Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/6c83e7-a352-4e21-a731-157b5ad6ab7b/1/RJKQDkknA0dB-mEtfQZMrNrPDeU.roa
File: RJKQDkknA0dB-mEtfQZMrNrPDeU.roa (raw, json)
Hash identifier: DhcQefGplr01ZP0+AvH4wnJz/dmHRlAOAIlCb5vJeM4=
Subject key identifier: 44:92:90:0E:49:27:03:47:41:FA:61:2D:7D:06:4C:AC:DA:CF:0D:E5
Certificate issuer: /CN=bf628b93661e905887359fc8e9a1888075db3cd8
Certificate serial: 01856D8B0934ABDA34E9B9D7A848B37E985F
Authority key identifier: BF:62:8B:93:66:1E:90:58:87:35:9F:C8:E9:A1:88:80:75:DB:3C:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v2KLk2YekFiHNZ_I6aGIgHXbPNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/6c83e7-a352-4e21-a731-157b5ad6ab7b/1/RJKQDkknA0dB-mEtfQZMrNrPDeU.roa
Signing time: Sun 01 Jan 2023 13:35:06 +0000
ROA not before: Sun 01 Jan 2023 13:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25540
IP address blocks: 185.52.84.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8b:09:34:ab:da:34:e9:b9:d7:a8:48:b3:7e:98:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf628b93661e905887359fc8e9a1888075db3cd8
Validity
Not Before: Jan 1 13:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4492900e4927034741fa612d7d064cacdacf0de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b0:6b:76:fe:7a:0b:44:94:5c:7e:76:c7:12:
b4:1b:df:83:e6:a9:10:2f:2d:bd:aa:2e:92:24:de:
bd:5c:5c:8e:09:a0:9c:9d:14:af:a8:0a:e3:74:df:
65:f1:ca:f4:d6:47:df:08:a2:cc:b9:61:c4:4d:75:
ff:16:33:cc:c7:ff:13:cc:29:a3:5e:8f:dc:55:cb:
f1:1a:58:2f:a6:a3:a6:8b:93:8b:7f:ff:b0:5a:7b:
1f:44:41:1a:a4:60:25:16:44:73:d7:cb:f6:c8:7b:
20:bc:bb:bb:cb:e3:1d:2e:4e:9f:f8:0e:27:31:bb:
cd:92:66:5c:ec:7b:26:ef:d9:48:4b:3b:fe:98:9a:
1b:a7:26:8f:6c:25:ef:04:8c:91:21:ac:d6:b3:ec:
4f:55:27:38:80:eb:74:aa:aa:d8:1f:0b:4b:db:95:
ea:d5:73:73:81:32:c2:26:87:df:49:53:c5:96:7b:
63:cf:bf:d9:57:80:20:cf:43:fa:fa:34:fa:57:6c:
39:fe:2e:17:3c:1b:e6:46:81:4a:72:b6:9b:56:96:
bd:d9:bf:8f:3c:26:40:36:d4:e0:b3:de:25:4b:ef:
a4:1a:0c:ca:cc:ee:94:cb:41:ae:a0:ad:7a:30:20:
d5:ad:ad:71:5d:03:07:47:22:4f:27:0e:f7:1a:d1:
49:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:92:90:0E:49:27:03:47:41:FA:61:2D:7D:06:4C:AC:DA:CF:0D:E5
X509v3 Authority Key Identifier:
keyid:BF:62:8B:93:66:1E:90:58:87:35:9F:C8:E9:A1:88:80:75:DB:3C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v2KLk2YekFiHNZ_I6aGIgHXbPNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6c83e7-a352-4e21-a731-157b5ad6ab7b/1/RJKQDkknA0dB-mEtfQZMrNrPDeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6c83e7-a352-4e21-a731-157b5ad6ab7b/1/v2KLk2YekFiHNZ_I6aGIgHXbPNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.84.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:df:b0:79:05:b0:8d:0a:c7:e6:6c:0a:dd:39:9b:80:84:aa:
