Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ldDF2F3KMDoJgJhLihZl50PO-SY.roa
File: ldDF2F3KMDoJgJhLihZl50PO-SY.roa (raw, json)
Hash identifier: O7EIG84g8v+4bLSCK3anIzXTDqfT9a7HBZLuG0UGStM=
Subject key identifier: 95:D0:C5:D8:5D:CA:30:3A:09:80:98:4B:8A:16:65:E7:43:CE:F9:26
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018DF1004488EAD27AE3A3D4C618DCE67094
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ldDF2F3KMDoJgJhLihZl50PO-SY.roa
Signing time: Wed 28 Feb 2024 18:35:43 +0000
ROA not before: Wed 28 Feb 2024 18:35:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208287
IP address blocks: 46.38.130.0/24 maxlen: 24
212.16.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 10:47:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f1:00:44:88:ea:d2:7a:e3:a3:d4:c6:18:dc:e6:70:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 28 18:35:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95d0c5d85dca303a0980984b8a1665e743cef926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:48:d0:c0:09:78:b0:cf:f4:d7:fa:68:c9:54:
7f:2a:c3:f2:bc:4b:34:79:2b:70:57:5b:bc:85:9a:
21:89:80:18:63:fa:98:e4:bf:c7:19:cc:77:be:76:
47:0f:a9:db:af:37:ee:69:38:08:f9:3f:e3:13:fb:
17:4c:2f:f1:4f:38:a8:04:d5:07:11:1a:fc:34:39:
42:7d:e3:9d:4c:15:a6:03:97:16:73:d1:fa:2e:4a:
4e:34:76:d6:4a:56:49:ad:3c:42:34:02:24:35:b5:
d1:69:79:c5:31:40:52:f9:bf:b5:df:d2:a9:86:d5:
03:42:9e:7d:c4:f5:04:8a:2e:d5:ca:44:3d:ce:e5:
74:b9:e3:e5:08:18:bd:5f:cd:c0:22:59:0a:ec:46:
4f:97:82:ec:bc:64:22:26:f2:4e:f5:1c:72:2f:c7:
17:fc:f3:60:12:29:42:b6:b9:52:6e:41:dc:67:90:
3f:df:b3:d8:a1:3f:2c:e1:19:65:9c:ae:3d:e2:24:
d1:38:c7:d1:a9:3a:0b:ec:21:e6:2d:62:06:b9:da:
57:b7:24:e4:cf:c4:b9:07:91:f0:bc:c5:92:73:de:
7e:a6:0c:78:70:02:0d:47:74:f0:92:3a:49:bf:9b:
f9:f4:6a:0c:e1:82:cf:a6:16:e8:77:f8:aa:12:8c:
16:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D0:C5:D8:5D:CA:30:3A:09:80:98:4B:8A:16:65:E7:43:CE:F9:26
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ldDF2F3KMDoJgJhLihZl50PO-SY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.130.0/24
212.16.79.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:c2:a8:77:2b:41:70:dc:b7:4c:ad:1d:5a:71:9d:1c:22:15:
10:a9:16:8f:a3:23:21:b6:d3:02:76:da:ff:00:4d:53:8a:87:
ac:6d:9e:03:6c:ee:58:c2:9c:6f:90:16:65:69:39:fb:aa:c4:
d3:e3:02:bf:ec:06:1d:9f:ea:d5:0f:3d:0b:79:8b:18:58:97:
cf:5c:33:86:c6:74:8a:59:0b:a0:79:cb:71:fb:5b:fb:26:13:
54:39:06:94:e8:0d:15:cd:88:b6:6c:d9:16:64:eb:c5:e9:53:
dc:c6:b3:cd:fd:e9:67:75:45:9e:14:70:f6:d3:10:67:5b:82:
4d:c7:1b:5f:ab:65:e0:f8:4c:fc:4f:bc:9f:3e:88:d4:4d:02:
f7:1e:5e:e1:4a:e7:27:f9:3a:36:e3:8f:cc:2d:cf:9a:75:cf:
c2:91:2e:1e:90:02:ee:f9:35:40:a2:f4:0f:87:7b:da:2b:84:
5d:20:f2:8d:40:69:85:0c:88:e9:72:91:93:3c:b4:3f:39:97:
80:0a:c4:99:41:71:7a:b7:19:97:3a:03:a1:fb:d4:7e:94:f4:
86:8c:11:a0:a8:79:f2:0e:f6:80:41:a1:7c:b6:af:48:b6:d0:
ac:d7:31:4e:a0:67:80:11:1b:c7:c0:59:00:a6:f2:74:67:4c:
38:17:f4:07
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY3xAESI6tJ646PUxhjc5nCUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjQwMjI4MTgzNTQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NWQwYzVkODVkY2EzMDNhMDk4MDk4NGI4YTE2NjVlNzQzY2VmOTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhUjQwAl4sM/01/poyVR/KsPyvEs0
eStwV1u8hZohiYAYY/qY5L/HGcx3vnZHD6nbrzfuaTgI+T/jE/sXTC/xTzioBNUH
ERr8NDlCfeOdTBWmA5cWc9H6LkpONHbWSlZJrTxCNAIkNbXRaXnFMUBS+b+139Kp
htUDQp59xPUEii7VykQ9zuV0uePlCBi9X83AIlkK7EZPl4LsvGQiJvJO9RxyL8cX
/PNgEilCtrlSbkHcZ5A/37PYoT8s4RllnK494iTROMfRqToL7CHmLWIGudpXtyTk
z8S5B5HwvMWSc95+pgx4cAINR3TwkjpJv5v59GoM4YLPphbod/iqEowWNQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJXQxdhdyjA6CYCYS4oWZedDzvkmMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvbGRERjJGM0tNRG9KZ0poTGloWmw1MFBPLVNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALiaCAwQA
1BBPMA0GCSqGSIb3DQEBCwUAA4IBAQClwqh3K0Fw3LdMrR1acZ0cIhUQqRaPoyMh
ttMCdtr/AE1TioesbZ4DbO5YwpxvkBZlaTn7qsTT4wK/7AYdn+rVDz0LeYsYWJfP
XDOGxnSKWQugectx+1v7JhNUOQaU6A0VzYi2bNkWZOvF6VPcxrPN/elndUWeFHD2
0xBnW4JNxxtfq2Xg+Ez8T7yfPojUTQL3Hl7hSucn+To244/MLc+adc/CkS4ekALu
+TVAovQPh3vaK4RdIPKNQGmFDIjpcpGTPLQ/OZeACsSZQXF6txmXOgOh+9R+lPSG
jBGgqHnyDvaAQaF8tq9IttCs1zFOoGeAERvHwFkApvJ0Z0w4F/QH
-----END CERTIFICATE-----
Generated at Tue Mar 5 15:15:24 2024 by rpki-client on console-ams.rpki-client.org