Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/5678cd-d77b-4563-afe3-b40527dd43fc/1/sNBHnq2vrjXMp_16Tr0DNWAPn6s.roa
File: sNBHnq2vrjXMp_16Tr0DNWAPn6s.roa (raw, json)
Hash identifier: COM/ewVmrjEhhxKLIBR9Nx49y2DJPhIL8SeOkoUPfew=
Subject key identifier: B0:D0:47:9E:AD:AF:AE:35:CC:A7:FD:7A:4E:BD:03:35:60:0F:9F:AB
Certificate issuer: /CN=d34403a30b313759af9626afd8d3d23805fcc80e
Certificate serial: 01856F9DD9667FA8823D1264EDDCE381CD21
Authority key identifier: D3:44:03:A3:0B:31:37:59:AF:96:26:AF:D8:D3:D2:38:05:FC:C8:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00QDowsxN1mvliav2NPSOAX8yA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/5678cd-d77b-4563-afe3-b40527dd43fc/1/sNBHnq2vrjXMp_16Tr0DNWAPn6s.roa
Signing time: Sun 01 Jan 2023 23:14:53 +0000
ROA not before: Sun 01 Jan 2023 23:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212938
IP address blocks: 178.217.235.0/24 maxlen: 24
2a0c:cd40::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 17 Mar 2023 08:50:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:d9:66:7f:a8:82:3d:12:64:ed:dc:e3:81:cd:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34403a30b313759af9626afd8d3d23805fcc80e
Validity
Not Before: Jan 1 23:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0d0479eadafae35cca7fd7a4ebd0335600f9fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e6:20:ff:e9:cf:b5:57:4f:1a:f2:ee:3a:3f:
d3:73:f1:31:d5:8f:07:f0:14:d3:68:a6:97:4d:ab:
e2:95:53:db:17:d7:9c:b6:89:71:18:d2:d8:bf:d7:
d0:d2:c6:9a:b1:21:34:15:02:76:4e:66:c0:98:3e:
70:68:78:be:f1:5b:fb:4f:9a:3d:1d:ce:e1:dd:df:
d9:ae:cc:25:ac:39:bb:4f:33:c0:d4:57:6e:14:f5:
98:58:a1:ef:00:1e:48:5d:83:51:ab:4b:5f:a5:b6:
62:1d:91:61:4f:93:44:ae:89:a6:6d:86:d7:57:66:
0d:1a:28:fd:45:aa:e6:54:fd:e8:a9:02:cb:5e:8c:
1e:46:11:65:6b:3d:07:51:e6:4e:d6:95:79:b3:40:
95:30:b5:a0:88:25:37:63:6d:ac:af:b0:fe:fc:bc:
9e:12:47:4b:43:ed:df:bb:b1:cb:7d:ef:98:ca:71:
b0:ff:28:82:75:99:2a:b0:e3:a8:28:49:38:68:33:
26:eb:67:31:1e:08:9f:bd:39:31:94:ba:05:9c:ef:
cf:fe:42:bc:1c:24:e8:f1:8d:f4:e4:6f:fc:62:16:
0b:9a:e8:39:28:29:88:80:a2:5e:91:1d:53:c3:4e:
ab:28:ae:46:53:f8:91:4f:4e:25:17:b4:d9:7c:66:
98:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D0:47:9E:AD:AF:AE:35:CC:A7:FD:7A:4E:BD:03:35:60:0F:9F:AB
X509v3 Authority Key Identifier:
keyid:D3:44:03:A3:0B:31:37:59:AF:96:26:AF:D8:D3:D2:38:05:FC:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00QDowsxN1mvliav2NPSOAX8yA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/5678cd-d77b-4563-afe3-b40527dd43fc/1/sNBHnq2vrjXMp_16Tr0DNWAPn6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/5678cd-d77b-4563-afe3-b40527dd43fc/1/00QDowsxN1mvliav2NPSOAX8yA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.235.0/24
