Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/3oEV2eQhS7JJ-BY__9TiVfhlH9A.roa
File: 3oEV2eQhS7JJ-BY__9TiVfhlH9A.roa (raw, json)
Hash identifier: tnWa7n8yTAvic6XBb1+ZdQUes7NbMdiL0xir6VQNMss=
Subject key identifier: DE:81:15:D9:E4:21:4B:B2:49:F8:16:3F:FF:D4:E2:55:F8:65:1F:D0
Certificate issuer: /CN=33fbdbb20c2d97073c0de8b7caa75ec1eeb191b8
Certificate serial: 01856D13DDA69A23C10CFDDF0390865C4857
Authority key identifier: 33:FB:DB:B2:0C:2D:97:07:3C:0D:E8:B7:CA:A7:5E:C1:EE:B1:91:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_vbsgwtlwc8Dei3yqdewe6xkbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/3oEV2eQhS7JJ-BY__9TiVfhlH9A.roa
Signing time: Sun 01 Jan 2023 11:24:56 +0000
ROA not before: Sun 01 Jan 2023 11:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 217.169.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:dd:a6:9a:23:c1:0c:fd:df:03:90:86:5c:48:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33fbdbb20c2d97073c0de8b7caa75ec1eeb191b8
Validity
Not Before: Jan 1 11:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de8115d9e4214bb249f8163fffd4e255f8651fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:71:1c:64:d1:d1:83:84:9f:68:f1:70:bf:29:
5b:7e:39:d8:26:34:f0:48:a1:11:ba:83:86:ec:bc:
86:cb:b5:fb:32:80:c8:f7:ee:ee:e3:fa:0e:9a:df:
fc:22:20:3d:60:f4:29:63:42:60:d9:5a:1d:f6:d5:
d3:d0:ca:dd:e6:31:4c:c9:3a:ea:2f:c0:92:4b:d5:
42:cd:c9:e2:39:a4:7c:84:9b:98:c6:50:6a:02:26:
f0:8a:4e:b3:d5:c9:da:06:4b:c2:a9:99:c5:06:7f:
9c:d5:ed:07:2f:1d:3f:04:d0:30:bd:27:52:97:3e:
07:64:e4:a8:d3:2c:32:43:72:f8:54:db:48:ab:5c:
53:e2:fa:25:17:e9:86:36:01:5a:19:92:46:40:1f:
46:18:06:70:5f:74:7f:87:df:4e:cd:64:c2:43:d6:
0c:8f:9e:db:76:8c:03:e1:e8:2c:44:e1:47:85:17:
e0:dd:64:81:ae:bc:d5:6c:4a:29:26:d7:ed:39:95:
c8:3f:bc:8d:09:88:e8:61:5b:c8:c0:71:a1:49:e7:
88:89:2c:88:8f:5d:9b:96:13:0a:d0:d5:10:2b:66:
ed:94:71:c0:52:63:10:0b:21:70:55:77:fe:b9:d6:
3b:b4:39:2f:f3:17:83:db:dc:8b:cd:d0:17:75:70:
f8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:81:15:D9:E4:21:4B:B2:49:F8:16:3F:FF:D4:E2:55:F8:65:1F:D0
X509v3 Authority Key Identifier:
keyid:33:FB:DB:B2:0C:2D:97:07:3C:0D:E8:B7:CA:A7:5E:C1:EE:B1:91:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_vbsgwtlwc8Dei3yqdewe6xkbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/3oEV2eQhS7JJ-BY__9TiVfhlH9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/M_vbsgwtlwc8Dei3yqdewe6xkbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.169.72.0/21
Signature Algorithm: sha256WithRSAEncryption
