Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/T_glM2vy_FdX1cQddYa5-KYiGMw.roa
File: T_glM2vy_FdX1cQddYa5-KYiGMw.roa (raw, json)
Hash identifier: LVjbp0IpPVTcJKGUA5orCEgp/wikPEYaKqH3jZyIacY=
Subject key identifier: 4F:F8:25:33:6B:F2:FC:57:57:D5:C4:1D:75:86:B9:F8:A6:22:18:CC
Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Certificate serial: 018DB70655C3C350906FB8EFD329E1FDBAA1
Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/T_glM2vy_FdX1cQddYa5-KYiGMw.roa
Signing time: Sat 17 Feb 2024 12:24:22 +0000
ROA not before: Sat 17 Feb 2024 12:24:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 217.147.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 22:45:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b7:06:55:c3:c3:50:90:6f:b8:ef:d3:29:e1:fd:ba:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Validity
Not Before: Feb 17 12:24:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ff825336bf2fc5757d5c41d7586b9f8a62218cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d8:e4:fe:66:13:18:9a:b6:ea:fd:81:39:35:
8a:cf:12:40:d0:b1:c2:ef:02:1f:92:ec:23:f2:9a:
ec:91:da:38:03:aa:21:79:20:97:97:de:67:ca:59:
d2:9a:69:8d:83:b8:7a:64:8c:26:49:99:1e:57:b6:
08:5c:df:9b:e9:97:c1:c3:f9:62:7e:cd:1a:95:bf:
ea:39:1b:68:c2:7a:e1:de:bd:b6:13:d6:b1:a7:73:
b5:08:fa:fc:38:17:dd:9f:c3:e0:89:2d:07:96:1e:
94:e8:36:d4:82:76:a6:d5:eb:7e:c9:5e:b6:bd:56:
c2:59:b7:a4:c0:e9:ed:68:32:67:91:c8:dc:26:83:
91:14:05:a2:d1:12:af:68:30:c7:79:52:91:9c:f6:
ce:57:80:a7:df:01:23:bc:c8:5b:af:18:c4:3d:3d:
12:7e:d4:de:e6:22:36:dd:b0:97:7e:8b:0f:6b:44:
f7:23:65:2e:58:90:4d:4b:45:13:1a:01:74:f4:20:
df:7b:8a:3d:ac:59:d6:ba:91:1f:58:79:12:95:a2:
af:f6:dd:4c:fd:e8:b4:c1:8f:d8:07:0c:76:31:ae:
d7:c1:5c:d6:60:35:8e:ed:dc:7b:44:38:03:61:07:
f5:b5:5c:27:4d:3e:67:74:80:9d:57:69:2e:08:f5:
fc:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F8:25:33:6B:F2:FC:57:57:D5:C4:1D:75:86:B9:F8:A6:22:18:CC
X509v3 Authority Key Identifier:
keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/T_glM2vy_FdX1cQddYa5-KYiGMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.167.0/24
Signature Algorithm: sha256WithRSAEncryption
66:66:09:98:11:6d:cc:f5:1c:ea:8b:bc:7f:59:23:81:c5:34:
04:21:56:df:eb:06:0e:7b:34:b0:ae:d1:84:67:e4:9b:4a:dc:
21:e1:32:9c:d9:50:75:cb:fd:56:d4:4b:ca:c4:e6:4b:b8:d8:
c5:e4:27:bb:fa:c1:a3:69:bc:c2:e7:9d:d8:c7:65:dd:40:32:
01:3d:e8:13:80:8d:04:1f:fb:07:78:bf:46:40:38:1c:92:5a:
ab:d3:d5:31:0a:95:9b:c1:6b:ab:81:8e:ca:3f:3e:28:d1:f9:
9c:35:e7:ac:b9:df:b6:62:f9:c9:22:f2:dd:a3:11:28:27:f9:
26:c6:80:17:c2:36:98:8a:d9:77:8a:62:90:dd:9d:9f:31:3a:
11:10:c0:fd:d7:e2:75:10:0b:83:76:ad:de:13:18:96:c4:fd:
79:f4:8b:47:bd:ab:52:9e:da:f4:de:21:df:af:4a:ea:be:11:
9a:e0:84:6d:c9:55:2e:65:ae:fd:98:0d:10:e5:7a:43:eb:12:
b7:18:6d:f4:90:8c:ba:4a:07:54:0b:53:05:ac:6f:90:f3:f1:
ad:0e:cd:f6:d5:01:3d:17:b1:b0:50:35:a2:69:d5:99:24:ba:
45:33:79:ee:c7:de:eb:a6:01:3a:f8:d0:d9:ac:af:29:01:e5:
58:d2:ff:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY23BlXDw1CQb7jv0ynh/bqhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyZjhhYjJiYTI0ODc5ZTQ1YzQ0NTQ4NmZjZWIyMWFmNDY2
NTZkNWEwHhcNMjQwMjE3MTIyNDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZmY4MjUzMzZiZjJmYzU3NTdkNWM0MWQ3NTg2YjlmOGE2MjIxOGNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9jk/mYTGJq26v2BOTWKzxJA0LHC
7wIfkuwj8prskdo4A6oheSCXl95nylnSmmmNg7h6ZIwmSZkeV7YIXN+b6ZfBw/li
fs0alb/qORtownrh3r22E9axp3O1CPr8OBfdn8PgiS0Hlh6U6DbUgnam1et+yV62
vVbCWbekwOntaDJnkcjcJoORFAWi0RKvaDDHeVKRnPbOV4Cn3wEjvMhbrxjEPT0S
ftTe5iI23bCXfosPa0T3I2UuWJBNS0UTGgF09CDfe4o9rFnWupEfWHkSlaKv9t1M
/ei0wY/YBwx2Ma7XwVzWYDWO7dx7RDgDYQf1tVwnTT5ndICdV2kuCPX8oQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE/4JTNr8vxXV9XEHXWGufimIhjMMB8GA1UdIwQY
MBaAFEL4qyuiSHnkXERUhvzrIa9GZW1aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXZpcks2SkllZVJjUkZTR19Pc2hyMFpsYlZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9jMTdjNWQtNzU0My00NDBmLTg3OGYt
MTc2OWZlZjZiZTk2LzEvVF9nbE0ydnlfRmRYMWNRZGRZYTUtS1lpR013LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9jMTdjNWQtNzU0My00NDBmLTg3OGYtMTc2OWZlZjZiZTk2
LzEvUXZpcks2SkllZVJjUkZTR19Pc2hyMFpsYlZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2ZOnMA0G
CSqGSIb3DQEBCwUAA4IBAQBmZgmYEW3M9Rzqi7x/WSOBxTQEIVbf6wYOezSwrtGE
Z+SbStwh4TKc2VB1y/1W1EvKxOZLuNjF5Ce7+sGjabzC553Yx2XdQDIBPegTgI0E
H/sHeL9GQDgcklqr09UxCpWbwWurgY7KPz4o0fmcNeesud+2YvnJIvLdoxEoJ/km
xoAXwjaYitl3imKQ3Z2fMToREMD91+J1EAuDdq3eExiWxP159ItHvatSntr03iHf
r0rqvhGa4IRtyVUuZa79mA0Q5XpD6xK3GG30kIy6SgdUC1MFrG+Q8/GtDs321QE9
F7GwUDWiadWZJLpFM3nux97rpgE6+NDZrK8pAeVY0v+g
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:02 2025 by rpki-client