IPv6:
2a0c:cd40::/29
Signature Algorithm: sha256WithRSAEncryption
77:ef:ee:00:8f:dd:63:be:6d:17:7c:39:c4:dd:6c:a0:3b:64:
16:cd:6e:77:d5:30:bf:9b:50:70:aa:1f:30:11:fe:e4:cd:05:
2d:87:e6:30:de:a1:fa:8f:04:2b:f8:58:80:db:03:78:5a:f6:
4f:a5:51:14:de:47:e6:2b:b5:63:e3:9b:4c:c5:54:4e:73:11:
17:c0:61:ea:d4:ff:a1:ce:74:60:54:1b:c6:34:11:e1:dd:a2:
88:a6:3f:f6:71:33:2b:4a:56:c2:aa:31:95:e3:07:6b:3a:57:
3d:12:61:98:98:84:e0:92:ae:21:86:40:16:d5:ae:b5:2a:38:
f5:55:71:4b:a1:c3:d7:df:83:45:69:90:92:d5:03:c7:f1:da:
49:80:75:64:a4:12:05:21:e1:19:35:20:8b:ae:75:fc:8e:f3:
1b:a2:15:9d:8f:4c:bf:a9:85:3d:26:05:57:00:9e:ba:84:78:
88:79:d9:62:fb:50:a6:15:6f:34:7a:d0:04:0c:53:6a:1a:f9:
82:02:f2:9e:13:e5:04:5c:bc:6a:61:46:62:39:61:e2:a9:e2:
3e:3e:a9:b5:cb:79:a3:c1:8d:b9:5e:19:1e:d5:8f:18:65:77:
86:27:b6:f3:3b:e4:05:b1:b0:cb:be:34:02:23:ae:cd:b2:e5:
f4:8c:cd:7c
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVvndlmf6iCPRJk7dzjgc0hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNDQwM2EzMGIzMTM3NTlhZjk2MjZhZmQ4ZDNkMjM4MDVm
Y2M4MGUwHhcNMjMwMTAxMjMxNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGQwNDc5ZWFkYWZhZTM1Y2NhN2ZkN2E0ZWJkMDMzNTYwMGY5ZmFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+Yg/+nPtVdPGvLuOj/Tc/Ex1Y8H
8BTTaKaXTavilVPbF9ectolxGNLYv9fQ0saasSE0FQJ2TmbAmD5waHi+8Vv7T5o9
Hc7h3d/ZrswlrDm7TzPA1FduFPWYWKHvAB5IXYNRq0tfpbZiHZFhT5NErommbYbX
V2YNGij9RarmVP3oqQLLXoweRhFlaz0HUeZO1pV5s0CVMLWgiCU3Y22sr7D+/Lye
EkdLQ+3fu7HLfe+YynGw/yiCdZkqsOOoKEk4aDMm62cxHgifvTkxlLoFnO/P/kK8
HCTo8Y305G/8YhYLmug5KCmIgKJekR1Tw06rKK5GU/iRT04lF7TZfGaYkwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLDQR56tr641zKf9ek69AzVgD5+rMB8GA1UdIwQY
MBaAFNNEA6MLMTdZr5Ymr9jT0jgF/MgOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDBRRG93c3hOMW12bGlhdjJOUFNPQVg4eUE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My81Njc4Y2QtZDc3Yi00NTYzLWFmZTMt
YjQwNTI3ZGQ0M2ZjLzEvc05CSG5xMnZyalhNcF8xNlRyMEROV0FQbjZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My81Njc4Y2QtZDc3Yi00NTYzLWFmZTMtYjQwNTI3ZGQ0M2Zj
LzEvMDBRRG93c3hOMW12bGlhdjJOUFNPQVg4eUE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAstnrMA0E
AgACMAcDBQMqDM1AMA0GCSqGSIb3DQEBCwUAA4IBAQB37+4Aj91jvm0XfDnE3Wyg
O2QWzW531TC/m1Bwqh8wEf7kzQUth+Yw3qH6jwQr+FiA2wN4WvZPpVEU3kfmK7Vj
45tMxVROcxEXwGHq1P+hznRgVBvGNBHh3aKIpj/2cTMrSlbCqjGV4wdrOlc9EmGY
mITgkq4hhkAW1a61Kjj1VXFLocPX34NFaZCS1QPH8dpJgHVkpBIFIeEZNSCLrnX8
jvMbohWdj0y/qYU9JgVXAJ66hHiIedli+1CmFW80etAEDFNqGvmCAvKeE+UEXLxq
YUZiOWHiqeI+Pqm1y3mjwY25Xhke1Y8YZXeGJ7bzO+QFsbDLvjQCI67NsuX0jM18
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:16 2024 by rpki-client on console-ams.rpki-client.org