Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/cSXTiQ2HzMdhgYljxdb6kTF_Mfg.roa
File: cSXTiQ2HzMdhgYljxdb6kTF_Mfg.roa (raw, json)
Hash identifier: UsEtr5st/2209yyY5UcJ3DO4JWmxtRbQPI36/EVPEjo=
Subject key identifier: 71:25:D3:89:0D:87:CC:C7:61:81:89:63:C5:D6:FA:91:31:7F:31:F8
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DC68687FA81016D6CEC85B9A7C57A
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/cSXTiQ2HzMdhgYljxdb6kTF_Mfg.roa
Signing time: Sun 01 Jan 2023 23:14:49 +0000
ROA not before: Sun 01 Jan 2023 23:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55002
IP address blocks: 213.14.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:c6:86:87:fa:81:01:6d:6c:ec:85:b9:a7:c5:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7125d3890d87ccc761818963c5d6fa91317f31f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ec:a8:62:e5:d2:0f:43:9f:f5:d6:af:0b:99:
a4:45:19:75:69:47:f0:0d:cd:d3:dc:6f:4f:91:88:
71:f6:51:a6:31:0b:16:a9:e0:e6:d6:6f:fc:84:23:
f6:74:c4:aa:97:78:48:26:bf:01:0d:2e:8d:36:be:
5c:29:eb:90:07:ff:89:4a:19:5c:89:9f:38:d5:e9:
20:fc:66:06:56:4c:1c:aa:52:b7:10:d9:d9:71:ca:
c6:3f:e9:80:91:fb:d3:23:f0:3a:23:2a:7f:f4:b8:
58:27:dc:a9:b9:28:6f:f6:ed:e8:3f:0d:2b:bc:a2:
cf:10:11:a7:cd:60:1f:e4:49:70:39:83:41:89:e7:
40:64:24:5d:8f:46:1d:42:13:ff:eb:c2:73:26:e6:
07:25:fc:0f:6f:f9:38:06:a4:0e:e7:60:d4:c9:16:
9b:27:6b:ba:b7:c8:81:27:70:a9:09:72:11:30:a1:
ec:f4:da:01:db:c1:53:38:fe:a9:7a:f1:65:15:40:
e7:6c:34:97:3f:9a:90:97:69:c8:57:0d:c6:c4:a9:
a9:d2:f0:78:01:fe:df:8f:2e:b9:21:27:2c:88:6d:
35:17:e7:cd:ca:45:3c:be:23:78:ad:00:4b:a2:e8:
07:c8:56:04:31:27:a8:5d:20:7e:41:af:b4:82:26:
5c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:25:D3:89:0D:87:CC:C7:61:81:89:63:C5:D6:FA:91:31:7F:31:F8
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/cSXTiQ2HzMdhgYljxdb6kTF_Mfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.215.0/24
Signature Algorithm: sha256WithRSAEncryption
57:a3:d2:e2:2c:dd:21:da:c4:1f:be:32:27:30:e5:9e:c0:a6:
7d:2a:b1:46:1b:78:60:30:b8:20:3f:d0:b2:17:3a:b4:76:9e:
f3:5b:a7:71:72:f1:70:28:91:1c:4b:a4:2e:48:13:6e:1d:2b:
b3:3e:7e:fa:44:25:ba:4b:a6:a1:bd:5b:90:03:84:69:98:9b:
22:04:9f:50:61:b2:d9:cd:24:c2:da:f0:ca:d1:b1:be:8c:5e:
9f:15:55:0b:4f:59:90:ae:b4:56:9c:ad:dc:58:8d:36:e2:c8:
b0:26:78:98:6d:1d:90:a3:e1:e4:d9:1e:84:b4:7e:84:e1:de:
03:5f:7e:c0:01:96:ec:5c:0a:b7:b7:35:ad:f9:21:d7:4b:bc:
7b:85:ad:86:2d:2e:cc:0e:07:ef:d3:93:89:53:50:a4:ad:aa:
b8:ea:8b:84:d6:1b:cf:05:01:da:60:fd:40:f0:af:86:a9:95:
35:8a:82:9b:a6:9a:bc:99:38:d2:4d:a5:8b:bc:ac:5f:6c:e4:
7c:68:4b:a9:98:92:a6:63:7f:e1:d7:8e:2f:81:9b:c7:20:d6:
c0:e4:87:d8:18:44:e2:55:e5:90:0b:f3:93:23:04:b4:27:99:
b0:75:f6:d2:a6:b2:b2:69:dc:34:0a:13:42:7c:34:20:58:27:
9e:62:07:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvncaGh/qBAW1s7IW5p8V6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkNTljNDMyM2Y3NjdjZTRmZmM4NWRhYWQyMDhiOTBjMDRm
YmQzZTkwHhcNMjMwMTAxMjMxNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTI1ZDM4OTBkODdjY2M3NjE4MTg5NjNjNWQ2ZmE5MTMxN2YzMWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveyoYuXSD0Of9davC5mkRRl1aUfw
Dc3T3G9PkYhx9lGmMQsWqeDm1m/8hCP2dMSql3hIJr8BDS6NNr5cKeuQB/+JShlc
iZ841ekg/GYGVkwcqlK3ENnZccrGP+mAkfvTI/A6Iyp/9LhYJ9ypuShv9u3oPw0r
vKLPEBGnzWAf5ElwOYNBiedAZCRdj0YdQhP/68JzJuYHJfwPb/k4BqQO52DUyRab
J2u6t8iBJ3CpCXIRMKHs9NoB28FTOP6pevFlFUDnbDSXP5qQl2nIVw3GxKmp0vB4
Af7fjy65IScsiG01F+fNykU8viN4rQBLougHyFYEMSeoXSB+Qa+0giZcqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHEl04kNh8zHYYGJY8XW+pExfzH4MB8GA1UdIwQY
MBaAFI1ZxDI/dnzk/8hdqtIIuQwE+9PpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUt
ZjJiZTlmNmM2NjRjLzEvY1NYVGlRMkh6TWRoZ1lsanhkYjZrVEZfTWZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUtZjJiZTlmNmM2NjRj
LzEvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1Q7XMA0G
CSqGSIb3DQEBCwUAA4IBAQBXo9LiLN0h2sQfvjInMOWewKZ9KrFGG3hgMLggP9Cy
Fzq0dp7zW6dxcvFwKJEcS6QuSBNuHSuzPn76RCW6S6ahvVuQA4RpmJsiBJ9QYbLZ
zSTC2vDK0bG+jF6fFVULT1mQrrRWnK3cWI024siwJniYbR2Qo+Hk2R6EtH6E4d4D
X37AAZbsXAq3tzWt+SHXS7x7ha2GLS7MDgfv05OJU1Ckraq46ouE1hvPBQHaYP1A
8K+GqZU1ioKbppq8mTjSTaWLvKxfbOR8aEupmJKmY3/h144vgZvHINbA5IfYGETi
VeWQC/OTIwS0J5mwdfbSprKyadw0ChNCfDQgWCeeYgfd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org