Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/nVuENpuQ9dkn5XEoe5Sx2oEkDGI.roa
File: nVuENpuQ9dkn5XEoe5Sx2oEkDGI.roa (raw, json)
Hash identifier: AW7csos72Ez5c1a1lNbWDCjXTnMeZqAo4PfizKI2yu8=
Subject key identifier: 9D:5B:84:36:9B:90:F5:D9:27:E5:71:28:7B:94:B1:DA:81:24:0C:62
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 01888AD6C95AAB9454B18B363F2A688611C1
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/nVuENpuQ9dkn5XEoe5Sx2oEkDGI.roa
Signing time: Mon 05 Jun 2023 09:15:12 +0000
ROA not before: Mon 05 Jun 2023 09:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 213.145.72.0/21 maxlen: 24
213.145.88.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Jun 2023 13:49:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8a:d6:c9:5a:ab:94:54:b1:8b:36:3f:2a:68:86:11:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Jun 5 09:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d5b84369b90f5d927e571287b94b1da81240c62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:51:b0:5f:88:6d:55:6c:1c:8d:ce:98:9a:df:
f5:0b:5f:4c:54:fc:a1:2d:73:33:9b:29:fe:08:03:
28:0a:c2:e8:35:bb:2e:c2:d2:8e:a8:d5:e0:51:cf:
12:02:8f:d9:f4:d7:89:a3:01:9c:36:37:0e:f1:32:
2f:68:8a:7f:74:b7:f5:14:68:5e:bb:ab:39:34:bd:
a2:c3:05:f9:b1:d3:02:b7:b4:c3:7b:ff:ef:fc:cf:
34:e3:d1:45:b3:ff:bb:a2:65:23:01:63:9a:08:76:
b4:77:14:e7:44:ac:0c:9a:8b:b1:e0:35:6f:9a:ad:
ab:b2:f5:7a:3a:3f:78:52:2e:32:ef:98:e0:01:d4:
cf:26:54:25:03:39:95:70:00:91:ab:fc:fb:22:34:
9f:08:12:8d:4f:e9:13:6c:65:97:3a:07:69:a1:c8:
e7:b5:46:10:1f:26:46:6a:9e:d2:1f:db:14:81:6e:
e0:d5:3d:53:ec:23:2b:39:d0:7e:ed:b4:76:d1:5a:
48:2e:0c:1d:ce:2e:25:c0:2a:98:46:cc:21:0c:f1:
8c:0c:7d:10:13:0b:bb:02:da:87:de:eb:ff:00:b7:
37:62:82:33:98:20:d2:31:2b:22:9b:c1:a3:46:1f:
8e:81:d8:74:a3:8f:e3:90:e7:b2:00:93:5f:17:a4:
9b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:5B:84:36:9B:90:F5:D9:27:E5:71:28:7B:94:B1:DA:81:24:0C:62
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/nVuENpuQ9dkn5XEoe5Sx2oEkDGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.72.0/21
213.145.88.0/21
Signature Algorithm: sha256WithRSAEncryption
63:4e:5b:a2:45:d1:4d:4c:9e:62:98:46:24:c6:07:5e:20:28:
ee:76:48:d4:5c:ba:10:f6:bd:5b:73:b9:d4:42:a0:43:70:a4:
00:63:50:a6:83:70:ef:d4:ad:d0:46:6c:67:fd:91:79:32:39:
f3:a9:21:51:da:8a:7e:83:90:16:3d:e6:c3:d6:6b:c1:69:39:
6f:4e:52:d3:5a:87:08:3b:d9:af:82:b5:05:e7:63:d9:7e:fb:
cc:19:60:b7:fe:dd:6c:a3:78:49:ea:35:82:54:b2:42:67:82:
f2:bc:db:dd:fe:eb:7d:19:29:cc:13:b4:0e:5d:0f:e8:49:bf:
1d:f9:e8:60:7f:8e:56:d7:6f:72:26:54:15:47:2c:9c:1a:5b:
b0:9e:79:e8:15:5d:86:a1:57:70:57:26:63:f3:51:1d:01:b0:
19:e6:ec:d5:1c:56:17:b9:bd:89:fa:de:d8:79:3e:0f:06:16:
5c:c0:1d:5c:1e:b7:e3:85:da:d6:81:52:63:4c:5f:ed:cf:b0:
ad:41:fc:4d:07:10:fa:07:30:15:44:87:52:f1:5c:77:54:da:
67:82:0e:05:1b:e3:9c:39:07:a6:25:3a:1c:61:b6:a9:de:93:
2a:3f:da:7d:b6:1c:22:e1:84:ba:bb:2d:89:d5:76:41:ac:11:
f1:4e:39:f8
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYiK1slaq5RUsYs2PypohhHBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjMwNjA1MDkxNTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDViODQzNjliOTBmNWQ5MjdlNTcxMjg3Yjk0YjFkYTgxMjQwYzYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxlGwX4htVWwcjc6Ymt/1C19MVPyh
LXMzmyn+CAMoCsLoNbsuwtKOqNXgUc8SAo/Z9NeJowGcNjcO8TIvaIp/dLf1FGhe
u6s5NL2iwwX5sdMCt7TDe//v/M8049FFs/+7omUjAWOaCHa0dxTnRKwMmoux4DVv
mq2rsvV6Oj94Ui4y75jgAdTPJlQlAzmVcACRq/z7IjSfCBKNT+kTbGWXOgdpocjn
tUYQHyZGap7SH9sUgW7g1T1T7CMrOdB+7bR20VpILgwdzi4lwCqYRswhDPGMDH0Q
Ewu7AtqH3uv/ALc3YoIzmCDSMSsim8GjRh+Ogdh0o4/jkOeyAJNfF6Sb5QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJ1bhDabkPXZJ+VxKHuUsdqBJAxiMB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvblZ1RU5wdVE5ZGtuNVhFb2U1U3gyb0VrREdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQD1ZFIAwQD
1ZFYMA0GCSqGSIb3DQEBCwUAA4IBAQBjTluiRdFNTJ5imEYkxgdeICjudkjUXLoQ
9r1bc7nUQqBDcKQAY1Cmg3Dv1K3QRmxn/ZF5MjnzqSFR2op+g5AWPebD1mvBaTlv
TlLTWocIO9mvgrUF52PZfvvMGWC3/t1so3hJ6jWCVLJCZ4LyvNvd/ut9GSnME7QO
XQ/oSb8d+ehgf45W129yJlQVRyycGluwnnnoFV2GoVdwVyZj81EdAbAZ5uzVHFYX
ub2J+t7YeT4PBhZcwB1cHrfjhdrWgVJjTF/tz7CtQfxNBxD6BzAVRIdS8Vx3VNpn
gg4FG+OcOQemJTocYbap3pMqP9p9thwi4YS6uy2J1XZBrBHxTjn4
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org