Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/aMxNMnoOtpZ8QWIR3XbFU5Vpuzs.roa
File: aMxNMnoOtpZ8QWIR3XbFU5Vpuzs.roa (raw, json)
Hash identifier: BQMUGLmrEiww/8rG+pjiHdEIyafYUs0ZyXjB23lfTBM=
Subject key identifier: 68:CC:4D:32:7A:0E:B6:96:7C:41:62:11:DD:76:C5:53:95:69:BB:3B
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 01856CAF2CFC09BAAAA5985515D472B4E886
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/aMxNMnoOtpZ8QWIR3XbFU5Vpuzs.roa
Signing time: Sun 01 Jan 2023 09:34:57 +0000
ROA not before: Sun 01 Jan 2023 09:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199588
IP address blocks: 185.7.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:2c:fc:09:ba:aa:a5:98:55:15:d4:72:b4:e8:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: Jan 1 09:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68cc4d327a0eb6967c416211dd76c5539569bb3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f2:00:b6:60:85:c1:03:9b:71:69:e9:6c:2a:
d2:eb:dd:e6:c9:b4:50:6c:a8:31:45:55:3b:17:91:
6c:c4:67:ef:8b:4c:93:c7:14:24:26:b5:6d:fb:4e:
d0:3c:43:d6:db:26:e0:60:5a:67:f5:2b:cb:d9:8c:
99:b8:ce:9b:47:db:a7:77:1a:e8:e8:c1:3e:17:3a:
16:eb:85:85:f0:5c:ef:31:55:89:84:3b:af:d2:e3:
e6:fa:03:47:38:ea:9f:ca:0c:68:68:90:17:2c:af:
f7:c6:c3:5e:eb:25:7d:c3:3a:77:5c:72:ba:21:0d:
3d:88:83:56:46:a9:c9:fc:9f:be:1f:84:7c:5a:d2:
fb:4e:b6:b1:f2:2a:b5:d9:67:d3:d9:fd:cb:cb:e1:
26:d6:eb:90:08:93:78:07:0e:aa:06:79:c6:9c:b7:
88:33:39:52:ea:18:46:6f:d0:dd:58:34:18:01:80:
71:69:6a:b0:9a:5a:38:4b:31:fa:4d:c3:5c:25:4b:
4a:8b:67:bf:ad:31:74:20:dc:04:1c:53:56:15:58:
3b:5a:44:29:08:9c:59:39:ac:74:bb:79:47:90:f6:
5d:05:88:d2:8a:8f:79:5b:5f:f8:ae:74:cc:34:89:
b8:bb:84:dc:2b:c9:94:e2:1e:5e:f6:ff:56:9f:6b:
f5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CC:4D:32:7A:0E:B6:96:7C:41:62:11:DD:76:C5:53:95:69:BB:3B
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/aMxNMnoOtpZ8QWIR3XbFU5Vpuzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.184.0/22
Signature Algorithm: sha256WithRSAEncryption
24:d8:57:af:ab:47:6b:00:e1:9c:bb:7f:e7:24:3a:8f:6c:36:
01:6e:bb:5e:f2:c4:76:e9:2a:b7:69:9c:ba:89:39:9a:2e:5b:
88:3d:d8:a5:79:9e:f3:6c:3b:09:97:6b:2d:82:c1:34:c0:16:
15:58:7c:b0:2d:57:53:91:10:52:c8:e9:a3:d0:44:48:cd:7b:
b1:ae:ae:29:42:a7:a3:0b:88:2e:3f:58:80:fa:e7:b7:c1:b8:
22:76:22:83:d4:4d:40:7f:90:41:4a:e6:14:0d:b2:d4:5c:36:
45:4b:08:28:86:c2:5d:0d:a5:d7:d5:97:ed:b8:66:b9:9c:48:
2e:d7:0f:52:ff:56:3f:33:8e:3a:8a:f6:3f:a1:2b:25:55:e8:
68:01:23:09:0a:7b:60:a3:34:bc:d1:04:c8:86:a9:9e:18:59:
82:8d:0a:6f:10:3d:05:16:5b:b9:94:7a:95:dc:54:f0:8c:b0:
83:c1:8e:76:52:29:97:d6:04:47:eb:1f:99:a0:12:20:25:82:
d5:33:dd:b7:c0:af:c8:d6:2d:4a:73:5d:ff:6e:4e:62:ab:11:
6d:e1:c3:2e:be:76:02:1f:54:31:2b:b9:70:b7:f8:fa:5a:5e:
b1:4b:ed:bd:23:24:71:d8:a5:c8:38:25:58:54:1d:e8:48:ba:
91:17:ba:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsryz8CbqqpZhVFdRytOiGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxZDliYWEwMjIxOTQyZWRmZTRiM2E5YTU3MDgyOTVjMDQ0
MTZlODAwHhcNMjMwMTAxMDkzNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OGNjNGQzMjdhMGViNjk2N2M0MTYyMTFkZDc2YzU1Mzk1NjliYjNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvIAtmCFwQObcWnpbCrS693mybRQ
bKgxRVU7F5FsxGfvi0yTxxQkJrVt+07QPEPW2ybgYFpn9SvL2YyZuM6bR9undxro
6ME+FzoW64WF8FzvMVWJhDuv0uPm+gNHOOqfygxoaJAXLK/3xsNe6yV9wzp3XHK6
IQ09iINWRqnJ/J++H4R8WtL7Trax8iq12WfT2f3Ly+Em1uuQCJN4Bw6qBnnGnLeI
MzlS6hhGb9DdWDQYAYBxaWqwmlo4SzH6TcNcJUtKi2e/rTF0INwEHFNWFVg7WkQp
CJxZOax0u3lHkPZdBYjSio95W1/4rnTMNIm4u4TcK8mU4h5e9v9Wn2v1LwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGjMTTJ6DraWfEFiEd12xVOVabs7MB8GA1UdIwQY
MBaAFHHZuqAiGULt/ks6mlcIKVwEQW6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS84YzNmYjgtNDBkZi00ZDVkLTkzNjMt
NTA0NzI3YTUwYjhlLzEvYU14Tk1ub090cFo4UVdJUjNYYkZVNVZwdXpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS84YzNmYjgtNDBkZi00ZDVkLTkzNjMtNTA0NzI3YTUwYjhl
LzEvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuQe4MA0G
CSqGSIb3DQEBCwUAA4IBAQAk2Fevq0drAOGcu3/nJDqPbDYBbrte8sR26Sq3aZy6
iTmaLluIPdileZ7zbDsJl2stgsE0wBYVWHywLVdTkRBSyOmj0ERIzXuxrq4pQqej
C4guP1iA+ue3wbgidiKD1E1Af5BBSuYUDbLUXDZFSwgohsJdDaXX1ZftuGa5nEgu
1w9S/1Y/M446ivY/oSslVehoASMJCntgozS80QTIhqmeGFmCjQpvED0FFlu5lHqV
3FTwjLCDwY52UimX1gRH6x+ZoBIgJYLVM923wK/I1i1Kc13/bk5iqxFt4cMuvnYC
H1QxK7lwt/j6Wl6xS+29IyRx2KXIOCVYVB3oSLqRF7rj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:46 2024 by rpki-client on console-ams.rpki-client.org