Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/06c734-09a1-4da3-8992-bd4d54445a95/1/_ByW8Hraco9aouhLopqXcwajlUU.roa
File: _ByW8Hraco9aouhLopqXcwajlUU.roa (raw, json)
Hash identifier: SwoJfmIE8zyDUeTXWsZ87olvR5iUBevdCQKlGDtr4mM=
Subject key identifier: FC:1C:96:F0:7A:DA:72:8F:5A:A2:E8:4B:A2:9A:97:73:06:A3:95:45
Certificate issuer: /CN=d703ceac906d07f74ca94c446303d954666b583a
Certificate serial: 01856C9CA081BE90281D47CF30E6279D98F1
Authority key identifier: D7:03:CE:AC:90:6D:07:F7:4C:A9:4C:44:63:03:D9:54:66:6B:58:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1wPOrJBtB_dMqUxEYwPZVGZrWDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/06c734-09a1-4da3-8992-bd4d54445a95/1/_ByW8Hraco9aouhLopqXcwajlUU.roa
Signing time: Sun 01 Jan 2023 09:14:42 +0000
ROA not before: Sun 01 Jan 2023 09:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62571
IP address blocks: 185.64.9.0/24 maxlen: 24
185.64.10.0/24 maxlen: 24
185.64.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:a0:81:be:90:28:1d:47:cf:30:e6:27:9d:98:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d703ceac906d07f74ca94c446303d954666b583a
Validity
Not Before: Jan 1 09:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc1c96f07ada728f5aa2e84ba29a977306a39545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a5:3a:13:e2:14:e6:1e:e6:a3:de:90:ef:c2:
1c:c3:19:31:9f:8b:ec:56:ae:6a:10:6c:72:36:fb:
63:e3:aa:e1:d3:6c:9a:29:92:61:94:b8:0d:7e:8d:
01:b5:5b:2d:82:3d:4c:8d:f7:43:2e:41:ed:26:ad:
39:e6:a5:be:5b:1d:b4:57:0f:06:da:78:e8:b2:17:
75:77:3b:4d:52:7b:0c:ee:e0:91:d6:09:63:0e:a0:
36:7d:c7:4c:a4:cd:fc:bb:f1:1d:0d:c2:08:69:da:
7b:09:1c:31:55:29:41:80:88:e1:59:1c:f1:74:97:
b8:66:20:08:f6:6d:ac:a1:13:37:f5:f2:00:26:90:
bb:cf:75:de:6d:1d:75:c1:33:4e:f4:8c:ed:f4:5c:
c5:a3:74:87:1c:55:df:e4:80:80:d5:5c:7c:55:0f:
ee:b2:0e:13:40:28:a3:d4:76:91:17:8d:1a:5a:8b:
ae:f7:33:1c:b0:e5:b7:d2:64:c3:86:3b:10:00:d1:
7e:45:18:d8:a7:90:2c:12:f1:5f:05:9e:0e:cb:5e:
57:7e:21:7d:ef:cc:12:d8:80:3e:74:1c:42:c1:e7:
f0:1f:7f:8e:b6:5a:38:02:73:6a:ad:c1:77:26:e1:
7f:5d:5c:06:cf:f7:44:db:98:59:45:de:d2:49:2b:
7d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:1C:96:F0:7A:DA:72:8F:5A:A2:E8:4B:A2:9A:97:73:06:A3:95:45
X509v3 Authority Key Identifier:
keyid:D7:03:CE:AC:90:6D:07:F7:4C:A9:4C:44:63:03:D9:54:66:6B:58:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1wPOrJBtB_dMqUxEYwPZVGZrWDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/06c734-09a1-4da3-8992-bd4d54445a95/1/_ByW8Hraco9aouhLopqXcwajlUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/06c734-09a1-4da3-8992-bd4d54445a95/1/1wPOrJBtB_dMqUxEYwPZVGZrWDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.8.0-185.64.10.255
