Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/EFE0bfauWcmCdUPgsTOpkJ8rMNs.roa
File: EFE0bfauWcmCdUPgsTOpkJ8rMNs.roa (raw, json)
Hash identifier: rutLKhI9r0quSSijzbCyWZScftnOZeZuvQVxgcq/qJA=
Subject key identifier: 10:51:34:6D:F6:AE:59:C9:82:75:43:E0:B1:33:A9:90:9F:2B:30:DB
Certificate issuer: /CN=4776afb74fad5baf0a6180b49510d8b8497df8d3
Certificate serial: 018571DE8B0C4E3A66799B6154B277A76AB4
Authority key identifier: 47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/EFE0bfauWcmCdUPgsTOpkJ8rMNs.roa
Signing time: Mon 02 Jan 2023 09:44:48 +0000
ROA not before: Mon 02 Jan 2023 09:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204055
IP address blocks: 212.18.251.0/24 maxlen: 24
2a04:2b00:14bb::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:8b:0c:4e:3a:66:79:9b:61:54:b2:77:a7:6a:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4776afb74fad5baf0a6180b49510d8b8497df8d3
Validity
Not Before: Jan 2 09:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1051346df6ae59c9827543e0b133a9909f2b30db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:91:5b:a4:cd:61:6f:6d:8e:db:b8:a3:23:05:
9e:e0:79:47:ba:70:af:47:55:24:99:00:a7:7c:16:
ef:02:92:31:32:de:f6:af:1b:50:3a:e7:ee:2c:0f:
08:aa:a1:44:bc:b5:42:54:22:2a:ea:90:3f:19:1a:
85:cc:99:b3:c8:8f:82:df:6b:17:3e:41:c3:99:82:
78:34:bc:fa:70:ad:e7:61:0e:e1:fa:c9:f5:5d:2d:
fa:d6:2b:69:66:38:af:c2:b9:87:09:4c:3e:aa:52:
7c:3d:a0:38:5b:92:49:5f:59:ae:42:f3:7c:66:6b:
2b:6a:cc:8f:96:1c:c4:87:ae:14:50:8b:3a:16:46:
87:6c:a0:ee:4a:bf:cc:95:3f:12:dd:b3:6e:cb:b9:
2c:b9:94:66:f4:f9:ca:76:04:e4:15:9e:fc:4c:47:
bd:9a:af:e1:20:73:5f:e6:20:97:5a:c5:4d:af:c0:
cc:bf:ce:52:78:2c:f8:6b:83:f2:ab:2c:34:41:b9:
87:63:6f:55:62:97:e1:40:52:51:8c:7d:42:02:93:
a3:7b:1e:74:e3:49:ec:bc:14:37:53:d8:b5:0c:f7:
0f:86:3e:2d:62:5c:0f:6a:5d:6e:d3:15:a9:d5:cc:
72:8a:8a:2a:75:58:f5:f8:6a:2c:19:aa:fc:5b:d9:
6a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:51:34:6D:F6:AE:59:C9:82:75:43:E0:B1:33:A9:90:9F:2B:30:DB
X509v3 Authority Key Identifier:
keyid:47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/EFE0bfauWcmCdUPgsTOpkJ8rMNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.251.0/24
IPv6:
2a04:2b00:14bb::/48
Signature Algorithm: sha256WithRSAEncryption
6a:5b:6f:c4:f8:da:50:02:f9:71:7f:d3:15:03:39:50:95:b2:
7d:4e:18:15:07:f8:db:8b:92:99:a8:7b:35:d1:f1:20:9a:87:
fe:e5:2b:e8:63:49:d8:c8:e9:de:c6:bd:49:f0:c6:1e:0e:c2:
1c:11:98:52:f0:87:4a:a2:58:b8:34:cb:bb:c9:8b:50:3e:c5:
2c:0a:c7:e6:ee:d6:97:53:1b:a2:5d:7b:de:e3:f1:cf:e0:17:
ac:39:5b:ca:f3:46:94:d9:15:bc:2a:a4:7d:69:1e:95:b8:4c:
fb:10:06:d2:99:85:2d:1c:10:3e:95:26:74:bd:db:d9:f5:e2:
a1:9e:fa:9c:90:89:f8:b9:bf:b4:c6:fa:0f:b3:31:3e:c2:4e:
b5:33:64:b0:b2:8b:11:fb:f2:2a:64:e5:32:db:a0:91:95:63:
02:45:97:69:09:51:d3:18:db:e8:a7:f0:a2:01:70:7b:d4:6d:
59:d2:85:59:d2:73:0a:7c:16:c9:78:d4:0f:b5:50:2b:02:72:
ad:4d:0c:1f:3c:3a:a1:91:4e:20:59:b0:ed:5e:0b:a1:1f:b4:
38:81:1e:32:19:33:76:a8:37:52:45:a4:3b:76:b5:12:79:95:
73:b3:b0:b5:4d:ec:08:71:c7:05:66:a4:4f:a4:59:fa:91:ee:
d1:6a:35:a3
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVx3osMTjpmeZthVLJ3p2q0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3NzZhZmI3NGZhZDViYWYwYTYxODBiNDk1MTBkOGI4NDk3
ZGY4ZDMwHhcNMjMwMTAyMDk0NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDUxMzQ2ZGY2YWU1OWM5ODI3NTQzZTBiMTMzYTk5MDlmMmIzMGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpFbpM1hb22O27ijIwWe4HlHunCv
R1UkmQCnfBbvApIxMt72rxtQOufuLA8IqqFEvLVCVCIq6pA/GRqFzJmzyI+C32sX
PkHDmYJ4NLz6cK3nYQ7h+sn1XS361itpZjivwrmHCUw+qlJ8PaA4W5JJX1muQvN8
ZmsrasyPlhzEh64UUIs6FkaHbKDuSr/MlT8S3bNuy7ksuZRm9PnKdgTkFZ78TEe9
mq/hIHNf5iCXWsVNr8DMv85SeCz4a4Pyqyw0QbmHY29VYpfhQFJRjH1CApOjex50
40nsvBQ3U9i1DPcPhj4tYlwPal1u0xWp1cxyiooqdVj1+GosGar8W9lqxwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBBRNG32rlnJgnVD4LEzqZCfKzDbMB8GA1UdIwQY
MBaAFEd2r7dPrVuvCmGAtJUQ2LhJffjTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUjNhdnQwLXRXNjhLWVlDMGxSRFl1RWw5LU5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9mNzFjYzItYjcxZC00NjY4LTg2NjEt
MDUzOGU5NWYzZjEyLzEvRUZFMGJmYXVXY21DZFVQZ3NUT3BrSjhyTU5zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9mNzFjYzItYjcxZC00NjY4LTg2NjEtMDUzOGU5NWYzZjEy
LzEvUjNhdnQwLXRXNjhLWVlDMGxSRFl1RWw5LU5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQA1BL7MA8E
AgACMAkDBwAqBCsAFLswDQYJKoZIhvcNAQELBQADggEBAGpbb8T42lAC+XF/0xUD
OVCVsn1OGBUH+NuLkpmoezXR8SCah/7lK+hjSdjI6d7GvUnwxh4OwhwRmFLwh0qi
WLg0y7vJi1A+xSwKx+bu1pdTG6Jde97j8c/gF6w5W8rzRpTZFbwqpH1pHpW4TPsQ
BtKZhS0cED6VJnS929n14qGe+pyQifi5v7TG+g+zMT7CTrUzZLCyixH78ipk5TLb
oJGVYwJFl2kJUdMY2+in8KIBcHvUbVnShVnScwp8Fsl41A+1UCsCcq1NDB88OqGR
TiBZsO1eC6EftDiBHjIZM3aoN1JFpDt2tRJ5lXOzsLVN7AhxxwVmpE+kWfqR7tFq
NaM=
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:07 2024 by rpki-client on console-fra.rpki-client.org