Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/n_9_RHJl1O5x5hpqVIOCdu8yr9I.roa
File: n_9_RHJl1O5x5hpqVIOCdu8yr9I.roa (raw, json)
Hash identifier: zEt+9Df+GBuqQTipbm0yBKMq4O7c/zuh4oYJ3P2Xrbs=
Subject key identifier: 9F:FF:7F:44:72:65:D4:EE:71:E6:1A:6A:54:83:82:76:EF:32:AF:D2
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0189C4904E8B427A6C675C16AB3AF8D1E7E1
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/n_9_RHJl1O5x5hpqVIOCdu8yr9I.roa
Signing time: Sat 05 Aug 2023 07:18:58 +0000
ROA not before: Sat 05 Aug 2023 07:18:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 46.20.216.0/21 maxlen: 24
130.255.64.0/22 maxlen: 24
31.186.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 07:18:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c4:90:4e:8b:42:7a:6c:67:5c:16:ab:3a:f8:d1:e7:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Aug 5 07:18:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fff7f447265d4ee71e61a6a54838276ef32afd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:69:d0:78:ec:5c:b3:12:83:ae:aa:8f:92:da:
03:35:5f:7c:a4:f9:4d:aa:4b:6b:6d:ba:e1:13:14:
8e:57:81:96:36:82:c4:de:fa:01:a9:a8:8f:f9:b7:
a6:ed:37:81:dd:c4:fc:89:35:75:46:93:40:9a:e9:
b1:68:d7:37:be:e8:d1:31:ec:3d:2d:7c:ea:9a:0d:
12:b4:5c:06:2f:3b:e3:85:3d:06:dd:96:dd:7a:da:
1c:af:59:78:41:fe:3e:cd:d7:be:5c:65:34:12:0f:
60:c3:b5:c1:64:05:b4:ba:5a:e7:f6:f3:26:06:f2:
27:9b:1f:4d:8b:98:8f:a2:cd:6b:46:d9:fb:a3:b7:
b9:14:96:13:2b:b0:ac:c4:c9:68:b2:c0:c6:02:62:
bf:8e:22:32:29:9c:f8:a1:84:28:2d:3d:4e:4e:f1:
dc:7c:de:9d:ee:8c:87:9b:c8:f9:80:c1:df:e2:73:
b0:1c:97:cb:b6:8f:c0:80:fb:ce:91:3c:01:4a:ba:
dd:d1:3c:52:9f:17:58:27:98:5d:49:f1:a2:0c:2e:
41:1a:b7:57:44:7b:f7:9e:fb:79:e0:86:0f:d8:8e:
b6:9c:d0:f4:f1:d4:48:34:7f:2e:6a:46:cc:59:7a:
03:7f:87:9f:7b:4b:29:37:38:f8:36:e6:94:fa:c1:
44:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:FF:7F:44:72:65:D4:EE:71:E6:1A:6A:54:83:82:76:EF:32:AF:D2
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/n_9_RHJl1O5x5hpqVIOCdu8yr9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
46.20.216.0/21
130.255.64.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:02:cb:16:a6:b9:71:8d:a1:42:ea:ab:47:89:ea:4e:3a:9c:
2c:dc:66:05:89:3d:6c:35:a2:e1:41:6f:1e:3f:59:b5:b5:13:
49:91:a3:39:b1:c6:bf:ac:55:74:71:1b:9a:59:25:37:47:f8:
08:8d:6a:dc:62:af:49:46:d7:bb:81:40:01:51:98:3d:3f:17:
f3:51:b4:ce:86:e4:b8:91:e2:87:3c:3e:5b:3c:19:f5:6f:27:
7c:dd:83:aa:31:54:12:c3:4f:69:0b:5a:2a:06:99:34:97:2e:
e6:42:c9:13:25:1f:f2:f1:db:16:ee:e5:52:27:fc:72:b5:9f:
ca:f2:d1:ef:52:d7:33:54:cb:ea:1c:df:03:5c:c4:fd:08:02:
2b:3b:c8:ec:e8:b9:2f:bf:7b:be:b0:47:22:20:4e:1b:5f:01:
14:b9:22:82:e0:8c:59:e0:2b:6d:8a:16:78:6a:b8:4b:4b:57:
d4:be:ec:7c:ca:19:e6:91:a2:c7:e6:d1:0a:a2:30:20:11:3f:
04:4d:d2:5e:0a:fd:09:fd:bc:0a:a6:29:68:b7:f2:0f:b0:d6:
4d:36:10:fb:29:5e:44:2d:2b:ef:61:6d:35:26:51:f5:11:c5:
de:00:b6:bf:fb:1f:49:2a:ee:f7:20:f2:5d:2c:ed:9b:54:d4:
74:d7:8c:25
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYnEkE6LQnpsZ1wWqzr40efhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjMwODA1MDcxODU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmZmN2Y0NDcyNjVkNGVlNzFlNjFhNmE1NDgzODI3NmVmMzJhZmQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmnQeOxcsxKDrqqPktoDNV98pPlN
qktrbbrhExSOV4GWNoLE3voBqaiP+bem7TeB3cT8iTV1RpNAmumxaNc3vujRMew9
LXzqmg0StFwGLzvjhT0G3Zbdetocr1l4Qf4+zde+XGU0Eg9gw7XBZAW0ulrn9vMm
BvInmx9Ni5iPos1rRtn7o7e5FJYTK7CsxMlossDGAmK/jiIyKZz4oYQoLT1OTvHc
fN6d7oyHm8j5gMHf4nOwHJfLto/AgPvOkTwBSrrd0TxSnxdYJ5hdSfGiDC5BGrdX
RHv3nvt54IYP2I62nND08dRINH8uakbMWXoDf4efe0spNzj4NuaU+sFEYQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFJ//f0RyZdTuceYaalSDgnbvMq/SMB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvbl85X1JISmwxTzV4NWhwcVZJT0NkdTh5cjlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCH7qwAwQD
LhTYAwQCgv9AMA0GCSqGSIb3DQEBCwUAA4IBAQBLAssWprlxjaFC6qtHiepOOpws
3GYFiT1sNaLhQW8eP1m1tRNJkaM5sca/rFV0cRuaWSU3R/gIjWrcYq9JRte7gUAB
UZg9PxfzUbTOhuS4keKHPD5bPBn1byd83YOqMVQSw09pC1oqBpk0ly7mQskTJR/y
8dsW7uVSJ/xytZ/K8tHvUtczVMvqHN8DXMT9CAIrO8js6Lkvv3u+sEciIE4bXwEU
uSKC4IxZ4CttihZ4arhLS1fUvux8yhnmkaLH5tEKojAgET8ETdJeCv0J/bwKpilo
t/IPsNZNNhD7KV5ELSvvYW01JlH1EcXeALa/+x9JKu73IPJdLO2bVNR014wl
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org