Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/gHF9hTkb8Rm2l08sW4uHsF1-hko.roa
File: gHF9hTkb8Rm2l08sW4uHsF1-hko.roa (raw, json)
Hash identifier: JN8myYy/RBXudRqC3bfuiXz9vo/CsudDsCT9xbK2cNI=
Subject key identifier: 80:71:7D:85:39:1B:F1:19:B6:97:4F:2C:5B:8B:87:B0:5D:7E:86:4A
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 0185719554F6F8B57769D9FD5EA868FF82F0
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/gHF9hTkb8Rm2l08sW4uHsF1-hko.roa
Signing time: Mon 02 Jan 2023 08:24:50 +0000
ROA not before: Mon 02 Jan 2023 08:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212512
IP address blocks: 194.29.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jan 2023 13:09:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:54:f6:f8:b5:77:69:d9:fd:5e:a8:68:ff:82:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Jan 2 08:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80717d85391bf119b6974f2c5b8b87b05d7e864a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8d:2e:fa:aa:cb:84:f5:66:b8:8b:28:df:62:
19:5f:60:b6:1c:72:a7:89:9b:db:87:f3:1b:6c:e6:
5c:e5:44:b9:7b:7f:da:71:41:d8:85:12:87:aa:6c:
e9:43:7e:6c:3b:a2:54:fe:42:73:b7:12:55:15:21:
a8:60:4a:e9:cd:55:f6:06:b8:51:0e:64:ad:5e:60:
0b:6e:1a:61:bf:8a:64:54:42:1f:89:72:06:b2:2f:
40:31:59:0f:3a:59:c8:ed:54:5a:4f:cc:32:5e:93:
11:b3:75:02:e0:2c:25:9a:fc:9a:eb:9b:f4:38:09:
9f:04:11:00:d6:6f:13:c7:35:85:8b:57:cc:8c:bb:
3d:80:a3:c1:9a:0e:8f:7b:a2:b8:61:ea:0c:4e:46:
28:95:a1:e7:06:4b:95:14:cc:b2:bf:b6:af:6b:ba:
08:b0:4f:83:d1:10:62:e2:21:a6:ff:87:f2:9b:8e:
bf:f7:7b:b8:2d:35:94:ed:d1:8b:60:75:b3:62:7b:
0c:13:22:20:d5:42:b6:3e:c7:d0:71:13:2c:a5:c3:
08:36:db:f2:1f:d2:3f:60:07:db:e7:c6:bd:86:87:
8d:77:c4:bf:ee:df:cc:97:1f:e6:df:54:a0:d2:c6:
7c:8b:35:b4:ca:ea:8c:04:df:c4:d7:8d:22:36:22:
4d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:71:7D:85:39:1B:F1:19:B6:97:4F:2C:5B:8B:87:B0:5D:7E:86:4A
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/gHF9hTkb8Rm2l08sW4uHsF1-hko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.29.55.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:b9:53:7a:62:53:4b:45:28:6b:95:32:70:98:df:f5:67:b3:
89:96:aa:c3:3f:c4:66:48:2a:57:3d:b5:94:b4:bf:84:19:40:
8e:76:d2:b4:8f:c9:50:27:bd:62:b9:ad:1e:a6:96:1c:5d:7b:
1e:61:8d:f3:00:fb:ab:cb:52:db:da:6d:4a:a8:ff:a0:a9:bd:
b1:2b:31:2a:b9:9b:df:ff:16:00:51:bc:2d:b1:a1:93:eb:c8:
7e:b9:8b:40:39:fe:23:8b:95:41:54:6e:c9:dd:f7:ab:0f:7d:
ea:6b:dd:70:d1:1e:a4:33:5a:58:1b:6e:32:d3:56:42:e9:b8:
76:92:ad:aa:0a:b9:3a:64:90:79:bc:44:2b:de:64:15:0e:2d:
65:3c:b5:95:75:d0:00:de:3d:b4:17:d4:8f:f1:6c:32:18:9b:
fd:91:b4:dc:95:02:48:4c:0d:a4:06:b3:86:bb:9f:27:fa:f9:
ee:c6:20:0b:3c:52:d0:cf:36:49:cc:ea:4a:08:bf:43:be:ec:
e2:13:f6:3a:68:2d:11:2c:33:6a:b4:b3:b6:b4:ff:3e:40:14:
18:98:e8:5f:8a:4b:a3:2b:d8:a3:5c:d9:11:8f:20:66:c5:8b:
d8:1d:97:fd:3e:67:59:82:33:37:f3:5a:cd:a6:45:d6:9f:73:
35:57:74:71
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxlVT2+LV3adn9Xqho/4LwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYzBiZGFmYWRlYTc4ZGNlMzEyZjg2MmRkZjQyYjFiZDRj
NGY2NDUwHhcNMjMwMTAyMDgyNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDcxN2Q4NTM5MWJmMTE5YjY5NzRmMmM1YjhiODdiMDVkN2U4NjRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvY0u+qrLhPVmuIso32IZX2C2HHKn
iZvbh/MbbOZc5US5e3/acUHYhRKHqmzpQ35sO6JU/kJztxJVFSGoYErpzVX2BrhR
DmStXmALbhphv4pkVEIfiXIGsi9AMVkPOlnI7VRaT8wyXpMRs3UC4Cwlmvya65v0
OAmfBBEA1m8TxzWFi1fMjLs9gKPBmg6Pe6K4YeoMTkYolaHnBkuVFMyyv7ava7oI
sE+D0RBi4iGm/4fym46/93u4LTWU7dGLYHWzYnsMEyIg1UK2PsfQcRMspcMINtvy
H9I/YAfb58a9hoeNd8S/7t/Mlx/m31Sg0sZ8izW0yuqMBN/E140iNiJN9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIBxfYU5G/EZtpdPLFuLh7BdfoZKMB8GA1UdIwQY
MBaAFLLAva+t6njc4xL4Yt30KxvUxPZFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3NDOXI2M3FlTnpqRXZoaTNmUXJHOVRFOWtVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8xZjM3MTItY2YyYy00ODZlLTk1YjMt
ZmNjMzM2ZWVkOGQ3LzEvZ0hGOWhUa2I4Um0ybDA4c1c0dUhzRjEtaGtvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8xZjM3MTItY2YyYy00ODZlLTk1YjMtZmNjMzM2ZWVkOGQ3
LzEvc3NDOXI2M3FlTnpqRXZoaTNmUXJHOVRFOWtVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwh03MA0G
CSqGSIb3DQEBCwUAA4IBAQCsuVN6YlNLRShrlTJwmN/1Z7OJlqrDP8RmSCpXPbWU
tL+EGUCOdtK0j8lQJ71iua0eppYcXXseYY3zAPury1Lb2m1KqP+gqb2xKzEquZvf
/xYAUbwtsaGT68h+uYtAOf4ji5VBVG7J3ferD33qa91w0R6kM1pYG24y01ZC6bh2
kq2qCrk6ZJB5vEQr3mQVDi1lPLWVddAA3j20F9SP8WwyGJv9kbTclQJITA2kBrOG
u58n+vnuxiALPFLQzzZJzOpKCL9DvuziE/Y6aC0RLDNqtLO2tP8+QBQYmOhfikuj
K9ijXNkRjyBmxYvYHZf9PmdZgjM381rNpkXWn3M1V3Rx
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org