Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tmvqzh8SISydyk6Z2rGrErtXH1E.roa
File: tmvqzh8SISydyk6Z2rGrErtXH1E.roa (raw, json)
Hash identifier: QxbebtBPlmNraFRM+hIoHFjU7aiN0fbMyKSWO7EoMPw=
Subject key identifier: B6:6B:EA:CE:1F:12:21:2C:9D:CA:4E:99:DA:B1:AB:12:BB:57:1F:51
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01886CBED39891090CD6269ADC97F4B6372C
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tmvqzh8SISydyk6Z2rGrErtXH1E.roa
Signing time: Tue 30 May 2023 13:00:25 +0000
ROA not before: Tue 30 May 2023 13:00:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60446
IP address blocks: 78.135.76.0/24 maxlen: 24
78.135.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6c:be:d3:98:91:09:0c:d6:26:9a:dc:97:f4:b6:37:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: May 30 13:00:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b66beace1f12212c9dca4e99dab1ab12bb571f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ce:b5:4a:15:87:42:98:06:d9:40:ba:1a:b2:
19:5d:c2:1e:ec:b8:fb:e9:5c:f9:92:dc:3c:f0:a6:
a6:0b:4d:ea:28:9f:ea:9b:c6:4c:df:68:8b:d8:73:
8d:c4:62:47:eb:39:ca:36:f1:63:8f:ce:64:90:0a:
7f:a9:ad:d7:42:12:bb:01:e6:2d:9a:c4:f5:40:6f:
60:a0:4c:98:49:d6:fd:92:2e:d3:3c:2b:c5:c8:43:
87:93:bb:bb:f9:c4:a5:46:b7:5b:2d:70:de:f0:a2:
98:33:43:50:48:da:29:8f:b4:31:48:82:2c:b8:59:
36:ff:b9:11:fd:2e:35:11:a2:fe:56:3d:a7:65:3e:
19:00:06:c4:8f:dc:d1:12:cb:fb:2a:f3:4d:e6:47:
d9:4d:42:e1:7d:fc:44:3c:3e:ef:6e:15:a5:7e:25:
49:49:32:5f:bb:35:1c:da:d8:fe:05:5a:0b:52:77:
33:11:ef:1e:fb:38:22:42:be:af:46:dc:47:e8:d0:
88:98:6b:2a:b0:0c:fa:25:2e:df:a2:65:82:df:46:
ea:fb:c0:1e:c4:eb:f5:54:0d:9e:6f:5f:a6:b2:8b:
1f:ae:ab:04:06:f4:d3:a5:da:d9:86:8b:61:51:99:
9b:ab:8a:39:26:28:5f:f9:03:f2:aa:15:d5:2c:6a:
24:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6B:EA:CE:1F:12:21:2C:9D:CA:4E:99:DA:B1:AB:12:BB:57:1F:51
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tmvqzh8SISydyk6Z2rGrErtXH1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.75.0-78.135.76.255
Signature Algorithm: sha256WithRSAEncryption
3c:35:38:e1:13:ab:1b:c0:2f:65:68:4d:54:62:db:6e:cb:a0:
55:a9:4f:d4:b6:99:da:ec:e7:97:7c:5f:8b:52:89:fa:42:6a:
7c:6a:84:df:f8:36:be:74:c0:32:a2:3a:18:7b:47:f6:45:15:
f4:39:bf:c2:06:34:17:2c:02:17:13:36:ea:b2:ab:24:ce:11:
e6:e3:7c:73:15:99:00:83:bf:d9:b9:7f:f8:2d:a8:d8:8e:d4:
b7:8b:42:18:e7:f3:c2:37:1e:e4:68:4a:d9:fd:e7:70:aa:74:
16:f6:a1:22:e6:46:16:ce:89:8a:e2:6e:82:51:bc:bb:0c:03:
a4:20:e5:78:bc:8d:65:47:f6:24:5f:da:7d:2f:66:c4:fa:1a:
aa:ac:73:e4:f5:64:fb:57:a4:41:69:b4:be:94:15:2c:db:c0:
03:f6:fd:43:b6:6b:5e:5d:c9:bd:47:97:f0:40:43:13:a0:4f:
2c:9e:b6:22:4e:4e:b5:f0:dd:c1:fa:c6:60:d1:60:1d:83:f5:
25:67:1b:38:3b:39:90:d1:3c:53:57:de:bf:fd:f2:f8:d2:a8:
ec:ed:98:a0:c5:a2:56:a7:34:f1:73:db:6f:a0:50:bc:67:f4:
9d:f1:d0:6b:10:79:37:b6:bb:39:d8:a8:9a:5d:d9:91:f6:a9:
4b:a2:92:95
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYhsvtOYkQkM1iaa3Jf0tjcsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMwNTMwMTMwMDI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjZiZWFjZTFmMTIyMTJjOWRjYTRlOTlkYWIxYWIxMmJiNTcxZjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv861ShWHQpgG2UC6GrIZXcIe7Lj7
6Vz5ktw88KamC03qKJ/qm8ZM32iL2HONxGJH6znKNvFjj85kkAp/qa3XQhK7AeYt
msT1QG9goEyYSdb9ki7TPCvFyEOHk7u7+cSlRrdbLXDe8KKYM0NQSNopj7QxSIIs
uFk2/7kR/S41EaL+Vj2nZT4ZAAbEj9zREsv7KvNN5kfZTULhffxEPD7vbhWlfiVJ
STJfuzUc2tj+BVoLUnczEe8e+zgiQr6vRtxH6NCImGsqsAz6JS7fomWC30bq+8Ae
xOv1VA2eb1+msosfrqsEBvTTpdrZhothUZmbq4o5Jihf+QPyqhXVLGokwwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFLZr6s4fEiEsncpOmdqxqxK7Vx9RMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvdG12cXpoOFNJU3lkeWs2WjJyR3JFcnRYSDFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBABOh0sD
BABOh0wwDQYJKoZIhvcNAQELBQADggEBADw1OOETqxvAL2VoTVRi227LoFWpT9S2
mdrs55d8X4tSifpCanxqhN/4Nr50wDKiOhh7R/ZFFfQ5v8IGNBcsAhcTNuqyqyTO
EebjfHMVmQCDv9m5f/gtqNiO1LeLQhjn88I3HuRoStn953CqdBb2oSLmRhbOiYri
boJRvLsMA6Qg5Xi8jWVH9iRf2n0vZsT6Gqqsc+T1ZPtXpEFptL6UFSzbwAP2/UO2
a15dyb1Hl/BAQxOgTyyetiJOTrXw3cH6xmDRYB2D9SVnGzg7OZDRPFNX3r/98vjS
qOztmKDFolanNPFz22+gULxn9J3x0GsQeTe2uznYqJpd2ZH2qUuikpU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org