Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/Vk5AO_4NOqeadEx3_tIWEbLkHEQ.roa
File: Vk5AO_4NOqeadEx3_tIWEbLkHEQ.roa (raw, json)
Hash identifier: CJB40Rz9cWA0YrDpSYKjBBsgSj3pbfLhb7/c1Iqt5RA=
Subject key identifier: 56:4E:40:3B:FE:0D:3A:A7:9A:74:4C:77:FE:D2:16:11:B2:E4:1C:44
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018978C079C86E68ADE3FBBBAC338D1739E4
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/Vk5AO_4NOqeadEx3_tIWEbLkHEQ.roa
Signing time: Fri 21 Jul 2023 14:00:27 +0000
ROA not before: Fri 21 Jul 2023 14:00:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49112
IP address blocks: 185.147.232.0/22 maxlen: 22
2a00:9380::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 21 Jul 2023 14:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:78:c0:79:c8:6e:68:ad:e3:fb:bb:ac:33:8d:17:39:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 21 14:00:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=564e403bfe0d3aa79a744c77fed21611b2e41c44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f0:81:32:ea:29:24:5e:32:81:9f:35:1f:e5:
11:49:ff:f8:b0:7c:4b:48:23:b7:3e:dd:bd:98:61:
85:88:a2:b1:2c:9f:31:2c:e0:29:54:da:17:6f:d1:
5b:04:f5:23:40:e2:39:8d:34:f9:e4:ee:97:f1:6f:
2e:45:42:aa:35:43:e1:03:b3:9f:1a:3e:e2:b5:e5:
02:50:04:46:0b:4c:18:18:14:fd:3a:40:21:c3:cd:
9a:2f:b0:2a:de:af:fe:d7:90:27:97:a1:42:11:0c:
53:7b:72:f5:ed:df:98:4e:1a:73:99:b8:1c:57:e0:
b7:d1:98:95:01:4c:a9:63:38:08:94:c1:29:c8:08:
e8:e3:ea:40:59:bf:96:95:3a:12:41:c4:5e:50:aa:
62:22:89:f8:c5:87:d4:3b:fc:20:bf:bd:b1:3c:dc:
45:fb:d0:68:a8:69:0c:0f:89:59:ea:cf:3a:2d:bb:
1d:d2:ee:c2:cb:f2:89:91:bb:71:35:94:83:5d:b0:
49:2c:d3:fa:f2:6f:97:22:21:81:ab:1b:fd:cf:0b:
a3:b0:7e:c3:6a:d6:e3:9d:72:7c:72:e6:a7:01:bb:
6e:4d:e8:63:35:07:fe:68:df:32:7a:be:f2:40:ec:
8a:31:75:97:11:34:e1:ab:20:73:ea:81:c2:6c:f5:
fc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:4E:40:3B:FE:0D:3A:A7:9A:74:4C:77:FE:D2:16:11:B2:E4:1C:44
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/Vk5AO_4NOqeadEx3_tIWEbLkHEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.232.0/22
IPv6:
2a00:9380::/32
Signature Algorithm: sha256WithRSAEncryption
7e:b3:9c:fb:d8:a9:1c:52:32:28:f7:6d:4f:69:be:73:0e:92:
fc:6f:0b:f2:14:a5:fa:16:50:33:4c:05:e3:97:84:6c:0f:76:
bc:65:04:83:ce:0c:33:10:8e:f1:dc:02:74:e1:eb:24:ba:01:
b5:7f:41:a7:f9:47:a5:76:89:5b:3c:83:16:11:cf:ab:2b:32:
c9:59:3d:d6:85:82:47:4b:03:af:0d:56:59:13:e9:0d:f4:19:
63:31:10:e0:f1:ef:72:e6:a4:f4:e1:46:f2:5f:4c:9a:b6:89:
d6:76:73:3d:88:d9:52:af:d9:5e:f6:4c:4c:98:c1:8a:de:e5:
d0:1c:e1:30:b5:7a:cc:5b:c5:13:91:11:08:34:4d:4a:b8:eb:
43:bb:46:53:f9:d7:a0:6f:48:d6:78:c5:93:c0:7e:cb:61:6e:
3c:13:c7:de:12:63:ba:81:af:3a:b1:57:87:c1:da:fe:67:bd:
30:a2:19:d9:80:ba:18:aa:6c:85:ae:09:86:07:8f:f7:a0:d7:
b4:55:4b:73:c0:03:13:5b:0b:bc:3c:4a:8a:c0:71:7e:56:a5:
cc:f3:e1:8c:ed:29:3e:ab:54:91:ce:68:72:51:91:f3:c2:2c:
ed:9a:fb:eb:dd:ac:0d:15:3b:9e:bf:e8:8f:d4:8b:c1:3c:50:
3f:92:83:dc
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYl4wHnIbmit4/u7rDONFznkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZWY1ZmJiZmNhN2E5M2NmZWU5NjVlZWI2YmRlZTZmYjQz
YzQwM2UwHhcNMjMwNzIxMTQwMDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjRlNDAzYmZlMGQzYWE3OWE3NDRjNzdmZWQyMTYxMWIyZTQxYzQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vCBMuopJF4ygZ81H+URSf/4sHxL
SCO3Pt29mGGFiKKxLJ8xLOApVNoXb9FbBPUjQOI5jTT55O6X8W8uRUKqNUPhA7Of
Gj7iteUCUARGC0wYGBT9OkAhw82aL7Aq3q/+15Anl6FCEQxTe3L17d+YThpzmbgc
V+C30ZiVAUypYzgIlMEpyAjo4+pAWb+WlToSQcReUKpiIon4xYfUO/wgv72xPNxF
+9BoqGkMD4lZ6s86Lbsd0u7Cy/KJkbtxNZSDXbBJLNP68m+XIiGBqxv9zwujsH7D
atbjnXJ8cuanAbtuTehjNQf+aN8yer7yQOyKMXWXETThqyBz6oHCbPX8rQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFZOQDv+DTqnmnRMd/7SFhGy5BxEMB8GA1UdIwQY
MBaAFKDvX7v8p6k8/ull7ra97m+0PEA+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2Mt
MDI5MmIwMjAxNTBhLzEvVms1QU9fNE5PcWVhZEV4M190SVdFYkxrSEVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2MtMDI5MmIwMjAxNTBh
LzEvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZPoMA0E
AgACMAcDBQAqAJOAMA0GCSqGSIb3DQEBCwUAA4IBAQB+s5z72KkcUjIo921Pab5z
DpL8bwvyFKX6FlAzTAXjl4RsD3a8ZQSDzgwzEI7x3AJ04eskugG1f0Gn+Ueldolb
PIMWEc+rKzLJWT3WhYJHSwOvDVZZE+kN9BljMRDg8e9y5qT04UbyX0yatonWdnM9
iNlSr9le9kxMmMGK3uXQHOEwtXrMW8UTkREINE1KuOtDu0ZT+degb0jWeMWTwH7L
YW48E8feEmO6ga86sVeHwdr+Z70wohnZgLoYqmyFrgmGB4/3oNe0VUtzwAMTWwu8
PEqKwHF+VqXM8+GM7Sk+q1SRzmhyUZHzwiztmvvr3awNFTuev+iP1IvBPFA/koPc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org