Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/4gAZjkBdMSW6xf3RcpQX2qs8V20.roa
File: 4gAZjkBdMSW6xf3RcpQX2qs8V20.roa (raw, json)
Hash identifier: JgP+eUjc76rsUg0v1304r+W2XOiokSLk9Hp2OIgc1K4=
Subject key identifier: E2:00:19:8E:40:5D:31:25:BA:C5:FD:D1:72:94:17:DA:AB:3C:57:6D
Certificate issuer: /CN=4f2d30b015ec4ef1b0d3c64347c8d1b598293f81
Certificate serial: 018B0A2D03A2367FA092735B501AF7C7A0BC
Authority key identifier: 4F:2D:30:B0:15:EC:4E:F1:B0:D3:C6:43:47:C8:D1:B5:98:29:3F:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/4gAZjkBdMSW6xf3RcpQX2qs8V20.roa
Signing time: Sat 07 Oct 2023 12:46:44 +0000
ROA not before: Sat 07 Oct 2023 12:46:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 185.157.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0a:2d:03:a2:36:7f:a0:92:73:5b:50:1a:f7:c7:a0:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f2d30b015ec4ef1b0d3c64347c8d1b598293f81
Validity
Not Before: Oct 7 12:46:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e200198e405d3125bac5fdd1729417daab3c576d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:18:55:08:1f:a9:65:6b:75:10:74:d2:4e:d5:
17:00:5f:ea:6b:a1:e5:43:c0:16:a9:5f:4d:c2:ef:
65:1a:d4:dc:95:26:ec:2d:6d:56:00:02:18:fc:39:
f3:e7:31:63:a1:df:47:6e:44:87:a8:76:24:b3:c0:
f8:d4:b3:27:31:60:16:51:1b:ff:47:7d:92:9f:24:
50:29:2d:f0:8f:79:a8:17:d1:2c:cc:a5:9c:2c:60:
e1:0f:1f:4a:66:e5:35:96:40:1b:a0:02:74:5b:09:
2d:c2:95:72:02:a6:d1:66:28:2c:9d:c3:7e:56:f5:
34:59:0b:fe:6d:c0:6f:df:46:e1:b3:01:92:f5:8d:
af:f5:5f:7c:9f:ac:fc:11:73:75:62:b5:be:27:87:
df:21:64:eb:d5:c7:44:7a:03:28:47:06:74:23:66:
02:3a:c3:a4:9b:e8:7a:a4:d1:ed:0b:ad:6d:d0:eb:
94:b2:11:c8:7b:82:95:ea:ec:d2:85:cc:00:89:35:
31:1d:fb:d2:ac:bf:b7:8a:b4:10:7a:8f:51:80:c3:
96:11:6e:20:1c:18:25:90:58:5b:9b:5a:73:30:53:
6d:c5:13:f8:00:78:24:37:63:8b:5a:41:e9:25:c1:
aa:cb:80:68:44:d4:c6:af:86:7c:47:b1:53:ff:03:
9d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:00:19:8E:40:5D:31:25:BA:C5:FD:D1:72:94:17:DA:AB:3C:57:6D
X509v3 Authority Key Identifier:
keyid:4F:2D:30:B0:15:EC:4E:F1:B0:D3:C6:43:47:C8:D1:B5:98:29:3F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/4gAZjkBdMSW6xf3RcpQX2qs8V20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:cb:df:c4:9a:5a:54:45:53:0b:62:89:41:88:48:de:ac:97:
09:c7:e3:f4:01:19:c1:af:ed:9f:c3:ff:53:e6:d8:92:e0:3c:
6b:ac:14:e7:db:b9:ba:ba:76:e0:45:7d:fc:df:c3:d2:ec:96:
9c:6c:a2:76:0f:1b:76:de:51:d6:ba:3b:00:11:f9:41:dd:34:
54:b2:66:2f:26:15:e6:0a:fd:11:d7:47:23:6d:10:b9:c7:29:
b7:6d:1d:90:b0:be:fe:f2:d8:64:46:fb:f8:ba:3e:ea:06:32:
4e:40:aa:fd:cf:d3:fa:ba:6c:d7:0d:1a:d8:6d:f5:90:c7:0d:
ed:55:e6:21:36:95:69:4c:00:a8:6e:77:c9:7e:81:66:f4:28:
ba:48:6e:1d:64:11:94:97:b3:23:2c:c6:ad:fa:c8:e9:ca:66:
c4:a0:e8:ef:f8:b6:76:6e:03:81:6f:91:15:06:5d:65:a8:7e:
25:e3:25:3b:c7:57:94:5f:46:ff:4a:e4:73:78:db:90:a6:57:
e5:01:c4:dc:07:61:d7:6d:0d:ae:ed:b5:5c:71:9c:7b:96:ed:
c3:ce:2b:af:db:14:41:9a:6b:72:16:fd:99:59:f4:f7:72:a4:
63:27:36:cb:1d:92:36:ad:68:94:99:24:93:a3:b0:46:4b:8b:
c2:e4:1e:1a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsKLQOiNn+gknNbUBr3x6C8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMmQzMGIwMTVlYzRlZjFiMGQzYzY0MzQ3YzhkMWI1OTgy
OTNmODEwHhcNMjMxMDA3MTI0NjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjAwMTk4ZTQwNWQzMTI1YmFjNWZkZDE3Mjk0MTdkYWFiM2M1NzZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBhVCB+pZWt1EHTSTtUXAF/qa6Hl
Q8AWqV9Nwu9lGtTclSbsLW1WAAIY/Dnz5zFjod9HbkSHqHYks8D41LMnMWAWURv/
R32SnyRQKS3wj3moF9EszKWcLGDhDx9KZuU1lkAboAJ0WwktwpVyAqbRZigsncN+
VvU0WQv+bcBv30bhswGS9Y2v9V98n6z8EXN1YrW+J4ffIWTr1cdEegMoRwZ0I2YC
OsOkm+h6pNHtC61t0OuUshHIe4KV6uzShcwAiTUxHfvSrL+3irQQeo9RgMOWEW4g
HBglkFhbm1pzMFNtxRP4AHgkN2OLWkHpJcGqy4BoRNTGr4Z8R7FT/wOdewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOIAGY5AXTElusX90XKUF9qrPFdtMB8GA1UdIwQY
MBaAFE8tMLAV7E7xsNPGQ0fI0bWYKT+BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHkwd3NCWHNUdkd3MDhaRFI4alJ0WmdwUDRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi85NjY4YjUtNWU5Mi00YzE4LTliYjkt
NDM1MWJiZjc0YzBjLzEvNGdBWmprQmRNU1c2eGYzUmNwUVgycXM4VjIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi85NjY4YjUtNWU5Mi00YzE4LTliYjktNDM1MWJiZjc0YzBj
LzEvVHkwd3NCWHNUdkd3MDhaRFI4alJ0WmdwUDRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZ14MA0G
CSqGSIb3DQEBCwUAA4IBAQCLy9/EmlpURVMLYolBiEjerJcJx+P0ARnBr+2fw/9T
5tiS4DxrrBTn27m6unbgRX3838PS7JacbKJ2Dxt23lHWujsAEflB3TRUsmYvJhXm
Cv0R10cjbRC5xym3bR2QsL7+8thkRvv4uj7qBjJOQKr9z9P6umzXDRrYbfWQxw3t
VeYhNpVpTACobnfJfoFm9Ci6SG4dZBGUl7MjLMat+sjpymbEoOjv+LZ2bgOBb5EV
Bl1lqH4l4yU7x1eUX0b/SuRzeNuQplflAcTcB2HXbQ2u7bVccZx7lu3Dziuv2xRB
mmtyFv2ZWfT3cqRjJzbLHZI2rWiUmSSTo7BGS4vC5B4a
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:53 2024 by rpki-client on console-fra.rpki-client.org