Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/IS2yw7Gc1wo86N3pj4KiV6GLQqM.roa
File: IS2yw7Gc1wo86N3pj4KiV6GLQqM.roa (raw, json)
Hash identifier: wz5sRGZKpbMpU9W//272iKaMYycEPl+WRXqkYrMK4uM=
Subject key identifier: 21:2D:B2:C3:B1:9C:D7:0A:3C:E8:DD:E9:8F:82:A2:57:A1:8B:42:A3
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01882962649ED100F3F36D5D9645E231D841
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/IS2yw7Gc1wo86N3pj4KiV6GLQqM.roa
Signing time: Wed 17 May 2023 11:04:54 +0000
ROA not before: Wed 17 May 2023 11:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 46.37.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Dec 2023 09:54:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:62:64:9e:d1:00:f3:f3:6d:5d:96:45:e2:31:d8:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: May 17 11:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=212db2c3b19cd70a3ce8dde98f82a257a18b42a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:64:60:ef:36:9b:c7:ee:18:94:fd:0c:04:98:
99:99:31:6e:9b:b2:78:31:fa:57:e9:96:50:d9:62:
e8:9e:35:ca:74:e8:65:6f:68:0c:10:08:c1:07:45:
d2:e0:70:8c:48:88:d8:b6:86:52:02:59:e1:5d:53:
80:db:75:e3:80:f0:ef:4a:87:0f:75:7b:f2:87:bc:
7b:42:59:b3:de:d9:93:9c:69:19:01:ef:de:0b:6e:
73:15:08:42:6f:d6:20:00:49:ef:ce:cf:d0:7c:78:
60:4f:26:4c:7c:2f:84:2b:32:c4:16:03:e4:29:b1:
63:b2:27:76:e9:8e:c7:00:b1:d9:a7:1d:b5:0a:4f:
3d:6e:37:6c:55:5d:d6:d0:9b:37:89:36:42:d7:73:
9c:07:03:a7:5e:25:e1:38:6f:fa:eb:b9:a4:fc:79:
9f:4c:21:50:fd:cf:e3:01:3c:c1:1e:c8:ef:20:0e:
ee:a7:c2:d5:e8:5f:57:b1:95:11:56:4f:4c:55:05:
12:e5:13:0d:64:86:60:b5:fc:f6:e5:7d:a8:7c:89:
87:e5:1c:4a:05:f7:ea:bb:2a:fd:4f:be:0e:53:c6:
8c:20:ed:3a:1e:21:59:04:5e:d9:77:4f:4c:69:62:
f2:56:4e:5f:52:cb:9f:00:e5:77:fa:fd:19:06:9e:
96:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:2D:B2:C3:B1:9C:D7:0A:3C:E8:DD:E9:8F:82:A2:57:A1:8B:42:A3
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/IS2yw7Gc1wo86N3pj4KiV6GLQqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.108.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:04:30:07:b9:ca:11:c3:7a:81:14:89:31:98:72:98:79:86:
7c:c1:99:8f:b1:31:8b:62:74:bf:02:ac:2e:4e:97:92:b5:55:
2e:57:40:ca:df:2c:1f:c0:46:2b:83:0d:f8:e0:5a:0d:79:1d:
3d:51:c3:81:8b:bd:db:b1:93:e4:4a:01:c4:82:c1:ad:b8:73:
7e:61:ab:0f:46:04:86:1d:ea:76:09:ed:54:bf:01:2a:8c:88:
d9:96:31:ec:2e:32:6d:1d:4b:da:a7:39:2e:13:ab:5b:64:04:
44:78:c5:6c:83:a4:63:67:39:13:2a:58:5a:8e:f1:e7:3f:3c:
7f:aa:2f:80:96:75:44:26:f7:06:8c:f6:d0:44:9a:2e:36:f6:
88:e3:39:2e:f1:a6:4d:cc:fe:db:be:be:08:22:24:3f:21:a6:
10:ad:51:04:b8:f6:60:1c:ab:2c:15:06:43:5d:8f:3e:81:e4:
f8:03:f5:d3:86:88:10:72:eb:29:51:98:ae:28:8d:e3:4e:07:
59:6d:16:28:0e:00:fa:9f:bd:f0:a3:6f:8a:a6:c6:4b:c4:b2:
cc:df:d0:2b:3d:f8:72:ce:64:08:dc:6b:1c:30:ad:68:78:2e:
08:fb:dc:1a:b2:cc:9c:58:30:4b:3a:40:0c:c5:cd:a8:83:b7:
c4:8b:91:0a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgpYmSe0QDz821dlkXiMdhBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzY2YwODg0OTE4YTUwMjM5ZWY3MDUxOGVlOWZjMDRmMWFh
ZTE5MjkwHhcNMjMwNTE3MTEwNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTJkYjJjM2IxOWNkNzBhM2NlOGRkZTk4ZjgyYTI1N2ExOGI0MmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgmRg7zabx+4YlP0MBJiZmTFum7J4
MfpX6ZZQ2WLonjXKdOhlb2gMEAjBB0XS4HCMSIjYtoZSAlnhXVOA23XjgPDvSocP
dXvyh7x7Qlmz3tmTnGkZAe/eC25zFQhCb9YgAEnvzs/QfHhgTyZMfC+EKzLEFgPk
KbFjsid26Y7HALHZpx21Ck89bjdsVV3W0Js3iTZC13OcBwOnXiXhOG/667mk/Hmf
TCFQ/c/jATzBHsjvIA7up8LV6F9XsZURVk9MVQUS5RMNZIZgtfz25X2ofImH5RxK
Bffquyr9T74OU8aMIO06HiFZBF7Zd09MaWLyVk5fUsufAOV3+v0ZBp6WowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCEtssOxnNcKPOjd6Y+Colehi0KjMB8GA1UdIwQY
MBaAFNPPCISRilAjnvcFGO6fwE8arhkpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEt
MjMxNTQ5NDA5NzIwLzEvSVMyeXc3R2Mxd284Nk4zcGo0S2lWNkdMUXFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEtMjMxNTQ5NDA5NzIw
LzEvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALiVsMA0G
CSqGSIb3DQEBCwUAA4IBAQCsBDAHucoRw3qBFIkxmHKYeYZ8wZmPsTGLYnS/Aqwu
TpeStVUuV0DK3ywfwEYrgw344FoNeR09UcOBi73bsZPkSgHEgsGtuHN+YasPRgSG
Hep2Ce1UvwEqjIjZljHsLjJtHUvapzkuE6tbZAREeMVsg6RjZzkTKlhajvHnPzx/
qi+AlnVEJvcGjPbQRJouNvaI4zku8aZNzP7bvr4IIiQ/IaYQrVEEuPZgHKssFQZD
XY8+geT4A/XThogQcuspUZiuKI3jTgdZbRYoDgD6n73wo2+KpsZLxLLM39ArPfhy
zmQI3GscMK1oeC4I+9wassycWDBLOkAMxc2og7fEi5EK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:54 2024 by rpki-client on console-fra.rpki-client.org