aa:31:f4:1c:b9:5a:f0:7c:aa:57:75:76:fc:c4:b5:e2:5e:3d:
2c:f5:22:a4:fd:99:0e:e7:d5:16:01:09:89:20:46:e3:51:a0:
e4:bd:a7:01:c5:46:40:15:3e:b1:16:4c:24:e5:d1:e6:88:2a:
b5:89:d5:3c:d0:c6:41:71:5a:3a:0e:4f:12:31:51:ba:39:ec:
6b:b4:06:24:93:97:7d:97:55:7a:01:e3:0a:52:a7:6e:30:8b:
59:9f:02:54:b2:ca:7e:79:70:da:72:f3:8d:06:1a:45:f8:69:
1b:62:29:f9:2f:5b:c2:fc:3c:ec:59:27:80:0b:1d:81:a9:3a:
ac:b6:9b:5a:7b:99:e8:c3:9a:07:25:71:7c:71:ee:05:ae:87:
b6:c4:b7:a0:ad:20:04:07:76:df:64:ea:76:22:4e:ce:35:6a:
c8:69:75:f7:07:63:b8:db:db:d5:e4:73:dd:10:27:16:54:5c:
c6:53:b1:86:75:36:df:50:c4:71:e3:94:ce:90:94:44:e5:38:
65:27:67:16:40:4a:5e:d3:c3:2b:1a:46:b5:a9:5f:54:42:71:
09:82:92:33:4d:1b:0a:64:11:e0:9d:65:89:0a:93:8d:18:d4:
5c:6b:85:f7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtiwk0q9o06bnXqEizfphfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmNjI4YjkzNjYxZTkwNTg4NzM1OWZjOGU5YTE4ODgwNzVk
YjNjZDgwHhcNMjMwMTAxMTMzNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDkyOTAwZTQ5MjcwMzQ3NDFmYTYxMmQ3ZDA2NGNhY2RhY2YwZGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLBrdv56C0SUXH52xxK0G9+D5qkQ
Ly29qi6SJN69XFyOCaCcnRSvqArjdN9l8cr01kffCKLMuWHETXX/FjPMx/8TzCmj
Xo/cVcvxGlgvpqOmi5OLf/+wWnsfREEapGAlFkRz18v2yHsgvLu7y+MdLk6f+A4n
MbvNkmZc7Hsm79lISzv+mJobpyaPbCXvBIyRIazWs+xPVSc4gOt0qqrYHwtL25Xq
1XNzgTLCJoffSVPFlntjz7/ZV4Agz0P6+jT6V2w5/i4XPBvmRoFKcrabVpa92b+P
PCZANtTgs94lS++kGgzKzO6Uy0GuoK16MCDVra1xXQMHRyJPJw73GtFJmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFESSkA5JJwNHQfphLX0GTKzazw3lMB8GA1UdIwQY
MBaAFL9ii5NmHpBYhzWfyOmhiIB12zzYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjJLTGsyWWVrRmlITlpfSTZhR0lnSFhiUE5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi82YzgzZTctYTM1Mi00ZTIxLWE3MzEt
MTU3YjVhZDZhYjdiLzEvUkpLUURra25BMGRCLW1FdGZRWk1yTnJQRGVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi82YzgzZTctYTM1Mi00ZTIxLWE3MzEtMTU3YjVhZDZhYjdi
LzEvdjJLTGsyWWVrRmlITlpfSTZhR0lnSFhiUE5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTRUMA0G
CSqGSIb3DQEBCwUAA4IBAQAd37B5BbCNCsfmbArdOZuAhKqqMfQcuVrwfKpXdXb8
xLXiXj0s9SKk/ZkO59UWAQmJIEbjUaDkvacBxUZAFT6xFkwk5dHmiCq1idU80MZB
cVo6Dk8SMVG6OexrtAYkk5d9l1V6AeMKUqduMItZnwJUssp+eXDacvONBhpF+Gkb
Yin5L1vC/DzsWSeACx2BqTqstptae5now5oHJXF8ce4Froe2xLegrSAEB3bfZOp2
Ik7ONWrIaXX3B2O429vV5HPdECcWVFzGU7GGdTbfUMRx45TOkJRE5ThlJ2cWQEpe
08MrGka1qV9UQnEJgpIzTRsKZBHgnWWJCpONGNRca4X3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:10 2024 by rpki-client on console-ams.rpki-client.org