Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/xrnysfEFcEx5QTwoEYHzwXF_tNA.roa
File: xrnysfEFcEx5QTwoEYHzwXF_tNA.roa (raw, json)
Hash identifier: 9wlnsq35WusYTlRmAoZWnUrNepyC4ocuC1pPC/+6qf8=
Subject key identifier: C6:B9:F2:B1:F1:05:70:4C:79:41:3C:28:11:81:F3:C1:71:7F:B4:D0
Certificate issuer: /CN=be37c70f1c67eca1775a709c9235d6a2f55516b8
Certificate serial: 0185795B90521BACE0BE8EA185C20D242547
Authority key identifier: BE:37:C7:0F:1C:67:EC:A1:77:5A:70:9C:92:35:D6:A2:F5:55:16:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjfHDxxn7KF3WnCckjXWovVVFrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/xrnysfEFcEx5QTwoEYHzwXF_tNA.roa
Signing time: Tue 03 Jan 2023 20:38:41 +0000
ROA not before: Tue 03 Jan 2023 20:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200806
IP address blocks: 185.95.116.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:79:5b:90:52:1b:ac:e0:be:8e:a1:85:c2:0d:24:25:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be37c70f1c67eca1775a709c9235d6a2f55516b8
Validity
Not Before: Jan 3 20:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6b9f2b1f105704c79413c281181f3c1717fb4d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:57:f8:05:79:62:11:09:70:0a:51:2d:2e:12:
a7:18:3c:14:d1:b7:12:a8:4a:ef:c7:64:6c:82:06:
f5:ea:b9:ff:f7:ad:61:c1:0b:47:a0:4f:13:5d:4c:
62:ee:a7:cb:4d:10:27:2a:8a:a3:56:a8:b3:f3:af:
94:47:8d:d9:6c:f6:81:f3:c1:fd:d3:95:97:c0:f9:
24:04:11:ae:d0:4a:30:d8:e2:95:18:52:8f:b2:cb:
46:09:e6:6c:b3:4f:3e:73:f1:d1:46:7c:56:7d:36:
9a:c3:65:90:2b:84:0f:10:fb:bb:a6:47:95:5c:87:
18:a1:b8:59:60:a7:6b:79:16:f7:57:2b:9b:e1:72:
1f:f8:b6:7a:67:8b:37:69:e5:3b:a6:6e:bc:57:f4:
a8:1e:3f:73:7b:d5:ed:36:88:8d:a6:93:68:73:28:
2d:12:a1:e1:dc:1d:e1:43:33:0d:73:c8:4f:ab:6c:
4f:db:58:b3:26:5f:cd:d3:bd:5a:47:bb:5b:eb:de:
0c:48:5d:c7:29:aa:62:ad:31:74:c2:70:5b:64:05:
6f:70:75:e5:c7:00:7c:1d:a6:69:05:ed:b3:91:61:
64:7f:59:ac:a7:2f:6c:ac:39:56:02:35:98:97:4e:
7b:f0:9a:b0:5c:6e:6f:2d:f2:11:ba:bc:2c:9b:cf:
5f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B9:F2:B1:F1:05:70:4C:79:41:3C:28:11:81:F3:C1:71:7F:B4:D0
X509v3 Authority Key Identifier:
keyid:BE:37:C7:0F:1C:67:EC:A1:77:5A:70:9C:92:35:D6:A2:F5:55:16:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjfHDxxn7KF3WnCckjXWovVVFrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/xrnysfEFcEx5QTwoEYHzwXF_tNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/vjfHDxxn7KF3WnCckjXWovVVFrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.116.0/23
Signature Algorithm: sha256WithRSAEncryption
