Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/r5DFwyxIDbqMWctYh2I7Oi02lQk.roa
File: r5DFwyxIDbqMWctYh2I7Oi02lQk.roa (raw, json)
Hash identifier: 9Imq/1EeiD4HJ2sB4cbFPKB15llefVNLTChgVDplq9E=
Subject key identifier: AF:90:C5:C3:2C:48:0D:BA:8C:59:CB:58:87:62:3B:3A:2D:36:95:09
Certificate issuer: /CN=b7b67ba579f48a4207ac409abf4f01194046ea3a
Certificate serial: 01857082C5C99771AEF9D20A37A56ADECBDE
Authority key identifier: B7:B6:7B:A5:79:F4:8A:42:07:AC:40:9A:BF:4F:01:19:40:46:EA:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t7Z7pXn0ikIHrECav08BGUBG6jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/r5DFwyxIDbqMWctYh2I7Oi02lQk.roa
Signing time: Mon 02 Jan 2023 03:24:56 +0000
ROA not before: Mon 02 Jan 2023 03:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199332
IP address blocks: 185.19.236.0/22 maxlen: 24
2a02:fe00::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 29 Aug 2023 21:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:c5:c9:97:71:ae:f9:d2:0a:37:a5:6a:de:cb:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7b67ba579f48a4207ac409abf4f01194046ea3a
Validity
Not Before: Jan 2 03:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af90c5c32c480dba8c59cb5887623b3a2d369509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:eb:da:87:32:d0:04:f0:be:55:3a:23:d4:23:
76:ff:6c:44:ec:7b:24:c6:73:e9:57:75:a1:39:6e:
08:1b:5a:84:a3:cc:db:5f:c6:c8:a6:16:07:7e:73:
0d:7a:82:36:a5:d8:25:4c:3f:e8:71:03:02:85:65:
d4:07:41:7f:75:85:63:9d:59:d9:eb:4c:e2:8c:46:
2a:12:0c:14:8c:e3:77:11:ff:14:8c:55:38:27:06:
54:95:c9:29:e1:be:ee:0a:8f:2b:3b:23:4c:54:94:
83:0c:c8:a2:a6:db:47:55:f4:80:b8:59:4c:85:e8:
a2:04:64:95:eb:8d:5b:cd:6d:8e:33:9e:25:a0:8f:
e5:76:ab:b8:8f:48:e8:97:2c:f9:91:23:65:80:13:
3e:70:cc:91:1b:a0:58:6c:22:af:74:7a:da:22:05:
ff:e0:17:40:7d:01:e3:56:e1:51:f1:87:e7:eb:8b:
e3:25:29:3e:5f:f8:be:54:37:7e:45:35:72:69:8f:
52:50:21:e4:da:f4:3d:ff:83:d1:74:bb:bb:c2:8f:
27:15:e1:10:53:66:77:fe:6f:e3:1a:cc:61:fe:9d:
4f:a9:19:0c:61:98:65:62:a9:e9:c7:af:d1:cb:5e:
3b:50:0c:9b:1e:e6:aa:e8:c6:ab:b6:91:be:1a:e5:
b3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:90:C5:C3:2C:48:0D:BA:8C:59:CB:58:87:62:3B:3A:2D:36:95:09
X509v3 Authority Key Identifier:
keyid:B7:B6:7B:A5:79:F4:8A:42:07:AC:40:9A:BF:4F:01:19:40:46:EA:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t7Z7pXn0ikIHrECav08BGUBG6jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/r5DFwyxIDbqMWctYh2I7Oi02lQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/t7Z7pXn0ikIHrECav08BGUBG6jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.236.0/22
IPv6:
2a02:fe00::/29
