Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9ff9c7-d329-45a6-898a-9d959abce526/1/AaezdvlZKK0cs0qFWJrG-3KbiDc.roa
File: AaezdvlZKK0cs0qFWJrG-3KbiDc.roa (raw, json)
Hash identifier: Pcd3uecum/4k2+WJrwmXca+tZRsvTy2dora1ugyJNnA=
Subject key identifier: 01:A7:B3:76:F9:59:28:AD:1C:B3:4A:85:58:9A:C6:FB:72:9B:88:37
Certificate issuer: /CN=9d3ebba9fa2cad286ac91276575745f615e8fa71
Certificate serial: 01863063575CAF153FED2BCC79AF6027EEE9
Authority key identifier: 9D:3E:BB:A9:FA:2C:AD:28:6A:C9:12:76:57:57:45:F6:15:E8:FA:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nT67qfosrShqyRJ2V1dF9hXo-nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9ff9c7-d329-45a6-898a-9d959abce526/1/AaezdvlZKK0cs0qFWJrG-3KbiDc.roa
Signing time: Wed 08 Feb 2023 09:37:42 +0000
ROA not before: Wed 08 Feb 2023 09:37:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199996
IP address blocks: 185.35.176.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:30:63:57:5c:af:15:3f:ed:2b:cc:79:af:60:27:ee:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d3ebba9fa2cad286ac91276575745f615e8fa71
Validity
Not Before: Feb 8 09:37:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01a7b376f95928ad1cb34a85589ac6fb729b8837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:74:c5:39:72:18:90:50:e4:40:9a:e8:67:a1:
0c:17:c6:f5:90:02:86:8a:6c:2f:91:bd:e7:bd:d7:
8e:0d:c8:31:37:3a:af:e9:f5:4b:ff:6e:c8:98:3b:
62:f8:e1:bc:bb:47:00:14:26:63:ab:e8:be:38:7a:
88:3f:df:51:04:1f:38:4a:90:53:15:d8:94:dc:5d:
76:f8:0e:a5:08:74:46:1f:0f:17:ac:01:c6:9b:d3:
af:39:7d:5a:0c:03:dc:b3:55:76:a6:57:42:8b:34:
23:e6:2e:27:bb:86:ca:3d:e8:68:dc:a5:76:48:40:
76:d5:a6:ba:a5:e9:95:da:08:c1:8e:6e:ec:8d:0c:
34:5c:3e:3a:76:91:78:3d:e0:dc:7c:61:5f:ee:8c:
72:68:2f:db:38:be:80:15:1e:5e:0e:84:1a:8b:97:
13:ef:e3:93:23:53:e1:26:27:e0:d3:91:c0:8b:22:
4a:0c:7a:c0:31:4d:81:44:90:1b:c2:33:be:c7:ec:
bc:8f:87:89:81:75:57:5f:e0:55:52:b3:0a:b7:eb:
03:48:c2:d3:a8:4e:f4:b1:99:2d:c6:d8:1e:b0:48:
bd:72:70:27:72:42:54:79:68:5f:71:2b:a7:34:be:
f4:fb:83:8c:c7:6d:f2:d0:74:9f:19:32:81:fa:bc:
de:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A7:B3:76:F9:59:28:AD:1C:B3:4A:85:58:9A:C6:FB:72:9B:88:37
X509v3 Authority Key Identifier:
keyid:9D:3E:BB:A9:FA:2C:AD:28:6A:C9:12:76:57:57:45:F6:15:E8:FA:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nT67qfosrShqyRJ2V1dF9hXo-nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ff9c7-d329-45a6-898a-9d959abce526/1/AaezdvlZKK0cs0qFWJrG-3KbiDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ff9c7-d329-45a6-898a-9d959abce526/1/nT67qfosrShqyRJ2V1dF9hXo-nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.176.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:53:00:46:d9:fb:2a:51:85:d2:19:e9:52:a1:ca:d9:e5:6f:
