Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/nC-whjmKlrFqR_p8TvNd1PVQTno.roa
File: nC-whjmKlrFqR_p8TvNd1PVQTno.roa (raw, json)
Hash identifier: hQUx6P7y6NfK4WQBU30GZooL6Qe0N/kn3Z5tbNMxgP8=
Subject key identifier: 9C:2F:B0:86:39:8A:96:B1:6A:47:FA:7C:4E:F3:5D:D4:F5:50:4E:7A
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018CF3CD8DDE8D9B07498C620CAE62A93352
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/nC-whjmKlrFqR_p8TvNd1PVQTno.roa
Signing time: Wed 10 Jan 2024 14:36:23 +0000
ROA not before: Wed 10 Jan 2024 14:36:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47216
IP address blocks: 128.65.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 21:26:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:cd:8d:de:8d:9b:07:49:8c:62:0c:ae:62:a9:33:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 10 14:36:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c2fb086398a96b16a47fa7c4ef35dd4f5504e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a3:6a:b3:83:6f:c2:26:a4:db:a0:fc:a6:24:
a3:b4:a5:70:c0:26:54:01:11:42:54:d9:33:f9:99:
14:95:a6:03:97:0a:1a:d5:02:21:b8:2b:cf:08:93:
28:52:16:f6:6b:ef:13:9d:48:46:9b:be:30:18:66:
df:b6:5b:06:a9:86:6d:b5:b7:b4:f7:f6:55:f2:42:
96:c5:7c:80:b6:5e:33:31:06:30:5c:72:77:60:86:
e9:19:4b:53:46:99:76:ce:18:70:85:44:09:a8:5a:
66:e7:64:07:84:fd:af:9f:49:5c:b0:4f:33:29:02:
e3:cb:ce:b1:c8:20:5b:bf:a6:4c:00:f6:20:5d:0a:
10:21:c9:59:d6:b0:61:ae:98:74:05:13:ab:14:a7:
6a:5e:5b:49:cd:df:2d:d8:15:f8:a9:b5:e1:62:59:
b1:01:cd:9f:6f:b5:ff:36:f5:7d:48:35:25:06:3b:
75:ec:2a:36:b3:02:d2:50:a4:48:e7:0b:1f:9d:02:
8c:93:9b:9f:0e:1d:3a:d4:cd:af:89:97:c5:57:35:
d3:7c:33:00:62:3a:1a:df:96:99:81:79:b4:1d:e8:
ee:3d:f6:ba:6b:c9:a3:62:d0:6d:c8:3b:48:65:2f:
33:40:d6:ed:6a:44:32:51:92:d8:6d:c7:e7:9f:ad:
9e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:2F:B0:86:39:8A:96:B1:6A:47:FA:7C:4E:F3:5D:D4:F5:50:4E:7A
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/nC-whjmKlrFqR_p8TvNd1PVQTno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.65.168.0/24
Signature Algorithm: sha256WithRSAEncryption
26:88:d4:46:8e:89:70:d0:8c:07:6b:4d:29:01:d2:2d:de:34:
6f:54:cd:4f:88:cd:c9:d2:5d:85:da:e1:49:f6:fd:18:4c:50:
fc:3c:00:63:7d:90:8d:1c:ef:ab:7a:fa:68:08:75:79:91:0c:
88:7e:3e:52:75:7a:3a:66:d2:6a:e5:05:3c:e7:99:7d:b5:8b:
d7:12:c3:e0:8f:13:d6:78:a3:24:d8:32:0e:04:19:46:ee:16:
91:01:f2:56:53:2d:94:b0:d3:e9:f8:2d:17:9f:62:1f:8c:ae:
cd:9e:e7:a6:b8:3f:ef:9f:3b:49:9f:b8:39:57:13:0b:16:f4:
0b:22:3f:ad:77:c8:c3:fa:05:51:af:8b:1d:c6:6b:40:c6:ac:
a1:cc:18:05:df:82:a1:52:02:fe:32:54:85:cc:d1:89:d8:82:
f0:5f:02:e8:34:cd:2e:ea:a5:83:25:5a:94:74:27:2d:81:18:
65:a9:fa:9f:2f:47:8c:d3:81:df:d2:b2:ba:b1:79:73:00:a0:
a2:3f:1f:b8:93:29:8d:ea:e7:22:a1:85:11:8e:47:a5:ef:0f:
d7:13:b2:f6:66:2d:34:56:33:8f:c7:d2:b6:a8:c0:32:4e:81:
45:fd:a9:e7:cf:a4:65:c7:6f:f5:34:4f:f7:38:2e:dd:46:f6:
62:d3:d9:c7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzzzY3ejZsHSYxiDK5iqTNSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjQwMTEwMTQzNjIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YzJmYjA4NjM5OGE5NmIxNmE0N2ZhN2M0ZWYzNWRkNGY1NTA0ZTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjKNqs4Nvwiak26D8piSjtKVwwCZU
ARFCVNkz+ZkUlaYDlwoa1QIhuCvPCJMoUhb2a+8TnUhGm74wGGbftlsGqYZttbe0
9/ZV8kKWxXyAtl4zMQYwXHJ3YIbpGUtTRpl2zhhwhUQJqFpm52QHhP2vn0lcsE8z
KQLjy86xyCBbv6ZMAPYgXQoQIclZ1rBhrph0BROrFKdqXltJzd8t2BX4qbXhYlmx
Ac2fb7X/NvV9SDUlBjt17Co2swLSUKRI5wsfnQKMk5ufDh061M2viZfFVzXTfDMA
Yjoa35aZgXm0HejuPfa6a8mjYtBtyDtIZS8zQNbtakQyUZLYbcfnn62e6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJwvsIY5ipaxakf6fE7zXdT1UE56MB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvbkMtd2hqbUtsckZxUl9wOFR2TmQxUFZRVG5vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAgEGoMA0G
CSqGSIb3DQEBCwUAA4IBAQAmiNRGjolw0IwHa00pAdIt3jRvVM1PiM3J0l2F2uFJ
9v0YTFD8PABjfZCNHO+revpoCHV5kQyIfj5SdXo6ZtJq5QU855l9tYvXEsPgjxPW
eKMk2DIOBBlG7haRAfJWUy2UsNPp+C0Xn2IfjK7NnuemuD/vnztJn7g5VxMLFvQL
Ij+td8jD+gVRr4sdxmtAxqyhzBgF34KhUgL+MlSFzNGJ2ILwXwLoNM0u6qWDJVqU
dCctgRhlqfqfL0eM04Hf0rK6sXlzAKCiPx+4kymN6ucioYURjkel7w/XE7L2Zi00
VjOPx9K2qMAyToFF/annz6Rlx2/1NE/3OC7dRvZi09nH
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org