Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/TNEz9jPoJ-PR_rHrWLl49ZCN6UE.roa
File: TNEz9jPoJ-PR_rHrWLl49ZCN6UE.roa (raw, json)
Hash identifier: KsQAQ6wc80CZ3r3Mc8rJWvokScS7pzW4DOGZzs+IbLM=
Subject key identifier: 4C:D1:33:F6:33:E8:27:E3:D1:FE:B1:EB:58:B9:78:F5:90:8D:E9:41
Certificate issuer: /CN=33fbdbb20c2d97073c0de8b7caa75ec1eeb191b8
Certificate serial: 01856D13DD1D438A39D631E86A5B931BB6FA
Authority key identifier: 33:FB:DB:B2:0C:2D:97:07:3C:0D:E8:B7:CA:A7:5E:C1:EE:B1:91:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_vbsgwtlwc8Dei3yqdewe6xkbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/TNEz9jPoJ-PR_rHrWLl49ZCN6UE.roa
Signing time: Sun 01 Jan 2023 11:24:56 +0000
ROA not before: Sun 01 Jan 2023 11:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 217.169.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:dd:1d:43:8a:39:d6:31:e8:6a:5b:93:1b:b6:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33fbdbb20c2d97073c0de8b7caa75ec1eeb191b8
Validity
Not Before: Jan 1 11:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cd133f633e827e3d1feb1eb58b978f5908de941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:94:0f:a8:4d:df:5f:9c:2c:d0:a3:ca:c5:21:
97:fe:91:de:bc:a2:f9:77:da:5f:20:a9:c7:6e:2b:
94:ce:74:b0:47:9c:e3:05:94:f0:61:cd:cf:c8:65:
22:30:df:4b:ae:15:4f:40:a4:88:52:44:71:d7:18:
e5:74:52:f3:aa:e7:82:96:4f:25:cd:b5:e5:4a:7e:
8a:fa:db:dd:54:27:4a:d0:b3:94:b3:9a:e1:a3:a2:
c6:28:61:d1:8d:c8:3a:0b:fe:7a:47:54:d3:62:e9:
5a:db:62:ba:4d:dc:98:96:bc:77:4d:e4:00:a3:ff:
50:91:63:ed:a5:d9:63:93:a7:1e:ca:4a:59:a6:af:
67:8c:a1:14:b2:20:8b:f2:c4:00:c0:cb:dc:36:ea:
b4:f2:bb:01:33:13:7e:1a:e3:4f:68:d8:c0:fc:63:
68:a1:f3:55:e8:20:18:f6:12:f4:7a:c1:b6:c1:3d:
76:c7:68:3f:fa:7f:ff:39:33:09:e7:05:f9:90:90:
ba:8b:6e:f2:17:6b:52:2b:5b:6b:09:49:dd:41:02:
a3:9d:a5:66:b6:88:e6:6a:bf:f2:07:c6:1e:6b:87:
ee:fd:d9:67:e7:c3:88:df:c9:08:c8:e5:01:60:96:
b4:e5:65:fb:57:48:2a:09:eb:c9:dd:36:6d:1f:4d:
5f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D1:33:F6:33:E8:27:E3:D1:FE:B1:EB:58:B9:78:F5:90:8D:E9:41
X509v3 Authority Key Identifier:
keyid:33:FB:DB:B2:0C:2D:97:07:3C:0D:E8:B7:CA:A7:5E:C1:EE:B1:91:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_vbsgwtlwc8Dei3yqdewe6xkbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/TNEz9jPoJ-PR_rHrWLl49ZCN6UE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/M_vbsgwtlwc8Dei3yqdewe6xkbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.169.72.0/21
Signature Algorithm: sha256WithRSAEncryption