3b:9c:ab:3f:a5:99:7b:8d:4b:4e:3d:c7:73:83:57:86:5e:b0:
fe:75:a5:2b:0a:8c:21:ff:5c:d9:27:e0:5a:83:6c:24:ad:8d:
bb:95:be:2a:50:2c:b4:a2:8d:fb:5e:25:72:3e:12:31:8a:47:
de:d1:ba:06:c0:f1:6c:1a:2f:df:4b:6c:da:64:85:63:54:9b:
27:61:d0:89:02:90:f9:a2:a9:74:0a:84:6e:36:e5:05:5c:a5:
e1:b3:31:f0:8d:48:80:7a:0c:19:b5:d0:52:e0:fe:7c:45:bf:
f8:e2:b1:42:e9:13:bb:dc:a2:00:be:92:f1:f8:88:61:6b:df:
16:ae:08:34:41:39:96:f5:30:86:42:38:7e:a8:02:bf:b2:d9:
00:9e:7d:e2:f5:b3:2a:f8:34:a6:fd:73:7a:bb:e1:19:9d:ab:
be:d8:04:2a:4e:4d:86:fb:28:8a:9d:aa:8e:de:f3:d0:51:94:
78:e6:c9:df:a4:2f:bb:73:bd:e5:43:d3:cd:50:60:67:f5:7d:
c4:da:72:90:4e:d7:dd:eb:7d:28:78:63:34:53:e7:8d:71:b7:
1b:5f:8f:1e:d1:51:01:b7:2e:92:45:71:41:e9:e2:9b:c0:19:
af:a6:7d:77
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYwY1dcrxU/7SvMea9gJ+7pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkM2ViYmE5ZmEyY2FkMjg2YWM5MTI3NjU3NTc0NWY2MTVl
OGZhNzEwHhcNMjMwMjA4MDkzNzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMWE3YjM3NmY5NTkyOGFkMWNiMzRhODU1ODlhYzZmYjcyOWI4ODM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXTFOXIYkFDkQJroZ6EMF8b1kAKG
imwvkb3nvdeODcgxNzqv6fVL/27ImDti+OG8u0cAFCZjq+i+OHqIP99RBB84SpBT
FdiU3F12+A6lCHRGHw8XrAHGm9OvOX1aDAPcs1V2pldCizQj5i4nu4bKPeho3KV2
SEB21aa6pemV2gjBjm7sjQw0XD46dpF4PeDcfGFf7oxyaC/bOL6AFR5eDoQai5cT
7+OTI1PhJifg05HAiyJKDHrAMU2BRJAbwjO+x+y8j4eJgXVXX+BVUrMKt+sDSMLT
qE70sZktxtgesEi9cnAnckJUeWhfcSunNL70+4OMx23y0HSfGTKB+rzecQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAGns3b5WSitHLNKhViaxvtym4g3MB8GA1UdIwQY
MBaAFJ0+u6n6LK0oaskSdldXRfYV6PpxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblQ2N3Fmb3NyU2hxeVJKMlYxZEY5aFhvLW5FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi85ZmY5YzctZDMyOS00NWE2LTg5OGEt
OWQ5NTlhYmNlNTI2LzEvQWFlemR2bFpLSzBjczBxRldKckctM0tiaURjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi85ZmY5YzctZDMyOS00NWE2LTg5OGEtOWQ5NTlhYmNlNTI2
LzEvblQ2N3Fmb3NyU2hxeVJKMlYxZEY5aFhvLW5FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuSOwMA0G
CSqGSIb3DQEBCwUAA4IBAQAsUwBG2fsqUYXSGelSocrZ5W87nKs/pZl7jUtOPcdz
g1eGXrD+daUrCowh/1zZJ+Bag2wkrY27lb4qUCy0oo37XiVyPhIxikfe0boGwPFs
Gi/fS2zaZIVjVJsnYdCJApD5oql0CoRuNuUFXKXhszHwjUiAegwZtdBS4P58Rb/4
4rFC6RO73KIAvpLx+Ihha98Wrgg0QTmW9TCGQjh+qAK/stkAnn3i9bMq+DSm/XN6
u+EZnau+2AQqTk2G+yiKnaqO3vPQUZR45snfpC+7c73lQ9PNUGBn9X3E2nKQTtfd
630oeGM0U+eNcbcbX48e0VEBty6SRXFB6eKbwBmvpn13
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:54 2024 by rpki-client on console-ams.rpki-client.org