Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/TRXHpy4dO492btDf7vCNQ63k92Q.roa
File: TRXHpy4dO492btDf7vCNQ63k92Q.roa (raw, json)
Hash identifier: w7x3tFUn47xPfVb0qu6JkaX49h4gowcor9jVXwt7nIM=
Subject key identifier: 4D:15:C7:A7:2E:1D:3B:8F:76:6E:D0:DF:EE:F0:8D:43:AD:E4:F7:64
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018FE1F3E1F096B2CDECD81001C4BE59F944
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/TRXHpy4dO492btDf7vCNQ63k92Q.roa
Signing time: Tue 04 Jun 2024 06:33:27 +0000
ROA not before: Tue 04 Jun 2024 06:33:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 83.147.252.0/22 maxlen: 22
91.186.200.0/23 maxlen: 24
91.186.202.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jun 2024 07:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e1:f3:e1:f0:96:b2:cd:ec:d8:10:01:c4:be:59:f9:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jun 4 06:33:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d15c7a72e1d3b8f766ed0dfeef08d43ade4f764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:05:e5:0d:6e:0d:40:7e:15:fb:9e:88:d4:fb:
8b:a3:11:06:d3:e6:fe:1c:87:bc:31:37:b6:72:ab:
f4:ce:d4:15:64:6f:f1:a2:17:4c:21:b1:08:bc:24:
b9:b8:75:83:00:6f:1c:b9:65:14:f4:55:54:0d:af:
6c:e7:09:80:f1:ef:4b:b4:88:19:31:02:3e:95:d5:
c6:48:bd:0e:e0:31:b6:d8:84:b2:38:64:f1:e5:48:
8a:cc:1b:93:54:bb:77:d3:b0:b2:4a:47:f2:eb:37:
91:32:c8:0f:dc:a4:8a:8b:ec:2e:24:bc:f0:f4:06:
ed:96:44:3f:d0:1c:4e:b3:2b:15:c5:59:ca:d8:56:
29:b7:fa:af:d6:80:d4:ba:f1:e6:09:41:50:7d:f1:
1f:f5:42:3f:d7:b9:76:7f:72:4c:72:e5:35:7d:2f:
cc:f8:d8:01:d1:72:40:8d:45:e0:69:52:db:04:12:
28:74:2f:da:b8:1a:a4:d1:fb:12:37:ca:0c:37:4c:
d0:ee:fa:e3:a2:bd:02:d9:71:82:76:ef:01:f3:c3:
72:84:f0:ae:ee:14:75:fe:2b:42:64:24:87:d5:13:
90:b6:25:4a:11:f0:d0:51:87:01:5d:33:9e:c7:e5:
64:a5:66:c5:e0:c9:85:bd:cf:3e:27:a0:5b:0a:1c:
21:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:15:C7:A7:2E:1D:3B:8F:76:6E:D0:DF:EE:F0:8D:43:AD:E4:F7:64
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/TRXHpy4dO492btDf7vCNQ63k92Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.252.0/22
91.186.200.0/22
Signature Algorithm: sha256WithRSAEncryption
83:65:67:15:df:0c:6e:56:ba:da:92:ae:f4:46:bb:50:62:54:
6a:7d:e1:9c:61:0f:50:58:d0:25:ad:7a:e8:96:7f:49:52:c0:
fc:22:81:fb:15:ab:81:df:1b:ee:e5:ef:85:af:35:ea:fe:7d:
11:9c:1b:61:34:50:80:59:35:35:37:ae:a1:88:4b:98:e5:ba:
4e:59:b3:5c:42:ed:a2:79:61:35:d7:b0:28:6d:57:6f:7f:1b:
48:85:a4:4f:8b:3b:13:22:0a:7a:a8:c5:bd:92:9e:8d:9c:a5:
c0:2a:49:f5:30:23:4d:52:57:2e:56:c3:c1:e0:fe:ea:e7:19:
d8:ed:52:fd:f7:a7:72:76:7f:ac:dd:56:41:59:c6:9e:8a:ed:
bf:ad:c0:58:93:5d:1a:f0:23:16:58:ab:0e:7c:92:a4:04:4c:
c3:50:c3:b0:f8:f9:ca:e5:8b:78:51:d9:d2:08:da:05:46:a4:
4f:d7:e7:d7:45:08:0a:60:a1:02:6f:87:2b:d0:a6:05:de:6c:
40:1c:f1:d4:08:1a:8b:97:44:65:8c:44:95:35:75:bc:bf:88:
c8:66:72:58:01:1e:05:ab:8f:44:81:04:4e:54:88:85:cc:e2:
cc:fc:69:37:0f:80:c7:94:2c:74:2b:1a:96:3b:b8:d7:2d:44:
78:d2:b5:50
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY/h8+HwlrLN7NgQAcS+WflEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjQwNjA0MDYzMzI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDE1YzdhNzJlMWQzYjhmNzY2ZWQwZGZlZWYwOGQ0M2FkZTRmNzY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQXlDW4NQH4V+56I1PuLoxEG0+b+
HIe8MTe2cqv0ztQVZG/xohdMIbEIvCS5uHWDAG8cuWUU9FVUDa9s5wmA8e9LtIgZ
MQI+ldXGSL0O4DG22ISyOGTx5UiKzBuTVLt307CySkfy6zeRMsgP3KSKi+wuJLzw
9AbtlkQ/0BxOsysVxVnK2FYpt/qv1oDUuvHmCUFQffEf9UI/17l2f3JMcuU1fS/M
+NgB0XJAjUXgaVLbBBIodC/auBqk0fsSN8oMN0zQ7vrjor0C2XGCdu8B88NyhPCu
7hR1/itCZCSH1ROQtiVKEfDQUYcBXTOex+VkpWbF4MmFvc8+J6BbChwhnwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFE0Vx6cuHTuPdm7Q3+7wjUOt5PdkMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvVFJYSHB5NGRPNDkyYnREZjd2Q05RNjNrOTJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCU5P8AwQC
W7rIMA0GCSqGSIb3DQEBCwUAA4IBAQCDZWcV3wxuVrrakq70RrtQYlRqfeGcYQ9Q
WNAlrXroln9JUsD8IoH7FauB3xvu5e+FrzXq/n0RnBthNFCAWTU1N66hiEuY5bpO
WbNcQu2ieWE117AobVdvfxtIhaRPizsTIgp6qMW9kp6NnKXAKkn1MCNNUlcuVsPB
4P7q5xnY7VL996dydn+s3VZBWcaeiu2/rcBYk10a8CMWWKsOfJKkBEzDUMOw+PnK
5Yt4UdnSCNoFRqRP1+fXRQgKYKECb4cr0KYF3mxAHPHUCBqLl0RljESVNXW8v4jI
ZnJYAR4Fq49EgQROVIiFzOLM/Gk3D4DHlCx0KxqWO7jXLUR40rVQ
-----END CERTIFICATE-----
Generated at Fri Jun 7 10:21:47 2024 by rpki-client on console-fra.rpki-client.org