41:34:2b:c0:0b:51:5c:61:3c:02:20:13:b2:7d:cf:21:db:9b:
04:82:fb:60:7b:5f:67:f4:55:22:02:3c:d6:42:9a:76:74:c7:
52:e2:0a:bf:73:c5:86:d3:fa:28:92:09:55:95:7e:04:e2:63:
6d:79:d4:15:15:ec:08:65:68:ec:85:39:0f:4f:c6:a9:67:3f:
f7:c1:a2:36:67:e1:86:af:4d:32:07:24:42:d2:32:53:7b:52:
22:05:c6:cb:e8:4e:2b:47:44:2e:9b:e6:6c:b3:5c:eb:ef:2b:
9e:89:53:2e:32:c0:c1:8f:f7:5d:5c:f9:92:fc:c4:be:3a:9c:
75:c7:08:06:c8:81:87:11:3d:50:aa:24:8f:19:e4:7c:87:52:
8a:f9:e0:38:32:16:e0:96:64:93:30:e7:be:df:a7:6b:51:9b:
bd:bc:6d:c6:57:ff:3a:56:85:e0:56:fb:38:8a:1c:f0:60:a3:
19:19:6b:4c:69:53:72:92:2f:3b:fb:c2:71:70:92:12:05:87:
ce:36:5f:93:79:e9:f9:10:c1:e0:e7:3f:b5:69:5e:0c:6c:fc:
68:76:69:ae:ff:59:df:2c:d7:a7:a5:23:c4:7f:fb:7f:28:f8:
6f:71:75:9c:45:37:78:6c:36:cf:2c:67:46:fb:9d:64:ce:84:
74:0f:50:37
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtE90dQ4o51jHoaluTG7b6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzZmJkYmIyMGMyZDk3MDczYzBkZThiN2NhYTc1ZWMxZWVi
MTkxYjgwHhcNMjMwMTAxMTEyNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2QxMzNmNjMzZTgyN2UzZDFmZWIxZWI1OGI5NzhmNTkwOGRlOTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAipQPqE3fX5ws0KPKxSGX/pHevKL5
d9pfIKnHbiuUznSwR5zjBZTwYc3PyGUiMN9LrhVPQKSIUkRx1xjldFLzqueClk8l
zbXlSn6K+tvdVCdK0LOUs5rho6LGKGHRjcg6C/56R1TTYula22K6TdyYlrx3TeQA
o/9QkWPtpdljk6ceykpZpq9njKEUsiCL8sQAwMvcNuq08rsBMxN+GuNPaNjA/GNo
ofNV6CAY9hL0esG2wT12x2g/+n//OTMJ5wX5kJC6i27yF2tSK1trCUndQQKjnaVm
tojmar/yB8Yea4fu/dln58OI38kIyOUBYJa05WX7V0gqCevJ3TZtH01fNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEzRM/Yz6Cfj0f6x61i5ePWQjelBMB8GA1UdIwQY
MBaAFDP727IMLZcHPA3ot8qnXsHusZG4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTV92YnNnd3Rsd2M4RGVpM3lxZGV3ZTZ4a2JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8zYTM2MmQtNDE5OC00YjA4LWJiMGEt
ZGJlNDFmYzgzOTllLzEvVE5FejlqUG9KLVBSX3JIcldMbDQ5WkNONlVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi8zYTM2MmQtNDE5OC00YjA4LWJiMGEtZGJlNDFmYzgzOTll
LzEvTV92YnNnd3Rsd2M4RGVpM3lxZGV3ZTZ4a2JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD2alIMA0G
CSqGSIb3DQEBCwUAA4IBAQBBNCvAC1FcYTwCIBOyfc8h25sEgvtge19n9FUiAjzW
Qpp2dMdS4gq/c8WG0/ookglVlX4E4mNtedQVFewIZWjshTkPT8apZz/3waI2Z+GG
r00yByRC0jJTe1IiBcbL6E4rR0Qum+Zss1zr7yueiVMuMsDBj/ddXPmS/MS+Opx1
xwgGyIGHET1QqiSPGeR8h1KK+eA4MhbglmSTMOe+36drUZu9vG3GV/86VoXgVvs4
ihzwYKMZGWtMaVNyki87+8JxcJISBYfONl+Teen5EMHg5z+1aV4MbPxodmmu/1nf
LNenpSPEf/t/KPhvcXWcRTd4bDbPLGdG+51kzoR0D1A3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:57 2024 by rpki-client on console-ams.rpki-client.org