Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/CPKHrA6NC4z6ak0OqBt7GjkcWGg.roa
File: CPKHrA6NC4z6ak0OqBt7GjkcWGg.roa (raw, json)
Hash identifier: 2OtwPXGW7N8fQ0saObJUBgxEbSUbYZaROKaqg8AAhvI=
Subject key identifier: 08:F2:87:AC:0E:8D:0B:8C:FA:6A:4D:0E:A8:1B:7B:1A:39:1C:58:68
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01857002863C905B22329335AB7844A88CED
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/CPKHrA6NC4z6ak0OqBt7GjkcWGg.roa
Signing time: Mon 02 Jan 2023 01:04:51 +0000
ROA not before: Mon 02 Jan 2023 01:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44620
IP address blocks: 77.92.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 12:15:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:86:3c:90:5b:22:32:93:35:ab:78:44:a8:8c:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08f287ac0e8d0b8cfa6a4d0ea81b7b1a391c5868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2e:f4:f1:9e:39:c4:1a:9c:52:fe:3d:04:cf:
e8:f9:0c:14:27:8c:73:56:50:fc:31:5a:d4:e4:47:
d9:18:e7:c3:4f:e0:c9:14:51:f1:fc:db:6d:72:33:
50:06:59:66:ac:23:24:5c:c8:51:a3:2f:ae:08:04:
1b:40:de:6b:a4:35:01:1f:be:99:3c:33:a1:00:b8:
51:65:ba:0a:cb:43:6c:e0:eb:de:82:59:ed:73:f2:
35:a5:b6:37:c5:79:b3:81:de:e9:55:8e:22:c5:6a:
6f:c8:65:8b:97:5c:d9:fc:27:f0:eb:0f:ac:82:de:
8c:73:79:79:c8:f0:77:29:2a:17:be:46:12:61:6c:
66:0e:84:8d:5f:fb:92:c1:f3:1c:71:c5:91:2d:46:
2c:50:9a:86:22:fa:c3:a7:42:77:ec:b8:29:96:1d:
46:86:97:09:bb:4a:3e:b5:8b:02:8c:91:2e:24:be:
77:98:6e:cb:a5:89:28:83:02:7a:f8:53:9e:80:71:
e2:39:60:40:97:e2:92:37:ce:2e:f8:6d:db:aa:a2:
98:b2:a4:31:55:f8:50:21:00:d5:17:bf:1e:6e:c5:
6f:9d:6c:5f:14:84:29:25:14:10:54:73:8c:ea:15:
dc:80:bd:90:59:c3:9f:74:3b:b7:5c:47:60:79:42:
3f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F2:87:AC:0E:8D:0B:8C:FA:6A:4D:0E:A8:1B:7B:1A:39:1C:58:68
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/CPKHrA6NC4z6ak0OqBt7GjkcWGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.151.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:eb:24:a3:93:6d:4b:f8:f3:a2:93:77:31:fa:e8:26:34:c6:
e8:02:90:2e:18:00:d3:6c:c3:e9:fb:61:67:ee:61:56:41:d0:
69:6e:5a:1e:28:22:1b:67:5a:21:4f:38:94:78:4b:0a:60:2a:
1e:50:20:fa:bd:53:e7:87:4b:1a:f1:8d:aa:d5:60:d0:77:d2:
66:4b:e4:3e:c0:cf:e6:80:bf:9f:c7:bf:31:08:c2:95:fd:3c:
3c:6e:bd:1d:77:fc:5f:ca:62:a5:aa:7e:ee:b0:74:16:72:7f:
1c:12:cc:c0:30:30:00:fc:2f:09:58:27:ca:7f:9a:8f:ee:a7:
ab:9d:e6:9c:10:ac:ea:68:99:c2:e6:6f:21:86:61:25:75:3c:
ae:47:93:5d:ff:c9:8a:63:41:90:60:ae:4e:5f:28:57:93:36:
f0:13:e3:b0:89:f1:22:b0:cb:d4:5a:74:3a:e6:9e:37:26:63:
32:68:dd:60:8f:23:74:e9:d4:ab:5d:36:d0:c5:7a:1a:e3:2b:
65:ca:44:ee:2b:b1:59:d4:bd:40:19:fd:ba:8f:7c:33:a8:83:
63:a1:e0:bc:85:19:31:cf:37:d1:c5:c2:0e:fb:77:11:da:ff:
9c:f0:8b:98:37:d9:96:eb:9f:44:66:fa:b0:2e:0e:12:fd:5f:
d8:1e:62:6d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwAoY8kFsiMpM1q3hEqIztMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMwMTAyMDEwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOGYyODdhYzBlOGQwYjhjZmE2YTRkMGVhODFiN2IxYTM5MWM1ODY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyS708Z45xBqcUv49BM/o+QwUJ4xz
VlD8MVrU5EfZGOfDT+DJFFHx/NttcjNQBllmrCMkXMhRoy+uCAQbQN5rpDUBH76Z
PDOhALhRZboKy0Ns4Oveglntc/I1pbY3xXmzgd7pVY4ixWpvyGWLl1zZ/Cfw6w+s
gt6Mc3l5yPB3KSoXvkYSYWxmDoSNX/uSwfMcccWRLUYsUJqGIvrDp0J37Lgplh1G
hpcJu0o+tYsCjJEuJL53mG7LpYkogwJ6+FOegHHiOWBAl+KSN84u+G3bqqKYsqQx
VfhQIQDVF78ebsVvnWxfFIQpJRQQVHOM6hXcgL2QWcOfdDu3XEdgeUI/KwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAjyh6wOjQuM+mpNDqgbexo5HFhoMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvQ1BLSHJBNk5DNHo2YWswT3FCdDdHamtjV0dnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVyXMA0G
CSqGSIb3DQEBCwUAA4IBAQA/6ySjk21L+POik3cx+ugmNMboApAuGADTbMPp+2Fn
7mFWQdBpbloeKCIbZ1ohTziUeEsKYCoeUCD6vVPnh0sa8Y2q1WDQd9JmS+Q+wM/m
gL+fx78xCMKV/Tw8br0dd/xfymKlqn7usHQWcn8cEszAMDAA/C8JWCfKf5qP7qer
neacEKzqaJnC5m8hhmEldTyuR5Nd/8mKY0GQYK5OXyhXkzbwE+OwifEisMvUWnQ6
5p43JmMyaN1gjyN06dSrXTbQxXoa4ytlykTuK7FZ1L1AGf26j3wzqINjoeC8hRkx
zzfRxcIO+3cR2v+c8IuYN9mW659EZvqwLg4S/V/YHmJt
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org