Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/XChINukVPCKhuJkG9_P_VaFb-vA.roa
File: XChINukVPCKhuJkG9_P_VaFb-vA.roa (raw, json)
Hash identifier: VYRdOp26m8+L100KXJ6VmgDggChxzc0G7Dqf87Qh7Oo=
Subject key identifier: 5C:28:48:36:E9:15:3C:22:A1:B8:99:06:F7:F3:FF:55:A1:5B:FA:F0
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 018B09FC7D3FB26ABFA98BED7DD0E83F9E87
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/XChINukVPCKhuJkG9_P_VaFb-vA.roa
Signing time: Sat 07 Oct 2023 11:53:43 +0000
ROA not before: Sat 07 Oct 2023 11:53:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202774
IP address blocks: 185.155.32.0/22 maxlen: 22
2a07:9100::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:09:fc:7d:3f:b2:6a:bf:a9:8b:ed:7d:d0:e8:3f:9e:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Oct 7 11:53:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c284836e9153c22a1b89906f7f3ff55a15bfaf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2b:44:57:8e:f6:26:21:dd:e3:12:33:5a:f9:
33:6e:6c:23:3d:c1:0e:aa:40:5a:89:5e:09:e2:0c:
a0:9c:65:bf:28:59:3b:93:78:06:c1:52:96:7a:0e:
fc:9d:a2:97:13:2d:ea:cc:d0:38:26:df:2e:31:b1:
ea:f7:ed:10:17:66:39:fe:93:d3:60:3d:0b:7b:03:
58:f3:17:40:71:44:f0:a5:d6:77:14:18:77:d4:3a:
4a:ca:c5:f3:77:90:36:29:9c:ea:95:42:11:07:b7:
2c:c0:82:11:70:ad:7f:98:b9:69:19:7b:42:05:00:
8d:f3:c8:83:9c:90:43:69:ee:37:68:49:76:f7:62:
63:d8:2a:22:97:ed:21:40:1f:0f:43:dc:e7:73:24:
86:bf:ae:14:35:c0:e5:42:99:79:b8:4c:e7:f9:4b:
13:ee:02:51:2b:aa:7b:47:11:08:0b:f3:ce:66:1b:
52:d7:17:49:67:64:8d:31:84:44:5e:45:60:36:da:
e6:cc:63:6d:93:27:ae:32:7f:ad:9d:e3:ce:7a:18:
06:4b:bb:75:6c:8a:0b:2f:93:ca:fa:a7:7a:01:59:
15:85:1d:fa:6f:6d:14:07:7c:bc:21:5c:27:ca:61:
53:d4:d3:cf:72:a9:e6:9a:5f:93:a3:ec:71:c8:b0:
23:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:28:48:36:E9:15:3C:22:A1:B8:99:06:F7:F3:FF:55:A1:5B:FA:F0
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/XChINukVPCKhuJkG9_P_VaFb-vA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.32.0/22
IPv6:
2a07:9100::/29
Signature Algorithm: sha256WithRSAEncryption
bd:3e:01:72:70:14:77:1a:30:1b:75:be:5c:59:8e:b0:78:dc:
16:3b:5e:80:f7:1a:23:a1:8c:1b:dc:48:1a:a8:7a:fb:a5:d6:
a8:2d:b7:5e:df:f3:53:f6:c9:16:4f:47:a1:7d:20:5e:a3:eb:
c7:cd:8c:00:19:9d:8d:67:9e:57:ea:a8:1d:ba:52:51:4b:25:
ec:b0:e2:06:f9:0a:f6:9d:3b:d9:b8:de:b5:40:d7:e8:51:1a:
34:89:f8:4c:78:97:97:69:1f:b6:db:1e:25:7f:4d:66:25:82:
41:da:a7:71:71:c5:49:ce:a0:9d:31:93:d2:d8:2e:2c:14:64:
86:6e:c2:dd:d4:07:9a:48:2d:e7:08:57:55:fd:c3:b7:52:74:
8f:0f:d9:49:aa:af:02:04:7b:bf:ed:d7:fb:3e:28:3e:15:f2:
58:00:3d:2b:e6:62:98:e6:77:4a:b3:a4:99:0b:55:ba:42:c8:
aa:ad:c3:28:0a:c9:80:e9:ac:76:fa:25:db:a6:5b:e6:c9:ab:
3b:06:1e:eb:63:aa:d0:c0:88:bd:b7:5c:98:82:09:eb:4c:0a:
41:5d:9b:69:4b:a5:84:40:6f:65:5a:da:72:e9:46:fb:02:50:
92:98:45:cb:0a:d6:4c:98:3e:cb:01:07:17:c4:19:9e:b6:ad:
10:f1:85:87
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYsJ/H0/smq/qYvtfdDoP56HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1OWYwZjVmZjYyMGUwZGI1MzExZjY0NzM2OTA5OTczYWM2
MGY2ZjMwHhcNMjMxMDA3MTE1MzQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YzI4NDgzNmU5MTUzYzIyYTFiODk5MDZmN2YzZmY1NWExNWJmYWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkStEV472JiHd4xIzWvkzbmwjPcEO
qkBaiV4J4gygnGW/KFk7k3gGwVKWeg78naKXEy3qzNA4Jt8uMbHq9+0QF2Y5/pPT
YD0LewNY8xdAcUTwpdZ3FBh31DpKysXzd5A2KZzqlUIRB7cswIIRcK1/mLlpGXtC
BQCN88iDnJBDae43aEl292Jj2Coil+0hQB8PQ9zncySGv64UNcDlQpl5uEzn+UsT
7gJRK6p7RxEIC/POZhtS1xdJZ2SNMYREXkVgNtrmzGNtkyeuMn+tnePOehgGS7t1
bIoLL5PK+qd6AVkVhR36b20UB3y8IVwnymFT1NPPcqnmml+To+xxyLAjnwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFwoSDbpFTwiobiZBvfz/1WhW/rwMB8GA1UdIwQY
MBaAFDWfD1/2IODbUxH2RzaQmXOsYPbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2It
ZDFhYmY0ZWUzMmNiLzEvWENoSU51a1ZQQ0todUprRzlfUF9WYUZiLXZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2ItZDFhYmY0ZWUzMmNi
LzEvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZsgMA0E
AgACMAcDBQMqB5EAMA0GCSqGSIb3DQEBCwUAA4IBAQC9PgFycBR3GjAbdb5cWY6w
eNwWO16A9xojoYwb3EgaqHr7pdaoLbde3/NT9skWT0ehfSBeo+vHzYwAGZ2NZ55X
6qgdulJRSyXssOIG+Qr2nTvZuN61QNfoURo0ifhMeJeXaR+22x4lf01mJYJB2qdx
ccVJzqCdMZPS2C4sFGSGbsLd1AeaSC3nCFdV/cO3UnSPD9lJqq8CBHu/7df7Pig+
FfJYAD0r5mKY5ndKs6SZC1W6QsiqrcMoCsmA6ax2+iXbplvmyas7Bh7rY6rQwIi9
t1yYggnrTApBXZtpS6WEQG9lWtpy6Ub7AlCSmEXLCtZMmD7LAQcXxBmetq0Q8YWH
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:32 2024 by rpki-client on console-ams.rpki-client.org