66:bf:d4:ea:0f:47:a7:b1:98:ef:89:b1:24:6d:4e:38:b0:88:
5e:1f:60:58:1a:75:d4:f0:1f:d0:34:44:03:11:9f:8a:97:93:
fd:be:9d:a1:90:b3:a9:50:cd:9b:89:7e:ed:3f:1a:c0:49:bf:
5f:e9:3f:6c:db:68:30:26:66:e6:35:f7:29:dd:f6:7d:0b:cf:
04:05:5b:4f:0c:d3:43:32:c6:f4:41:85:32:88:05:0a:5d:8b:
1f:a6:91:81:41:75:8e:bc:c1:8b:8b:23:8a:08:41:ac:3b:82:
da:56:8b:93:23:3e:86:10:18:ae:2e:86:b6:23:85:6a:80:5b:
e0:00:65:03:3b:87:65:71:63:44:c9:b4:ea:88:f1:eb:c4:f6:
b7:d9:d2:3c:e9:26:cd:7c:9a:8c:f0:9a:5c:77:d8:88:2e:25:
9d:aa:de:05:d9:f9:25:37:78:30:51:0e:f3:87:8a:db:8f:2c:
a7:01:f3:32:a0:ca:43:19:8f:98:90:31:9a:f0:d1:de:33:04:
7c:8f:b3:c4:94:e4:1e:80:39:e4:c7:a9:47:3b:31:3f:90:c0:
7f:9e:08:f7:9a:ae:31:e5:12:d7:02:2a:56:37:8f:c6:c8:a8:
32:b0:68:03:22:88:7b:8e:37:cc:a4:fc:c1:35:7d:9f:9e:03:
ea:97:63:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtE92mmiPBDP3fA5CGXEhXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzZmJkYmIyMGMyZDk3MDczYzBkZThiN2NhYTc1ZWMxZWVi
MTkxYjgwHhcNMjMwMTAxMTEyNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTgxMTVkOWU0MjE0YmIyNDlmODE2M2ZmZmQ0ZTI1NWY4NjUxZmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhnEcZNHRg4SfaPFwvylbfjnYJjTw
SKERuoOG7LyGy7X7MoDI9+7u4/oOmt/8IiA9YPQpY0Jg2Vod9tXT0Mrd5jFMyTrq
L8CSS9VCzcniOaR8hJuYxlBqAibwik6z1cnaBkvCqZnFBn+c1e0HLx0/BNAwvSdS
lz4HZOSo0ywyQ3L4VNtIq1xT4volF+mGNgFaGZJGQB9GGAZwX3R/h99OzWTCQ9YM
j57bdowD4egsROFHhRfg3WSBrrzVbEopJtftOZXIP7yNCYjoYVvIwHGhSeeIiSyI
j12blhMK0NUQK2btlHHAUmMQCyFwVXf+udY7tDkv8xeD29yLzdAXdXD4WQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN6BFdnkIUuySfgWP//U4lX4ZR/QMB8GA1UdIwQY
MBaAFDP727IMLZcHPA3ot8qnXsHusZG4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTV92YnNnd3Rsd2M4RGVpM3lxZGV3ZTZ4a2JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8zYTM2MmQtNDE5OC00YjA4LWJiMGEt
ZGJlNDFmYzgzOTllLzEvM29FVjJlUWhTN0pKLUJZX185VGlWZmhsSDlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi8zYTM2MmQtNDE5OC00YjA4LWJiMGEtZGJlNDFmYzgzOTll
LzEvTV92YnNnd3Rsd2M4RGVpM3lxZGV3ZTZ4a2JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD2alIMA0G
CSqGSIb3DQEBCwUAA4IBAQBmv9TqD0ensZjvibEkbU44sIheH2BYGnXU8B/QNEQD
EZ+Kl5P9vp2hkLOpUM2biX7tPxrASb9f6T9s22gwJmbmNfcp3fZ9C88EBVtPDNND
Msb0QYUyiAUKXYsfppGBQXWOvMGLiyOKCEGsO4LaVouTIz6GEBiuLoa2I4VqgFvg
AGUDO4dlcWNEybTqiPHrxPa32dI86SbNfJqM8Jpcd9iILiWdqt4F2fklN3gwUQ7z
h4rbjyynAfMyoMpDGY+YkDGa8NHeMwR8j7PElOQegDnkx6lHOzE/kMB/ngj3mq4x
5RLXAipWN4/GyKgysGgDIoh7jjfMpPzBNX2fngPql2OI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:55 2024 by rpki-client on console-fra.rpki-client.org