Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/411c4b-156a-4cc0-a34e-ec19cd38f245/1/JTODmp4-nSUuVGeQ0HpdQbzCn3A.roa
File: JTODmp4-nSUuVGeQ0HpdQbzCn3A.roa (raw, json)
Hash identifier: jUuDgvLmAmugSwTbndmt6vxbMxyH6Q8VX6OuKq3aYFg=
Subject key identifier: 25:33:83:9A:9E:3E:9D:25:2E:54:67:90:D0:7A:5D:41:BC:C2:9F:70
Certificate issuer: /CN=890c4983ee18bc5e025faafde31c64134a4620ac
Certificate serial: 018CC9BC9DC009609D836A3916CA2D5D6EA8
Authority key identifier: 89:0C:49:83:EE:18:BC:5E:02:5F:AA:FD:E3:1C:64:13:4A:46:20:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQxJg-4YvF4CX6r94xxkE0pGIKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/411c4b-156a-4cc0-a34e-ec19cd38f245/1/JTODmp4-nSUuVGeQ0HpdQbzCn3A.roa
Signing time: Tue 02 Jan 2024 10:33:50 +0000
ROA not before: Tue 02 Jan 2024 10:33:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56634
IP address blocks: 192.162.212.0/24 maxlen: 24
192.162.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 14 Jun 2024 14:37:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:9d:c0:09:60:9d:83:6a:39:16:ca:2d:5d:6e:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=890c4983ee18bc5e025faafde31c64134a4620ac
Validity
Not Before: Jan 2 10:33:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2533839a9e3e9d252e546790d07a5d41bcc29f70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7b:62:2e:b8:fc:e1:7a:1b:1f:57:31:03:22:
89:4d:1a:31:d4:02:39:ab:c2:07:24:8e:22:c8:d1:
32:4b:24:47:c5:9c:07:99:76:b5:26:d4:b9:d4:d4:
29:bc:38:18:99:e6:09:44:3b:3b:a3:5c:c2:ff:a4:
5b:a3:d8:35:b7:98:f1:4a:30:21:0c:d6:07:89:fc:
cb:36:27:1c:13:6c:38:d6:ac:c7:cf:fb:fd:39:fe:
2c:04:e6:ae:bb:9c:ab:fa:20:18:b6:3a:10:7a:fb:
7c:ba:ee:fe:75:53:e9:63:48:01:fe:91:fc:4d:7a:
44:d1:6e:8e:b2:ba:3e:da:8e:ec:7d:bd:0c:d0:ec:
5d:cb:8d:d5:7d:0c:50:77:6c:dc:a6:06:46:93:e2:
da:59:6c:b0:da:06:3a:4d:91:1b:a1:e6:c8:d8:3b:
95:bc:0c:99:27:dc:20:8e:e0:ef:5d:9b:7a:ec:1b:
99:dc:cc:8c:5f:e8:fb:02:74:02:2b:ee:68:c9:54:
c3:fa:df:50:66:a4:bf:9e:63:d1:6a:93:88:ea:65:
e9:a1:81:91:45:32:d6:ec:3f:61:96:df:e2:b1:c0:
49:11:0e:70:41:95:ee:0d:0c:26:46:69:51:02:7d:
8b:10:5f:ab:d7:8a:30:85:2f:1f:32:b8:f3:fc:d5:
3d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:33:83:9A:9E:3E:9D:25:2E:54:67:90:D0:7A:5D:41:BC:C2:9F:70
X509v3 Authority Key Identifier:
keyid:89:0C:49:83:EE:18:BC:5E:02:5F:AA:FD:E3:1C:64:13:4A:46:20:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQxJg-4YvF4CX6r94xxkE0pGIKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/411c4b-156a-4cc0-a34e-ec19cd38f245/1/JTODmp4-nSUuVGeQ0HpdQbzCn3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/411c4b-156a-4cc0-a34e-ec19cd38f245/1/iQxJg-4YvF4CX6r94xxkE0pGIKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.212.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:df:92:8e:1c:de:09:f0:b9:16:4d:6c:ac:99:05:78:d9:13:
33:27:29:0e:b5:56:57:99:3d:57:a2:c8:06:88:8e:71:58:73:
b8:ae:d4:1c:20:89:77:62:79:39:f0:cd:98:94:07:8d:8d:b3:
c7:bc:4e:86:08:06:db:3c:0a:a2:59:da:31:67:bb:5f:21:68:
9d:09:43:ea:f1:0a:aa:20:06:a4:90:62:ca:a2:b0:5a:5c:3f:
16:4f:3d:e7:5e:14:05:f6:c1:64:6b:d7:df:e1:38:56:ea:34:
ed:33:87:66:8a:e2:7b:33:17:f3:37:dd:4a:75:c8:b2:b0:23:
6f:2a:46:8a:29:a6:04:97:a8:e5:40:55:4f:af:31:aa:d7:6a:
16:56:0c:54:0e:ee:d3:86:9e:ac:1e:98:f8:56:8c:55:e0:e7:
59:01:2e:6b:c8:03:25:82:6f:63:bd:c8:0e:29:e8:ec:c4:57:
f9:4d:c9:91:e1:bf:c8:a3:53:23:6f:6d:ee:5c:d5:a5:f8:9c:
59:78:8c:20:a1:3b:ea:96:ae:ee:22:6f:d0:dc:f2:c5:29:1b:
ae:a5:53:e3:29:a7:56:13:f2:87:44:28:6f:5d:7e:4e:9d:df:
5f:e1:14:9b:1f:84:a4:ac:64:34:e3:41:fc:22:bc:24:75:82:
5a:26:e0:6f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJvJ3ACWCdg2o5FsotXW6oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MGM0OTgzZWUxOGJjNWUwMjVmYWFmZGUzMWM2NDEzNGE0
NjIwYWMwHhcNMjQwMTAyMTAzMzUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTMzODM5YTllM2U5ZDI1MmU1NDY3OTBkMDdhNWQ0MWJjYzI5ZjcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAontiLrj84XobH1cxAyKJTRox1AI5
q8IHJI4iyNEySyRHxZwHmXa1JtS51NQpvDgYmeYJRDs7o1zC/6Rbo9g1t5jxSjAh
DNYHifzLNiccE2w41qzHz/v9Of4sBOauu5yr+iAYtjoQevt8uu7+dVPpY0gB/pH8
TXpE0W6Osro+2o7sfb0M0Oxdy43VfQxQd2zcpgZGk+LaWWyw2gY6TZEboebI2DuV
vAyZJ9wgjuDvXZt67BuZ3MyMX+j7AnQCK+5oyVTD+t9QZqS/nmPRapOI6mXpoYGR
RTLW7D9hlt/iscBJEQ5wQZXuDQwmRmlRAn2LEF+r14owhS8fMrjz/NU99QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCUzg5qePp0lLlRnkNB6XUG8wp9wMB8GA1UdIwQY
MBaAFIkMSYPuGLxeAl+q/eMcZBNKRiCsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVF4SmctNFl2RjRDWDZyOTR4eGtFMHBHSUt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My80MTFjNGItMTU2YS00Y2MwLWEzNGUt
ZWMxOWNkMzhmMjQ1LzEvSlRPRG1wNC1uU1V1VkdlUTBIcGRRYnpDbjNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My80MTFjNGItMTU2YS00Y2MwLWEzNGUtZWMxOWNkMzhmMjQ1
LzEvaVF4SmctNFl2RjRDWDZyOTR4eGtFMHBHSUt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwKLUMA0G
CSqGSIb3DQEBCwUAA4IBAQBt35KOHN4J8LkWTWysmQV42RMzJykOtVZXmT1XosgG
iI5xWHO4rtQcIIl3Ynk58M2YlAeNjbPHvE6GCAbbPAqiWdoxZ7tfIWidCUPq8Qqq
IAakkGLKorBaXD8WTz3nXhQF9sFka9ff4ThW6jTtM4dmiuJ7MxfzN91KdciysCNv
KkaKKaYEl6jlQFVPrzGq12oWVgxUDu7Thp6sHpj4VoxV4OdZAS5ryAMlgm9jvcgO
KejsxFf5TcmR4b/Io1Mjb23uXNWl+JxZeIwgoTvqlq7uIm/Q3PLFKRuupVPjKadW
E/KHRChvXX5Ond9f4RSbH4SkrGQ040H8IrwkdYJaJuBv
-----END CERTIFICATE-----
Generated at Fri Jun 14 19:33:02 2024 by rpki-client on console-ams.rpki-client.org