Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/nP_26GP-8rtqT94wUM4mGD66v48.roa
File: nP_26GP-8rtqT94wUM4mGD66v48.roa (raw, json)
Hash identifier: m/NXU0Yp82SMvTI3FmuTpg+814eVQ1h/YnLqWJCFPXg=
Subject key identifier: 9C:FF:F6:E8:63:FE:F2:BB:6A:4F:DE:30:50:CE:26:18:3E:BA:BF:8F
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 0186543D0E357DCC9042FF1AF8B2CF76F7AC
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/nP_26GP-8rtqT94wUM4mGD66v48.roa
Signing time: Wed 15 Feb 2023 08:42:12 +0000
ROA not before: Wed 15 Feb 2023 08:42:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200856
IP address blocks: 212.19.58.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 04 Apr 2023 06:48:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:3d:0e:35:7d:cc:90:42:ff:1a:f8:b2:cf:76:f7:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Feb 15 08:42:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cfff6e863fef2bb6a4fde3050ce26183ebabf8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:57:c2:01:f1:ce:ec:9c:7a:f9:19:7c:d3:6c:
be:9f:43:d3:98:f7:fc:13:7c:71:b4:ce:c1:b9:f2:
7c:f7:c4:fa:2b:b1:63:bc:f7:47:ce:58:3a:08:fc:
9d:53:a1:df:26:2d:aa:a3:3c:99:3e:72:91:10:a4:
be:66:99:22:62:f3:f1:42:9e:b0:b5:bb:66:ef:81:
45:d1:c9:cb:53:6f:6b:12:38:2b:e5:a7:80:6b:0a:
69:66:76:37:b3:70:a9:4e:d8:b2:ea:62:c8:a5:8b:
ea:c3:47:de:bd:ad:c7:ae:34:cc:8e:e2:ef:0f:29:
a3:c2:04:e8:07:da:ad:30:10:62:a0:4d:84:35:9b:
0c:38:00:3d:7f:d3:a8:e0:50:07:52:08:e3:40:c1:
16:7c:dc:b8:29:88:56:6a:2d:81:2e:14:68:69:38:
ca:b8:3f:26:f9:cf:29:7c:bc:ab:40:0a:16:a6:e9:
a5:25:ca:b3:29:67:4c:d0:92:c9:4e:2e:36:f2:61:
64:71:a8:81:c6:98:85:f2:d4:b9:06:95:5b:a9:27:
ed:37:09:18:7f:cb:17:a8:43:48:ed:8b:7b:e9:b9:
47:35:ec:88:12:78:b0:87:d5:5a:bd:8b:e3:44:32:
ca:58:6c:a2:6b:1c:2a:4b:2e:b5:8c:72:ed:3d:23:
7b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:FF:F6:E8:63:FE:F2:BB:6A:4F:DE:30:50:CE:26:18:3E:BA:BF:8F
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/nP_26GP-8rtqT94wUM4mGD66v48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.19.58.0/24
Signature Algorithm: sha256WithRSAEncryption
90:01:c1:95:78:44:12:22:74:e5:00:fc:b7:e7:2b:f6:a5:d7:
4f:9f:09:9d:43:a8:f3:3e:3e:38:11:67:6a:d9:61:a2:02:92:
9f:c6:38:ce:80:ad:35:eb:e1:7b:8f:ac:33:eb:f4:17:69:20:
b3:1f:02:a9:40:36:0d:ae:ff:fb:1a:ff:ba:04:3b:91:d1:41:
73:fc:6d:18:31:66:f5:60:d5:3a:85:c6:c1:c8:59:1e:4b:b1:
2b:7b:48:e1:d0:c7:06:11:d6:34:a6:7e:03:83:f6:b6:2b:e1:
13:98:7b:3f:a4:1b:13:09:45:89:fa:3c:f4:f6:34:ba:91:a6:
bb:29:b0:2b:4e:90:10:0a:7b:5a:47:e5:b2:28:2f:46:8a:ee:
0f:ad:07:6f:65:9c:0a:fa:b6:bf:6f:7a:9e:64:39:f8:00:68:
21:1f:1f:83:f7:bf:9d:34:47:5b:99:ab:a3:5d:21:73:c5:bd:
43:2d:cf:62:9d:a1:ff:c7:4f:aa:c5:61:b1:89:a7:c6:0e:d1:
cb:47:7c:35:8e:42:95:75:69:c2:1c:fe:60:f7:6d:32:b6:19:
f9:a2:51:cd:27:c3:5d:31:3c:00:9a:b3:9f:4c:5d:9b:0f:b8:
63:4b:2a:a6:c2:4e:0f:f9:72:bc:d8:c7:2e:8d:3a:b2:60:06:
fe:58:98:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZUPQ41fcyQQv8a+LLPdvesMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkOGJhMGE1MmM0MjEyOWFmMWQ0Zjc0M2ZlYjMzYmIxNDRk
NGJiNWMwHhcNMjMwMjE1MDg0MjEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Y2ZmZjZlODYzZmVmMmJiNmE0ZmRlMzA1MGNlMjYxODNlYmFiZjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAilfCAfHO7Jx6+Rl802y+n0PTmPf8
E3xxtM7BufJ898T6K7FjvPdHzlg6CPydU6HfJi2qozyZPnKREKS+ZpkiYvPxQp6w
tbtm74FF0cnLU29rEjgr5aeAawppZnY3s3CpTtiy6mLIpYvqw0feva3HrjTMjuLv
DymjwgToB9qtMBBioE2ENZsMOAA9f9Oo4FAHUgjjQMEWfNy4KYhWai2BLhRoaTjK
uD8m+c8pfLyrQAoWpumlJcqzKWdM0JLJTi428mFkcaiBxpiF8tS5BpVbqSftNwkY
f8sXqENI7Yt76blHNeyIEniwh9VavYvjRDLKWGyiaxwqSy61jHLtPSN7kwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJz/9uhj/vK7ak/eMFDOJhg+ur+PMB8GA1UdIwQY
MBaAFD2LoKUsQhKa8dT3Q/6zO7FE1LtcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFl1Z3BTeENFcHJ4MVBkRF9yTTdzVVRVdTF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9mZjZmNGEtOGQ1Zi00NWIyLTg3NWMt
YTU2ODM4NDRlNzkyLzEvblBfMjZHUC04cnRxVDk0d1VNNG1HRDY2djQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9mZjZmNGEtOGQ1Zi00NWIyLTg3NWMtYTU2ODM4NDRlNzky
LzEvUFl1Z3BTeENFcHJ4MVBkRF9yTTdzVVRVdTF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BM6MA0G
CSqGSIb3DQEBCwUAA4IBAQCQAcGVeEQSInTlAPy35yv2pddPnwmdQ6jzPj44EWdq
2WGiApKfxjjOgK016+F7j6wz6/QXaSCzHwKpQDYNrv/7Gv+6BDuR0UFz/G0YMWb1
YNU6hcbByFkeS7Ere0jh0McGEdY0pn4Dg/a2K+ETmHs/pBsTCUWJ+jz09jS6kaa7
KbArTpAQCntaR+WyKC9Giu4PrQdvZZwK+ra/b3qeZDn4AGghHx+D97+dNEdbmauj
XSFzxb1DLc9inaH/x0+qxWGxiafGDtHLR3w1jkKVdWnCHP5g920ythn5olHNJ8Nd
MTwAmrOfTF2bD7hjSyqmwk4P+XK82McujTqyYAb+WJjw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:36 2024 by rpki-client on console-ams.rpki-client.org