24
IPv6:
2a0f:a440::/29
Signature Algorithm: sha256WithRSAEncryption
3d:77:f8:f3:c7:f4:c4:9a:2b:31:e6:94:99:31:f1:8c:f9:da:
41:cb:b8:f9:3b:83:10:95:59:31:44:db:fc:b7:16:fa:69:54:
b8:1e:20:22:08:09:eb:39:a0:ed:3a:40:12:b9:a8:8c:3a:27:
62:a9:30:6a:8a:84:06:31:95:f3:3f:62:c6:b0:97:fa:b1:af:
f9:ce:57:58:f9:0c:ad:8c:9c:97:9e:03:27:21:96:33:3e:54:
20:5a:c6:de:21:67:4c:eb:43:93:41:30:3d:98:3f:6d:01:f6:
a0:e7:5f:b4:e1:b1:9e:b9:96:62:a2:6c:4a:96:fb:71:56:14:
90:2d:1d:6d:96:28:d2:48:63:ba:ab:31:5f:ef:9d:d0:8f:44:
1b:0d:4a:d3:01:1d:2c:54:3b:62:b2:67:6f:04:41:c3:9d:63:
af:16:de:94:c6:d6:7f:9c:35:a1:e7:d6:51:f1:a9:4f:6b:11:
f3:bd:66:17:fc:0d:24:93:4b:a3:dc:40:2d:b1:f9:9a:35:9d:
23:66:bd:be:24:96:f4:24:ee:86:d0:30:30:e3:e4:9e:47:0d:
53:39:89:c2:85:1e:26:25:05:1a:b2:fe:ac:98:af:05:9f:c9:
69:82:27:e2:7b:72:04:7c:ab:5c:af:db:14:f1:05:c1:27:68:
12:7e:d3:f0
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAYVrJYLo6U4YztvOSQBz5x2zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmMTBhZDkxMmVmOTQyYWFjYjRkMTBhZGQzOTkwM2M2ZTlm
YmIwM2EwHhcNMjMwMTAxMDIyNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNWE2MjI2MDQ4YzM3YjI4OTFkYzY4YmQwMjhiMDc2Zjc4N2YzMWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7kijy63uFIg7DPCRySny4B2TCok
O6m0wfTZG4m20V3UR4IE/rQPNt6ZTtaXZ9tzmys300Hgqcc24J/KKUBO7o6V62nt
KFrO7wXZgFiQvf7d0KgePmwqdjNFt+IO5HfNekzHDIqCWc5pBPMRq0NOKB9k4Ezi
p1mDyF7MvmL0LFgDUKBjYVILni1fnwpFkS+MxRAcKhV8FuOP8ssXMIewMwzU2hAt
GzjqAQghUUmTgpRG7UCzLSS5SKgojORPv65ykapxY7KqBJaRSh31ac9zKa4Wjm7m
cFWqjEzT978qAjgoSO7BTKjUQeEQn4Be7W2l2WGSYyHE9MbwM82B1XnlowIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFDWmImBIw3sokdxovQKLB294fzHoMB8GA1UdIwQY
MBaAFM8QrZEu+UKqy00QrdOZA8bp+7A6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenhDdGtTNzVRcXJMVFJDdDA1a0R4dW43c0RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xNjFiNTItMjRmMi00NTM1LTgzODIt
ZTdmZTljNDc2NjBmLzEvTmFZaVlFakRleWlSM0dpOUFvc0hiM2hfTWVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8xNjFiNTItMjRmMi00NTM1LTgzODItZTdmZTljNDc2NjBm
LzEvenhDdGtTNzVRcXJMVFJDdDA1a0R4dW43c0RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQABSrKAwQA
wh87AwQAwh9AAwQAwh9PAwQAwh9XMA0EAgACMAcDBQMqD6RAMA0GCSqGSIb3DQEB
CwUAA4IBAQA9d/jzx/TEmisx5pSZMfGM+dpBy7j5O4MQlVkxRNv8txb6aVS4HiAi
CAnrOaDtOkASuaiMOidiqTBqioQGMZXzP2LGsJf6sa/5zldY+QytjJyXngMnIZYz
PlQgWsbeIWdM60OTQTA9mD9tAfag51+04bGeuZZiomxKlvtxVhSQLR1tlijSSGO6
qzFf753Qj0QbDUrTAR0sVDtismdvBEHDnWOvFt6UxtZ/nDWh59ZR8alPaxHzvWYX
/A0kk0uj3EAtsfmaNZ0jZr2+JJb0JO6G0DAw4+SeRw1TOYnChR4mJQUasv6smK8F
n8lpgifie3IEfKtcr9sU8QXBJ2gSftPw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:17 2024 by rpki-client on console-fra.rpki-client.org