14:94:e6:22:84:6f:7a:18:47:0b:7c:4e:67:d8:2a:25:e2:7e:
45:e9:89:bf:1b:f5:52:8e:3d:7b:9b:d6:6a:37:7e:c5:1a:38:
6a:1b:61:67:82:1d:bb:74:26:dd:a2:f7:af:d3:02:29:91:a3:
3e:04:78:93:bb:18:33:8b:29:40:a7:1c:df:ba:69:13:bd:d8:
cf:10:57:df:12:25:28:5d:08:7c:27:ca:23:58:90:c1:66:17:
76:97:f8:0c:6f:18:55:23:f8:9e:e1:21:5f:92:ec:be:2c:c7:
54:1c:19:df:8a:1d:39:80:4d:62:e3:57:7a:38:87:94:0c:47:
87:72:46:3b:71:6a:e9:9e:eb:42:45:23:df:7e:71:fd:9a:81:
66:3c:7b:ed:f3:24:d0:25:bf:94:b5:3a:da:e9:52:4e:36:24:
e3:75:1c:a6:9e:aa:72:53:d6:11:dd:45:6c:5d:c5:f3:87:df:
10:1c:31:86:bd:ee:64:aa:80:f3:47:4d:cc:36:a0:1a:b7:19:
1b:df:98:47:83:ed:d0:39:7b:e6:f7:78:5b:92:83:14:ac:aa:
18:1a:30:23:2c:91:dd:05:1a:90:43:f9:57:9d:ce:aa:28:2f:
ee:f0:e8:f4:5c:24:2d:5b:7c:eb:05:92:77:96:bf:20:25:55:
5f:f4:e2:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYV5W5BSG6zgvo6hhcINJCVHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlMzdjNzBmMWM2N2VjYTE3NzVhNzA5YzkyMzVkNmEyZjU1
NTE2YjgwHhcNMjMwMTAzMjAzODQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmI5ZjJiMWYxMDU3MDRjNzk0MTNjMjgxMTgxZjNjMTcxN2ZiNGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFf4BXliEQlwClEtLhKnGDwU0bcS
qErvx2Rsggb16rn/961hwQtHoE8TXUxi7qfLTRAnKoqjVqiz86+UR43ZbPaB88H9
05WXwPkkBBGu0Eow2OKVGFKPsstGCeZss08+c/HRRnxWfTaaw2WQK4QPEPu7pkeV
XIcYobhZYKdreRb3Vyub4XIf+LZ6Z4s3aeU7pm68V/SoHj9ze9XtNoiNppNocygt
EqHh3B3hQzMNc8hPq2xP21izJl/N071aR7tb694MSF3HKapirTF0wnBbZAVvcHXl
xwB8HaZpBe2zkWFkf1mspy9srDlWAjWYl0578JqwXG5vLfIRurwsm89fbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMa58rHxBXBMeUE8KBGB88Fxf7TQMB8GA1UdIwQY
MBaAFL43xw8cZ+yhd1pwnJI11qL1VRa4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmpmSER4eG43S0YzV25DY2tqWFdvdlZWRnJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS85NzM0MzEtNWFlNC00NTIxLTk0NTQt
YzhlYjA4Y2U5MDg5LzEveHJueXNmRUZjRXg1UVR3b0VZSHp3WEZfdE5BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS85NzM0MzEtNWFlNC00NTIxLTk0NTQtYzhlYjA4Y2U5MDg5
LzEvdmpmSER4eG43S0YzV25DY2tqWFdvdlZWRnJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuV90MA0G
CSqGSIb3DQEBCwUAA4IBAQAUlOYihG96GEcLfE5n2Col4n5F6Ym/G/VSjj17m9Zq
N37FGjhqG2Fngh27dCbdovev0wIpkaM+BHiTuxgziylApxzfumkTvdjPEFffEiUo
XQh8J8ojWJDBZhd2l/gMbxhVI/ie4SFfkuy+LMdUHBnfih05gE1i41d6OIeUDEeH
ckY7cWrpnutCRSPffnH9moFmPHvt8yTQJb+UtTra6VJONiTjdRymnqpyU9YR3UVs
XcXzh98QHDGGve5kqoDzR03MNqAatxkb35hHg+3QOXvm93hbkoMUrKoYGjAjLJHd
BRqQQ/lXnc6qKC/u8Oj0XCQtW3zrBZJ3lr8gJVVf9OJl
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:40 2024 by rpki-client on console-ams.rpki-client.org