Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/9hFWf43I-7_mU9nnAOsn-5oOeD0.roa
File: 9hFWf43I-7_mU9nnAOsn-5oOeD0.roa (raw, json)
Hash identifier: yzLEdsIfhR1xApejMn2h3WrTeb6TC5n7XV+w9ZCdKkc=
Subject key identifier: F6:11:56:7F:8D:C8:FB:BF:E6:53:D9:E7:00:EB:27:FB:9A:0E:78:3D
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018B629BBEF157C45D60F0A266144A1F8FD1
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/9hFWf43I-7_mU9nnAOsn-5oOeD0.roa
Signing time: Tue 24 Oct 2023 16:54:15 +0000
ROA not before: Tue 24 Oct 2023 16:54:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59426
IP address blocks: 213.145.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Dec 2023 11:40:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:62:9b:be:f1:57:c4:5d:60:f0:a2:66:14:4a:1f:8f:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Oct 24 16:54:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f611567f8dc8fbbfe653d9e700eb27fb9a0e783d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:1a:8d:34:1c:4a:bc:f1:ec:9e:7b:5a:5d:05:
06:dd:68:cb:35:ef:c1:67:08:7c:de:03:5b:bf:a2:
be:ff:c1:42:6f:c7:65:79:2a:8e:10:71:36:97:7c:
2b:93:b6:af:ba:62:40:57:e8:dc:d3:21:92:11:0a:
be:0f:31:ba:6b:32:92:89:fe:aa:ca:49:ff:13:83:
cf:ca:a1:a1:18:68:d6:c7:3d:6c:ff:ab:cb:3a:c3:
b5:e1:bc:ff:97:53:69:f2:56:d1:42:8e:16:30:29:
bd:4e:35:07:b0:36:1b:6a:cd:11:b9:62:1b:73:77:
a7:b2:83:ff:76:f4:ab:30:88:36:90:83:27:d5:bd:
dd:ec:6c:b5:38:5e:42:0c:db:4c:61:87:30:52:4b:
b4:63:5d:4d:9c:bb:60:ce:a1:d3:38:98:55:31:f8:
1e:7c:05:12:ec:6c:8f:d4:4b:21:17:b1:78:5e:24:
93:a4:62:ee:3e:65:1f:6b:64:e9:84:33:c3:7c:89:
e8:42:8f:e2:4b:93:43:0a:45:55:81:56:59:bf:b0:
c7:b2:44:dd:b4:ee:b5:17:d1:34:08:95:b3:01:ae:
03:a3:a6:ac:11:ad:4e:a4:71:f8:6a:2d:4e:e7:7a:
ba:3d:a4:83:13:5e:7e:a0:4d:05:57:ff:1b:36:5d:
f0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:11:56:7F:8D:C8:FB:BF:E6:53:D9:E7:00:EB:27:FB:9A:0E:78:3D
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/9hFWf43I-7_mU9nnAOsn-5oOeD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.74.0/24
Signature Algorithm: sha256WithRSAEncryption
87:fe:2f:ab:6e:42:52:9e:47:b3:95:7c:9e:fe:70:85:14:99:
9e:ac:5f:96:9c:6a:55:b8:38:d5:f8:5a:60:cb:af:43:f3:6a:
cc:c8:d5:9c:90:b8:1c:5d:aa:82:4a:a5:c8:47:d4:92:2b:1d:
f4:37:99:1c:b4:71:7c:c0:81:3e:54:0e:5b:17:35:40:7d:1d:
f7:13:11:0e:01:1a:06:67:a3:e3:4f:c5:01:16:eb:bc:13:d9:
10:60:87:eb:9b:71:d5:40:c5:ed:b2:56:32:4f:8c:0b:bb:59:
de:42:b1:fc:03:39:85:7b:ec:9e:91:45:38:65:18:1d:36:31:
9a:c3:4c:67:95:06:dc:e2:d0:c4:49:ef:8f:88:c9:76:44:d3:
da:87:9d:d0:d8:ff:fe:75:93:96:14:73:ea:46:1f:df:0b:99:
d6:bd:72:2a:cf:68:30:ad:7d:c7:ae:c7:02:78:ee:75:df:0d:
00:75:4f:30:40:dd:d2:66:54:71:38:ff:bd:e2:c3:63:ed:57:
6f:34:27:01:d8:07:77:5f:4d:e6:be:34:7b:01:89:41:58:03:
68:66:98:fe:26:89:e9:b1:fc:e6:12:51:20:4e:29:92:6a:58:
4f:1b:9f:71:cd:8d:20:c6:fc:56:b5:b7:b2:dc:9b:36:24:45:
54:07:13:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtim77xV8RdYPCiZhRKH4/RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjMxMDI0MTY1NDE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjExNTY3ZjhkYzhmYmJmZTY1M2Q5ZTcwMGViMjdmYjlhMGU3ODNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgRqNNBxKvPHsnntaXQUG3WjLNe/B
Zwh83gNbv6K+/8FCb8dleSqOEHE2l3wrk7avumJAV+jc0yGSEQq+DzG6azKSif6q
ykn/E4PPyqGhGGjWxz1s/6vLOsO14bz/l1Np8lbRQo4WMCm9TjUHsDYbas0RuWIb
c3ensoP/dvSrMIg2kIMn1b3d7Gy1OF5CDNtMYYcwUku0Y11NnLtgzqHTOJhVMfge
fAUS7GyP1EshF7F4XiSTpGLuPmUfa2TphDPDfInoQo/iS5NDCkVVgVZZv7DHskTd
tO61F9E0CJWzAa4Do6asEa1OpHH4ai1O53q6PaSDE15+oE0FV/8bNl3w+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPYRVn+NyPu/5lPZ5wDrJ/uaDng9MB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvOWhGV2Y0M0ktN19tVTlubkFPc24tNW9PZUQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1ZFKMA0G
CSqGSIb3DQEBCwUAA4IBAQCH/i+rbkJSnkezlXye/nCFFJmerF+WnGpVuDjV+Fpg
y69D82rMyNWckLgcXaqCSqXIR9SSKx30N5kctHF8wIE+VA5bFzVAfR33ExEOARoG
Z6PjT8UBFuu8E9kQYIfrm3HVQMXtslYyT4wLu1neQrH8AzmFe+yekUU4ZRgdNjGa
w0xnlQbc4tDESe+PiMl2RNPah53Q2P/+dZOWFHPqRh/fC5nWvXIqz2gwrX3HrscC
eO513w0AdU8wQN3SZlRxOP+94sNj7VdvNCcB2Ad3X03mvjR7AYlBWANoZpj+Jonp
sfzmElEgTimSalhPG59xzY0gxvxWtbey3Js2JEVUBxM0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org