Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/IfCaGPoTtXMobNvjS1AbODZxhDk.roa
File: IfCaGPoTtXMobNvjS1AbODZxhDk.roa (raw, json)
Hash identifier: 65JPAwCwdSWLq4D6wc+6wzov3h23YxAeRgyci6Lov3A=
Subject key identifier: 21:F0:9A:18:FA:13:B5:73:28:6C:DB:E3:4B:50:1B:38:36:71:84:39
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018E34BE397B6F11868CFC91B0D2AD6EF899
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/IfCaGPoTtXMobNvjS1AbODZxhDk.roa
Signing time: Tue 12 Mar 2024 22:17:45 +0000
ROA not before: Tue 12 Mar 2024 22:17:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397423
IP address blocks: 94.241.164.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 22:06:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:34:be:39:7b:6f:11:86:8c:fc:91:b0:d2:ad:6e:f8:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Mar 12 22:17:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21f09a18fa13b573286cdbe34b501b3836718439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a7:33:67:b5:3b:91:93:80:cd:b1:e3:e9:ec:
b5:ab:4a:97:64:75:0c:40:8f:4d:8c:22:c0:0d:a2:
e3:5c:23:69:4c:fd:e4:26:26:13:1f:e9:ac:94:d1:
4f:04:05:b4:27:8f:d1:45:53:77:6d:f7:73:ff:34:
a7:ec:95:65:f3:f6:5a:17:1e:09:62:0d:7c:8e:d0:
36:5a:2e:f8:7e:99:66:c5:10:0a:5c:66:77:7f:69:
1e:a9:b9:a0:61:60:59:2f:1d:61:66:25:8a:44:34:
ab:a8:a9:0b:19:cd:12:70:4e:e2:af:25:44:85:38:
c7:20:4a:25:ad:ee:17:d3:dd:c2:30:9d:0d:2d:52:
07:ef:d7:d7:22:04:05:ea:7c:00:34:42:5d:bb:a4:
6b:87:9b:8a:03:6f:c1:90:15:a7:2a:6d:aa:10:48:
60:b7:73:36:4b:45:9b:6a:ca:be:28:54:f1:e1:c5:
de:33:ce:2d:03:74:e9:3c:7e:19:ee:38:ab:18:3f:
fd:67:6e:b5:37:da:15:38:10:04:ec:5f:93:ec:90:
15:4d:33:30:5a:ea:dd:a9:3d:d8:46:f1:c5:4b:d8:
a9:3c:fd:fe:09:7e:34:c0:d4:7f:7b:50:42:d1:07:
04:07:27:e0:71:64:9b:4a:f9:a1:84:b2:8e:39:e1:
c2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F0:9A:18:FA:13:B5:73:28:6C:DB:E3:4B:50:1B:38:36:71:84:39
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/IfCaGPoTtXMobNvjS1AbODZxhDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.164.0/23
Signature Algorithm: sha256WithRSAEncryption
69:6b:9e:fb:22:2d:3f:7b:91:7b:96:96:7e:66:16:88:b8:f5:
bd:9f:40:6e:5f:b9:59:52:74:3f:a0:85:21:67:2d:1a:66:4b:
b8:11:81:63:11:1c:94:ec:b8:81:c3:25:b2:8f:e1:91:10:a5:
30:da:55:c3:10:5a:c4:ed:59:10:f3:74:7e:a6:b2:ec:88:10:
81:87:52:4c:30:70:49:36:e0:88:38:2d:51:15:99:9a:2f:c7:
ef:3e:92:c3:79:a1:e2:62:7c:f3:f1:43:d1:98:20:0a:1e:a4:
1f:8b:4c:7c:56:0b:1a:3d:5a:11:9d:b4:b4:0f:5a:f3:98:2c:
ed:21:b9:8b:76:34:85:cb:1e:1e:c2:37:a8:30:dc:9e:88:ca:
3e:88:68:1f:e8:c6:c1:7c:db:f9:52:86:be:af:86:a2:c1:34:
4b:cf:ff:ff:07:16:89:80:90:d7:e0:73:b1:50:27:8a:aa:26:
87:7b:ac:29:6d:83:ef:89:7d:54:7a:76:87:52:a2:f2:a1:cb:
ce:78:51:d2:76:86:8b:3b:bb:d7:70:f8:9b:87:6c:4e:73:a4:
89:3b:4b:58:f7:43:c7:e4:6d:c0:35:99:d8:38:81:8c:c0:0a:
ba:89:82:80:bb:4b:d0:bb:da:30:da:33:f4:24:7c:cd:40:22:
36:df:fb:5c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY40vjl7bxGGjPyRsNKtbviZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjQwMzEyMjIxNzQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMWYwOWExOGZhMTNiNTczMjg2Y2RiZTM0YjUwMWIzODM2NzE4NDM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgaczZ7U7kZOAzbHj6ey1q0qXZHUM
QI9NjCLADaLjXCNpTP3kJiYTH+mslNFPBAW0J4/RRVN3bfdz/zSn7JVl8/ZaFx4J
Yg18jtA2Wi74fplmxRAKXGZ3f2keqbmgYWBZLx1hZiWKRDSrqKkLGc0ScE7iryVE
hTjHIEolre4X093CMJ0NLVIH79fXIgQF6nwANEJdu6Rrh5uKA2/BkBWnKm2qEEhg
t3M2S0Wbasq+KFTx4cXeM84tA3TpPH4Z7jirGD/9Z261N9oVOBAE7F+T7JAVTTMw
WurdqT3YRvHFS9ipPP3+CX40wNR/e1BC0QcEByfgcWSbSvmhhLKOOeHCNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCHwmhj6E7VzKGzb40tQGzg2cYQ5MB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvSWZDYUdQb1R0WE1vYk52alMxQWJPRFp4aERrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBXvGkMA0G
CSqGSIb3DQEBCwUAA4IBAQBpa577Ii0/e5F7lpZ+ZhaIuPW9n0BuX7lZUnQ/oIUh
Zy0aZku4EYFjERyU7LiBwyWyj+GREKUw2lXDEFrE7VkQ83R+prLsiBCBh1JMMHBJ
NuCIOC1RFZmaL8fvPpLDeaHiYnzz8UPRmCAKHqQfi0x8VgsaPVoRnbS0D1rzmCzt
IbmLdjSFyx4ewjeoMNyeiMo+iGgf6MbBfNv5Uoa+r4aiwTRLz///BxaJgJDX4HOx
UCeKqiaHe6wpbYPviX1UenaHUqLyocvOeFHSdoaLO7vXcPibh2xOc6SJO0tY90PH
5G3ANZnYOIGMwAq6iYKAu0vQu9ow2jP0JHzNQCI23/tc
-----END CERTIFICATE-----
Generated at Wed Mar 13 23:03:51 2024 by rpki-client on console-fra.rpki-client.org