Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/9_VhuSv7YfDMd-KiX6_WXvxtVPo.roa
File: 9_VhuSv7YfDMd-KiX6_WXvxtVPo.roa (raw, json)
Hash identifier: Tof38QnqnW+EMlHKSCbRs1GfWIVV6tI5SXquoQy88eQ=
Subject key identifier: F7:F5:61:B9:2B:FB:61:F0:CC:77:E2:A2:5F:AF:D6:5E:FC:6D:54:FA
Certificate issuer: /CN=4021dff35edf0ce6e428d6affc212c4717679ee1
Certificate serial: 01856F14C3A365EFF59A1EDAA8F4C9AC500F
Authority key identifier: 40:21:DF:F3:5E:DF:0C:E6:E4:28:D6:AF:FC:21:2C:47:17:67:9E:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QCHf817fDObkKNav_CEsRxdnnuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/9_VhuSv7YfDMd-KiX6_WXvxtVPo.roa
Signing time: Sun 01 Jan 2023 20:45:09 +0000
ROA not before: Sun 01 Jan 2023 20:45:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50427
IP address blocks: 185.112.224.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:c3:a3:65:ef:f5:9a:1e:da:a8:f4:c9:ac:50:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4021dff35edf0ce6e428d6affc212c4717679ee1
Validity
Not Before: Jan 1 20:45:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7f561b92bfb61f0cc77e2a25fafd65efc6d54fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5b:b4:ae:fe:8c:1b:68:6c:c2:7e:eb:07:9d:
81:38:56:24:3c:3f:58:a9:e9:1f:c0:c7:4e:1e:e6:
e0:d4:07:20:fb:dd:47:b7:87:20:c0:12:30:53:42:
6e:01:33:4e:64:e7:d9:00:0a:08:6a:a7:87:df:1a:
e1:24:66:02:46:3b:d7:aa:28:15:2d:7a:e7:29:0f:
1a:9f:fc:14:bb:31:93:eb:70:78:fb:b0:bb:c1:ac:
25:05:77:d7:42:c4:95:90:a6:fb:31:e1:27:78:b7:
59:96:e4:99:85:1b:fe:8d:30:59:9c:b9:28:97:3c:
8e:fd:81:f3:de:f8:8b:90:03:46:2d:20:c7:b8:02:
52:3b:33:f4:96:1d:db:fd:ec:eb:6e:97:f5:21:4a:
61:3a:84:34:39:54:6d:26:74:44:0d:c1:63:90:13:
3d:8e:9c:25:aa:74:75:21:60:61:1a:59:57:d1:8d:
26:c6:82:ea:98:b3:d0:df:dd:ff:e5:0a:0e:87:7a:
d2:f4:59:f8:22:14:3d:da:7f:dd:0c:59:94:2a:15:
a9:b3:82:69:6f:e6:c9:93:d8:37:c6:50:f5:65:33:
25:87:7b:fd:1f:72:c1:a0:21:2d:c3:a3:4a:48:1b:
cf:8a:f8:49:43:76:b2:42:c8:e3:c6:68:6c:d9:ac:
46:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F5:61:B9:2B:FB:61:F0:CC:77:E2:A2:5F:AF:D6:5E:FC:6D:54:FA
X509v3 Authority Key Identifier:
keyid:40:21:DF:F3:5E:DF:0C:E6:E4:28:D6:AF:FC:21:2C:47:17:67:9E:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QCHf817fDObkKNav_CEsRxdnnuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/9_VhuSv7YfDMd-KiX6_WXvxtVPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/QCHf817fDObkKNav_CEsRxdnnuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.224.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:87:cd:e9:0d:d3:0d:7f:04:15:dd:af:9a:9a:c3:aa:9c:05:
bc:66:2c:11:1f:9e:e2:6a:dc:7f:77:ab:14:bd:d8:7a:1c:0e:
b8:91:44:48:f1:ec:8a:b7:fa:f8:49:59:b0:2a:79:0d:0f:44:
eb:47:40:ea:57:f6:39:d1:15:b8:21:89:01:38:e3:38:90:d4:
d5:50:4f:09:9c:d6:68:4c:ca:f8:12:12:03:80:7c:1d:b5:17:
0b:59:e5:47:06:01:df:e4:c5:55:0e:3c:20:e9:2d:80:04:96:
cc:76:98:b6:eb:41:81:4d:95:5f:e9:39:40:25:26:07:66:71:
98:a8:15:8e:ff:6d:2a:c7:1e:3e:7f:77:fc:b0:47:17:40:3f:
19:50:de:7f:16:02:6d:0e:b1:d3:f1:f8:66:50:c6:2d:74:07:
aa:00:5f:ca:a6:16:79:14:a3:59:77:77:26:5f:52:d6:9f:6b:
cf:c3:9c:d6:53:44:13:1c:57:e6:be:05:0f:05:f0:77:b2:5c:
7b:67:94:7a:d1:61:e8:04:c8:fc:a4:51:5c:26:00:92:60:71:
59:b4:e1:38:8e:39:c2:11:19:74:7a:e7:ce:96:ed:b1:fb:a0:
ba:76:1a:39:a5:8b:02:42:8a:b2:4c:ec:a8:98:68:d8:8e:3f:
5d:ac:de:a1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFMOjZe/1mh7aqPTJrFAPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMjFkZmYzNWVkZjBjZTZlNDI4ZDZhZmZjMjEyYzQ3MTc2
NzllZTEwHhcNMjMwMTAxMjA0NTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmN2Y1NjFiOTJiZmI2MWYwY2M3N2UyYTI1ZmFmZDY1ZWZjNmQ1NGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlu0rv6MG2hswn7rB52BOFYkPD9Y
qekfwMdOHubg1Acg+91Ht4cgwBIwU0JuATNOZOfZAAoIaqeH3xrhJGYCRjvXqigV
LXrnKQ8an/wUuzGT63B4+7C7wawlBXfXQsSVkKb7MeEneLdZluSZhRv+jTBZnLko
lzyO/YHz3viLkANGLSDHuAJSOzP0lh3b/ezrbpf1IUphOoQ0OVRtJnREDcFjkBM9
jpwlqnR1IWBhGllX0Y0mxoLqmLPQ393/5QoOh3rS9Fn4IhQ92n/dDFmUKhWps4Jp
b+bJk9g3xlD1ZTMlh3v9H3LBoCEtw6NKSBvPivhJQ3ayQsjjxmhs2axGlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPf1Ybkr+2HwzHfiol+v1l78bVT6MB8GA1UdIwQY
MBaAFEAh3/Ne3wzm5CjWr/whLEcXZ57hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUNIZjgxN2ZET2JrS05hdl9DRXNSeGRubnVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8wMTQwODgtNTY4NC00OWMyLWI2MzAt
ZWI1M2E1MThjMjYzLzEvOV9WaHVTdjdZZkRNZC1LaVg2X1dYdnh0VlBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS8wMTQwODgtNTY4NC00OWMyLWI2MzAtZWI1M2E1MThjMjYz
LzEvUUNIZjgxN2ZET2JrS05hdl9DRXNSeGRubnVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXDgMA0G
CSqGSIb3DQEBCwUAA4IBAQBuh83pDdMNfwQV3a+amsOqnAW8ZiwRH57iatx/d6sU
vdh6HA64kURI8eyKt/r4SVmwKnkND0TrR0DqV/Y50RW4IYkBOOM4kNTVUE8JnNZo
TMr4EhIDgHwdtRcLWeVHBgHf5MVVDjwg6S2ABJbMdpi260GBTZVf6TlAJSYHZnGY
qBWO/20qxx4+f3f8sEcXQD8ZUN5/FgJtDrHT8fhmUMYtdAeqAF/KphZ5FKNZd3cm
X1LWn2vPw5zWU0QTHFfmvgUPBfB3slx7Z5R60WHoBMj8pFFcJgCSYHFZtOE4jjnC
ERl0eufOlu2x+6C6dho5pYsCQoqyTOyomGjYjj9drN6h
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:32 2024 by rpki-client on console-fra.rpki-client.org