Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/enfW3TUmbHXIZzNHo6XNeY32xK4.roa
File: enfW3TUmbHXIZzNHo6XNeY32xK4.roa (raw, json)
Hash identifier: TDsNEIaRHS13Y6v6Bv+NlevgJCfXuKDE3Kb1Jxku+To=
Subject key identifier: 7A:77:D6:DD:35:26:6C:75:C8:67:33:47:A3:A5:CD:79:8D:F6:C4:AE
Certificate issuer: /CN=8b054485ee62c6f1939613cba20669eef4504f79
Certificate serial: 01856F66CA708C4401BEDFB6D2A53D6C6EF3
Authority key identifier: 8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/enfW3TUmbHXIZzNHo6XNeY32xK4.roa
Signing time: Sun 01 Jan 2023 22:14:45 +0000
ROA not before: Sun 01 Jan 2023 22:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59908
IP address blocks: 141.170.208.0/21 maxlen: 24
141.170.214.0/24 maxlen: 24
185.67.112.0/22 maxlen: 24
2a00:a3a0::/32 maxlen: 96
2a03:2460::/32 maxlen: 96
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:ca:70:8c:44:01:be:df:b6:d2:a5:3d:6c:6e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b054485ee62c6f1939613cba20669eef4504f79
Validity
Not Before: Jan 1 22:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a77d6dd35266c75c8673347a3a5cd798df6c4ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:48:81:43:d3:25:2d:ed:8e:e4:4a:fa:36:30:
08:eb:16:a4:c1:b1:db:a6:01:19:21:6e:9f:91:b8:
17:05:86:99:e9:84:fa:dc:ed:8e:f7:df:85:c7:52:
bc:96:9f:4a:30:0a:09:25:d4:ba:c9:bf:5b:58:4a:
60:01:c6:d6:c7:87:d5:c7:cd:a0:47:fc:d3:7a:79:
fd:90:3f:4a:4e:68:c1:b6:73:8e:cf:00:ee:2a:5b:
12:ee:4d:9b:4b:7b:4a:a3:bf:fd:32:ad:9c:6e:4d:
16:7e:c9:ce:5d:86:e8:e9:83:4a:4e:31:58:64:d1:
32:2b:ab:e0:6e:e3:e6:82:31:99:62:6a:d2:e1:38:
bc:34:ff:54:ee:b9:cf:13:f1:4d:8f:b9:3b:72:7d:
a2:27:25:9d:d0:da:3d:1d:50:55:9b:af:11:53:38:
b3:55:59:b4:4f:f1:6c:d6:c6:2b:9d:ce:bb:78:dc:
f9:95:cc:ec:93:84:d7:30:ac:f5:5b:21:8a:59:b1:
24:8c:2b:44:87:47:77:55:4b:35:53:bb:a3:93:7d:
2f:cc:9e:fb:5e:fc:d5:d2:6f:df:dd:85:10:13:27:
4b:21:b7:8b:00:c7:72:84:41:bf:27:16:a6:0d:b4:
1d:f4:29:64:02:9f:20:20:fc:9f:a5:1c:0d:8f:bb:
05:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:77:D6:DD:35:26:6C:75:C8:67:33:47:A3:A5:CD:79:8D:F6:C4:AE
X509v3 Authority Key Identifier:
keyid:8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/enfW3TUmbHXIZzNHo6XNeY32xK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.170.208.0/21
185.67.112.0/22
IPv6:
2a00:a3a0::/32
2a03:2460::/32
Signature Algorithm: sha256WithRSAEncryption
36:fe:74:76:9f:95:6c:86:ac:b9:74:fa:bb:8a:b2:25:71:15:
