Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/1600VzcdVWTMJ15vrCms3wk620I.roa
File: 1600VzcdVWTMJ15vrCms3wk620I.roa (raw, json)
Hash identifier: OeQHenw6FhkJUYTuxWnrATTl396ognWhf2VoQdzfgZg=
Subject key identifier: D7:AD:34:57:37:1D:55:64:CC:27:5E:6F:AC:29:AC:DF:09:3A:DB:42
Certificate issuer: /CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Certificate serial: 018571B0AC3B0D3FD0B95C16BFB1FF4C723A
Authority key identifier: F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/1600VzcdVWTMJ15vrCms3wk620I.roa
Signing time: Mon 02 Jan 2023 08:54:41 +0000
ROA not before: Mon 02 Jan 2023 08:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8218
IP address blocks: 217.168.96.0/20 maxlen: 20
Validation: Failed, certificate revoked on Thu 23 Mar 2023 10:59:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:ac:3b:0d:3f:d0:b9:5c:16:bf:b1:ff:4c:72:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Validity
Not Before: Jan 2 08:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7ad3457371d5564cc275e6fac29acdf093adb42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1c:5a:74:d0:21:1f:f4:36:98:63:ca:09:2d:
76:2c:93:d4:d3:92:21:fe:44:d9:5c:79:05:22:25:
ed:1e:0d:74:bb:63:91:73:b1:a7:64:11:4c:b1:e8:
d7:0b:06:63:ae:5b:6a:74:87:cd:03:7f:f9:9c:ad:
4e:e0:1f:b6:67:9c:ac:3c:8a:c7:19:01:cb:e6:9c:
84:b1:5b:db:8b:0f:d2:95:a6:e1:f3:2d:ee:21:0d:
05:b7:12:eb:77:a3:b5:45:a2:af:b5:df:83:02:4e:
3a:90:34:81:3c:ae:b3:d0:17:b4:28:1d:ba:f0:a1:
bf:33:ec:29:8d:e5:34:ae:05:bd:f2:0f:1c:25:2e:
7b:54:42:1c:05:37:b1:6e:f7:36:85:a5:3a:1f:46:
20:3e:47:f2:fd:d0:e2:80:1a:4f:2f:ea:fa:22:17:
c6:3a:c0:ac:0b:91:bc:cd:87:7c:04:45:2d:76:11:
c3:fa:65:89:87:cf:bb:2b:32:5f:53:0f:c8:dd:f6:
0c:2f:3a:57:c0:ef:5a:9a:59:61:6a:b4:c1:c9:99:
b0:29:d3:27:aa:15:c2:89:e5:c5:ad:3e:e5:3b:41:
54:99:e8:aa:7a:bb:a1:9b:b3:74:76:99:d5:f0:23:
bc:c1:28:03:5d:4d:f6:36:96:7b:d3:3a:06:da:87:
a2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AD:34:57:37:1D:55:64:CC:27:5E:6F:AC:29:AC:DF:09:3A:DB:42
X509v3 Authority Key Identifier:
keyid:F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/1600VzcdVWTMJ15vrCms3wk620I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.168.96.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:e3:3a:17:a0:f7:ff:03:07:f2:03:2b:4f:de:b1:d6:63:f9:
3d:b8:8b:10:98:34:9f:02:68:5f:58:4e:f2:d4:51:e8:75:b2:
b3:02:c9:c1:9d:ed:67:8d:61:90:c8:e2:2a:7b:21:eb:ae:87:
c9:01:d9:dd:42:82:b8:cd:1b:a3:98:01:30:97:57:50:d6:ec:
d6:57:76:9c:a0:50:c1:db:7d:89:8d:4b:44:a5:ee:96:75:95:
ba:24:5e:0d:bb:3f:49:26:a7:f3:22:fb:af:ae:ed:69:9f:90:
b2:68:6f:8d:d6:d9:d8:30:69:ae:69:12:60:ac:bb:4e:da:2d:
a5:42:85:6c:9b:20:66:d9:0d:de:fe:7b:02:d6:bb:a6:13:74:
e4:3d:b0:f3:25:d2:8e:06:c7:c4:bb:c2:32:f8:d9:5c:7a:bc:
9e:21:d9:7e:5e:02:37:d0:bb:35:28:69:47:e6:b8:75:83:81:
13:14:6a:0f:c2:fe:51:67:d9:ba:6e:1a:08:2f:c5:3b:f8:15:
da:1c:8c:6c:04:89:b5:8e:5f:04:3f:24:52:87:56:c5:be:ea:
28:14:e3:40:9d:45:5a:af:5b:7d:a2:a9:a3:22:7f:b4:ed:bf:
82:48:11:ef:de:9d:f2:22:47:19:25:a1:af:dc:13:fb:25:b4:
53:3c:a6:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxsKw7DT/QuVwWv7H/THI6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZTQwZjAzOTc5YTNmNGU0YWQzOWRhOTgzYjY3YmE3ZTYy
MTVjMGQwHhcNMjMwMTAyMDg1NDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkN2FkMzQ1NzM3MWQ1NTY0Y2MyNzVlNmZhYzI5YWNkZjA5M2FkYjQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkBxadNAhH/Q2mGPKCS12LJPU05Ih
/kTZXHkFIiXtHg10u2ORc7GnZBFMsejXCwZjrltqdIfNA3/5nK1O4B+2Z5ysPIrH
GQHL5pyEsVvbiw/Slabh8y3uIQ0FtxLrd6O1RaKvtd+DAk46kDSBPK6z0Be0KB26
8KG/M+wpjeU0rgW98g8cJS57VEIcBTexbvc2haU6H0YgPkfy/dDigBpPL+r6IhfG
OsCsC5G8zYd8BEUtdhHD+mWJh8+7KzJfUw/I3fYMLzpXwO9amllharTByZmwKdMn
qhXCieXFrT7lO0FUmeiqeruhm7N0dpnV8CO8wSgDXU32NpZ70zoG2oei4wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNetNFc3HVVkzCdeb6wprN8JOttCMB8GA1UdIwQY
MBaAFPTkDwOXmj9OStOdqYO2e6fmIVwNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU9RUEE1ZWFQMDVLMDUycGc3WjdwLVloWEEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kNGZmYzAtYTUyZC00NjFiLTk3MTkt
YTkxNGUzY2UzOTQxLzEvMTYwMFZ6Y2RWV1RNSjE1dnJDbXMzd2s2MjBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9kNGZmYzAtYTUyZC00NjFiLTk3MTktYTkxNGUzY2UzOTQx
LzEvOU9RUEE1ZWFQMDVLMDUycGc3WjdwLVloWEEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE2ahgMA0G
CSqGSIb3DQEBCwUAA4IBAQCK4zoXoPf/AwfyAytP3rHWY/k9uIsQmDSfAmhfWE7y
1FHodbKzAsnBne1njWGQyOIqeyHrrofJAdndQoK4zRujmAEwl1dQ1uzWV3acoFDB
232JjUtEpe6WdZW6JF4Nuz9JJqfzIvuvru1pn5CyaG+N1tnYMGmuaRJgrLtO2i2l
QoVsmyBm2Q3e/nsC1rumE3TkPbDzJdKOBsfEu8Iy+NlceryeIdl+XgI30Ls1KGlH
5rh1g4ETFGoPwv5RZ9m6bhoIL8U7+BXaHIxsBIm1jl8EPyRSh1bFvuooFONAnUVa
r1t9oqmjIn+07b+CSBHv3p3yIkcZJaGv3BP7JbRTPKZA
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:58 2024 by rpki-client on console-fra.rpki-client.org