Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/IvNG_A9m6K3sifBOZPZNZ842e8A.roa
File: IvNG_A9m6K3sifBOZPZNZ842e8A.roa (raw, json)
Hash identifier: nJee4cqfCB8OTVQRNO32UzLZSt1I07RdFMJ7J2c+T18=
Subject key identifier: 22:F3:46:FC:0F:66:E8:AD:EC:89:F0:4E:64:F6:4D:67:CE:36:7B:C0
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 018572BA615E403AADF90F0D05340DA934FD
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/IvNG_A9m6K3sifBOZPZNZ842e8A.roa
Signing time: Mon 02 Jan 2023 13:44:55 +0000
ROA not before: Mon 02 Jan 2023 13:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61272
IP address blocks: 213.252.244.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:61:5e:40:3a:ad:f9:0f:0d:05:34:0d:a9:34:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jan 2 13:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22f346fc0f66e8adec89f04e64f64d67ce367bc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7e:0a:39:fb:f8:94:60:f9:7d:8c:11:6c:0d:
e0:2e:7e:f2:0d:ce:4a:c5:21:51:87:66:22:fc:bb:
c7:7c:d0:3f:7a:3d:08:bf:39:7f:2e:47:d0:28:0e:
6f:c4:32:cb:3e:52:8c:c8:d9:43:51:ab:e6:0a:ab:
1c:72:29:5a:bd:74:7d:28:8d:45:5b:a7:77:53:36:
62:cb:e6:df:6e:7b:7b:c7:b1:a3:fa:03:59:3d:6a:
cd:68:0b:f2:8f:50:38:87:0f:1e:47:ab:63:4d:05:
89:16:ea:fb:a1:47:ac:5b:58:1f:e4:8e:e9:8d:46:
27:2f:e2:65:08:2a:d4:93:28:e6:3b:cf:ea:65:85:
7d:50:af:c3:6a:34:71:17:8f:ca:f7:4d:41:00:29:
26:18:e2:d0:70:2a:4b:61:2c:9d:f0:d4:a5:45:c4:
9c:ac:27:85:58:e5:f8:4e:a0:88:64:00:75:3d:93:
ed:83:6a:14:c1:6c:bf:42:97:fd:8b:a0:54:4a:de:
05:50:34:ba:70:38:ee:87:b2:3f:49:13:19:4c:92:
3d:c8:ee:22:51:0f:f3:6b:01:3b:70:02:70:60:99:
83:fb:b3:dd:fd:2b:ac:5e:b6:c7:7b:56:01:a8:d1:
bc:99:5c:80:40:61:b8:4b:f2:c7:78:da:d9:a4:c2:
92:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F3:46:FC:0F:66:E8:AD:EC:89:F0:4E:64:F6:4D:67:CE:36:7B:C0
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/IvNG_A9m6K3sifBOZPZNZ842e8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.252.244.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:d1:d7:1c:4c:32:0e:fd:20:3a:a9:81:e7:6b:e1:0e:f6:70:
0b:36:65:55:76:ef:98:d0:08:97:8d:b3:11:9a:5a:30:ed:88:
92:e5:e5:d6:73:5a:68:93:50:37:13:8b:a5:27:11:81:84:d9:
7f:04:32:38:03:a8:28:1f:dc:85:36:08:9c:42:ff:24:ad:7e:
18:58:48:90:ee:fa:56:5a:00:be:4b:a5:c2:57:05:7d:06:cc:
50:fa:43:89:e8:56:1e:b5:cf:4a:0f:f4:37:e1:37:6f:28:98:
fe:2e:4a:b8:8c:db:ed:3c:1c:31:78:be:59:6f:1a:c1:65:53:
61:1b:5e:a6:07:83:7d:34:c9:42:85:d3:ba:53:ed:3b:df:58:
71:59:4c:82:71:0f:e2:cd:58:ed:01:d7:c5:ad:be:37:fc:48:
89:87:cd:53:93:9e:3e:90:c0:e7:a2:f7:a7:4d:be:39:93:d5:
5c:bc:c8:f7:09:59:3d:0d:f3:7c:cb:68:55:0d:d4:2c:a2:f7:
de:8b:9c:90:40:48:ef:1c:33:cd:24:b8:52:49:7c:7f:44:20:
8d:bd:33:93:69:68:33:f4:36:75:2b:aa:10:ae:ab:6f:5b:bf:
29:e0:d4:04:c1:1a:cc:af:58:fb:47:f7:ed:49:5e:a9:cc:85:
a7:82:bd:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyumFeQDqt+Q8NBTQNqTT9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwZGQ4MWE4MzNkOWIwNDNjN2ZmZDYzNWE1OTg3ZjUzNjk3
MTE4MGQwHhcNMjMwMTAyMTM0NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmYzNDZmYzBmNjZlOGFkZWM4OWYwNGU2NGY2NGQ2N2NlMzY3YmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmn4KOfv4lGD5fYwRbA3gLn7yDc5K
xSFRh2Yi/LvHfNA/ej0Ivzl/LkfQKA5vxDLLPlKMyNlDUavmCqsccilavXR9KI1F
W6d3UzZiy+bfbnt7x7Gj+gNZPWrNaAvyj1A4hw8eR6tjTQWJFur7oUesW1gf5I7p
jUYnL+JlCCrUkyjmO8/qZYV9UK/DajRxF4/K901BACkmGOLQcCpLYSyd8NSlRcSc
rCeFWOX4TqCIZAB1PZPtg2oUwWy/Qpf9i6BUSt4FUDS6cDjuh7I/SRMZTJI9yO4i
UQ/zawE7cAJwYJmD+7Pd/SusXrbHe1YBqNG8mVyAQGG4S/LHeNrZpMKS7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCLzRvwPZuit7InwTmT2TWfONnvAMB8GA1UdIwQY
MBaAFPDdgagz2bBDx//WNaWYf1NpcRgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUt
MDQ2ODA0MjQ4NmRjLzEvSXZOR19BOW02SzNzaWZCT1pQWk5aODQyZThBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUtMDQ2ODA0MjQ4NmRj
LzEvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1fz0MA0G
CSqGSIb3DQEBCwUAA4IBAQCp0dccTDIO/SA6qYHna+EO9nALNmVVdu+Y0AiXjbMR
mlow7YiS5eXWc1pok1A3E4ulJxGBhNl/BDI4A6goH9yFNgicQv8krX4YWEiQ7vpW
WgC+S6XCVwV9BsxQ+kOJ6FYetc9KD/Q34TdvKJj+Lkq4jNvtPBwxeL5ZbxrBZVNh
G16mB4N9NMlChdO6U+0731hxWUyCcQ/izVjtAdfFrb43/EiJh81Tk54+kMDnoven
Tb45k9VcvMj3CVk9DfN8y2hVDdQsovfei5yQQEjvHDPNJLhSSXx/RCCNvTOTaWgz
9DZ1K6oQrqtvW78p4NQEwRrMr1j7R/ftSV6pzIWngr3L
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:06 2023 by rpki-client on console-ams.rpki-client.org