Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/j_nft0mOaZDkSi_veDQ7t5ybdQc.roa
File: j_nft0mOaZDkSi_veDQ7t5ybdQc.roa (raw, json)
Hash identifier: QBukBQS4KRDfzQAPztQkkYJESR4iXYpjhQdY34Jh+SY=
Subject key identifier: 8F:F9:DF:B7:49:8E:69:90:E4:4A:2F:EF:78:34:3B:B7:9C:9B:75:07
Certificate issuer: /CN=c9b232958097b5863eafd047bb315171eaa01fb7
Certificate serial: 01856FC27A381D985FCA07B6BD36E7AA736E
Authority key identifier: C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/j_nft0mOaZDkSi_veDQ7t5ybdQc.roa
Signing time: Sun 01 Jan 2023 23:54:54 +0000
ROA not before: Sun 01 Jan 2023 23:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42890
IP address blocks: 178.255.32.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:7a:38:1d:98:5f:ca:07:b6:bd:36:e7:aa:73:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b232958097b5863eafd047bb315171eaa01fb7
Validity
Not Before: Jan 1 23:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ff9dfb7498e6990e44a2fef78343bb79c9b7507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3b:a5:a6:33:a9:c8:ef:dd:96:37:93:88:bf:
80:2e:23:c5:7c:a8:c6:ed:bd:0a:4c:61:21:3b:db:
43:59:de:a6:1c:1e:06:aa:3e:a2:00:db:a8:91:9a:
4a:b6:ec:27:fa:2f:25:5f:97:8a:0b:d0:f4:26:53:
5d:e4:49:6d:46:a2:be:a5:1b:87:27:88:f1:c8:c7:
1d:07:8d:5e:89:bf:c5:77:5b:70:10:e2:7e:1b:cc:
f4:ab:4f:de:52:38:33:f6:ea:01:72:d2:90:04:31:
f4:59:f8:15:37:18:d4:af:9e:ff:7a:c0:53:48:91:
a6:9b:dc:89:63:ab:ce:53:ea:f4:f9:6e:11:34:fa:
ba:92:ae:df:34:10:4c:a0:27:f2:aa:63:cc:cc:f7:
ef:ea:fe:35:ca:cd:be:91:38:78:46:02:39:c0:f5:
20:06:9b:8e:f1:bf:17:8e:07:81:cd:ce:77:b2:62:
14:b1:89:f4:22:24:44:ec:67:34:55:5b:b0:94:61:
09:8e:55:bc:3a:b1:85:ba:db:22:3f:05:25:c6:19:
66:dd:bc:58:ed:aa:25:2a:e8:3d:ad:92:20:0f:c1:
26:a8:8a:2f:e9:b6:3d:47:58:1a:f8:21:28:11:ba:
59:47:40:27:f5:d5:55:91:16:dd:25:3c:ae:ae:ce:
6f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F9:DF:B7:49:8E:69:90:E4:4A:2F:EF:78:34:3B:B7:9C:9B:75:07
X509v3 Authority Key Identifier:
keyid:C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/j_nft0mOaZDkSi_veDQ7t5ybdQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/ybIylYCXtYY-r9BHuzFRceqgH7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.32.0/22
Signature Algorithm: sha256WithRSAEncryption
37:fd:01:46:5c:31:46:5c:b1:ce:f6:f3:b9:53:1e:05:c3:e4:
c3:6a:61:52:40:58:61:6f:a9:62:02:5c:72:e6:67:a6:3b:cc:
a0:d5:f5:6e:92:3e:42:cf:fa:bd:2e:4a:3d:96:9a:e3:df:38:
c7:fd:2d:ee:aa:89:a7:72:66:25:f9:22:ce:cf:32:b3:d6:d0:
8b:40:70:e2:32:0d:54:1a:13:55:7e:fe:c1:8a:49:ae:fa:0e:
da:48:66:6c:c6:a8:7b:66:78:57:e1:ee:cb:92:e0:a2:a1:00:
60:ff:fd:3e:95:e9:3f:83:ae:9b:80:53:0a:15:c2:e4:8f:64:
b4:1d:f5:de:77:70:79:8a:9a:fd:8e:a8:96:6e:cc:aa:13:65:
12:94:e7:2c:71:06:ee:01:a4:b2:1c:ec:f8:74:cd:04:98:36:
e8:99:00:fb:dc:5a:92:a4:f1:13:d0:79:6e:1a:41:72:0e:4b:
0d:24:b5:35:63:99:53:3f:e8:0b:75:3b:b5:e2:be:d9:8d:63:
21:01:31:f6:05:19:49:11:ef:fd:08:82:d5:bc:a6:97:35:5d:
32:87:33:03:e1:2a:3b:11:b4:00:c9:af:c5:ea:19:96:c9:66:
79:b4:b3:71:e7:ad:f5:1b:ca:27:09:52:99:ab:47:59:77:ca:
48:a6:c6:20
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvwno4HZhfyge2vTbnqnNuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5YjIzMjk1ODA5N2I1ODYzZWFmZDA0N2JiMzE1MTcxZWFh
MDFmYjcwHhcNMjMwMTAxMjM1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZmY5ZGZiNzQ5OGU2OTkwZTQ0YTJmZWY3ODM0M2JiNzljOWI3NTA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zulpjOpyO/dljeTiL+ALiPFfKjG
7b0KTGEhO9tDWd6mHB4Gqj6iANuokZpKtuwn+i8lX5eKC9D0JlNd5EltRqK+pRuH
J4jxyMcdB41eib/Fd1twEOJ+G8z0q0/eUjgz9uoBctKQBDH0WfgVNxjUr57/esBT
SJGmm9yJY6vOU+r0+W4RNPq6kq7fNBBMoCfyqmPMzPfv6v41ys2+kTh4RgI5wPUg
BpuO8b8XjgeBzc53smIUsYn0IiRE7Gc0VVuwlGEJjlW8OrGFutsiPwUlxhlm3bxY
7aolKug9rZIgD8EmqIov6bY9R1ga+CEoEbpZR0An9dVVkRbdJTyurs5vfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI/537dJjmmQ5Eov73g0O7ecm3UHMB8GA1UdIwQY
MBaAFMmyMpWAl7WGPq/QR7sxUXHqoB+3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWJJeWxZQ1h0WVktcjlCSHV6RlJjZXFnSDdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS9mMzU0MzItY2Y5OS00ZjE5LWE3NmUt
MDdiN2ZlZjA4NThmLzEval9uZnQwbU9hWkRrU2lfdmVEUTd0NXliZFFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS9mMzU0MzItY2Y5OS00ZjE5LWE3NmUtMDdiN2ZlZjA4NThm
LzEveWJJeWxZQ1h0WVktcjlCSHV6RlJjZXFnSDdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCsv8gMA0G
CSqGSIb3DQEBCwUAA4IBAQA3/QFGXDFGXLHO9vO5Ux4Fw+TDamFSQFhhb6liAlxy
5memO8yg1fVukj5Cz/q9Lko9lprj3zjH/S3uqomncmYl+SLOzzKz1tCLQHDiMg1U
GhNVfv7Bikmu+g7aSGZsxqh7ZnhX4e7LkuCioQBg//0+lek/g66bgFMKFcLkj2S0
HfXed3B5ipr9jqiWbsyqE2USlOcscQbuAaSyHOz4dM0EmDbomQD73FqSpPET0Hlu
GkFyDksNJLU1Y5lTP+gLdTu14r7ZjWMhATH2BRlJEe/9CILVvKaXNV0yhzMD4So7
EbQAya/F6hmWyWZ5tLNx5631G8onCVKZq0dZd8pIpsYg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:37 2024 by rpki-client on console-fra.rpki-client.org