Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b2d4d8-4f7c-4756-a461-fafdbed574ad/1/1-3pbo4ENGkAULyUjj6E9uScv0W4.roa
File: 1-3pbo4ENGkAULyUjj6E9uScv0W4.roa (raw, json)
Hash identifier: zA1Z3F9tf0+cfg9p32W4cZr8V60WVu1qJKeUQTNx9GU=
Subject key identifier: FB:7A:5B:A3:81:0D:1A:40:14:2F:25:23:8F:A1:3D:B9:27:2F:D1:6E
Certificate issuer: /CN=7aa86c8156f0806dcccdc22dcc4d6175b8fa9893
Certificate serial: 01856C25BEA432609A7F9FF21E94DA6A4CCD
Authority key identifier: 7A:A8:6C:81:56:F0:80:6D:CC:CD:C2:2D:CC:4D:61:75:B8:FA:98:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eqhsgVbwgG3MzcItzE1hdbj6mJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b2d4d8-4f7c-4756-a461-fafdbed574ad/1/1-3pbo4ENGkAULyUjj6E9uScv0W4.roa
Signing time: Sun 01 Jan 2023 07:04:51 +0000
ROA not before: Sun 01 Jan 2023 07:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202675
IP address blocks: 194.76.116.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:be:a4:32:60:9a:7f:9f:f2:1e:94:da:6a:4c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aa86c8156f0806dcccdc22dcc4d6175b8fa9893
Validity
Not Before: Jan 1 07:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb7a5ba3810d1a40142f25238fa13db9272fd16e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:78:38:5a:c2:c6:03:27:94:b5:4f:bf:f2:87:
bc:45:50:32:47:90:5a:12:eb:27:75:6f:da:1e:a9:
ac:1c:a6:07:34:b0:19:87:77:e0:ad:a6:bb:2e:04:
9f:8f:09:95:ae:c6:93:a3:9c:9f:fb:24:c2:35:3e:
d5:10:bd:63:10:7a:e0:78:c1:87:37:e9:d8:d7:1c:
1d:96:8f:6d:1b:0c:01:69:c0:78:c5:ee:9b:77:64:
e0:3a:00:57:93:0f:fb:f3:47:4d:76:88:8a:b7:b7:
91:cd:4a:df:a2:17:05:8e:29:fe:bb:f9:0a:f8:e5:
77:15:ec:37:61:fe:dc:f8:b4:cc:5e:b1:1e:66:f1:
a5:51:1e:31:62:77:0d:01:4c:b9:bd:ce:92:14:3e:
32:e7:40:05:79:e8:1d:4f:90:34:b0:53:eb:ff:c3:
b8:89:37:1a:c5:19:cc:22:57:fd:bb:cc:d3:be:a6:
32:53:48:89:c8:64:b2:82:9b:a8:b7:ad:8b:7d:02:
24:f2:06:88:3d:89:18:14:08:e9:c4:f3:c4:eb:c9:
ce:9e:61:10:b4:67:0c:69:04:e7:26:eb:7d:b5:a0:
30:ec:3e:25:32:fb:80:ff:6d:79:94:7f:c7:bb:c3:
3b:4f:0c:84:cb:0d:f6:e4:ab:09:4c:ad:35:86:6d:
01:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:7A:5B:A3:81:0D:1A:40:14:2F:25:23:8F:A1:3D:B9:27:2F:D1:6E
X509v3 Authority Key Identifier:
keyid:7A:A8:6C:81:56:F0:80:6D:CC:CD:C2:2D:CC:4D:61:75:B8:FA:98:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eqhsgVbwgG3MzcItzE1hdbj6mJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b2d4d8-4f7c-4756-a461-fafdbed574ad/1/1-3pbo4ENGkAULyUjj6E9uScv0W4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b2d4d8-4f7c-4756-a461-fafdbed574ad/1/eqhsgVbwgG3MzcItzE1hdbj6mJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.116.0/22
