Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/GoOF19MhHzRJBloAAkqeXCoJE80.roa
File: GoOF19MhHzRJBloAAkqeXCoJE80.roa (raw, json)
Hash identifier: BIuO70C8ypZHAnodgrOjfFcBOdp2zXxHuf+KWi/A+XM=
Subject key identifier: 1A:83:85:D7:D3:21:1F:34:49:06:5A:00:02:4A:9E:5C:2A:09:13:CD
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEE04F9FF85DEE48E857BA465CF481
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/GoOF19MhHzRJBloAAkqeXCoJE80.roa
Signing time: Sun 01 Jan 2023 06:04:55 +0000
ROA not before: Sun 01 Jan 2023 06:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208817
IP address blocks: 85.202.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:e0:4f:9f:f8:5d:ee:48:e8:57:ba:46:5c:f4:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a8385d7d3211f3449065a00024a9e5c2a0913cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:65:60:6f:74:8d:26:e1:e7:8f:0c:fa:cb:83:
c1:81:b8:cd:d5:f2:45:75:36:a7:69:bc:7c:50:cf:
2e:88:38:7a:8a:3e:cd:42:2a:82:55:b4:98:3f:d3:
a9:f6:e5:1d:4c:01:e9:aa:eb:0d:50:b0:57:0d:33:
0b:f1:07:77:2b:62:0b:c3:51:8d:d1:34:f1:78:09:
8e:4a:62:55:c9:9f:11:50:cd:9f:0e:a2:a1:13:4e:
56:90:69:a5:35:e9:85:1b:77:5f:06:29:ea:ad:97:
11:85:a1:69:2f:3e:39:e8:83:dd:e2:ff:4c:71:eb:
7d:88:e6:a4:43:d8:f4:87:a2:a5:6b:13:a3:a1:c3:
1e:db:51:5c:18:66:f2:3d:a4:7d:9d:67:5b:6a:e3:
41:7f:c3:56:f2:79:e6:ca:8b:e8:29:02:0b:f0:54:
51:68:30:10:35:53:8b:69:6f:ee:79:88:9a:72:8d:
2d:67:bf:d1:d7:62:bb:6a:48:82:17:20:af:f1:75:
ec:6a:77:37:99:08:48:46:28:d3:40:d4:94:eb:e6:
50:b5:eb:d8:fc:71:c4:64:40:5f:a4:b2:fb:79:09:
34:89:53:45:d1:dc:a4:f1:72:63:f7:8a:c6:55:c0:
ff:13:8a:f9:29:d4:cc:ee:75:2d:63:d4:77:03:30:
30:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:83:85:D7:D3:21:1F:34:49:06:5A:00:02:4A:9E:5C:2A:09:13:CD
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/GoOF19MhHzRJBloAAkqeXCoJE80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.60.0/22
Signature Algorithm: sha256WithRSAEncryption
36:a3:49:cc:f7:ff:20:fd:07:44:70:8b:d8:c7:1b:67:3d:b3:
0c:8e:00:01:b4:e1:41:44:93:24:1e:24:4b:1a:5d:c2:9d:df:
6c:77:c7:bf:eb:55:24:3b:51:e7:0e:62:cd:4a:97:81:46:ac:
3e:6c:33:5e:93:e7:aa:8d:14:58:b2:03:29:35:95:95:ca:90:
6d:a1:8d:d8:c0:b5:05:43:7d:c5:f0:22:68:c9:97:a7:0d:89:
d9:db:ff:1b:a2:3c:c9:33:46:ff:5b:79:3b:9c:b8:9e:82:ce:
35:6f:31:63:50:db:92:e3:c0:37:f1:cd:b3:f5:7c:cc:98:0d:
72:d2:95:a0:41:21:d1:60:25:1a:89:7a:7c:e7:58:7e:78:95:
c2:ed:20:8d:08:c0:b4:0e:16:43:e1:43:21:23:1c:56:5a:b7:
7f:49:99:02:fa:2f:8b:47:8b:90:8c:4f:49:96:29:e5:af:9a:
e5:78:cb:1c:4a:28:67:c8:0d:90:5d:dd:61:6b:3e:02:dd:be:
fa:11:79:73:cb:be:0a:73:99:5e:2d:08:b4:3d:dd:0e:c5:9a:
eb:60:74:e7:e2:bf:58:1f:5d:fb:c6:b9:a1:5b:28:4d:f0:0b:
76:1a:7e:a8:76:b1:e1:91:61:ea:ea:c7:6a:57:93:71:e4:0d:
a7:aa:dc:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr7uBPn/hd7kjoV7pGXPSBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjMwMTAxMDYwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTgzODVkN2QzMjExZjM0NDkwNjVhMDAwMjRhOWU1YzJhMDkxM2NkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhGVgb3SNJuHnjwz6y4PBgbjN1fJF
dTanabx8UM8uiDh6ij7NQiqCVbSYP9Op9uUdTAHpqusNULBXDTML8Qd3K2ILw1GN
0TTxeAmOSmJVyZ8RUM2fDqKhE05WkGmlNemFG3dfBinqrZcRhaFpLz456IPd4v9M
cet9iOakQ9j0h6KlaxOjocMe21FcGGbyPaR9nWdbauNBf8NW8nnmyovoKQIL8FRR
aDAQNVOLaW/ueYiaco0tZ7/R12K7akiCFyCv8XXsanc3mQhIRijTQNSU6+ZQtevY
/HHEZEBfpLL7eQk0iVNF0dyk8XJj94rGVcD/E4r5KdTM7nUtY9R3AzAwEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBqDhdfTIR80SQZaAAJKnlwqCRPNMB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvR29PRjE5TWhIelJKQmxvQUFrcWVYQ29KRTgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVco8MA0G
CSqGSIb3DQEBCwUAA4IBAQA2o0nM9/8g/QdEcIvYxxtnPbMMjgABtOFBRJMkHiRL
Gl3Cnd9sd8e/61UkO1HnDmLNSpeBRqw+bDNek+eqjRRYsgMpNZWVypBtoY3YwLUF
Q33F8CJoyZenDYnZ2/8bojzJM0b/W3k7nLiegs41bzFjUNuS48A38c2z9XzMmA1y
0pWgQSHRYCUaiXp851h+eJXC7SCNCMC0DhZD4UMhIxxWWrd/SZkC+i+LR4uQjE9J
linlr5rleMscSihnyA2QXd1haz4C3b76EXlzy74Kc5leLQi0Pd0OxZrrYHTn4r9Y
H137xrmhWyhN8At2Gn6odrHhkWHq6sdqV5Nx5A2nqtxI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org