Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/R17axqNcMyD2Y7DNQfKb19pIebY.roa
File: R17axqNcMyD2Y7DNQfKb19pIebY.roa (raw, json)
Hash identifier: X93Xec/QEsxRCl4SD8wzBLbhSCr6IuCVtG5jPpj+PbM=
Subject key identifier: 47:5E:DA:C6:A3:5C:33:20:F6:63:B0:CD:41:F2:9B:D7:DA:48:79:B6
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01859A7DE2B726F3B0306AA6B85456CAB12D
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/R17axqNcMyD2Y7DNQfKb19pIebY.roa
Signing time: Tue 10 Jan 2023 07:03:39 +0000
ROA not before: Tue 10 Jan 2023 07:03:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399471
IP address blocks: 94.177.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Mar 2023 05:28:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9a:7d:e2:b7:26:f3:b0:30:6a:a6:b8:54:56:ca:b1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 10 07:03:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=475edac6a35c3320f663b0cd41f29bd7da4879b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:48:0f:ba:a7:94:69:0c:01:80:e6:1a:35:b1:
c2:da:67:d2:4f:96:32:28:7b:2f:ab:e9:4d:a7:4d:
7c:c0:a2:81:38:18:fb:81:39:c1:3b:aa:38:22:09:
ad:47:c2:d4:db:ec:6c:1f:4b:3d:3e:70:47:55:9c:
e3:bf:3a:76:59:9a:c1:06:66:31:3d:87:bd:40:f9:
70:6f:6d:25:1e:d9:73:c7:af:c6:67:d0:19:af:e6:
fc:ea:d0:1e:a8:34:d1:29:8e:58:4e:86:27:ce:02:
fe:ae:e6:0a:56:51:5f:75:f3:31:0a:73:42:65:3d:
7c:e1:7d:c2:c3:f2:d1:18:45:9a:aa:57:0d:8f:4e:
88:95:06:5b:3b:3b:11:11:e3:36:4b:36:28:dd:6f:
a7:7d:56:f8:ff:ea:cd:4c:7f:90:13:66:95:31:cd:
9e:3b:c3:0c:db:d3:a5:77:4a:7e:89:ae:e3:3a:bd:
f0:52:7c:83:80:10:3c:97:27:a5:97:ce:b2:3a:ff:
c0:49:06:bc:ff:11:32:ac:f9:09:4a:6f:2a:c8:2c:
1c:65:45:a2:81:ba:62:a9:e9:fd:50:eb:ab:f7:37:
ba:e1:4b:31:2f:1a:70:a8:d4:f5:94:c2:96:cc:da:
82:8f:34:9c:4a:0c:2c:c4:fe:dd:f8:54:c7:52:48:
b3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5E:DA:C6:A3:5C:33:20:F6:63:B0:CD:41:F2:9B:D7:DA:48:79:B6
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/R17axqNcMyD2Y7DNQfKb19pIebY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.150.0/24
Signature Algorithm: sha256WithRSAEncryption
32:32:3d:c8:66:ff:c3:f5:41:53:b8:0f:6f:50:32:75:11:6a:
c6:df:90:54:39:82:47:50:82:a8:e2:21:ce:52:98:be:4b:c3:
0d:4f:73:6a:8e:4d:03:c0:fe:cc:08:47:dd:77:41:04:b4:55:
2c:6b:50:52:52:57:e7:89:47:87:f0:9d:2a:c0:bc:f7:01:22:
d7:95:39:03:a9:b0:da:f2:5c:0d:eb:94:69:5e:a6:86:db:f2:
b2:c4:a0:c3:2f:d3:67:91:d3:56:ca:9b:f0:1f:c1:07:98:1b:
30:48:a7:c9:b0:e8:29:cd:1f:96:7c:8d:a7:1a:08:bb:19:1c:
5a:11:4a:17:ab:f4:95:54:d3:07:25:e3:0b:01:12:74:84:7c:
0d:8d:4d:eb:9b:7c:d3:bc:d6:15:35:4a:7d:8f:6a:95:a0:b9:
c0:8e:8d:32:00:7f:18:03:59:fd:f1:55:b4:9a:de:0e:e3:ee:
71:57:bf:12:ab:42:44:d1:45:21:a0:aa:9b:47:b4:ac:84:41:
46:32:76:5b:60:4e:aa:f8:25:d8:d1:66:e4:cd:01:7a:08:0b:
ee:31:ed:4f:a4:41:60:ae:7b:9d:7d:6b:84:0b:30:73:da:6b:
16:94:fd:e9:bb:13:d0:19:c9:94:f5:fb:78:b8:8d:ff:f0:a3:
9e:37:37:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWafeK3JvOwMGqmuFRWyrEtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwMTEwMDcwMzM5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzVlZGFjNmEzNWMzMzIwZjY2M2IwY2Q0MWYyOWJkN2RhNDg3OWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArkgPuqeUaQwBgOYaNbHC2mfST5Yy
KHsvq+lNp018wKKBOBj7gTnBO6o4IgmtR8LU2+xsH0s9PnBHVZzjvzp2WZrBBmYx
PYe9QPlwb20lHtlzx6/GZ9AZr+b86tAeqDTRKY5YToYnzgL+ruYKVlFfdfMxCnNC
ZT184X3Cw/LRGEWaqlcNj06IlQZbOzsREeM2SzYo3W+nfVb4/+rNTH+QE2aVMc2e
O8MM29Old0p+ia7jOr3wUnyDgBA8lyell86yOv/ASQa8/xEyrPkJSm8qyCwcZUWi
gbpiqen9UOur9ze64UsxLxpwqNT1lMKWzNqCjzScSgwsxP7d+FTHUkizsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEde2sajXDMg9mOwzUHym9faSHm2MB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvUjE3YXhxTmNNeUQyWTdETlFmS2IxOXBJZWJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXrGWMA0G
CSqGSIb3DQEBCwUAA4IBAQAyMj3IZv/D9UFTuA9vUDJ1EWrG35BUOYJHUIKo4iHO
Upi+S8MNT3Nqjk0DwP7MCEfdd0EEtFUsa1BSUlfniUeH8J0qwLz3ASLXlTkDqbDa
8lwN65RpXqaG2/KyxKDDL9NnkdNWypvwH8EHmBswSKfJsOgpzR+WfI2nGgi7GRxa
EUoXq/SVVNMHJeMLARJ0hHwNjU3rm3zTvNYVNUp9j2qVoLnAjo0yAH8YA1n98VW0
mt4O4+5xV78Sq0JE0UUhoKqbR7SshEFGMnZbYE6q+CXY0WbkzQF6CAvuMe1PpEFg
rnudfWuECzBz2msWlP3puxPQGcmU9ft4uI3/8KOeNzeP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org