Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/vij5TrSdt-MZoAFEGeXF4Ogyvck.roa
File: vij5TrSdt-MZoAFEGeXF4Ogyvck.roa (raw, json)
Hash identifier: bkPGhH6VPkh6Y3XEEBBLoq4dUNSNlALjuqmsp3ZufQk=
Subject key identifier: BE:28:F9:4E:B4:9D:B7:E3:19:A0:01:44:19:E5:C5:E0:E8:32:BD:C9
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018617EACDD73A0EAEFB2636842C2D7264C3
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/vij5TrSdt-MZoAFEGeXF4Ogyvck.roa
Signing time: Fri 03 Feb 2023 15:35:09 +0000
ROA not before: Fri 03 Feb 2023 15:35:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57770
IP address blocks: 89.185.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Mar 2023 12:04:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:17:ea:cd:d7:3a:0e:ae:fb:26:36:84:2c:2d:72:64:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Feb 3 15:35:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be28f94eb49db7e319a0014419e5c5e0e832bdc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:35:f8:a6:3c:1c:e0:84:9c:89:3c:a8:7c:50:
41:e2:fe:e1:5a:05:e5:63:ca:8d:f1:63:99:44:b6:
b8:f7:51:5c:7f:b4:0f:22:a9:01:ff:34:d7:36:6c:
7d:5e:6f:d9:a9:e1:43:f0:1e:2b:56:84:8f:43:6a:
81:b0:a5:b7:76:93:77:bd:d4:d8:c1:82:18:b0:ed:
3d:41:49:69:24:d6:b1:2e:fe:ec:9f:30:df:59:97:
d4:e5:83:27:13:8d:81:e5:52:f2:7b:22:a0:d6:5e:
8f:a3:67:69:93:56:f2:15:e1:22:07:9c:a5:a0:55:
3c:75:9d:cc:0f:25:41:5b:f6:07:84:e9:f5:56:e4:
53:d7:7c:19:d9:fb:c6:70:93:f9:65:73:ab:d4:6e:
d6:8b:98:a0:a8:51:25:f3:31:2e:38:2e:9e:68:e4:
92:47:f5:89:a8:d3:88:e4:8c:1b:86:fd:d0:0d:b5:
63:1b:79:46:34:9b:40:f8:16:7f:63:5a:c3:d1:23:
0e:29:d1:38:c6:1c:be:e1:cb:5a:2a:36:79:87:1b:
2b:39:4c:38:e5:72:66:8d:10:1c:56:73:ae:b3:de:
ac:0e:0a:a9:8f:24:1a:8d:8e:c7:61:37:52:d7:8d:
99:35:af:62:7b:24:90:c2:97:9b:c1:bc:57:f6:f4:
00:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:28:F9:4E:B4:9D:B7:E3:19:A0:01:44:19:E5:C5:E0:E8:32:BD:C9
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/vij5TrSdt-MZoAFEGeXF4Ogyvck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.28.0/22
Signature Algorithm: sha256WithRSAEncryption
54:31:20:4b:20:43:6d:a1:24:b4:08:4a:28:2d:ea:9a:06:52:
8b:e7:db:5f:ef:5c:35:a5:fb:9d:8f:77:68:57:70:2a:52:d6:
c4:74:6a:b8:6b:de:c4:48:41:3d:fc:16:9b:af:2c:a0:23:a5:
96:c1:11:e0:10:d3:4f:01:d9:9f:52:cc:57:b7:b6:3b:a9:a1:
6f:8c:46:69:4a:c8:42:25:3a:cf:c5:13:42:34:89:73:e2:b6:
63:a2:0f:14:4b:62:d8:03:c2:77:68:06:86:46:37:6a:1d:b0:
59:9b:36:7e:51:47:79:73:29:6a:8a:e0:8d:8d:71:39:1d:fb:
69:82:95:9f:12:b5:58:dd:d0:6a:44:41:8d:92:74:84:f1:e1:
c5:de:fa:f0:ef:88:ab:14:f6:76:56:66:8a:0a:eb:13:d3:56:
89:4b:dc:cd:e8:55:66:52:3d:0e:12:95:67:58:23:47:d0:8a:
0a:32:d3:eb:b5:54:dd:19:91:86:7b:45:b3:64:98:38:27:dd:
dc:ad:fd:34:91:53:76:21:4c:69:12:d7:b9:16:1e:de:79:23:
11:5a:9c:65:cf:fb:64:7d:24:7b:c2:f7:ee:88:72:30:d2:ba:
81:e4:8e:af:ea:2b:e4:30:f3:f5:23:94:b0:1c:d0:ba:cd:ef:
de:9e:79:e4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYX6s3XOg6u+yY2hCwtcmTDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMwMjAzMTUzNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTI4Zjk0ZWI0OWRiN2UzMTlhMDAxNDQxOWU1YzVlMGU4MzJiZGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTX4pjwc4ISciTyofFBB4v7hWgXl
Y8qN8WOZRLa491Fcf7QPIqkB/zTXNmx9Xm/ZqeFD8B4rVoSPQ2qBsKW3dpN3vdTY
wYIYsO09QUlpJNaxLv7snzDfWZfU5YMnE42B5VLyeyKg1l6Po2dpk1byFeEiB5yl
oFU8dZ3MDyVBW/YHhOn1VuRT13wZ2fvGcJP5ZXOr1G7Wi5igqFEl8zEuOC6eaOSS
R/WJqNOI5Iwbhv3QDbVjG3lGNJtA+BZ/Y1rD0SMOKdE4xhy+4ctaKjZ5hxsrOUw4
5XJmjRAcVnOus96sDgqpjyQajY7HYTdS142ZNa9ieySQwpebwbxX9vQAeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL4o+U60nbfjGaABRBnlxeDoMr3JMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvdmlqNVRyU2R0LU1ab0FGRUdlWEY0T2d5dmNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCWbkcMA0G
CSqGSIb3DQEBCwUAA4IBAQBUMSBLIENtoSS0CEooLeqaBlKL59tf71w1pfudj3do
V3AqUtbEdGq4a97ESEE9/BabryygI6WWwRHgENNPAdmfUsxXt7Y7qaFvjEZpSshC
JTrPxRNCNIlz4rZjog8US2LYA8J3aAaGRjdqHbBZmzZ+UUd5cylqiuCNjXE5Hftp
gpWfErVY3dBqREGNknSE8eHF3vrw74irFPZ2VmaKCusT01aJS9zN6FVmUj0OEpVn
WCNH0IoKMtPrtVTdGZGGe0WzZJg4J93crf00kVN2IUxpEte5Fh7eeSMRWpxlz/tk
fSR7wvfuiHIw0rqB5I6v6ivkMPP1I5SwHNC6ze/ennnk
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org