Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a36a22-4955-4090-97d6-3c34a8c28ca1/1/rZ8ngSW97T0T45JSP7PUQwYFErI.roa
File: rZ8ngSW97T0T45JSP7PUQwYFErI.roa (raw, json)
Hash identifier: xogVlJ1B5kpYDG9KD2CPC11v0I0umwAp2iYk0Rn02zo=
Subject key identifier: AD:9F:27:81:25:BD:ED:3D:13:E3:92:52:3F:B3:D4:43:06:05:12:B2
Certificate issuer: /CN=83d829263b3c5f63968037f9e863fd0fd01e7869
Certificate serial: 01856E0B14DD72FC0C52EB1296828CAF94BB
Authority key identifier: 83:D8:29:26:3B:3C:5F:63:96:80:37:F9:E8:63:FD:0F:D0:1E:78:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g9gpJjs8X2OWgDf56GP9D9AeeGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a36a22-4955-4090-97d6-3c34a8c28ca1/1/rZ8ngSW97T0T45JSP7PUQwYFErI.roa
Signing time: Sun 01 Jan 2023 15:54:58 +0000
ROA not before: Sun 01 Jan 2023 15:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13274
IP address blocks: 195.42.249.0/24 maxlen: 24
185.210.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:14:dd:72:fc:0c:52:eb:12:96:82:8c:af:94:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83d829263b3c5f63968037f9e863fd0fd01e7869
Validity
Not Before: Jan 1 15:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad9f278125bded3d13e392523fb3d443060512b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c4:01:57:13:d4:dd:4d:9c:5b:67:03:4b:92:
a4:4e:a4:e5:c2:01:94:1f:03:8c:6f:3b:b3:7c:b0:
88:fb:19:6f:a9:d5:35:06:67:c6:18:cc:d4:1e:a6:
da:cc:6c:0c:22:26:48:a5:27:c1:c5:d1:2b:1b:68:
32:7f:5d:3e:ce:96:d4:02:08:1b:06:14:b4:4c:5c:
77:6a:70:38:81:22:b2:2e:b4:ca:3a:a7:8b:18:29:
32:c5:ae:20:c0:95:df:c6:40:3b:87:d0:ac:e7:be:
d8:a0:1c:77:35:5b:d2:e5:d4:8a:eb:00:74:88:31:
6b:93:7c:d8:3a:39:f4:0f:0b:da:28:ba:fc:1d:95:
18:60:87:7a:1d:7e:2b:ea:14:9d:93:6b:f1:33:1a:
47:b3:30:0e:c3:70:f3:50:99:9e:6c:03:91:a7:ef:
20:e2:50:15:54:94:1b:6e:45:73:8e:1c:07:6c:3c:
07:b1:4b:48:8b:97:19:5c:d7:6f:b0:12:84:3e:75:
34:f0:d3:73:9e:c6:71:3f:1c:6c:8d:91:d2:bf:cf:
2d:5f:93:c4:b6:06:0c:32:3b:93:31:cb:d6:a7:b6:
e0:a5:25:52:3e:82:7d:35:0b:09:73:7f:2c:9c:c6:
5b:75:f5:8f:af:98:02:d1:bb:82:4c:22:d3:83:92:
ea:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:9F:27:81:25:BD:ED:3D:13:E3:92:52:3F:B3:D4:43:06:05:12:B2
X509v3 Authority Key Identifier:
keyid:83:D8:29:26:3B:3C:5F:63:96:80:37:F9:E8:63:FD:0F:D0:1E:78:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g9gpJjs8X2OWgDf56GP9D9AeeGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a36a22-4955-4090-97d6-3c34a8c28ca1/1/rZ8ngSW97T0T45JSP7PUQwYFErI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a36a22-4955-4090-97d6-3c34a8c28ca1/1/g9gpJjs8X2OWgDf56GP9D9AeeGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.158.0/24
