Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/85GH2-R-iA_UrRlhfn_yGm2xcXc.roa
File: 85GH2-R-iA_UrRlhfn_yGm2xcXc.roa (raw, json)
Hash identifier: s+xzyPsQYvFygkfSZfdeom7x864bzMAAzbS3yBTNA1c=
Subject key identifier: F3:91:87:DB:E4:7E:88:0F:D4:AD:19:61:7E:7F:F2:1A:6D:B1:71:77
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 018ADB4CF0A0583CBB56C2B15AA5B020708C
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/85GH2-R-iA_UrRlhfn_yGm2xcXc.roa
Signing time: Thu 28 Sep 2023 10:19:27 +0000
ROA not before: Thu 28 Sep 2023 10:19:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216235
IP address blocks: 46.183.166.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:db:4c:f0:a0:58:3c:bb:56:c2:b1:5a:a5:b0:20:70:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Sep 28 10:19:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f39187dbe47e880fd4ad19617e7ff21a6db17177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cc:c6:86:9a:c8:ca:ac:af:e0:b5:de:09:2a:
99:13:4c:29:29:9d:98:83:73:35:7f:f2:46:d9:73:
ab:10:a0:cb:4a:03:33:48:92:d9:c1:83:78:73:64:
72:58:b2:b0:3c:82:87:dd:36:84:ec:c6:ab:d4:36:
a0:15:98:c6:20:d8:80:20:2a:15:6c:c5:e9:e1:35:
5f:5e:51:11:a6:6b:48:06:04:94:d2:c6:4f:93:72:
87:32:60:77:48:83:6b:e4:a0:f3:a9:c3:84:e9:8e:
3a:b5:c8:95:92:0f:72:ba:3e:af:d6:12:1c:51:1d:
cb:51:07:30:c3:15:90:24:24:b4:c5:01:fe:b7:69:
c9:07:e8:da:55:4e:eb:c1:89:2b:9e:af:58:19:28:
0d:ab:c8:f0:bd:57:37:00:d6:3f:8a:c4:e3:58:c8:
18:7e:7c:41:49:57:19:9e:da:cd:9d:d5:6f:6d:c0:
c5:b0:ac:e0:19:9a:a3:a6:e3:e8:c2:50:19:c2:ca:
07:57:ec:e3:5b:a4:6b:cc:0f:d2:5e:16:66:a5:81:
25:59:68:1b:cb:dc:c4:9b:66:5a:44:7b:12:88:ec:
8d:bd:05:52:80:78:6b:d3:15:93:56:1d:4b:97:4e:
14:51:c3:59:c9:ec:3e:d1:26:3b:61:34:59:9f:ba:
f3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:91:87:DB:E4:7E:88:0F:D4:AD:19:61:7E:7F:F2:1A:6D:B1:71:77
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/85GH2-R-iA_UrRlhfn_yGm2xcXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.166.0/23
Signature Algorithm: sha256WithRSAEncryption
de:61:ab:d1:d6:7f:30:79:59:70:4e:a5:32:09:77:fe:f7:17:
76:c4:fd:1e:2e:5b:8a:9f:0c:ac:b9:c3:41:c3:43:72:01:ed:
fe:26:19:20:4e:cf:86:3d:41:6a:de:3f:95:71:2f:e4:d7:30:
c4:f4:fb:b6:43:ff:3a:71:25:ea:06:e3:7b:64:fb:e2:c3:b2:
37:d6:5a:e3:b3:fd:82:a1:66:ba:c1:38:06:51:53:bd:d3:02:
a9:87:62:4b:2d:4c:e8:b0:44:00:a1:18:94:06:9c:35:d4:34:
3d:5e:6d:df:a3:09:c7:27:6e:f7:99:0d:ed:4a:2c:d1:d2:5f:
68:c0:bf:58:a9:70:6d:a1:e8:a1:10:3f:31:4e:3e:89:56:39:
01:79:13:1d:dd:a6:47:77:c3:36:99:46:bc:48:f2:01:b5:2b:
1e:93:6e:20:30:1b:3d:80:a4:cb:61:dc:aa:ff:02:08:0c:3e:
0a:58:59:91:ad:fb:c5:42:a1:bf:dc:6f:21:22:01:cf:ce:b8:
1d:52:34:5f:e6:87:7c:45:3b:47:06:84:62:67:f2:db:bb:f2:
34:48:25:9b:20:c0:af:af:0c:fb:7a:2f:62:5d:ac:92:65:37:
a4:37:79:b2:5c:9a:9a:f9:19:29:f8:c2:c5:96:41:c7:17:d9:
40:c6:23:d6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrbTPCgWDy7VsKxWqWwIHCMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5YTRkNjkxNmI5MzE1OWFhODA5ODRhOWIzNzc0NjgzYmI1
NTBlYmQwHhcNMjMwOTI4MTAxOTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzkxODdkYmU0N2U4ODBmZDRhZDE5NjE3ZTdmZjIxYTZkYjE3MTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtczGhprIyqyv4LXeCSqZE0wpKZ2Y
g3M1f/JG2XOrEKDLSgMzSJLZwYN4c2RyWLKwPIKH3TaE7Mar1DagFZjGINiAICoV
bMXp4TVfXlERpmtIBgSU0sZPk3KHMmB3SINr5KDzqcOE6Y46tciVkg9yuj6v1hIc
UR3LUQcwwxWQJCS0xQH+t2nJB+jaVU7rwYkrnq9YGSgNq8jwvVc3ANY/isTjWMgY
fnxBSVcZntrNndVvbcDFsKzgGZqjpuPowlAZwsoHV+zjW6RrzA/SXhZmpYElWWgb
y9zEm2ZaRHsSiOyNvQVSgHhr0xWTVh1Ll04UUcNZyew+0SY7YTRZn7rzdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPORh9vkfogP1K0ZYX5/8hptsXF3MB8GA1UdIwQY
MBaAFGmk1pFrkxWaqAmEqbN3RoO7VQ69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUt
MzE5NzExMDA5N2M5LzEvODVHSDItUi1pQV9VclJsaGZuX3lHbTJ4Y1hjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUtMzE5NzExMDA5N2M5
LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLremMA0G
CSqGSIb3DQEBCwUAA4IBAQDeYavR1n8weVlwTqUyCXf+9xd2xP0eLluKnwysucNB
w0NyAe3+JhkgTs+GPUFq3j+VcS/k1zDE9Pu2Q/86cSXqBuN7ZPviw7I31lrjs/2C
oWa6wTgGUVO90wKph2JLLUzosEQAoRiUBpw11DQ9Xm3fownHJ273mQ3tSizR0l9o
wL9YqXBtoeihED8xTj6JVjkBeRMd3aZHd8M2mUa8SPIBtSsek24gMBs9gKTLYdyq
/wIIDD4KWFmRrfvFQqG/3G8hIgHPzrgdUjRf5od8RTtHBoRiZ/Lbu/I0SCWbIMCv
rwz7ei9iXaySZTekN3myXJqa+Rkp+MLFlkHHF9lAxiPW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:05 2024 by rpki-client on console-fra.rpki-client.org