Signature Algorithm: sha256WithRSAEncryption
44:77:9c:33:80:e8:16:30:62:4a:3e:f8:44:a3:c8:37:ca:63:
81:58:20:8e:66:77:2e:30:b5:32:5d:5a:3d:45:9a:31:a4:b0:
8b:04:14:2d:1c:12:21:9b:99:ca:67:d4:86:58:ad:5b:1e:43:
41:3a:ab:81:91:53:b8:e2:71:55:fb:cf:3c:8c:1a:15:f7:5e:
7f:b1:aa:b2:7c:5d:3b:1b:0d:22:5c:6d:8e:73:2c:fc:f7:d6:
70:5a:71:67:86:b7:cd:75:28:11:c9:82:a1:0c:ee:e7:09:82:
fd:6d:ed:1c:b6:cc:91:23:5c:48:bf:88:62:06:ff:c6:6e:e2:
6a:c5:aa:9c:43:9c:af:f6:d1:b5:62:5d:01:a1:cd:5d:0d:f3:
99:20:06:60:45:a0:61:23:70:f8:e0:46:d1:e4:48:72:a7:2e:
2c:f9:d8:7d:eb:26:a3:6d:69:18:21:94:2b:68:6c:b4:3d:fc:
38:24:ba:d4:5e:0e:ea:59:47:0f:27:97:f5:c5:96:60:31:8c:
72:2f:a6:9a:2b:5b:ad:aa:1d:15:51:70:54:8c:0a:69:ea:fd:
1c:c7:69:d2:e5:66:58:bc:ca:c8:0f:1b:ac:db:98:fa:76:5e:
f3:63:bd:87:3b:9d:a7:19:38:47:23:b9:57:02:8d:54:8c:66:
dd:29:ea:01
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVsJb6kMmCaf5/yHpTaakzNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhYTg2YzgxNTZmMDgwNmRjY2NkYzIyZGNjNGQ2MTc1Yjhm
YTk4OTMwHhcNMjMwMTAxMDcwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYjdhNWJhMzgxMGQxYTQwMTQyZjI1MjM4ZmExM2RiOTI3MmZkMTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwng4WsLGAyeUtU+/8oe8RVAyR5Ba
EusndW/aHqmsHKYHNLAZh3fgraa7LgSfjwmVrsaTo5yf+yTCNT7VEL1jEHrgeMGH
N+nY1xwdlo9tGwwBacB4xe6bd2TgOgBXkw/780dNdoiKt7eRzUrfohcFjin+u/kK
+OV3Few3Yf7c+LTMXrEeZvGlUR4xYncNAUy5vc6SFD4y50AFeegdT5A0sFPr/8O4
iTcaxRnMIlf9u8zTvqYyU0iJyGSygpuot62LfQIk8gaIPYkYFAjpxPPE68nOnmEQ
tGcMaQTnJut9taAw7D4lMvuA/215lH/Hu8M7TwyEyw325KsJTK01hm0BBQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPt6W6OBDRpAFC8lI4+hPbknL9FuMB8GA1UdIwQY
MBaAFHqobIFW8IBtzM3CLcxNYXW4+piTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXFoc2dWYndnRzNNemNJdHpFMWhkYmo2bUpNLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9iMmQ0ZDgtNGY3Yy00NzU2LWE0NjEt
ZmFmZGJlZDU3NGFkLzEvMS0zcGJvNEVOR2tBVUx5VWpqNkU5dVNjdjBXNC5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvOTUvYjJkNGQ4LTRmN2MtNDc1Ni1hNDYxLWZhZmRiZWQ1NzRh
ZC8xL2VxaHNnVmJ3Z0czTXpjSXR6RTFoZGJqNm1KTS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsJMdDAN
BgkqhkiG9w0BAQsFAAOCAQEARHecM4DoFjBiSj74RKPIN8pjgVggjmZ3LjC1Ml1a
PUWaMaSwiwQULRwSIZuZymfUhlitWx5DQTqrgZFTuOJxVfvPPIwaFfdef7Gqsnxd
OxsNIlxtjnMs/PfWcFpxZ4a3zXUoEcmCoQzu5wmC/W3tHLbMkSNcSL+IYgb/xm7i
asWqnEOcr/bRtWJdAaHNXQ3zmSAGYEWgYSNw+OBG0eRIcqcuLPnYfesmo21pGCGU
K2hstD38OCS61F4O6llHDyeX9cWWYDGMci+mmitbraodFVFwVIwKaer9HMdp0uVm
WLzKyA8brNuY+nZe82O9hzudpxk4RyO5VwKNVIxm3SnqAQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:38 2024 by rpki-client on console-ams.rpki-client.org