Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/gzhPyT51bBJEwkZKoon5Hrsd6O8.roa
File: gzhPyT51bBJEwkZKoon5Hrsd6O8.roa (raw, json)
Hash identifier: mW46UYKCcz0Qpzq1tk6IJNzMCMj/yVPayfEFwv/c474=
Subject key identifier: 83:38:4F:C9:3E:75:6C:12:44:C2:46:4A:A2:89:F9:1E:BB:1D:E8:EF
Certificate issuer: /CN=8685e05d80592c6cf11320eb5029cac04a4d9bb4
Certificate serial: 018B3E1E9D17FB655945EF369F9BB7CDBEE3
Authority key identifier: 86:85:E0:5D:80:59:2C:6C:F1:13:20:EB:50:29:CA:C0:4A:4D:9B:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/gzhPyT51bBJEwkZKoon5Hrsd6O8.roa
Signing time: Tue 17 Oct 2023 14:51:15 +0000
ROA not before: Tue 17 Oct 2023 14:51:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211007
IP address blocks: 185.207.244.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Oct 2023 15:09:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3e:1e:9d:17:fb:65:59:45:ef:36:9f:9b:b7:cd:be:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8685e05d80592c6cf11320eb5029cac04a4d9bb4
Validity
Not Before: Oct 17 14:51:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83384fc93e756c1244c2464aa289f91ebb1de8ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e2:36:0d:74:ad:e3:4f:bc:9d:76:7a:d6:8d:
d2:48:7e:b0:23:4d:f0:58:6a:c4:ce:07:e6:2a:f3:
0f:79:54:85:70:17:23:0d:59:70:2c:16:97:35:66:
40:6f:8f:6e:49:a2:ac:eb:df:77:98:81:24:3d:30:
2e:21:32:88:06:7c:1a:ca:ea:cc:23:45:5b:f6:c2:
e1:a8:c5:ee:25:ff:7c:62:3f:73:59:b9:a0:e8:73:
e0:a0:7c:1e:a0:8b:5f:ea:eb:c1:8d:88:85:53:0f:
5d:17:dd:06:36:66:5b:dd:a9:51:69:14:4e:02:e0:
80:79:2e:47:44:bf:54:d1:89:92:1f:03:74:3d:cb:
d1:d2:4f:df:89:16:7d:66:23:f4:be:b8:48:23:ea:
56:53:20:24:fd:c5:46:e9:a3:f8:cd:a0:14:7f:f2:
4a:aa:e5:55:a9:bd:13:7b:84:9e:a7:87:ab:81:34:
c6:b2:de:52:ef:39:a2:57:37:ed:38:5d:d3:9d:be:
b5:bb:4b:26:a4:96:fd:54:41:f0:42:13:99:b6:fa:
bf:19:ea:e6:a7:f5:00:a8:69:60:e7:3a:3f:cd:2a:
1c:fb:d8:4e:e0:56:1c:e7:1f:b8:7f:80:20:ff:81:
de:a8:8c:47:45:4d:db:1f:2c:41:c6:99:16:d7:94:
59:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:38:4F:C9:3E:75:6C:12:44:C2:46:4A:A2:89:F9:1E:BB:1D:E8:EF
X509v3 Authority Key Identifier:
keyid:86:85:E0:5D:80:59:2C:6C:F1:13:20:EB:50:29:CA:C0:4A:4D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/gzhPyT51bBJEwkZKoon5Hrsd6O8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.244.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:a2:ac:54:1d:a5:3b:be:da:df:1f:c8:63:2d:9e:51:dd:6b:
2c:94:d4:0a:20:d8:22:6b:e9:08:63:8d:01:34:00:6f:66:51:
08:17:68:79:28:ed:2d:b6:3c:93:0e:86:17:a0:2b:22:7a:0a:
78:b8:44:9c:96:d7:70:38:44:17:8f:39:58:21:81:e8:84:97:
87:45:fd:b1:16:42:96:2b:4b:14:8d:f7:df:40:5a:00:24:16:
9b:a7:7e:5b:1d:5b:58:09:e8:88:ba:4a:5f:a7:8d:39:71:24:
64:49:7c:73:7a:5d:c8:19:38:d3:9e:49:34:f4:33:49:c6:a4:
69:05:41:d0:68:38:62:e8:4b:b6:33:11:de:d0:b8:2c:f3:6a:
95:e5:69:78:a4:b1:9f:12:bd:52:28:08:ca:69:6c:bb:39:b4:
ff:37:2c:ef:09:9a:69:eb:f3:fb:6e:dd:cc:a2:f9:76:67:6a:
43:14:06:05:11:8a:d5:26:a9:e4:fc:7e:29:fe:79:83:1e:db:
da:37:2d:6f:6b:7e:04:a4:84:48:b1:da:af:3f:cf:9f:4d:21:
b1:12:35:11:83:f5:61:de:a5:37:55:51:b4:a9:b7:e9:7d:29:
9e:ad:75:74:a5:ea:2d:47:6a:65:5b:3f:a6:bf:de:13:a9:17:
bc:92:9b:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYs+Hp0X+2VZRe82n5u3zb7jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ODVlMDVkODA1OTJjNmNmMTEzMjBlYjUwMjljYWMwNGE0
ZDliYjQwHhcNMjMxMDE3MTQ1MTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzM4NGZjOTNlNzU2YzEyNDRjMjQ2NGFhMjg5ZjkxZWJiMWRlOGVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+I2DXSt40+8nXZ61o3SSH6wI03w
WGrEzgfmKvMPeVSFcBcjDVlwLBaXNWZAb49uSaKs6993mIEkPTAuITKIBnwayurM
I0Vb9sLhqMXuJf98Yj9zWbmg6HPgoHweoItf6uvBjYiFUw9dF90GNmZb3alRaRRO
AuCAeS5HRL9U0YmSHwN0PcvR0k/fiRZ9ZiP0vrhII+pWUyAk/cVG6aP4zaAUf/JK
quVVqb0Te4Sep4ergTTGst5S7zmiVzftOF3Tnb61u0smpJb9VEHwQhOZtvq/Germ
p/UAqGlg5zo/zSoc+9hO4FYc5x+4f4Ag/4HeqIxHRU3bHyxBxpkW15RZJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIM4T8k+dWwSRMJGSqKJ+R67HejvMB8GA1UdIwQY
MBaAFIaF4F2AWSxs8RMg61ApysBKTZu0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG9YZ1hZQlpMR3p4RXlEclVDbkt3RXBObTdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9iNTQ0ZDUtZmVmYS00MjQwLWJmNDAt
NjhlZjI0Y2Y1ZWY5LzEvZ3poUHlUNTFiQkpFd2taS29vbjVIcnNkNk84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS9iNTQ0ZDUtZmVmYS00MjQwLWJmNDAtNjhlZjI0Y2Y1ZWY5
LzEvaG9YZ1hZQlpMR3p4RXlEclVDbkt3RXBObTdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuc/0MA0G
CSqGSIb3DQEBCwUAA4IBAQBdoqxUHaU7vtrfH8hjLZ5R3WsslNQKINgia+kIY40B
NABvZlEIF2h5KO0ttjyTDoYXoCsiegp4uEScltdwOEQXjzlYIYHohJeHRf2xFkKW
K0sUjfffQFoAJBabp35bHVtYCeiIukpfp405cSRkSXxzel3IGTjTnkk09DNJxqRp
BUHQaDhi6Eu2MxHe0Lgs82qV5Wl4pLGfEr1SKAjKaWy7ObT/NyzvCZpp6/P7bt3M
ovl2Z2pDFAYFEYrVJqnk/H4p/nmDHtvaNy1va34EpIRIsdqvP8+fTSGxEjURg/Vh
3qU3VVG0qbfpfSmerXV0peotR2plWz+mv94TqRe8kpu9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:47 2024 by rpki-client on console-ams.rpki-client.org