Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/2H7kg6qMBlXsfW-Lue9g-ylLvdw.roa
File: 2H7kg6qMBlXsfW-Lue9g-ylLvdw.roa (raw, json)
Hash identifier: lhD7CnFFbvFLoJQaTM/qC24aKqJpUq6IiAGYLVSHr/Y=
Subject key identifier: D8:7E:E4:83:AA:8C:06:55:EC:7D:6F:8B:B9:EF:60:FB:29:4B:BD:DC
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 018798296180E3778380DFCB0B87858F33A1
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/2H7kg6qMBlXsfW-Lue9g-ylLvdw.roa
Signing time: Wed 19 Apr 2023 06:17:41 +0000
ROA not before: Wed 19 Apr 2023 06:17:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209043
IP address blocks: 46.233.44.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 14:53:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:98:29:61:80:e3:77:83:80:df:cb:0b:87:85:8f:33:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Apr 19 06:17:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d87ee483aa8c0655ec7d6f8bb9ef60fb294bbddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:da:4a:dc:7e:9a:2e:ea:2d:bd:52:d2:0d:7a:
62:8a:c7:e5:6d:b4:9b:b1:10:d8:5d:2b:66:bf:d1:
f1:93:d9:14:1a:ba:df:8e:0d:08:90:34:55:32:ec:
56:88:64:0b:60:0f:d1:fe:4c:36:be:81:ac:be:fb:
2e:eb:a1:2e:50:c3:6f:2f:e1:9c:3a:69:78:db:54:
3b:1f:4a:a1:86:04:f8:35:5c:b0:db:0b:6b:f6:3b:
c0:02:39:48:75:d8:de:7f:93:57:01:9b:6b:58:82:
5a:1c:9e:39:b7:b6:df:79:a2:4b:21:9c:60:c0:54:
69:70:40:8d:5c:8f:3a:2d:f7:c1:e1:f2:d7:29:da:
4d:f8:f2:fb:06:6a:18:a7:ea:94:53:e5:77:f7:70:
51:85:94:fc:3e:9b:f0:fa:40:24:9e:3a:f3:cf:dd:
de:03:cd:6c:1c:f4:53:d8:85:28:fb:0c:c5:ba:26:
b8:a4:97:02:d6:2d:2e:61:95:b5:0c:31:95:9b:63:
1d:36:3b:0f:9d:0e:17:2f:2d:76:2b:1a:e1:7f:39:
50:6c:56:f8:b1:7e:5b:98:51:a0:83:9d:45:e3:e7:
5a:c5:00:df:ab:da:7e:a2:23:62:84:01:c4:04:a8:
db:4e:3a:0f:bd:6a:a5:ff:69:e2:f1:20:6e:d2:09:
3b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:7E:E4:83:AA:8C:06:55:EC:7D:6F:8B:B9:EF:60:FB:29:4B:BD:DC
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/2H7kg6qMBlXsfW-Lue9g-ylLvdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.44.0/23
Signature Algorithm: sha256WithRSAEncryption
23:81:b6:48:2b:3a:b4:d4:22:83:31:0e:9d:b7:4c:b4:bb:2f:
5a:ca:b1:ad:99:c4:ee:85:f9:61:50:64:45:62:45:7f:7d:59:
dc:5a:f4:1c:77:3c:c5:f5:c1:34:b3:a7:32:bd:f2:c2:40:ef:
3d:33:85:07:4d:0b:c9:e3:ec:9a:a3:ba:fb:84:7a:87:16:38:
e3:13:eb:cc:1f:45:41:44:c2:45:03:08:e7:81:96:a5:ae:ad:
ef:19:89:7f:cb:87:43:0b:86:5e:df:7a:fb:77:b0:2c:1c:05:
5e:d4:f6:b6:d3:83:68:fc:34:29:84:ed:02:cd:82:00:49:54:
1e:71:9b:56:13:e2:ae:fe:52:43:0d:49:cf:d9:04:ed:d7:a5:
2f:e1:03:4b:48:91:2b:6d:82:7c:f1:d1:a3:54:da:5b:34:de:
e2:3a:a4:79:14:34:57:93:15:4e:42:f9:ed:2b:ef:aa:26:d5:
e2:50:b1:4f:a3:67:3f:00:ec:38:25:e1:38:31:c5:4e:3e:14:
91:de:ec:ef:5f:b2:d4:8d:dc:1d:eb:5e:25:94:87:b9:d2:af:
b2:51:f7:5d:ab:7b:fd:17:aa:3d:44:26:42:fd:6d:de:f6:06:
61:b9:22:93:dc:83:9c:58:df:f0:e6:ed:7f:4e:08:43:43:18:
b6:ab:3a:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYeYKWGA43eDgN/LC4eFjzOhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmYzUwZDBkNDIwNjdiNzZhYjFhMmU4ZTUzM2ZmODQ5YjY1
ZDU2ZjUwHhcNMjMwNDE5MDYxNzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODdlZTQ4M2FhOGMwNjU1ZWM3ZDZmOGJiOWVmNjBmYjI5NGJiZGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtpK3H6aLuotvVLSDXpiisflbbSb
sRDYXStmv9Hxk9kUGrrfjg0IkDRVMuxWiGQLYA/R/kw2voGsvvsu66EuUMNvL+Gc
Oml421Q7H0qhhgT4NVyw2wtr9jvAAjlIddjef5NXAZtrWIJaHJ45t7bfeaJLIZxg
wFRpcECNXI86LffB4fLXKdpN+PL7BmoYp+qUU+V393BRhZT8Ppvw+kAknjrzz93e
A81sHPRT2IUo+wzFuia4pJcC1i0uYZW1DDGVm2MdNjsPnQ4XLy12KxrhfzlQbFb4
sX5bmFGgg51F4+daxQDfq9p+oiNihAHEBKjbTjoPvWql/2ni8SBu0gk7CwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNh+5IOqjAZV7H1vi7nvYPspS73cMB8GA1UdIwQY
MBaAFG/FDQ1CBnt2qxoujlM/+Em2XVb1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjhVTkRVSUdlM2FyR2k2T1V6XzRTYlpkVnZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS9mMmJkNmMtNDg0My00ZWFkLWFhMDkt
M2MxNmZmODQxYWIyLzEvMkg3a2c2cU1CbFhzZlctTHVlOWcteWxMdmR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS9mMmJkNmMtNDg0My00ZWFkLWFhMDktM2MxNmZmODQxYWIy
LzEvYjhVTkRVSUdlM2FyR2k2T1V6XzRTYlpkVnZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLuksMA0G
CSqGSIb3DQEBCwUAA4IBAQAjgbZIKzq01CKDMQ6dt0y0uy9ayrGtmcTuhflhUGRF
YkV/fVncWvQcdzzF9cE0s6cyvfLCQO89M4UHTQvJ4+yao7r7hHqHFjjjE+vMH0VB
RMJFAwjngZalrq3vGYl/y4dDC4Ze33r7d7AsHAVe1Pa204No/DQphO0CzYIASVQe
cZtWE+Ku/lJDDUnP2QTt16Uv4QNLSJErbYJ88dGjVNpbNN7iOqR5FDRXkxVOQvnt
K++qJtXiULFPo2c/AOw4JeE4McVOPhSR3uzvX7LUjdwd614llIe50q+yUfddq3v9
F6o9RCZC/W3e9gZhuSKT3IOcWN/w5u1/TghDQxi2qzrs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:37 2024 by rpki-client on console-fra.rpki-client.org