195.42.249.0/24
Signature Algorithm: sha256WithRSAEncryption
64:15:fb:a1:84:40:b7:59:53:d9:26:f3:89:ef:95:39:fa:f0:
25:dc:06:93:a2:38:ec:8d:04:3b:b5:d4:04:92:63:7c:9d:13:
3e:80:f3:c7:1b:72:dc:09:4d:c9:37:1f:8b:e6:7a:ed:29:be:
3a:79:b0:10:c7:e8:9b:b0:f8:84:07:6f:89:35:cd:9a:9d:70:
6a:9b:86:43:1a:ae:7f:fc:c2:f6:a4:f8:86:01:42:3e:7e:be:
6a:9d:4d:d9:d1:91:d5:82:c5:3a:64:cc:59:b1:10:93:ab:dc:
82:65:df:42:fb:77:c5:96:af:4b:d5:7f:92:59:1d:e4:33:07:
85:7f:b8:0f:e6:22:ce:db:6b:e8:59:eb:68:3e:f1:41:ca:48:
43:d7:27:9f:97:60:ce:74:04:0f:be:1e:df:b3:2c:b5:dc:03:
d6:d6:2d:bd:2d:e6:bc:a3:6e:42:bb:6c:e2:e0:9c:01:32:4a:
af:a9:1a:5e:59:e0:b7:2c:67:ea:22:cc:eb:2e:12:eb:fe:f0:
0e:0a:cf:0f:6e:21:cf:13:ed:be:55:f5:26:6c:d0:d2:3c:f9:
56:58:e0:86:00:8d:5d:29:dd:80:f7:7c:51:c6:34:1d:1b:ad:
64:2f:6e:95:a2:a8:f6:20:c0:a2:dc:37:34:e1:7b:5e:7e:5d:
b3:96:8f:ac
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVuCxTdcvwMUusSloKMr5S7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzZDgyOTI2M2IzYzVmNjM5NjgwMzdmOWU4NjNmZDBmZDAx
ZTc4NjkwHhcNMjMwMTAxMTU1NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDlmMjc4MTI1YmRlZDNkMTNlMzkyNTIzZmIzZDQ0MzA2MDUxMmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscQBVxPU3U2cW2cDS5KkTqTlwgGU
HwOMbzuzfLCI+xlvqdU1BmfGGMzUHqbazGwMIiZIpSfBxdErG2gyf10+zpbUAggb
BhS0TFx3anA4gSKyLrTKOqeLGCkyxa4gwJXfxkA7h9Cs577YoBx3NVvS5dSK6wB0
iDFrk3zYOjn0DwvaKLr8HZUYYId6HX4r6hSdk2vxMxpHszAOw3DzUJmebAORp+8g
4lAVVJQbbkVzjhwHbDwHsUtIi5cZXNdvsBKEPnU08NNznsZxPxxsjZHSv88tX5PE
tgYMMjuTMcvWp7bgpSVSPoJ9NQsJc38snMZbdfWPr5gC0buCTCLTg5Lq9wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFK2fJ4Elve09E+OSUj+z1EMGBRKyMB8GA1UdIwQY
MBaAFIPYKSY7PF9jloA3+ehj/Q/QHnhpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzlncEpqczhYMk9XZ0RmNTZHUDlEOUFlZUdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9hMzZhMjItNDk1NS00MDkwLTk3ZDYt
M2MzNGE4YzI4Y2ExLzEvclo4bmdTVzk3VDBUNDVKU1A3UFVRd1lGRXJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9hMzZhMjItNDk1NS00MDkwLTk3ZDYtM2MzNGE4YzI4Y2Ex
LzEvZzlncEpqczhYMk9XZ0RmNTZHUDlEOUFlZUdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAudKeAwQA
wyr5MA0GCSqGSIb3DQEBCwUAA4IBAQBkFfuhhEC3WVPZJvOJ75U5+vAl3AaTojjs
jQQ7tdQEkmN8nRM+gPPHG3LcCU3JNx+L5nrtKb46ebAQx+ibsPiEB2+JNc2anXBq
m4ZDGq5//ML2pPiGAUI+fr5qnU3Z0ZHVgsU6ZMxZsRCTq9yCZd9C+3fFlq9L1X+S
WR3kMweFf7gP5iLO22voWetoPvFBykhD1yefl2DOdAQPvh7fsyy13APW1i29Lea8
o25Cu2zi4JwBMkqvqRpeWeC3LGfqIszrLhLr/vAOCs8PbiHPE+2+VfUmbNDSPPlW
WOCGAI1dKd2A93xRxjQdG61kL26Voqj2IMCi3Dc04Xtefl2zlo+s
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:34 2024 by rpki-client on console-ams.rpki-client.org