Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/fVHADhbAVWl8CZ7zwqBZRMhil44.roa
File: fVHADhbAVWl8CZ7zwqBZRMhil44.roa (raw, json)
Hash identifier: 4VfqrcCY3H7VUq/EQYAj3OYqWKTWxuvEpGAzx88agc4=
Subject key identifier: 7D:51:C0:0E:16:C0:55:69:7C:09:9E:F3:C2:A0:59:44:C8:62:97:8E
Certificate issuer: /CN=db489fbe98994cbc098c876ba63e560ac17e5b2f
Certificate serial: 01857115120F3B9C06F54018AEE46D46B508
Authority key identifier: DB:48:9F:BE:98:99:4C:BC:09:8C:87:6B:A6:3E:56:0A:C1:7E:5B:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20ifvpiZTLwJjIdrpj5WCsF-Wy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/fVHADhbAVWl8CZ7zwqBZRMhil44.roa
Signing time: Mon 02 Jan 2023 06:04:44 +0000
ROA not before: Mon 02 Jan 2023 06:04:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20746
IP address blocks: 185.63.228.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:12:0f:3b:9c:06:f5:40:18:ae:e4:6d:46:b5:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db489fbe98994cbc098c876ba63e560ac17e5b2f
Validity
Not Before: Jan 2 06:04:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d51c00e16c055697c099ef3c2a05944c862978e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9a:cf:a0:c6:91:17:a1:32:ed:9a:c4:6f:5e:
47:c5:80:94:32:64:06:f7:5b:cb:1c:8c:7d:91:57:
d2:4a:81:27:c0:f1:82:62:bb:cc:85:d9:ee:55:1c:
90:a5:d2:90:b2:62:89:b3:6e:0a:a6:2f:e7:1c:f2:
0d:41:d0:cf:e8:82:1e:c4:86:d0:54:12:78:f3:a7:
77:fa:a5:68:c5:01:63:e6:af:79:36:0d:61:53:b5:
ee:46:68:f3:6d:b0:82:3c:37:ff:b2:64:28:ac:e8:
54:f2:79:c1:f2:9f:0b:ca:6f:8e:08:a8:bb:d3:e7:
99:1f:2a:19:95:c0:3a:23:4b:bd:eb:1a:27:96:0e:
ec:94:32:17:9f:54:69:a0:9d:57:3c:cc:98:df:c8:
df:52:32:2c:93:c6:05:34:89:d6:a8:25:ae:f8:72:
a1:ce:16:36:6a:b9:dd:3d:6c:c3:54:3c:6d:9d:e1:
da:c0:c9:56:96:0b:b8:ed:3a:6c:97:05:f2:8a:e4:
56:be:22:1a:cf:80:8c:b9:4c:36:19:03:48:a6:08:
af:48:ef:27:e8:12:d2:db:7b:0f:3d:1e:d9:06:1e:
9e:d5:9a:2d:c0:90:79:3a:3f:2e:62:44:ef:bb:df:
df:bb:e8:26:e6:01:17:4d:25:95:9a:fe:7d:16:32:
ac:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:51:C0:0E:16:C0:55:69:7C:09:9E:F3:C2:A0:59:44:C8:62:97:8E
X509v3 Authority Key Identifier:
keyid:DB:48:9F:BE:98:99:4C:BC:09:8C:87:6B:A6:3E:56:0A:C1:7E:5B:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20ifvpiZTLwJjIdrpj5WCsF-Wy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/fVHADhbAVWl8CZ7zwqBZRMhil44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/20ifvpiZTLwJjIdrpj5WCsF-Wy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.228.0/22
Signature Algorithm: sha256WithRSAEncryption
