Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/v64YROMqv2-NP3TTWXT05QCkdx0.roa
File: v64YROMqv2-NP3TTWXT05QCkdx0.roa (raw, json)
Hash identifier: GpqKT8FRjskUZolU6eAqUXCWCdyxzhPrbaiSyf+W6Dc=
Subject key identifier: BF:AE:18:44:E3:2A:BF:6F:8D:3F:74:D3:59:74:F4:E5:00:A4:77:1D
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018692D878E83FE1DD349AF37A42CEAEB7CC
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/v64YROMqv2-NP3TTWXT05QCkdx0.roa
Signing time: Mon 27 Feb 2023 12:28:25 +0000
ROA not before: Mon 27 Feb 2023 12:28:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210410
IP address blocks: 78.135.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:d8:78:e8:3f:e1:dd:34:9a:f3:7a:42:ce:ae:b7:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Feb 27 12:28:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfae1844e32abf6f8d3f74d35974f4e500a4771d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:01:70:c0:51:4a:6b:0b:0a:30:83:5c:7d:31:
c0:9e:67:ad:7d:3b:2c:fd:32:5b:6b:fc:83:e5:3a:
c3:63:f1:a8:c8:4d:60:f2:90:dc:18:1d:31:7f:92:
90:96:ee:4b:13:1d:01:89:29:b7:cd:e4:6b:28:1c:
a3:8c:3a:57:3b:71:fc:ff:ad:89:e9:60:79:83:f0:
a9:fa:b8:8b:53:c4:3b:98:9f:58:df:48:a1:e4:38:
3c:7b:a8:6e:bb:27:c6:da:31:e1:ad:26:78:a5:5f:
dd:4b:0a:9b:36:79:bf:20:50:db:7e:5a:3d:31:b4:
43:ef:81:c0:92:12:a3:8a:59:12:77:2a:2d:c4:f2:
43:8f:0d:ae:d4:51:25:54:83:ad:90:d2:49:ce:4e:
5b:35:e3:60:5d:4a:fe:44:72:ba:a1:54:ef:5c:c4:
f8:41:38:d4:e6:29:1b:87:bb:13:f3:b6:80:60:c1:
a7:b9:2d:92:cb:76:80:86:f3:7d:7e:d0:89:72:7a:
31:82:7a:17:1f:ed:e1:96:9b:e4:a1:ab:ca:39:ea:
9e:07:2e:cd:d9:3e:7b:5d:a8:eb:f8:97:ca:f7:e1:
ee:94:66:0c:27:12:d6:89:4c:b1:ff:14:88:81:b7:
8f:e0:db:d2:89:c9:eb:60:fe:6a:12:a5:19:1c:c1:
d2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AE:18:44:E3:2A:BF:6F:8D:3F:74:D3:59:74:F4:E5:00:A4:77:1D
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/v64YROMqv2-NP3TTWXT05QCkdx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.68.0/24
Signature Algorithm: sha256WithRSAEncryption
69:3a:76:f0:70:a2:3a:16:6e:91:5a:97:6b:ca:0e:ec:bb:42:
80:b9:8a:f0:39:81:7b:67:05:4a:d9:72:e6:e1:3e:f6:21:f3:
90:62:5e:9e:e4:e4:ed:a4:98:d3:eb:7b:75:48:0d:e7:f9:2a:
23:17:46:4f:91:c5:2c:a8:d1:7b:8a:a4:c8:4b:ed:33:ed:88:
6f:fa:67:9c:71:e9:73:c4:bb:69:8d:9c:91:6b:0b:8d:53:05:
8b:10:88:d6:b1:e1:bf:f4:17:3c:15:c9:e9:e9:a3:90:75:97:
c3:38:5b:86:a2:7a:f1:a5:4c:c2:2e:43:a1:ce:28:26:64:d2:
c6:a9:9e:8c:60:29:3b:26:70:82:5e:d2:f7:16:5c:7a:24:bf:
b8:ad:51:35:6b:40:e9:50:71:8d:1a:5a:ea:d9:6c:53:b4:44:
da:48:75:65:a3:42:fa:78:d3:d4:b7:d4:b0:9e:78:b4:66:e0:
a0:f0:84:1c:f0:94:a0:d1:ff:62:c8:fe:26:5e:d1:fc:84:3a:
44:c1:bb:69:c2:1f:8b:59:5f:b7:43:55:ba:8a:be:79:f4:2c:
29:a1:b8:96:1c:f0:fb:b5:9e:91:c9:36:2e:70:a5:88:e9:9e:
f9:87:ab:1d:8c:1f:c9:ff:28:57:31:e6:49:3a:03:44:4f:30:
44:2d:c2:0f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaS2HjoP+HdNJrzekLOrrfMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMwMjI3MTIyODI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmFlMTg0NGUzMmFiZjZmOGQzZjc0ZDM1OTc0ZjRlNTAwYTQ3NzFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwFwwFFKawsKMINcfTHAnmetfTss
/TJba/yD5TrDY/GoyE1g8pDcGB0xf5KQlu5LEx0BiSm3zeRrKByjjDpXO3H8/62J
6WB5g/Cp+riLU8Q7mJ9Y30ih5Dg8e6huuyfG2jHhrSZ4pV/dSwqbNnm/IFDbflo9
MbRD74HAkhKjilkSdyotxPJDjw2u1FElVIOtkNJJzk5bNeNgXUr+RHK6oVTvXMT4
QTjU5ikbh7sT87aAYMGnuS2Sy3aAhvN9ftCJcnoxgnoXH+3hlpvkoavKOeqeBy7N
2T57Xajr+JfK9+HulGYMJxLWiUyx/xSIgbeP4NvSicnrYP5qEqUZHMHSowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL+uGETjKr9vjT9001l09OUApHcdMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvdjY0WVJPTXF2Mi1OUDNUVFdYVDA1UUNrZHgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATodEMA0G
CSqGSIb3DQEBCwUAA4IBAQBpOnbwcKI6Fm6RWpdryg7su0KAuYrwOYF7ZwVK2XLm
4T72IfOQYl6e5OTtpJjT63t1SA3n+SojF0ZPkcUsqNF7iqTIS+0z7Yhv+meccelz
xLtpjZyRawuNUwWLEIjWseG/9Bc8Fcnp6aOQdZfDOFuGonrxpUzCLkOhzigmZNLG
qZ6MYCk7JnCCXtL3Flx6JL+4rVE1a0DpUHGNGlrq2WxTtETaSHVlo0L6eNPUt9Sw
nni0ZuCg8IQc8JSg0f9iyP4mXtH8hDpEwbtpwh+LWV+3Q1W6ir559CwpobiWHPD7
tZ6RyTYucKWI6Z75h6sdjB/J/yhXMeZJOgNETzBELcIP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org