Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/57NCMBNy6eabtn4kEBFydQMYOZE.roa
File: 57NCMBNy6eabtn4kEBFydQMYOZE.roa (raw, json)
Hash identifier: 6htktyM6vLaEZrqreJw2k7Oz8exG8KsLLEmC+lf+JUc=
Subject key identifier: E7:B3:42:30:13:72:E9:E6:9B:B6:7E:24:10:11:72:75:03:18:39:91
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 01856F9E0AB03C4CAE25A29FB38623E63630
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/57NCMBNy6eabtn4kEBFydQMYOZE.roa
Signing time: Sun 01 Jan 2023 23:15:06 +0000
ROA not before: Sun 01 Jan 2023 23:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60912
IP address blocks: 85.239.44.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9e:0a:b0:3c:4c:ae:25:a2:9f:b3:86:23:e6:36:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Jan 1 23:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7b342301372e9e69bb67e241011727503183991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1f:fd:f0:be:bb:41:eb:82:aa:13:4b:10:9f:
48:70:64:f0:03:3e:04:9b:4f:a8:40:5e:0c:56:09:
b2:90:13:a0:3a:c7:a8:3f:0d:26:bb:5c:25:e3:74:
61:0f:c3:35:63:51:c9:83:e2:6a:7f:43:2e:92:0a:
eb:40:6d:8a:b2:6d:20:02:e0:84:85:cd:9e:d7:69:
b0:64:c4:a5:9c:5a:88:3a:ce:db:79:79:ea:5f:73:
14:c9:79:59:d9:9a:a6:81:f8:d8:c2:75:3e:cf:5b:
2c:14:0f:18:b2:f9:e4:80:f9:f2:19:e1:f1:78:7a:
0f:a9:1c:2f:9b:b0:bd:95:69:80:b2:e8:8c:5d:a5:
19:23:58:82:49:64:ca:10:a3:d2:bc:2a:2c:55:ce:
e3:88:91:62:55:fb:f5:ab:9b:69:90:b9:fc:12:79:
72:63:be:7a:ff:a8:b4:a4:98:f4:69:44:d7:84:5e:
62:a6:e5:31:b1:34:ff:ee:c5:e3:ff:6c:d1:83:41:
d1:98:a5:17:cf:72:1e:6e:09:f3:cf:52:75:7c:10:
fe:4c:8d:71:7d:37:43:5b:35:28:d1:24:6e:8d:d4:
e2:38:bb:1b:20:cb:72:47:84:5e:85:df:5e:61:d9:
00:4d:fe:95:db:37:1a:56:c2:1f:a9:d4:c8:76:b9:
ee:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:B3:42:30:13:72:E9:E6:9B:B6:7E:24:10:11:72:75:03:18:39:91
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/57NCMBNy6eabtn4kEBFydQMYOZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.44.0/22
Signature Algorithm: sha256WithRSAEncryption
10:44:82:58:c2:40:d4:8f:45:b8:4b:37:d2:06:2d:94:22:b4:
8a:ad:99:77:cd:55:26:c9:10:c4:f6:4e:d7:a1:6f:e7:df:7c:
ce:34:59:1e:25:4d:bc:76:cc:8b:56:ac:b4:6e:07:4e:10:ae:
1b:d5:13:c3:4b:a3:49:c2:5e:48:d1:eb:a9:fe:b6:3b:80:d4:
ab:ac:7c:c4:a8:1f:31:d3:d2:47:2e:d9:0e:c9:2c:fe:e7:ba:
02:4b:97:b3:af:21:95:96:4c:aa:51:39:51:1a:da:0a:3b:0f:
d9:25:85:26:8a:62:19:9b:e5:b4:d3:1b:15:4e:c0:a3:d1:ac:
2a:31:44:8a:ec:3f:71:e4:20:39:c3:c3:a2:b7:92:91:48:fb:
68:13:52:5a:93:d6:dd:73:66:8d:46:2d:64:bd:c0:43:4b:0c:
6a:dc:0b:7b:d2:11:73:f4:c9:d6:53:8e:cd:0c:b7:4e:dc:ad:
ef:51:07:51:ab:35:7c:81:46:d3:bc:79:a7:06:82:51:2c:f9:
5f:27:ef:bc:0c:29:ce:2d:f1:f9:ad:d7:07:92:07:ba:cb:79:
03:f2:75:48:77:90:4b:68:0d:6a:c4:3c:46:be:ef:4e:15:94:
aa:1a:1c:04:be:ad:e0:cd:e3:ca:38:a9:ec:36:2d:e4:c8:03:
88:9a:49:ee
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvngqwPEyuJaKfs4Yj5jYwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiN2VjOTQyM2JmOTBjODFkMjJkOTQ4NDFjMTAzNTdhNTQy
NjAzNzkwHhcNMjMwMTAxMjMxNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2IzNDIzMDEzNzJlOWU2OWJiNjdlMjQxMDExNzI3NTAzMTgzOTkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAih/98L67QeuCqhNLEJ9IcGTwAz4E
m0+oQF4MVgmykBOgOseoPw0mu1wl43RhD8M1Y1HJg+Jqf0MukgrrQG2Ksm0gAuCE
hc2e12mwZMSlnFqIOs7beXnqX3MUyXlZ2ZqmgfjYwnU+z1ssFA8YsvnkgPnyGeHx
eHoPqRwvm7C9lWmAsuiMXaUZI1iCSWTKEKPSvCosVc7jiJFiVfv1q5tpkLn8Enly
Y756/6i0pJj0aUTXhF5ipuUxsTT/7sXj/2zRg0HRmKUXz3Iebgnzz1J1fBD+TI1x
fTdDWzUo0SRujdTiOLsbIMtyR4Rehd9eYdkATf6V2zcaVsIfqdTIdrnuMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOezQjATcunmm7Z+JBARcnUDGDmRMB8GA1UdIwQY
MBaAFDt+yUI7+QyB0i2UhBwQNXpUJgN5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzM3SlFqdjVESUhTTFpTRUhCQTFlbFFtQTNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy84ZWE0N2YtZWZmMy00NjI3LTk0ZWQt
MWQxMGYzYzcwYmI0LzEvNTdOQ01CTnk2ZWFidG40a0VCRnlkUU1ZT1pFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy84ZWE0N2YtZWZmMy00NjI3LTk0ZWQtMWQxMGYzYzcwYmI0
LzEvTzM3SlFqdjVESUhTTFpTRUhCQTFlbFFtQTNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVe8sMA0G
CSqGSIb3DQEBCwUAA4IBAQAQRIJYwkDUj0W4SzfSBi2UIrSKrZl3zVUmyRDE9k7X
oW/n33zONFkeJU28dsyLVqy0bgdOEK4b1RPDS6NJwl5I0eup/rY7gNSrrHzEqB8x
09JHLtkOySz+57oCS5ezryGVlkyqUTlRGtoKOw/ZJYUmimIZm+W00xsVTsCj0awq
MUSK7D9x5CA5w8Oit5KRSPtoE1Jak9bdc2aNRi1kvcBDSwxq3At70hFz9MnWU47N
DLdO3K3vUQdRqzV8gUbTvHmnBoJRLPlfJ++8DCnOLfH5rdcHkge6y3kD8nVId5BL
aA1qxDxGvu9OFZSqGhwEvq3gzePKOKnsNi3kyAOImknu
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:28 2024 by rpki-client on console-ams.rpki-client.org