Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/u1HUCs1LeWKLCkRKOB1hnTsQKD4.roa
File: u1HUCs1LeWKLCkRKOB1hnTsQKD4.roa (raw, json)
Hash identifier: 4FZdQIpFYPhEWjsAqJJMDi6h5krHy5NwB+adGKyftlc=
Subject key identifier: BB:51:D4:0A:CD:4B:79:62:8B:0A:44:4A:38:1D:61:9D:3B:10:28:3E
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 01856DB8825C9CC83011CDB5FB0FF4010ADB
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/u1HUCs1LeWKLCkRKOB1hnTsQKD4.roa
Signing time: Sun 01 Jan 2023 14:24:46 +0000
ROA not before: Sun 01 Jan 2023 14:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207151
IP address blocks: 185.165.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:b8:82:5c:9c:c8:30:11:cd:b5:fb:0f:f4:01:0a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: Jan 1 14:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb51d40acd4b79628b0a444a381d619d3b10283e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9e:7d:92:3e:12:d2:b0:67:e5:64:c6:ba:46:
0c:e0:7e:61:10:5c:b4:c3:19:d9:b0:88:d0:5c:4e:
9d:59:7a:9a:ad:f8:5d:5a:85:44:a3:34:9a:f4:53:
b4:69:aa:79:57:c4:64:c9:04:af:6b:c4:97:98:9f:
56:51:7b:36:a3:3b:0a:e6:fc:38:54:e3:65:97:9d:
03:8b:d9:df:17:88:89:01:20:b6:62:8e:3f:88:05:
d1:d9:79:0c:c5:09:49:83:60:4d:68:2b:84:30:a7:
ce:f1:5e:82:71:b0:04:ff:d7:68:48:8b:5a:c9:94:
d2:1a:89:a2:8e:96:0d:41:cd:11:ae:8e:1d:57:64:
78:c1:75:8b:33:ec:27:9e:64:e5:1d:1e:bf:5c:9b:
6f:e4:41:2e:ca:ef:45:35:87:ca:b9:60:38:b0:f1:
af:9d:9f:38:56:ea:7d:eb:0a:65:36:2a:4c:bc:0c:
22:66:dd:7b:e0:d5:3c:ca:a5:a8:ae:a9:83:0d:51:
ce:24:29:86:a4:b6:1b:15:e9:9f:81:ed:16:60:59:
36:9b:7f:9b:14:9b:19:91:b4:95:bd:44:c6:f9:fa:
92:f3:9e:86:32:d9:7b:da:d2:70:8d:ca:17:11:1a:
f1:88:0e:30:3e:b2:68:bb:50:4a:4a:a7:07:fa:a3:
f2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:51:D4:0A:CD:4B:79:62:8B:0A:44:4A:38:1D:61:9D:3B:10:28:3E
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/u1HUCs1LeWKLCkRKOB1hnTsQKD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.64.0/22
Signature Algorithm: sha256WithRSAEncryption
81:65:b9:55:c9:fd:ef:61:fc:4c:ec:f2:60:be:f0:a8:9e:d7:
74:57:62:d7:c5:55:e3:99:3d:61:a4:49:ce:2d:b4:92:63:5e:
f4:dd:6b:78:84:6b:e3:77:c8:8d:8c:6e:b3:40:12:9c:61:31:
62:eb:67:78:f9:29:08:02:4a:65:7d:e2:8f:04:ce:19:ca:29:
44:09:66:a3:d4:01:ec:5f:f1:88:fc:e3:3e:c6:6d:0c:bb:b2:
fc:d1:0c:bb:3c:50:cf:f6:ac:0c:41:9d:dd:c3:a2:78:16:0b:
e7:b9:f9:15:f1:27:b1:a9:90:5a:e3:21:c3:12:c9:78:4d:68:
a8:d4:35:fe:b8:98:d5:1f:49:6e:47:88:0d:35:be:1f:1a:84:
fb:7a:52:d6:ca:e0:ec:02:ec:10:0f:24:8e:a0:90:c7:8c:49:
5c:a0:74:f7:52:af:31:57:ed:32:ba:d4:ac:73:70:55:c9:50:
c0:14:a1:09:91:f7:23:66:a4:64:18:a4:10:8a:67:b8:d4:25:
d2:55:c3:2a:2c:67:86:5e:c5:3f:0a:ba:f5:ac:2a:63:48:ac:
7e:cf:24:f0:05:b5:4a:2b:7f:80:45:cf:08:09:0a:2e:73:a9:
aa:24:2f:d5:3c:67:ea:dc:20:f5:e8:04:a4:2b:68:cc:e4:5d:
c1:be:69:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtuIJcnMgwEc21+w/0AQrbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNzg4ZjRlYmI3NDFjMGMzNjlhMGZkMzA1OTRjZDAxMDFk
Yzc0NzYwHhcNMjMwMTAxMTQyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjUxZDQwYWNkNGI3OTYyOGIwYTQ0NGEzODFkNjE5ZDNiMTAyODNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAip59kj4S0rBn5WTGukYM4H5hEFy0
wxnZsIjQXE6dWXqarfhdWoVEozSa9FO0aap5V8RkyQSva8SXmJ9WUXs2ozsK5vw4
VONll50Di9nfF4iJASC2Yo4/iAXR2XkMxQlJg2BNaCuEMKfO8V6CcbAE/9doSIta
yZTSGomijpYNQc0Rro4dV2R4wXWLM+wnnmTlHR6/XJtv5EEuyu9FNYfKuWA4sPGv
nZ84Vup96wplNipMvAwiZt174NU8yqWorqmDDVHOJCmGpLYbFemfge0WYFk2m3+b
FJsZkbSVvUTG+fqS856GMtl72tJwjcoXERrxiA4wPrJou1BKSqcH+qPy/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLtR1ArNS3liiwpESjgdYZ07ECg+MB8GA1UdIwQY
MBaAFJJ4j067dBwMNpoP0wWUzQEB3HR2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgt
ZGJmYWMwMGZiMGVmLzEvdTFIVUNzMUxlV0tMQ2tSS09CMWhuVHNRS0Q0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgtZGJmYWMwMGZiMGVm
LzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaVAMA0G
CSqGSIb3DQEBCwUAA4IBAQCBZblVyf3vYfxM7PJgvvContd0V2LXxVXjmT1hpEnO
LbSSY1703Wt4hGvjd8iNjG6zQBKcYTFi62d4+SkIAkplfeKPBM4ZyilECWaj1AHs
X/GI/OM+xm0Mu7L80Qy7PFDP9qwMQZ3dw6J4FgvnufkV8SexqZBa4yHDEsl4TWio
1DX+uJjVH0luR4gNNb4fGoT7elLWyuDsAuwQDySOoJDHjElcoHT3Uq8xV+0yutSs
c3BVyVDAFKEJkfcjZqRkGKQQime41CXSVcMqLGeGXsU/Crr1rCpjSKx+zyTwBbVK
K3+ARc8ICQouc6mqJC/VPGfq3CD16ASkK2jM5F3Bvmnh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:23 2024 by rpki-client on console-fra.rpki-client.org