Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/RPrQQOSU2UKKVxewOqEhsHpk7a8.roa
File: RPrQQOSU2UKKVxewOqEhsHpk7a8.roa (raw, json)
Hash identifier: cDhQa6Se239npXi068yCd3IPKk2HqTjoanXnL3URKFQ=
Subject key identifier: 44:FA:D0:40:E4:94:D9:42:8A:57:17:B0:3A:A1:21:B0:7A:64:ED:AF
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018F7C21E088287CA3DE1B48037CA5BDCBE5
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/RPrQQOSU2UKKVxewOqEhsHpk7a8.roa
Signing time: Wed 15 May 2024 12:02:25 +0000
ROA not before: Wed 15 May 2024 12:02:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 46488
IP address blocks: 94.241.164.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 15 Sep 2024 18:47:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7c:21:e0:88:28:7c:a3:de:1b:48:03:7c:a5:bd:cb:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 15 12:02:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44fad040e494d9428a5717b03aa121b07a64edaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:46:95:d7:bf:a1:ad:e0:6d:87:9d:2c:f7:8b:
b5:00:c0:72:c9:e6:48:85:09:37:9c:57:a5:51:c3:
76:e8:e6:0f:a1:98:10:6f:a2:99:1a:f3:ce:0c:62:
e8:01:5f:df:32:3c:d7:d9:2d:15:bb:7c:5c:6a:1f:
ce:dc:f7:68:dc:f9:f8:27:5e:2f:b4:b9:e2:ff:d9:
8a:1d:01:00:d0:91:d2:aa:f3:72:a6:0d:e4:2b:ed:
98:82:85:3a:39:60:86:8f:1a:41:0c:3f:31:3e:ea:
2c:d7:a5:33:37:f7:de:9f:65:4a:5d:3c:4f:13:8c:
89:a2:93:29:2e:1a:65:fc:27:b2:de:0b:62:d2:50:
71:0f:a6:89:a0:2b:5d:17:16:40:bb:ac:2a:97:04:
87:fd:ed:98:4d:d9:94:02:16:e6:ee:40:29:4a:9b:
aa:85:12:8e:3e:5e:8a:66:f7:cc:30:52:ca:5f:b0:
29:9a:0e:55:57:cf:ff:f3:b0:76:ec:c5:9f:92:07:
9a:b6:d7:45:30:60:85:49:ec:f3:c1:fc:8e:56:63:
b8:03:ad:f4:97:6d:ce:b8:04:32:f3:4e:2f:9b:0a:
95:97:f5:0f:72:7a:6c:d3:8c:b5:4c:d1:ab:4b:e7:
f9:d7:5f:30:3b:f2:b2:1a:ab:28:63:2e:96:10:ef:
ac:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:FA:D0:40:E4:94:D9:42:8A:57:17:B0:3A:A1:21:B0:7A:64:ED:AF
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/RPrQQOSU2UKKVxewOqEhsHpk7a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.164.0/23
Signature Algorithm: sha256WithRSAEncryption
02:c9:4b:44:13:7f:e5:e3:b7:f0:bf:c0:81:59:1a:f0:48:66:
a1:0b:88:44:b2:73:92:a7:35:38:97:48:4d:b1:53:62:6d:36:
4c:71:92:44:31:47:9f:e8:a3:bf:ac:d8:ca:b2:af:25:13:cd:
b5:e1:33:57:38:fa:7c:8a:1f:b9:b1:18:8e:66:62:3f:4c:cf:
75:66:cc:e5:f6:a6:d1:6e:92:f2:99:63:d2:4f:22:28:41:01:
8f:2d:c9:4b:d1:9b:fd:d6:90:35:0b:94:b2:de:26:16:ae:01:
2a:e8:63:f3:4e:7b:9b:24:21:ed:64:55:a3:9f:d7:9f:a6:38:
e9:a1:73:24:cb:5d:58:3f:31:d3:78:18:59:e3:f3:42:02:d4:
98:52:77:58:4c:42:f7:7c:56:ed:43:2b:b2:af:d3:e5:97:55:
b2:5c:35:3d:2e:b2:9f:41:90:45:0f:21:c7:74:42:ac:98:ef:
48:a1:8d:8b:e1:f6:95:75:1c:cf:41:65:f4:23:48:e1:fa:b2:
9a:88:f3:b5:8b:5f:b1:16:3f:05:88:ed:c7:f4:15:60:ac:e7:
2a:9b:b5:e4:4c:55:7d:5c:58:70:28:28:08:51:f0:cd:30:f6:
c1:e6:7c:5a:4d:ed:e6:a9:c1:9f:00:da:d2:4f:0c:28:3e:ff:
02:60:a8:5d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY98IeCIKHyj3htIA3ylvcvlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjQwNTE1MTIwMjI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGZhZDA0MGU0OTRkOTQyOGE1NzE3YjAzYWExMjFiMDdhNjRlZGFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUaV17+hreBth50s94u1AMByyeZI
hQk3nFelUcN26OYPoZgQb6KZGvPODGLoAV/fMjzX2S0Vu3xcah/O3Pdo3Pn4J14v
tLni/9mKHQEA0JHSqvNypg3kK+2YgoU6OWCGjxpBDD8xPuos16UzN/fen2VKXTxP
E4yJopMpLhpl/Cey3gti0lBxD6aJoCtdFxZAu6wqlwSH/e2YTdmUAhbm7kApSpuq
hRKOPl6KZvfMMFLKX7Apmg5VV8//87B27MWfkgeattdFMGCFSezzwfyOVmO4A630
l23OuAQy804vmwqVl/UPcnps04y1TNGrS+f5118wO/KyGqsoYy6WEO+slwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFET60EDklNlCilcXsDqhIbB6ZO2vMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvUlByUVFPU1UyVUtLVnhld09xRWhzSHBrN2E4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBXvGkMA0G
CSqGSIb3DQEBCwUAA4IBAQACyUtEE3/l47fwv8CBWRrwSGahC4hEsnOSpzU4l0hN
sVNibTZMcZJEMUef6KO/rNjKsq8lE8214TNXOPp8ih+5sRiOZmI/TM91Zszl9qbR
bpLymWPSTyIoQQGPLclL0Zv91pA1C5Sy3iYWrgEq6GPzTnubJCHtZFWjn9efpjjp
oXMky11YPzHTeBhZ4/NCAtSYUndYTEL3fFbtQyuyr9Pll1WyXDU9LrKfQZBFDyHH
dEKsmO9IoY2L4faVdRzPQWX0I0jh+rKaiPO1i1+xFj8FiO3H9BVgrOcqm7XkTFV9
XFhwKCgIUfDNMPbB5nxaTe3mqcGfANrSTwwoPv8CYKhd
-----END CERTIFICATE-----
Generated at Sun Sep 15 23:58:36 2024 by rpki-client on console-ams.rpki-client.org