09:b1:f3:56:4e:d2:fd:ac:cd:51:91:da:32:34:65:ce:43:f1:
2f:cc:f0:40:06:93:1e:ff:72:ed:0d:e6:36:14:bc:99:6f:72:
0a:f8:21:81:e7:e9:aa:02:c5:7f:68:a5:56:2a:d4:5e:42:89:
3b:fd:7f:f8:b4:b1:ba:24:89:01:fc:a2:a0:57:42:e4:7a:35:
89:32:9d:05:d5:e2:34:7a:eb:01:94:7e:39:a1:30:59:f8:e2:
8b:86:b4:fe:73:46:81:92:9b:85:7f:b4:88:a0:97:a1:4c:20:
f5:31:49:02:f2:85:7f:08:e8:b2:09:76:e8:88:ed:c5:dc:b1:
94:de:2f:c5:84:6f:7c:17:df:6f:db:37:7d:70:ec:7e:ea:17:
a0:ea:18:b7:b7:b5:11:67:28:a0:f1:71:bd:36:2a:ab:5c:c8:
82:dc:f7:9f:98:f1:f6:bb:ae:a5:b0:d0:bf:a8:d1:33:67:35:
95:14:1b:3d:4c:12:51:51:a7:52:61:aa:72:d4:61:f1:cc:62:
6a:42:5d:4a:1f:e4:20:25:be:c4:68:f7:92:6c:90:4c:20:08:
e7:a6:da:48:0b:50:e1:f0:15:29:2e:94:6c:f6:0e:ba:8a:e4:
0e:82:05:5d
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAYVvZspwjEQBvt+20qU9bG7zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMDU0NDg1ZWU2MmM2ZjE5Mzk2MTNjYmEyMDY2OWVlZjQ1
MDRmNzkwHhcNMjMwMTAxMjIxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTc3ZDZkZDM1MjY2Yzc1Yzg2NzMzNDdhM2E1Y2Q3OThkZjZjNGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUiBQ9MlLe2O5Er6NjAI6xakwbHb
pgEZIW6fkbgXBYaZ6YT63O2O99+Fx1K8lp9KMAoJJdS6yb9bWEpgAcbWx4fVx82g
R/zTenn9kD9KTmjBtnOOzwDuKlsS7k2bS3tKo7/9Mq2cbk0WfsnOXYbo6YNKTjFY
ZNEyK6vgbuPmgjGZYmrS4Ti8NP9U7rnPE/FNj7k7cn2iJyWd0No9HVBVm68RUziz
VVm0T/Fs1sYrnc67eNz5lczsk4TXMKz1WyGKWbEkjCtEh0d3VUs1U7ujk30vzJ77
XvzV0m/f3YUQEydLIbeLAMdyhEG/JxamDbQd9ClkAp8gIPyfpRwNj7sFmwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFHp31t01Jmx1yGczR6OlzXmN9sSuMB8GA1UdIwQY
MBaAFIsFRIXuYsbxk5YTy6IGae70UE95MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83NzljMDktZjQ5YS00YjM4LWE3Nzgt
NmJjMzkwOTk1Y2FiLzEvZW5mVzNUVW1iSFhJWnpOSG82WE5lWTMyeEs0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC83NzljMDktZjQ5YS00YjM4LWE3NzgtNmJjMzkwOTk1Y2Fi
LzEvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjASBAIAATAMAwQDjarQAwQC
uUNwMBQEAgACMA4DBQAqAKOgAwUAKgMkYDANBgkqhkiG9w0BAQsFAAOCAQEANv50
dp+VbIasuXT6u4qyJXEVCbHzVk7S/azNUZHaMjRlzkPxL8zwQAaTHv9y7Q3mNhS8
mW9yCvghgefpqgLFf2ilVirUXkKJO/1/+LSxuiSJAfyioFdC5Ho1iTKdBdXiNHrr
AZR+OaEwWfjii4a0/nNGgZKbhX+0iKCXoUwg9TFJAvKFfwjosgl26IjtxdyxlN4v
xYRvfBffb9s3fXDsfuoXoOoYt7e1EWcooPFxvTYqq1zIgtz3n5jx9ruupbDQv6jR
M2c1lRQbPUwSUVGnUmGqctRh8cxiakJdSh/kICW+xGj3kmyQTCAI56baSAtQ4fAV
KS6UbPYOuorkDoIFXQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:20 2024 by rpki-client on console-fra.rpki-client.org