Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/i2No_bMMBhZLTltyX0efmmbpLz4.roa
File: i2No_bMMBhZLTltyX0efmmbpLz4.roa (raw, json)
Hash identifier: xGOX6q/gmvchGnsQphpPZlXKTP6Sj6fBKLUUnwqGqeQ=
Subject key identifier: 8B:63:68:FD:B3:0C:06:16:4B:4E:5B:72:5F:47:9F:9A:66:E9:2F:3E
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 019151663A83C92E8CFB260288148ABA3B83
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/i2No_bMMBhZLTltyX0efmmbpLz4.roa
Signing time: Wed 14 Aug 2024 14:58:59 +0000
ROA not before: Wed 14 Aug 2024 14:58:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215101
IP address blocks: 141.226.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 07:13:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:51:66:3a:83:c9:2e:8c:fb:26:02:88:14:8a:ba:3b:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Aug 14 14:58:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b6368fdb30c06164b4e5b725f479f9a66e92f3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3d:bd:d6:70:4c:ed:7b:06:07:a4:0d:02:ef:
f3:b3:95:f6:8e:bf:6c:51:9a:46:da:93:83:4d:d5:
fb:00:6a:ad:6b:cb:a6:10:82:cf:eb:e9:80:bf:18:
87:bd:bb:e9:a1:ac:9d:c0:45:f6:05:a8:49:92:6e:
74:0d:0c:a7:63:4a:06:36:de:65:c2:22:35:6b:21:
bd:bb:e9:a0:b9:ec:7d:d6:97:d0:34:c4:cf:ef:9f:
92:0f:c6:6a:cd:32:cf:f2:de:c3:b0:97:aa:63:44:
d7:54:7b:1a:f5:e3:87:c1:1e:2f:53:c2:30:ac:f1:
30:ec:27:c0:1a:1f:84:ae:75:0f:6e:a9:28:c5:a9:
d0:79:01:bb:8c:32:0e:ae:8b:b1:6a:24:99:d8:a6:
c5:38:4d:70:ba:73:5e:da:57:52:e6:e1:e7:4d:bf:
7c:7b:05:5b:48:50:8c:55:7b:14:05:e4:d7:1d:ab:
23:1b:a1:6f:f9:1f:4f:eb:6f:ce:4c:01:ba:33:22:
87:a1:b1:b0:22:7f:74:0c:5d:4d:04:74:04:19:e7:
1c:24:32:cf:09:1b:ee:5e:81:a5:13:4b:a7:4c:14:
bd:a6:7e:90:18:98:45:07:f0:73:d3:18:1d:ee:f1:
cc:f3:25:c5:4e:f6:5a:17:08:c3:4d:83:71:70:70:
39:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:63:68:FD:B3:0C:06:16:4B:4E:5B:72:5F:47:9F:9A:66:E9:2F:3E
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/i2No_bMMBhZLTltyX0efmmbpLz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.245.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:a4:ef:aa:d9:58:36:87:00:21:f4:fc:b3:c3:a2:27:f7:27:
ce:3c:33:34:87:89:fd:46:5a:eb:5a:34:fe:55:57:ce:35:47:
92:c3:b3:2e:7e:73:a5:5e:bd:5c:98:c2:2f:02:13:82:de:bf:
d7:99:65:36:35:0f:1e:ca:25:f5:2d:62:93:57:37:a6:62:64:
a4:c4:01:94:20:bf:23:9d:5b:00:84:ad:83:76:cf:ca:08:b8:
68:22:18:ff:1a:05:ea:b1:85:56:9a:a0:0a:aa:07:07:02:38:
4b:f3:dd:19:cb:72:37:14:d3:7a:4b:94:86:7e:75:90:16:95:
ea:1f:27:85:e6:89:71:b6:08:f1:36:39:3c:cf:47:ea:90:78:
79:17:a5:fa:e6:e8:b1:0f:65:78:30:8d:db:4e:9b:e7:de:b1:
83:fb:d6:c1:91:68:d4:7d:84:6a:20:df:a8:cf:e2:5a:d3:b3:
71:f0:c1:c6:c3:37:7f:5b:1b:69:9f:ff:9b:98:77:75:24:1a:
02:28:5c:52:a0:86:0a:bc:c4:0c:f8:2b:a4:13:95:7f:bc:ee:
39:46:63:56:78:db:bf:f8:03:17:02:fc:8d:ac:87:13:68:ea:
70:5e:d9:96:a5:34:31:25:bc:8e:43:2b:5f:a3:13:b7:30:e8:
ab:9e:53:58
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFRZjqDyS6M+yYCiBSKujuDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZjliMTZhZGYyZmQzMTk4ODg1OTkyMmI0NDU3NDgxZGQ3
ZWVmNDAwHhcNMjQwODE0MTQ1ODU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YjYzNjhmZGIzMGMwNjE2NGI0ZTViNzI1ZjQ3OWY5YTY2ZTkyZjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApT291nBM7XsGB6QNAu/zs5X2jr9s
UZpG2pODTdX7AGqta8umEILP6+mAvxiHvbvpoaydwEX2BahJkm50DQynY0oGNt5l
wiI1ayG9u+mguex91pfQNMTP75+SD8ZqzTLP8t7DsJeqY0TXVHsa9eOHwR4vU8Iw
rPEw7CfAGh+ErnUPbqkoxanQeQG7jDIOrouxaiSZ2KbFOE1wunNe2ldS5uHnTb98
ewVbSFCMVXsUBeTXHasjG6Fv+R9P62/OTAG6MyKHobGwIn90DF1NBHQEGeccJDLP
CRvuXoGlE0unTBS9pn6QGJhFB/Bz0xgd7vHM8yXFTvZaFwjDTYNxcHA5CQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFItjaP2zDAYWS05bcl9Hn5pm6S8+MB8GA1UdIwQY
MBaAFHD5sWrfL9MZiIWZIrRFdIHdfu9AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUt
YmM2ZGI3MjQ4YWRkLzEvaTJOb19iTU1CaFpMVGx0eVgwZWZtbWJwTHo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUtYmM2ZGI3MjQ4YWRk
LzEvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjeL1MA0G
CSqGSIb3DQEBCwUAA4IBAQC2pO+q2Vg2hwAh9Pyzw6In9yfOPDM0h4n9RlrrWjT+
VVfONUeSw7MufnOlXr1cmMIvAhOC3r/XmWU2NQ8eyiX1LWKTVzemYmSkxAGUIL8j
nVsAhK2Dds/KCLhoIhj/GgXqsYVWmqAKqgcHAjhL890Zy3I3FNN6S5SGfnWQFpXq
HyeF5olxtgjxNjk8z0fqkHh5F6X65uixD2V4MI3bTpvn3rGD+9bBkWjUfYRqIN+o
z+Ja07Nx8MHGwzd/Wxtpn/+bmHd1JBoCKFxSoIYKvMQM+CukE5V/vO45RmNWeNu/
+AMXAvyNrIcTaOpwXtmWpTQxJbyOQytfoxO3MOirnlNY
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:15 2025 by rpki-client