Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9a9e14-04ea-413f-8c48-a24fabf56dad/1/FrKMK3CU25uWXGhB9wGW-wJVNqU.roa
File: FrKMK3CU25uWXGhB9wGW-wJVNqU.roa (raw, json)
Hash identifier: g3ODKFtebPZenQ+sU0aOQ7WHIYDJm7hkN1rJTqR0sR0=
Subject key identifier: 16:B2:8C:2B:70:94:DB:9B:96:5C:68:41:F7:01:96:FB:02:55:36:A5
Certificate issuer: /CN=54f42dba51ec2835d3e4d0a3d8c48bf322f6bdb5
Certificate serial: 01857230E5CE04DB23622BBD1719C07E28F6
Authority key identifier: 54:F4:2D:BA:51:EC:28:35:D3:E4:D0:A3:D8:C4:8B:F3:22:F6:BD:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VPQtulHsKDXT5NCj2MSL8yL2vbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/9a9e14-04ea-413f-8c48-a24fabf56dad/1/FrKMK3CU25uWXGhB9wGW-wJVNqU.roa
Signing time: Mon 02 Jan 2023 11:14:45 +0000
ROA not before: Mon 02 Jan 2023 11:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204854
IP address blocks: 185.237.76.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:e5:ce:04:db:23:62:2b:bd:17:19:c0:7e:28:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54f42dba51ec2835d3e4d0a3d8c48bf322f6bdb5
Validity
Not Before: Jan 2 11:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16b28c2b7094db9b965c6841f70196fb025536a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5f:e6:74:26:d5:79:5d:cc:33:91:37:69:26:
a2:e0:88:ee:d8:1c:a1:36:63:ff:2a:3d:0d:3e:79:
ee:f4:fe:90:4f:4b:21:f0:d7:9f:24:80:e9:7a:8a:
b7:5a:d5:3f:24:23:4f:ad:32:0f:57:ba:97:7f:cb:
9e:e8:a6:d0:be:1b:de:5e:a4:70:bb:c6:4a:a2:40:
05:37:d0:64:72:94:04:ba:46:8c:f4:4a:ce:47:1c:
81:37:11:a4:eb:7c:4c:dc:0b:f6:f3:4c:6a:8c:da:
1a:de:40:68:45:5d:c1:df:36:48:df:2c:a7:a1:6c:
bb:65:0e:de:87:92:b2:5f:a3:b2:b3:d4:6f:df:46:
99:60:98:be:74:f0:bf:fc:f3:f0:e0:72:d5:fd:a3:
ba:1c:9c:d2:68:c2:d9:af:33:16:db:97:2f:db:fe:
db:5c:77:70:8d:fa:fc:d4:03:4a:ce:d2:8d:3c:b5:
59:88:dd:83:ba:ae:cf:cc:1a:b9:0d:f5:23:eb:f0:
33:0a:8c:57:71:b3:9d:77:ab:54:71:30:da:a6:fe:
1c:e0:ce:6d:b9:86:1a:60:f8:c9:40:5d:cd:e8:45:
6b:e3:5b:2b:81:55:d8:a4:db:3b:1e:b1:34:50:e8:
ff:0b:32:12:7d:24:48:1d:01:73:20:90:a9:f0:00:
cd:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B2:8C:2B:70:94:DB:9B:96:5C:68:41:F7:01:96:FB:02:55:36:A5
X509v3 Authority Key Identifier:
keyid:54:F4:2D:BA:51:EC:28:35:D3:E4:D0:A3:D8:C4:8B:F3:22:F6:BD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VPQtulHsKDXT5NCj2MSL8yL2vbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9a9e14-04ea-413f-8c48-a24fabf56dad/1/FrKMK3CU25uWXGhB9wGW-wJVNqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9a9e14-04ea-413f-8c48-a24fabf56dad/1/VPQtulHsKDXT5NCj2MSL8yL2vbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.76.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:34:dd:f3:4f:f1:31:78:3d:18:7d:06:36:c6:8f:ec:1b:70:
7b:99:f6:61:08:93:fc:92:fb:54:7c:89:22:6a:84:e6:14:61:
83:85:3e:82:af:fa:33:d8:5c:fc:a0:6d:65:a2:f2:af:35:9b:
39:bd:df:cf:39:3a:ea:b3:df:b7:9c:e0:d5:61:ab:1a:94:a1:
e3:75:41:ba:01:82:37:78:a3:9f:c5:b6:84:7e:86:a5:84:20:
d0:40:ef:0c:39:33:8a:7e:5c:c3:36:5d:5c:cf:9b:bd:f7:cb:
ae:7f:ec:64:09:80:e2:e6:24:77:68:c1:b1:57:0b:fd:ee:31:
3b:1a:40:38:2a:0b:6e:42:30:81:86:d1:63:c8:9c:55:b6:6a:
39:21:f3:a7:98:c9:a7:89:f9:94:ff:47:9b:ca:8a:eb:73:40:
94:36:b8:4a:ec:7a:3b:fb:59:31:d4:41:45:21:58:b5:d5:0f:
b9:b4:8b:24:ea:c1:bc:99:17:e2:a7:c8:42:fd:3d:25:fa:92:
8b:c3:7a:88:47:9e:9e:4e:50:2d:75:78:30:6a:9e:dd:72:30:
71:aa:5f:fb:e6:30:df:d4:e2:94:0a:33:bb:27:90:5c:4d:68:
36:9c:2e:e7:8d:82:76:7d:af:ec:d6:27:e0:f3:17:96:bb:d3:
94:59:5b:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyMOXOBNsjYiu9FxnAfij2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0ZjQyZGJhNTFlYzI4MzVkM2U0ZDBhM2Q4YzQ4YmYzMjJm
NmJkYjUwHhcNMjMwMTAyMTExNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNmIyOGMyYjcwOTRkYjliOTY1YzY4NDFmNzAxOTZmYjAyNTUzNmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1/mdCbVeV3MM5E3aSai4Iju2Byh
NmP/Kj0NPnnu9P6QT0sh8NefJIDpeoq3WtU/JCNPrTIPV7qXf8ue6KbQvhveXqRw
u8ZKokAFN9BkcpQEukaM9ErORxyBNxGk63xM3Av280xqjNoa3kBoRV3B3zZI3yyn
oWy7ZQ7eh5KyX6Oys9Rv30aZYJi+dPC//PPw4HLV/aO6HJzSaMLZrzMW25cv2/7b
XHdwjfr81ANKztKNPLVZiN2Duq7PzBq5DfUj6/AzCoxXcbOdd6tUcTDapv4c4M5t
uYYaYPjJQF3N6EVr41srgVXYpNs7HrE0UOj/CzISfSRIHQFzIJCp8ADNPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBayjCtwlNubllxoQfcBlvsCVTalMB8GA1UdIwQY
MBaAFFT0LbpR7Cg10+TQo9jEi/Mi9r21MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVlBRdHVsSHNLRFhUNU5DajJNU0w4eUwydmJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC85YTllMTQtMDRlYS00MTNmLThjNDgt
YTI0ZmFiZjU2ZGFkLzEvRnJLTUszQ1UyNXVXWEdoQjl3R1ctd0pWTnFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC85YTllMTQtMDRlYS00MTNmLThjNDgtYTI0ZmFiZjU2ZGFk
LzEvVlBRdHVsSHNLRFhUNU5DajJNU0w4eUwydmJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCue1MMA0G
CSqGSIb3DQEBCwUAA4IBAQBsNN3zT/ExeD0YfQY2xo/sG3B7mfZhCJP8kvtUfIki
aoTmFGGDhT6Cr/oz2Fz8oG1lovKvNZs5vd/POTrqs9+3nODVYasalKHjdUG6AYI3
eKOfxbaEfoalhCDQQO8MOTOKflzDNl1cz5u998uuf+xkCYDi5iR3aMGxVwv97jE7
GkA4KgtuQjCBhtFjyJxVtmo5IfOnmMmnifmU/0ebyorrc0CUNrhK7Ho7+1kx1EFF
IVi11Q+5tIsk6sG8mRfip8hC/T0l+pKLw3qIR56eTlAtdXgwap7dcjBxql/75jDf
1OKUCjO7J5BcTWg2nC7njYJ2fa/s1ifg8xeWu9OUWVtj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:09 2024 by rpki-client on console-fra.rpki-client.org