Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/IyPcgF71SQl7xvmxZDb8Ngg1rxA.roa
File: IyPcgF71SQl7xvmxZDb8Ngg1rxA.roa (raw, json)
Hash identifier: rhGfe3+o33rznpqTSfBqpXXGfcdDcyuRHjH9bNZ1GLk=
Subject key identifier: 23:23:DC:80:5E:F5:49:09:7B:C6:F9:B1:64:36:FC:36:08:35:AF:10
Certificate issuer: /CN=db9d197fbbee2a1dccb4f55722a8210d3105b042
Certificate serial: 01857094EB26A6BE41CBEB84EAE68D438349
Authority key identifier: DB:9D:19:7F:BB:EE:2A:1D:CC:B4:F5:57:22:A8:21:0D:31:05:B0:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/250Zf7vuKh3MtPVXIqghDTEFsEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/IyPcgF71SQl7xvmxZDb8Ngg1rxA.roa
Signing time: Mon 02 Jan 2023 03:44:45 +0000
ROA not before: Mon 02 Jan 2023 03:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202856
IP address blocks: 62.218.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:94:eb:26:a6:be:41:cb:eb:84:ea:e6:8d:43:83:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db9d197fbbee2a1dccb4f55722a8210d3105b042
Validity
Not Before: Jan 2 03:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2323dc805ef549097bc6f9b16436fc360835af10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:de:46:cb:3a:c9:48:ee:82:77:ed:ec:af:2f:
13:95:eb:32:fa:5c:5f:27:e7:34:05:6d:a9:80:0f:
84:54:a9:2b:7c:ed:e5:a5:21:ef:2c:8c:5f:65:4e:
8c:4e:b2:01:f2:e0:74:bc:16:0b:f8:55:b9:6f:47:
9e:da:33:a6:c1:54:ed:68:74:ac:82:e6:e1:47:20:
9e:99:71:75:35:b3:64:e2:20:9f:30:80:57:0b:9c:
27:95:6c:79:fb:d2:25:da:6f:b6:f3:cf:c9:cc:e8:
39:4c:e4:46:99:f1:29:db:5c:a2:ee:71:13:c8:71:
56:13:d6:49:67:be:96:58:db:26:74:ca:82:f2:be:
dc:23:ec:72:4b:88:a4:a8:0e:4f:04:d3:45:bf:84:
89:b7:57:3c:54:89:b8:65:a5:a6:14:1f:be:b3:c0:
91:9d:3e:b5:18:95:8d:e4:c7:cb:ba:30:10:27:91:
e0:83:a2:95:8d:8f:38:9e:3b:4d:fc:64:0a:2c:16:
a0:32:58:c4:69:fa:74:bf:f4:b5:58:d6:f5:d7:30:
4c:d5:cd:cc:43:c4:33:25:fa:99:12:58:be:26:43:
f0:0d:4b:58:a2:79:78:16:d4:79:12:60:56:37:45:
4b:6d:64:3c:99:55:58:c3:50:a0:92:17:43:10:6f:
70:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:23:DC:80:5E:F5:49:09:7B:C6:F9:B1:64:36:FC:36:08:35:AF:10
X509v3 Authority Key Identifier:
keyid:DB:9D:19:7F:BB:EE:2A:1D:CC:B4:F5:57:22:A8:21:0D:31:05:B0:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/250Zf7vuKh3MtPVXIqghDTEFsEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/IyPcgF71SQl7xvmxZDb8Ngg1rxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/250Zf7vuKh3MtPVXIqghDTEFsEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.218.173.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:a4:6d:88:e9:fb:f9:80:ca:e1:bd:ce:93:9a:da:6b:a4:18:
19:83:1e:ad:f3:77:f1:fd:c7:ba:88:8c:46:31:74:8e:e4:1c:
70:fc:cf:d3:14:48:bf:ce:8b:40:3b:54:6a:f7:ca:d9:8b:ce:
19:8c:f8:51:00:78:c0:1e:86:d9:7f:cf:47:f8:24:7d:63:1d:
45:43:d6:4b:f2:23:34:ce:a1:fa:b5:d6:a4:34:18:a4:b6:ea:
cf:d6:30:21:cd:bb:eb:17:be:27:60:c5:7c:e4:2a:96:75:a3:
88:6a:f3:e3:41:72:ca:8d:2c:68:44:0e:dc:52:e6:7c:09:f6:
68:0c:7c:03:d6:37:c8:c3:ce:fa:4c:1e:51:8b:f9:d0:76:16:
68:a2:62:e8:f0:79:94:94:85:03:a7:56:d6:2f:6d:aa:6a:58:
55:a3:00:f8:c7:a2:53:29:27:f4:0d:7e:61:8b:c5:ef:8c:a7:
63:9d:c1:bd:6f:76:30:a4:c4:4c:0a:ed:02:b8:d3:60:6d:9e:
13:e3:65:bb:d9:98:81:46:df:17:89:c2:f0:f4:e9:f1:1f:f7:
d8:37:dd:68:5a:dd:dd:d5:3f:3b:26:16:af:67:ad:8b:32:6a:
cc:de:3e:82:c6:8b:0b:40:d9:5b:39:b7:e3:db:28:b6:bc:58:
5d:b1:0f:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlOsmpr5By+uE6uaNQ4NJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiOWQxOTdmYmJlZTJhMWRjY2I0ZjU1NzIyYTgyMTBkMzEw
NWIwNDIwHhcNMjMwMTAyMDM0NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzIzZGM4MDVlZjU0OTA5N2JjNmY5YjE2NDM2ZmMzNjA4MzVhZjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlN5GyzrJSO6Cd+3sry8Tlesy+lxf
J+c0BW2pgA+EVKkrfO3lpSHvLIxfZU6MTrIB8uB0vBYL+FW5b0ee2jOmwVTtaHSs
gubhRyCemXF1NbNk4iCfMIBXC5wnlWx5+9Il2m+288/JzOg5TORGmfEp21yi7nET
yHFWE9ZJZ76WWNsmdMqC8r7cI+xyS4ikqA5PBNNFv4SJt1c8VIm4ZaWmFB++s8CR
nT61GJWN5MfLujAQJ5Hgg6KVjY84njtN/GQKLBagMljEafp0v/S1WNb11zBM1c3M
Q8QzJfqZEli+JkPwDUtYonl4FtR5EmBWN0VLbWQ8mVVYw1CgkhdDEG9wQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCMj3IBe9UkJe8b5sWQ2/DYINa8QMB8GA1UdIwQY
MBaAFNudGX+77iodzLT1VyKoIQ0xBbBCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjUwWmY3dnVLaDNNdFBWWElxZ2hEVEVGc0VJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8wOWQxMzctNDc3Yi00ZWZlLWEzZDMt
NGIyMzk1NmZiZDg2LzEvSXlQY2dGNzFTUWw3eHZteFpEYjhOZ2cxcnhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8wOWQxMzctNDc3Yi00ZWZlLWEzZDMtNGIyMzk1NmZiZDg2
LzEvMjUwWmY3dnVLaDNNdFBWWElxZ2hEVEVGc0VJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPtqtMA0G
CSqGSIb3DQEBCwUAA4IBAQBMpG2I6fv5gMrhvc6TmtprpBgZgx6t83fx/ce6iIxG
MXSO5Bxw/M/TFEi/zotAO1Rq98rZi84ZjPhRAHjAHobZf89H+CR9Yx1FQ9ZL8iM0
zqH6tdakNBikturP1jAhzbvrF74nYMV85CqWdaOIavPjQXLKjSxoRA7cUuZ8CfZo
DHwD1jfIw876TB5Ri/nQdhZoomLo8HmUlIUDp1bWL22qalhVowD4x6JTKSf0DX5h
i8XvjKdjncG9b3YwpMRMCu0CuNNgbZ4T42W72ZiBRt8XicLw9OnxH/fYN91oWt3d
1T87JhavZ62LMmrM3j6CxosLQNlbObfj2yi2vFhdsQ8W
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:17 2024 by rpki-client on console-fra.rpki-client.org