Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/aI-6goyrag0xpcptwB7jaZzOnMk.roa
File: aI-6goyrag0xpcptwB7jaZzOnMk.roa (raw, json)
Hash identifier: 9B8/1o0DGpSF0tKnQ+2jXicqKTC1Vvu7x9zHDPNZ020=
Subject key identifier: 68:8F:BA:82:8C:AB:6A:0D:31:A5:CA:6D:C0:1E:E3:69:9C:CE:9C:C9
Certificate issuer: /CN=be37c70f1c67eca1775a709c9235d6a2f55516b8
Certificate serial: 018AD1C5F95CE6CFA50806AFAD6B0A3E5F3C
Authority key identifier: BE:37:C7:0F:1C:67:EC:A1:77:5A:70:9C:92:35:D6:A2:F5:55:16:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjfHDxxn7KF3WnCckjXWovVVFrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/aI-6goyrag0xpcptwB7jaZzOnMk.roa
Signing time: Tue 26 Sep 2023 13:55:27 +0000
ROA not before: Tue 26 Sep 2023 13:55:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15685
IP address blocks: 185.95.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Nov 2023 17:58:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d1:c5:f9:5c:e6:cf:a5:08:06:af:ad:6b:0a:3e:5f:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be37c70f1c67eca1775a709c9235d6a2f55516b8
Validity
Not Before: Sep 26 13:55:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=688fba828cab6a0d31a5ca6dc01ee3699cce9cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fc:11:75:68:d3:e1:e9:4d:32:a6:3d:ff:55:
b0:4b:23:95:28:a9:92:6a:c1:69:16:33:38:15:25:
df:a5:bc:b7:85:45:c8:7d:2c:8f:aa:61:e1:f7:98:
b8:93:1a:1f:9d:6c:0c:b3:29:b6:a4:84:79:96:6a:
29:e9:45:1f:13:49:22:19:1a:09:59:4f:8b:a0:e7:
c1:13:8d:a2:bc:d6:7c:65:78:86:ff:5e:8c:87:73:
69:26:32:3b:08:f4:26:49:3b:e7:34:ac:46:46:67:
00:4c:26:51:23:8c:05:46:69:63:8a:e6:74:e0:5c:
5f:da:f2:56:36:8e:23:6f:28:ee:3d:e8:42:1b:9b:
bb:98:18:01:b3:5e:bf:29:cd:46:3a:9f:bf:2b:23:
c6:e6:f3:00:8f:0b:88:b9:9e:ea:0e:6f:cf:b0:a2:
e1:21:90:1d:82:43:69:0b:5b:40:b2:c1:11:a4:8c:
12:ca:22:d6:ba:b0:80:66:6b:c9:f9:b8:33:45:0a:
9e:1c:86:b7:5a:87:79:b5:2b:25:4e:77:11:98:08:
e2:a6:f4:93:4b:28:dd:fb:15:e2:72:d7:30:26:2d:
25:d8:f6:10:e8:15:bf:da:a7:d8:2e:d7:b9:35:1f:
09:b7:76:21:85:60:35:c9:6c:c5:e2:5e:c6:fb:33:
f8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:8F:BA:82:8C:AB:6A:0D:31:A5:CA:6D:C0:1E:E3:69:9C:CE:9C:C9
X509v3 Authority Key Identifier:
keyid:BE:37:C7:0F:1C:67:EC:A1:77:5A:70:9C:92:35:D6:A2:F5:55:16:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjfHDxxn7KF3WnCckjXWovVVFrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/aI-6goyrag0xpcptwB7jaZzOnMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/vjfHDxxn7KF3WnCckjXWovVVFrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.117.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:5c:8c:26:6b:e5:d7:a8:a5:b4:23:cc:a9:a9:7f:de:39:26:
f6:f4:ed:28:b1:8f:e6:25:41:d6:47:db:0f:23:66:a2:c4:55:
37:2d:1f:90:e1:7a:e3:03:7e:0c:f8:2b:d3:5a:ae:99:14:b5:
3a:89:0f:80:75:e6:7a:85:d5:90:28:fc:e2:b8:f3:66:ad:21:
d6:ab:33:3a:b5:2a:54:a7:e9:56:0e:a1:46:5b:be:11:07:da:
0f:1b:ab:f7:58:63:3e:f9:6a:e8:39:80:e5:bf:72:c4:02:35:
aa:7c:66:c9:33:a0:20:2d:ad:bc:e7:4d:94:78:0f:a7:91:d5:
bd:4a:91:d9:6c:5b:c7:a4:95:91:df:93:d9:dd:50:1f:a0:c1:
6b:5d:36:a0:ac:ad:88:a9:65:30:0f:b1:7a:d2:c7:f0:67:66:
d4:33:38:89:b1:82:af:49:8a:a3:05:6e:a1:a0:42:67:56:2d:
6b:12:0a:62:ed:37:ec:20:45:5f:67:a2:2d:ee:83:9f:73:8d:
09:13:17:1e:d5:d2:59:b3:8d:0f:64:a3:cb:97:07:d7:c3:94:
16:4c:6b:d3:f5:d8:6e:8e:d9:2e:da:60:1f:f3:f3:6a:d4:bb:
2c:12:9b:6a:b6:80:80:af:36:6b:1a:07:9d:87:43:d4:cf:50:
6a:8b:73:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrRxflc5s+lCAavrWsKPl88MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlMzdjNzBmMWM2N2VjYTE3NzVhNzA5YzkyMzVkNmEyZjU1
NTE2YjgwHhcNMjMwOTI2MTM1NTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODhmYmE4MjhjYWI2YTBkMzFhNWNhNmRjMDFlZTM2OTljY2U5Y2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/wRdWjT4elNMqY9/1WwSyOVKKmS
asFpFjM4FSXfpby3hUXIfSyPqmHh95i4kxofnWwMsym2pIR5lmop6UUfE0kiGRoJ
WU+LoOfBE42ivNZ8ZXiG/16Mh3NpJjI7CPQmSTvnNKxGRmcATCZRI4wFRmljiuZ0
4Fxf2vJWNo4jbyjuPehCG5u7mBgBs16/Kc1GOp+/KyPG5vMAjwuIuZ7qDm/PsKLh
IZAdgkNpC1tAssERpIwSyiLWurCAZmvJ+bgzRQqeHIa3Wod5tSslTncRmAjipvST
Syjd+xXictcwJi0l2PYQ6BW/2qfYLte5NR8Jt3YhhWA1yWzF4l7G+zP4nwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGiPuoKMq2oNMaXKbcAe42mczpzJMB8GA1UdIwQY
MBaAFL43xw8cZ+yhd1pwnJI11qL1VRa4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmpmSER4eG43S0YzV25DY2tqWFdvdlZWRnJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS85NzM0MzEtNWFlNC00NTIxLTk0NTQt
YzhlYjA4Y2U5MDg5LzEvYUktNmdveXJhZzB4cGNwdHdCN2phWnpPbk1rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS85NzM0MzEtNWFlNC00NTIxLTk0NTQtYzhlYjA4Y2U5MDg5
LzEvdmpmSER4eG43S0YzV25DY2tqWFdvdlZWRnJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuV91MA0G
CSqGSIb3DQEBCwUAA4IBAQClXIwma+XXqKW0I8ypqX/eOSb29O0osY/mJUHWR9sP
I2aixFU3LR+Q4XrjA34M+CvTWq6ZFLU6iQ+AdeZ6hdWQKPziuPNmrSHWqzM6tSpU
p+lWDqFGW74RB9oPG6v3WGM++WroOYDlv3LEAjWqfGbJM6AgLa28502UeA+nkdW9
SpHZbFvHpJWR35PZ3VAfoMFrXTagrK2IqWUwD7F60sfwZ2bUMziJsYKvSYqjBW6h
oEJnVi1rEgpi7TfsIEVfZ6It7oOfc40JExce1dJZs40PZKPLlwfXw5QWTGvT9dhu
jtku2mAf8/Nq1LssEptqtoCArzZrGgedh0PUz1Bqi3Mb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:40 2024 by rpki-client on console-ams.rpki-client.org