Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/2BU2MLQY1ndN7JRwFki-pewGrEY.roa
File: 2BU2MLQY1ndN7JRwFki-pewGrEY.roa (raw, json)
Hash identifier: obFmi3RrSWjHUp81eoqDV3oeqk0OLwAMgMoiGFgcNWc=
Subject key identifier: D8:15:36:30:B4:18:D6:77:4D:EC:94:70:16:48:BE:A5:EC:06:AC:46
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018570029538F5F9ECD0570EAF0358D43764
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/2BU2MLQY1ndN7JRwFki-pewGrEY.roa
Signing time: Mon 02 Jan 2023 01:04:55 +0000
ROA not before: Mon 02 Jan 2023 01:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207617
IP address blocks: 78.135.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:95:38:f5:f9:ec:d0:57:0e:af:03:58:d4:37:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8153630b418d6774dec94701648bea5ec06ac46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:20:6b:95:31:dc:68:b6:49:0f:15:06:7b:54:
5b:57:89:da:4c:0e:a2:e1:8c:87:e9:7f:52:39:ee:
b5:3a:c5:f8:88:b4:1f:40:6b:5c:0a:7c:4d:2d:a4:
ed:de:c0:15:ea:dc:35:8f:92:6f:04:f0:5e:b4:aa:
28:63:cb:96:4a:bc:01:4e:d9:0a:fe:d1:a0:f3:b4:
21:3c:ff:0b:eb:2a:b5:f4:1b:fa:18:71:e3:15:19:
a4:5f:54:87:44:05:1c:6e:40:54:49:d2:b9:42:48:
74:6d:ea:6e:fb:82:ef:d3:45:d2:1e:ff:8a:2d:84:
8b:46:c6:ed:c7:5e:f4:d6:09:ef:12:1b:5f:c9:ef:
2e:7f:54:66:27:ed:47:2c:60:96:a6:26:20:7e:b8:
4d:57:25:12:87:7c:93:f0:26:40:79:4c:8d:a7:2e:
9c:2a:2b:05:d5:73:b5:29:ab:0e:08:85:18:fc:4f:
03:be:81:80:f3:a4:a7:92:27:5b:15:96:6c:e7:55:
47:ed:41:4c:f8:5d:7c:3d:a0:08:6a:73:8f:ab:87:
08:60:6f:8e:59:e6:af:96:1e:de:99:e7:63:a4:c5:
cf:b9:0d:9b:4e:9c:38:df:14:3b:d4:63:00:1f:8a:
28:43:be:cb:f5:3e:fd:fb:90:1a:51:7a:41:70:fb:
51:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:15:36:30:B4:18:D6:77:4D:EC:94:70:16:48:BE:A5:EC:06:AC:46
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/2BU2MLQY1ndN7JRwFki-pewGrEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.71.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:8d:a4:07:de:39:03:4e:5c:42:a8:15:17:ec:3b:f4:09:38:
23:99:ff:17:f2:0f:b3:fc:08:53:85:a1:1f:44:0c:2e:4c:14:
09:bc:b7:17:88:6d:45:fe:98:cb:ac:03:84:e9:ed:c8:f9:c2:
9d:cf:02:da:2c:58:cd:20:11:7c:27:ce:17:39:c6:ec:46:47:
12:8c:02:7f:d4:5c:c0:9a:f0:31:35:2c:61:77:4d:fb:9f:64:
7b:8d:c5:5b:61:78:eb:cb:e8:51:dd:b8:66:35:85:4e:f7:0e:
06:2c:1d:54:5f:b8:ca:67:09:f1:57:71:8a:eb:bf:d7:e9:2c:
1a:4a:a4:82:50:b2:9a:f4:ba:46:24:81:3f:38:2a:d3:82:be:
95:2b:ff:fc:d5:b9:66:05:09:4f:7d:85:ea:8b:3e:5c:4c:13:
d8:5e:c8:59:87:53:1f:ed:87:56:16:f3:4c:e3:9d:26:39:7e:
17:91:c8:1f:01:ae:9e:27:05:91:8f:0a:53:47:2f:57:08:8a:
92:31:ff:56:9d:b3:d6:82:e2:cc:be:1f:8c:e2:ba:94:35:19:
c6:21:c7:b7:cb:c2:09:6b:18:08:1f:86:14:07:c2:23:f8:74:
31:fa:de:db:04:e0:11:cc:20:fa:ea:a8:d6:91:38:5f:a9:5a:
fc:d6:cd:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwApU49fns0FcOrwNY1DdkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMwMTAyMDEwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODE1MzYzMGI0MThkNjc3NGRlYzk0NzAxNjQ4YmVhNWVjMDZhYzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yBrlTHcaLZJDxUGe1RbV4naTA6i
4YyH6X9SOe61OsX4iLQfQGtcCnxNLaTt3sAV6tw1j5JvBPBetKooY8uWSrwBTtkK
/tGg87QhPP8L6yq19Bv6GHHjFRmkX1SHRAUcbkBUSdK5Qkh0bepu+4Lv00XSHv+K
LYSLRsbtx1701gnvEhtfye8uf1RmJ+1HLGCWpiYgfrhNVyUSh3yT8CZAeUyNpy6c
KisF1XO1KasOCIUY/E8DvoGA86SnkidbFZZs51VH7UFM+F18PaAIanOPq4cIYG+O
Weavlh7emedjpMXPuQ2bTpw43xQ71GMAH4ooQ77L9T79+5AaUXpBcPtRnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNgVNjC0GNZ3TeyUcBZIvqXsBqxGMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvMkJVMk1MUVkxbmRON0pSd0ZraS1wZXdHckVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATodHMA0G
CSqGSIb3DQEBCwUAA4IBAQBujaQH3jkDTlxCqBUX7Dv0CTgjmf8X8g+z/AhThaEf
RAwuTBQJvLcXiG1F/pjLrAOE6e3I+cKdzwLaLFjNIBF8J84XOcbsRkcSjAJ/1FzA
mvAxNSxhd037n2R7jcVbYXjry+hR3bhmNYVO9w4GLB1UX7jKZwnxV3GK67/X6Swa
SqSCULKa9LpGJIE/OCrTgr6VK//81blmBQlPfYXqiz5cTBPYXshZh1Mf7YdWFvNM
450mOX4XkcgfAa6eJwWRjwpTRy9XCIqSMf9WnbPWguLMvh+M4rqUNRnGIce3y8IJ
axgIH4YUB8Ij+HQx+t7bBOARzCD66qjWkThfqVr81s24
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org