Signature Algorithm: sha256WithRSAEncryption
04:c8:e5:32:cb:3d:d0:32:ac:55:eb:45:c2:bd:18:9d:f3:db:
3b:74:61:0e:fc:b6:0d:ce:c5:31:4f:9a:d8:a6:00:05:74:72:
51:71:99:3c:39:13:e5:d7:1f:70:2c:05:e1:46:4a:8f:6a:ee:
69:66:29:bf:e9:57:4c:bc:29:69:70:2d:c6:04:53:27:c0:03:
d4:70:cd:f5:d8:39:7f:92:69:96:ed:ba:be:3d:8d:cf:68:1d:
c0:3c:4c:ed:a1:a3:45:07:a8:b7:8e:d4:6b:3f:ae:93:c8:2c:
46:10:a8:19:8e:79:ac:67:de:7b:c6:ec:c9:7c:ec:81:a9:92:
39:f7:20:ec:4f:ec:87:b4:0f:85:09:e0:91:4b:7f:64:fc:a3:
69:b8:f2:66:e7:8c:db:ca:e7:03:f9:cb:df:95:cb:67:08:f8:
7a:6d:64:43:be:59:dd:b7:e3:95:0a:cb:66:57:49:38:ba:cf:
54:09:a8:71:e9:38:5e:f0:00:3b:4b:6e:40:db:2e:9f:6c:25:
37:15:de:89:d7:0e:bb:a3:26:c3:a6:73:60:1c:0d:40:81:29:
64:2b:6f:d7:da:aa:63:24:2b:b5:20:4b:42:fe:a2:35:e2:d9:
3d:96:f7:b0:f9:2f:7c:53:3c:d2:e2:55:0f:07:f7:7b:15:9f:
5f:57:d1:db
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVsnKCBvpAoHUfPMOYnnZjxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3MDNjZWFjOTA2ZDA3Zjc0Y2E5NGM0NDYzMDNkOTU0NjY2
YjU4M2EwHhcNMjMwMTAxMDkxNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzFjOTZmMDdhZGE3MjhmNWFhMmU4NGJhMjlhOTc3MzA2YTM5NTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjKU6E+IU5h7mo96Q78Icwxkxn4vs
Vq5qEGxyNvtj46rh02yaKZJhlLgNfo0BtVstgj1MjfdDLkHtJq055qW+Wx20Vw8G
2njoshd1dztNUnsM7uCR1gljDqA2fcdMpM38u/EdDcIIadp7CRwxVSlBgIjhWRzx
dJe4ZiAI9m2soRM39fIAJpC7z3XebR11wTNO9Izt9FzFo3SHHFXf5ICA1Vx8VQ/u
sg4TQCij1HaRF40aWouu9zMcsOW30mTDhjsQANF+RRjYp5AsEvFfBZ4Oy15XfiF9
78wS2IA+dBxCwefwH3+Otlo4AnNqrcF3JuF/XVwGz/dE25hZRd7SSSt9qQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFPwclvB62nKPWqLoS6Kal3MGo5VFMB8GA1UdIwQY
MBaAFNcDzqyQbQf3TKlMRGMD2VRma1g6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXdQT3JKQnRCX2RNcVV4RVl3UFpWR1pyV0RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS8wNmM3MzQtMDlhMS00ZGEzLTg5OTIt
YmQ0ZDU0NDQ1YTk1LzEvX0J5VzhIcmFjbzlhb3VoTG9wcVhjd2FqbFVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS8wNmM3MzQtMDlhMS00ZGEzLTg5OTItYmQ0ZDU0NDQ1YTk1
LzEvMXdQT3JKQnRCX2RNcVV4RVl3UFpWR1pyV0RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAO5QAgD
BAC5QAowDQYJKoZIhvcNAQELBQADggEBAATI5TLLPdAyrFXrRcK9GJ3z2zt0YQ78
tg3OxTFPmtimAAV0clFxmTw5E+XXH3AsBeFGSo9q7mlmKb/pV0y8KWlwLcYEUyfA
A9RwzfXYOX+SaZbtur49jc9oHcA8TO2ho0UHqLeO1Gs/rpPILEYQqBmOeaxn3nvG
7Ml87IGpkjn3IOxP7Ie0D4UJ4JFLf2T8o2m48mbnjNvK5wP5y9+Vy2cI+HptZEO+
Wd2345UKy2ZXSTi6z1QJqHHpOF7wADtLbkDbLp9sJTcV3onXDrujJsOmc2AcDUCB
KWQrb9faqmMkK7UgS0L+ojXi2T2W97D5L3xTPNLiVQ8H93sVn19X0ds=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:23 2024 by rpki-client on console-fra.rpki-client.org