Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/FFS3v7b3XrEsRzWkOtqKJ6u-1J0.roa
File: FFS3v7b3XrEsRzWkOtqKJ6u-1J0.roa (raw, json)
Hash identifier: LZLnWzGrNU2bmz4WnqA9kYDva8gQwQr/eqxCnrt//9Y=
Subject key identifier: 14:54:B7:BF:B6:F7:5E:B1:2C:47:35:A4:3A:DA:8A:27:AB:BE:D4:9D
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01864EDA8C61BA74BBF323D32CEB9FE93066
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/FFS3v7b3XrEsRzWkOtqKJ6u-1J0.roa
Signing time: Tue 14 Feb 2023 07:36:31 +0000
ROA not before: Tue 14 Feb 2023 07:36:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 94.241.136.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 09:50:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4e:da:8c:61:ba:74:bb:f3:23:d3:2c:eb:9f:e9:30:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Feb 14 07:36:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1454b7bfb6f75eb12c4735a43ada8a27abbed49d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:43:1d:59:f4:49:b7:cf:10:04:4f:36:07:05:
69:88:42:33:e6:12:f1:5e:67:e2:f2:69:58:21:cf:
28:75:a8:33:96:63:22:65:62:18:92:32:d0:a1:5e:
b9:ea:ae:78:bf:3f:2d:02:0c:4a:d8:79:f5:4e:91:
01:8f:39:05:c1:fb:a6:4a:6d:e3:10:7f:9f:e7:09:
bf:02:04:e1:cf:32:a1:00:37:a0:82:62:9e:42:4e:
77:4f:d7:c7:cf:0e:ac:2a:cf:6b:f2:37:b2:6a:c4:
35:92:04:69:37:70:e4:0d:8b:40:fd:e5:78:ba:57:
0f:bc:c8:ae:6c:43:d1:ba:25:24:53:6d:b4:ea:2d:
bf:74:7a:c7:e6:9a:ad:3b:c6:71:da:ae:ba:de:f3:
5d:b5:e0:bf:a2:88:50:a3:4c:bc:45:d1:8d:ff:49:
2e:fb:84:61:d9:46:3f:9d:cd:91:bd:de:cd:65:14:
ff:de:5a:d3:47:00:3e:f6:b4:ce:ca:89:9d:d6:b3:
7a:14:f8:43:02:97:d4:41:10:19:a8:e1:ab:cc:b9:
60:2b:f4:4f:8f:1c:15:0d:4d:26:37:4a:73:34:3d:
fa:38:2f:a7:f9:b3:b9:3b:04:bc:9d:a1:e7:46:bb:
94:03:75:76:ce:ed:07:6c:0a:bf:2a:a6:e3:8d:18:
83:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:54:B7:BF:B6:F7:5E:B1:2C:47:35:A4:3A:DA:8A:27:AB:BE:D4:9D
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/FFS3v7b3XrEsRzWkOtqKJ6u-1J0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.136.0/21
Signature Algorithm: sha256WithRSAEncryption
91:51:16:3f:dd:24:c4:0f:7b:b7:4e:1f:b3:4b:74:38:4d:fb:
56:0b:fa:cf:2a:27:41:5b:d8:45:9d:41:00:09:25:ba:74:ba:
89:e1:c7:a8:57:11:67:10:59:dd:1a:16:64:74:cb:bd:f8:45:
95:28:93:83:8e:21:aa:21:63:19:53:48:28:3c:1c:39:64:53:
bb:3e:8e:8c:cd:38:fb:ef:cc:1b:1b:1a:73:a3:52:9c:99:e9:
2e:8e:f7:57:f6:2c:af:c7:ce:ad:7b:d6:0e:38:ea:3f:3e:b0:
46:28:87:43:51:35:d3:16:58:7e:f2:ff:61:67:56:9c:b7:50:
07:19:91:d1:0f:4a:1d:ad:7f:48:9c:a0:27:8e:17:00:71:72:
c9:45:7d:79:0b:b4:94:47:ab:1a:11:a6:32:0c:d1:29:05:46:
4d:07:3a:b5:3f:60:d6:c1:d4:ba:54:b7:9f:ec:80:f9:59:eb:
a7:94:7c:a2:ba:55:8e:db:24:50:64:49:d2:95:10:4c:36:38:
f6:1c:6e:81:16:85:b0:f5:b1:33:f9:8c:e2:84:ed:45:d9:ce:
77:00:85:2e:e2:56:89:c4:85:82:68:f4:6b:5f:1a:a0:6f:81:
76:7d:cc:85:a4:a5:fc:53:c9:51:e6:55:f4:5f:7d:54:97:bb:
39:b7:5a:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZO2oxhunS78yPTLOuf6TBmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjMwMjE0MDczNjMxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDU0YjdiZmI2Zjc1ZWIxMmM0NzM1YTQzYWRhOGEyN2FiYmVkNDlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEMdWfRJt88QBE82BwVpiEIz5hLx
Xmfi8mlYIc8odagzlmMiZWIYkjLQoV656q54vz8tAgxK2Hn1TpEBjzkFwfumSm3j
EH+f5wm/AgThzzKhADeggmKeQk53T9fHzw6sKs9r8jeyasQ1kgRpN3DkDYtA/eV4
ulcPvMiubEPRuiUkU2206i2/dHrH5pqtO8Zx2q663vNdteC/oohQo0y8RdGN/0ku
+4Rh2UY/nc2Rvd7NZRT/3lrTRwA+9rTOyomd1rN6FPhDApfUQRAZqOGrzLlgK/RP
jxwVDU0mN0pzND36OC+n+bO5OwS8naHnRruUA3V2zu0HbAq/KqbjjRiDnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBRUt7+2916xLEc1pDraiiervtSdMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvRkZTM3Y3YjNYckVzUnpXa090cUtKNnUtMUowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXvGIMA0G
CSqGSIb3DQEBCwUAA4IBAQCRURY/3STED3u3Th+zS3Q4TftWC/rPKidBW9hFnUEA
CSW6dLqJ4ceoVxFnEFndGhZkdMu9+EWVKJODjiGqIWMZU0goPBw5ZFO7Po6MzTj7
78wbGxpzo1KcmekujvdX9iyvx86te9YOOOo/PrBGKIdDUTXTFlh+8v9hZ1act1AH
GZHRD0odrX9InKAnjhcAcXLJRX15C7SUR6saEaYyDNEpBUZNBzq1P2DWwdS6VLef
7ID5WeunlHyiulWO2yRQZEnSlRBMNjj2HG6BFoWw9bEz+YzihO1F2c53AIUu4laJ
xIWCaPRrXxqgb4F2fcyFpKX8U8lR5lX0X31Ul7s5t1oM
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org