94:bc:0e:5a:46:50:11:5f:cc:ca:fc:9e:39:de:79:d2:a6:80:
a6:e3:2c:5a:56:18:4e:47:c7:84:cb:85:5d:18:42:e3:fc:b7:
29:62:36:1c:f1:bb:37:95:ce:12:d0:4c:30:60:80:f6:cf:b4:
37:f8:a9:d5:16:0a:90:b9:66:ff:1e:83:94:3d:28:c3:4f:b9:
f6:ce:7f:50:0c:51:2a:a5:7c:0b:32:7b:2f:b8:16:2b:c7:8d:
9a:52:d3:28:1d:00:01:58:36:77:8a:6a:8f:d8:96:d0:26:ae:
ee:d1:56:cd:2c:15:68:cf:8c:15:bb:6f:c6:3d:e3:ef:e6:20:
5d:39:68:79:17:23:b2:a5:5e:b0:ab:94:8a:ac:d3:f6:ce:49:
7a:7b:4e:66:39:63:8d:56:99:8b:67:8d:a4:69:f7:84:65:6e:
bb:35:e1:14:16:8c:01:2d:fb:19:82:32:5c:8e:7a:90:0c:f9:
88:1b:04:ea:93:d9:f4:26:b7:91:f9:5b:e0:f3:4d:ef:98:b8:
b2:e0:a7:ce:0f:a6:2a:6a:c2:32:49:91:c3:66:b4:12:5a:85:
10:78:d9:62:e8:ae:7f:9a:42:dc:d6:5d:c4:1f:cd:65:9b:9d:
bc:b9:13:c4:c1:f1:ac:02:57:a7:d4:ef:36:63:9a:7d:96:60:
79:4c:75:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxFRIPO5wG9UAYruRtRrUIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNDg5ZmJlOTg5OTRjYmMwOThjODc2YmE2M2U1NjBhYzE3
ZTViMmYwHhcNMjMwMTAyMDYwNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDUxYzAwZTE2YzA1NTY5N2MwOTllZjNjMmEwNTk0NGM4NjI5NzhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjJrPoMaRF6Ey7ZrEb15HxYCUMmQG
91vLHIx9kVfSSoEnwPGCYrvMhdnuVRyQpdKQsmKJs24Kpi/nHPINQdDP6IIexIbQ
VBJ486d3+qVoxQFj5q95Ng1hU7XuRmjzbbCCPDf/smQorOhU8nnB8p8Lym+OCKi7
0+eZHyoZlcA6I0u96xonlg7slDIXn1RpoJ1XPMyY38jfUjIsk8YFNInWqCWu+HKh
zhY2arndPWzDVDxtneHawMlWlgu47TpslwXyiuRWviIaz4CMuUw2GQNIpgivSO8n
6BLS23sPPR7ZBh6e1ZotwJB5Oj8uYkTvu9/fu+gm5gEXTSWVmv59FjKs+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH1RwA4WwFVpfAme88KgWUTIYpeOMB8GA1UdIwQY
MBaAFNtIn76YmUy8CYyHa6Y+VgrBflsvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjBpZnZwaVpUTHdKaklkcnBqNVdDc0YtV3k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS82Y2FjNTAtM2YxMy00ZWY5LThiNmQt
ZGVjZWM0MWE3MWQxLzEvZlZIQURoYkFWV2w4Q1o3endxQlpSTWhpbDQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS82Y2FjNTAtM2YxMy00ZWY5LThiNmQtZGVjZWM0MWE3MWQx
LzEvMjBpZnZwaVpUTHdKaklkcnBqNVdDc0YtV3k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuT/kMA0G
CSqGSIb3DQEBCwUAA4IBAQCUvA5aRlARX8zK/J453nnSpoCm4yxaVhhOR8eEy4Vd
GELj/LcpYjYc8bs3lc4S0EwwYID2z7Q3+KnVFgqQuWb/HoOUPSjDT7n2zn9QDFEq
pXwLMnsvuBYrx42aUtMoHQABWDZ3imqP2JbQJq7u0VbNLBVoz4wVu2/GPePv5iBd
OWh5FyOypV6wq5SKrNP2zkl6e05mOWONVpmLZ42kafeEZW67NeEUFowBLfsZgjJc
jnqQDPmIGwTqk9n0JreR+Vvg803vmLiy4KfOD6YqasIySZHDZrQSWoUQeNli6K5/
mkLc1l3EH81lm528uRPEwfGsAlen1O82Y5p9lmB5THW9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:44 2024 by rpki-client on console-ams.rpki-client.org