Signature Algorithm: sha256WithRSAEncryption
83:58:19:54:f2:b4:2a:95:d3:9d:c0:11:c4:39:ec:0d:3d:d1:
a5:a8:83:3a:6b:f2:d7:35:07:8f:89:89:fb:8e:6e:30:1f:14:
a7:b8:24:f5:4d:44:da:c2:3d:b0:42:dc:a3:1a:28:b9:8f:dc:
b3:f4:0a:23:fa:95:fa:2b:58:16:2c:d9:bb:96:f0:43:22:05:
05:74:dd:a6:45:8b:96:25:c8:23:94:28:58:98:e9:c3:38:59:
20:96:36:e4:1b:d9:dc:36:79:4a:3b:ae:cf:e9:fd:b5:75:35:
57:61:c6:96:5a:46:21:2f:c3:67:8d:45:e1:b8:e3:c3:69:43:
70:c1:dd:16:c3:7a:ea:50:34:37:47:f3:d5:03:47:1b:b9:e5:
bb:48:bc:a9:79:e3:b1:35:cf:52:ce:bf:77:54:26:b3:20:3e:
9b:5e:a3:8a:5d:12:3f:26:07:6c:c7:b7:51:91:46:0a:40:2d:
5d:98:b6:e6:02:ab:7c:76:45:bf:29:08:65:7c:51:f0:25:30:
a9:11:32:a3:23:3e:eb:1c:3c:82:e0:39:a4:e1:42:74:62:12:
4c:34:96:ab:f6:22:09:9c:64:dc:d5:6b:60:d2:6c:9f:37:c2:
cc:88:f1:36:37:55:b9:57:43:93:08:be:81:a0:7f:7c:e3:87:
b3:93:01:8a
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVwgsXJl3Gu+dIKN6Vq3sveMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3YjY3YmE1NzlmNDhhNDIwN2FjNDA5YWJmNGYwMTE5NDA0
NmVhM2EwHhcNMjMwMTAyMDMyNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjkwYzVjMzJjNDgwZGJhOGM1OWNiNTg4NzYyM2IzYTJkMzY5NTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhevahzLQBPC+VToj1CN2/2xE7Hsk
xnPpV3WhOW4IG1qEo8zbX8bIphYHfnMNeoI2pdglTD/ocQMChWXUB0F/dYVjnVnZ
60zijEYqEgwUjON3Ef8UjFU4JwZUlckp4b7uCo8rOyNMVJSDDMiipttHVfSAuFlM
heiiBGSV641bzW2OM54loI/ldqu4j0jolyz5kSNlgBM+cMyRG6BYbCKvdHraIgX/
4BdAfQHjVuFR8Yfn64vjJSk+X/i+VDd+RTVyaY9SUCHk2vQ9/4PRdLu7wo8nFeEQ
U2Z3/m/jGsxh/p1PqRkMYZhlYqnpx6/Ry147UAybHuaq6MartpG+GuWzgwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFK+QxcMsSA26jFnLWIdiOzotNpUJMB8GA1UdIwQY
MBaAFLe2e6V59IpCB6xAmr9PARlARuo6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDdaN3BYbjBpa0lIckVDYXYwOEJHVUJHNmpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni85NjNkNzUtNGNmZi00YjE0LTgzZGYt
Yjc3NDMyMGQ5OTdmLzEvcjVERnd5eElEYnFNV2N0WWgySTdPaTAybFFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni85NjNkNzUtNGNmZi00YjE0LTgzZGYtYjc3NDMyMGQ5OTdm
LzEvdDdaN3BYbjBpa0lIckVDYXYwOEJHVUJHNmpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuRPsMA0E
AgACMAcDBQMqAv4AMA0GCSqGSIb3DQEBCwUAA4IBAQCDWBlU8rQqldOdwBHEOewN
PdGlqIM6a/LXNQePiYn7jm4wHxSnuCT1TUTawj2wQtyjGii5j9yz9Aoj+pX6K1gW
LNm7lvBDIgUFdN2mRYuWJcgjlChYmOnDOFkgljbkG9ncNnlKO67P6f21dTVXYcaW
WkYhL8NnjUXhuOPDaUNwwd0Ww3rqUDQ3R/PVA0cbueW7SLypeeOxNc9Szr93VCaz
ID6bXqOKXRI/Jgdsx7dRkUYKQC1dmLbmAqt8dkW/KQhlfFHwJTCpETKjIz7rHDyC
4Dmk4UJ0YhJMNJar9iIJnGTc1Wtg0myfN8LMiPE2N1W5V0OTCL6BoH9844ezkwGK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:20 2024 by rpki-client on console-fra.rpki-client.org