Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/2ChDM7l4Q5QLWjexDmv4_M02g4c.roa
File: 2ChDM7l4Q5QLWjexDmv4_M02g4c.roa (raw, json)
Hash identifier: f4X0VezxfKbnsysRrs88fivWLVOCQHS+mWXcC21qU2w=
Subject key identifier: D8:28:43:33:B9:78:43:94:0B:5A:37:B1:0E:6B:F8:FC:CD:36:83:87
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 01856D540AA02F598D31DE5F41F1B92AF585
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/2ChDM7l4Q5QLWjexDmv4_M02g4c.roa
Signing time: Sun 01 Jan 2023 12:35:02 +0000
ROA not before: Sun 01 Jan 2023 12:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 147.189.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:0a:a0:2f:59:8d:31:de:5f:41:f1:b9:2a:f5:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Jan 1 12:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8284333b97843940b5a37b10e6bf8fccd368387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:39:21:43:a8:73:26:29:dd:45:b8:4c:58:1f:
59:0e:42:c4:fb:85:03:ab:f9:10:3f:f8:e5:1e:89:
b0:9e:9e:c2:53:f2:9d:2f:c4:dd:22:73:c9:aa:30:
15:04:1a:1e:9b:5a:38:e1:24:c5:16:9c:32:56:1f:
b7:d3:6f:95:53:b9:1c:40:9e:6a:c2:7e:27:05:32:
e9:71:b2:51:2a:64:79:80:27:de:2d:54:47:62:90:
1e:0e:a0:56:b7:5a:ac:f7:6c:52:43:0a:95:5c:27:
22:58:37:71:49:6e:ed:c7:24:30:11:a4:a7:86:a2:
80:f6:44:0a:d3:30:40:69:ea:47:31:f6:0d:59:69:
ca:60:84:66:2a:eb:b3:a9:9e:ed:4e:81:e3:7d:f8:
ab:10:56:aa:b7:68:e6:a4:67:c5:ed:7e:cd:43:3d:
31:1d:a1:c7:1d:83:43:a7:0d:75:63:dd:e1:d9:42:
35:49:3e:b6:b3:32:54:9c:87:1d:00:d6:de:8b:9a:
41:87:a8:12:a1:91:48:c9:a3:f6:30:87:99:d2:cf:
a7:3a:d0:0d:d9:60:18:2a:cf:f3:fd:0a:d7:46:bd:
37:e3:ed:9a:45:18:40:e9:05:7a:db:93:55:f2:6d:
cd:bb:2f:84:4c:e4:92:56:5a:02:40:b6:d8:3a:6f:
1b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:28:43:33:B9:78:43:94:0B:5A:37:B1:0E:6B:F8:FC:CD:36:83:87
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/2ChDM7l4Q5QLWjexDmv4_M02g4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.162.0/24
Signature Algorithm: sha256WithRSAEncryption
44:34:d8:a2:c6:b5:bf:b8:fe:29:02:de:1b:8c:4d:fc:1e:82:
84:54:ce:46:30:fc:21:2f:f4:49:a3:02:d2:ca:37:48:ea:46:
1a:c5:d8:1f:22:eb:f9:4e:4b:93:25:70:f6:4a:a1:10:0a:ff:
fd:3f:00:13:31:71:78:ec:b5:d7:3c:9b:c9:ae:be:e3:26:4d:
65:9f:a2:bb:fc:03:46:14:7b:a1:38:58:b3:32:32:55:d9:49:
0e:ea:de:97:da:94:91:ce:a2:08:98:ea:3f:82:c9:be:2d:e1:
65:6f:22:72:10:7b:a1:47:0b:c3:4d:ff:93:48:b3:16:67:e5:
ab:13:9b:51:a2:a1:eb:d5:ea:89:96:e7:58:bd:fa:fd:d5:b1:
ed:f6:ff:ad:71:10:2f:de:aa:18:ea:59:41:cb:50:5b:e7:c9:
43:77:e0:59:79:40:b3:25:b7:57:2d:ea:8b:d9:d2:ba:99:64:
f6:70:d2:26:f9:73:af:a9:65:95:c2:fd:73:76:3c:1b:3d:7f:
40:3e:e6:ef:6a:a2:c0:83:b9:fc:09:6d:ce:26:7a:ad:44:27:
9e:cb:f7:00:5e:35:76:d8:cb:e7:a7:d9:ca:0d:b0:a0:24:35:
99:1d:6d:7c:6f:0d:41:1f:b7:54:54:cb:2f:9e:52:d3:84:07:
ec:24:54:8b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtVAqgL1mNMd5fQfG5KvWFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwOTk4ZDNjOWQ4YmRjOWMxZGZmOGUzMTk0MjQ0MTJiNmNk
YzFkZDMwHhcNMjMwMTAxMTIzNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODI4NDMzM2I5Nzg0Mzk0MGI1YTM3YjEwZTZiZjhmY2NkMzY4Mzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzkhQ6hzJindRbhMWB9ZDkLE+4UD
q/kQP/jlHomwnp7CU/KdL8TdInPJqjAVBBoem1o44STFFpwyVh+302+VU7kcQJ5q
wn4nBTLpcbJRKmR5gCfeLVRHYpAeDqBWt1qs92xSQwqVXCciWDdxSW7txyQwEaSn
hqKA9kQK0zBAaepHMfYNWWnKYIRmKuuzqZ7tToHjffirEFaqt2jmpGfF7X7NQz0x
HaHHHYNDpw11Y93h2UI1ST62szJUnIcdANbei5pBh6gSoZFIyaP2MIeZ0s+nOtAN
2WAYKs/z/QrXRr034+2aRRhA6QV625NV8m3Nuy+ETOSSVloCQLbYOm8b2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNgoQzO5eEOUC1o3sQ5r+PzNNoOHMB8GA1UdIwQY
MBaAFGCZjTydi9ycHf+OMZQkQSts3B3TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUptTlBKMkwzSndkXzQ0eGxDUkJLMnpjSGRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83NzlhZTktN2QyMi00MjUyLThjNWIt
MGVhNGQ1MzFiNzkzLzEvMkNoRE03bDRRNVFMV2pleERtdjRfTTAyZzRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83NzlhZTktN2QyMi00MjUyLThjNWItMGVhNGQ1MzFiNzkz
LzEvWUptTlBKMkwzSndkXzQ0eGxDUkJLMnpjSGRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk72iMA0G
CSqGSIb3DQEBCwUAA4IBAQBENNiixrW/uP4pAt4bjE38HoKEVM5GMPwhL/RJowLS
yjdI6kYaxdgfIuv5TkuTJXD2SqEQCv/9PwATMXF47LXXPJvJrr7jJk1ln6K7/ANG
FHuhOFizMjJV2UkO6t6X2pSRzqIImOo/gsm+LeFlbyJyEHuhRwvDTf+TSLMWZ+Wr
E5tRoqHr1eqJludYvfr91bHt9v+tcRAv3qoY6llBy1Bb58lDd+BZeUCzJbdXLeqL
2dK6mWT2cNIm+XOvqWWVwv1zdjwbPX9APubvaqLAg7n8CW3OJnqtRCeey/cAXjV2
2Mvnp9nKDbCgJDWZHW18bw1BH7dUVMsvnlLThAfsJFSL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:06 2024 by rpki-client on console-ams.rpki-client.org