Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21945d-2899-4d9d-aa45-b0a28bb35b20/1/A0bszSiu5O73kfk0QODsLknNF6E.roa
File: A0bszSiu5O73kfk0QODsLknNF6E.roa (raw, json)
Hash identifier: vjDj1cWV3Ra5brP8IDYu8+E1IbNfKVBL2ftFMiUtw8s=
Subject key identifier: 03:46:EC:CD:28:AE:E4:EE:F7:91:F9:34:40:E0:EC:2E:49:CD:17:A1
Certificate issuer: /CN=c5cdce32adc62afb77e43186cf7c2c071e42b7bb
Certificate serial: 01856EC208068AA6B42AA7963AAB598373EF
Authority key identifier: C5:CD:CE:32:AD:C6:2A:FB:77:E4:31:86:CF:7C:2C:07:1E:42:B7:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xc3OMq3GKvt35DGGz3wsBx5Ct7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21945d-2899-4d9d-aa45-b0a28bb35b20/1/A0bszSiu5O73kfk0QODsLknNF6E.roa
Signing time: Sun 01 Jan 2023 19:14:47 +0000
ROA not before: Sun 01 Jan 2023 19:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 185.195.244.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:08:06:8a:a6:b4:2a:a7:96:3a:ab:59:83:73:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5cdce32adc62afb77e43186cf7c2c071e42b7bb
Validity
Not Before: Jan 1 19:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0346eccd28aee4eef791f93440e0ec2e49cd17a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cc:0b:d8:97:ba:d0:42:09:7c:1b:11:66:6d:
87:0a:27:aa:c1:20:4f:f6:d4:61:80:fc:74:5f:c2:
f9:08:63:c4:e2:5f:f1:48:6b:30:2b:72:6a:df:a0:
9e:43:c2:25:eb:a5:f3:e3:25:b8:84:6e:40:2b:0a:
52:36:00:66:a0:3a:fe:37:e0:f0:53:b0:1b:c3:6d:
d4:f3:b9:b3:60:07:19:29:7a:b0:87:b2:2e:b3:49:
b0:31:aa:34:39:22:58:cb:5b:90:84:41:6d:41:b7:
95:64:87:46:b9:25:da:0a:f2:0e:5b:09:e0:78:ce:
b2:48:68:d5:1c:43:59:32:58:b1:03:13:15:cf:84:
1c:9b:29:78:8a:4e:f8:08:3a:f9:41:1b:30:3f:bd:
08:49:48:da:84:6c:c4:1b:ee:01:96:38:34:d4:6c:
5d:d3:63:5f:50:68:c7:ac:8c:e5:ce:3a:42:1e:86:
41:0d:c7:03:d6:94:df:bd:40:3c:dc:4d:25:67:9e:
2c:80:e3:b9:9c:84:ac:a5:fa:11:f0:9a:fd:50:d1:
39:51:d4:62:ca:4c:85:ec:0b:9e:2d:38:31:0e:2a:
4d:b0:a5:6c:39:fe:1f:c0:e0:e2:b1:a8:14:a7:bd:
09:e7:df:a3:36:42:35:17:dc:f1:22:bf:89:89:ba:
ac:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:46:EC:CD:28:AE:E4:EE:F7:91:F9:34:40:E0:EC:2E:49:CD:17:A1
X509v3 Authority Key Identifier:
keyid:C5:CD:CE:32:AD:C6:2A:FB:77:E4:31:86:CF:7C:2C:07:1E:42:B7:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xc3OMq3GKvt35DGGz3wsBx5Ct7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21945d-2899-4d9d-aa45-b0a28bb35b20/1/A0bszSiu5O73kfk0QODsLknNF6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21945d-2899-4d9d-aa45-b0a28bb35b20/1/xc3OMq3GKvt35DGGz3wsBx5Ct7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.244.0/22
Signature Algorithm: sha256WithRSAEncryption
63:93:2f:ce:52:e0:f1:bb:f8:cc:ea:74:7c:40:c1:52:b6:ce:
05:f6:36:23:22:50:46:b7:fe:69:cf:7d:79:46:a9:0d:d3:8c:
bf:b3:ed:d2:20:a1:12:ac:a7:72:f5:23:b3:82:71:4b:06:c5:
ac:6f:21:8a:a7:89:e5:9a:08:11:0f:86:67:00:bd:9b:61:fe:
dc:b6:7f:80:f7:d2:ea:26:c1:23:5b:91:5f:af:be:6c:84:97:
e5:26:1f:90:8c:a9:c1:85:0d:0f:da:6b:0a:f1:ac:25:1e:1a:
ed:97:10:9f:51:3a:48:4f:24:03:ab:97:f3:69:c5:0e:a0:2a:
f2:57:9b:a1:9f:ac:ef:7a:1b:29:8d:94:7f:e7:59:c6:94:8f:
22:e9:cd:ad:d9:81:21:16:87:93:06:ca:3b:4f:be:23:31:14:
ae:7b:5f:00:8f:46:1d:f0:da:ac:54:a8:3f:4b:88:0c:df:be:
87:d5:a5:44:8a:41:b8:25:03:93:d7:88:69:94:9d:31:16:f8:
0b:af:b1:0a:5d:d5:c3:5c:c4:e3:77:d0:f7:d7:d5:e1:59:c4:
a4:fe:c7:0a:f0:0b:bf:01:65:2e:77:81:74:62:f7:ca:e0:d9:
cb:dc:26:96:9b:87:9e:a5:d1:07:cf:40:88:83:c4:86:ec:97:
b3:6a:83:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuwggGiqa0KqeWOqtZg3PvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1Y2RjZTMyYWRjNjJhZmI3N2U0MzE4NmNmN2MyYzA3MWU0
MmI3YmIwHhcNMjMwMTAxMTkxNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzQ2ZWNjZDI4YWVlNGVlZjc5MWY5MzQ0MGUwZWMyZTQ5Y2QxN2ExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApswL2Je60EIJfBsRZm2HCieqwSBP
9tRhgPx0X8L5CGPE4l/xSGswK3Jq36CeQ8Il66Xz4yW4hG5AKwpSNgBmoDr+N+Dw
U7Abw23U87mzYAcZKXqwh7Ius0mwMao0OSJYy1uQhEFtQbeVZIdGuSXaCvIOWwng
eM6ySGjVHENZMlixAxMVz4Qcmyl4ik74CDr5QRswP70ISUjahGzEG+4Bljg01Gxd
02NfUGjHrIzlzjpCHoZBDccD1pTfvUA83E0lZ54sgOO5nISspfoR8Jr9UNE5UdRi
ykyF7AueLTgxDipNsKVsOf4fwODisagUp70J59+jNkI1F9zxIr+JibqsQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFANG7M0oruTu95H5NEDg7C5JzRehMB8GA1UdIwQY
MBaAFMXNzjKtxir7d+Qxhs98LAceQre7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGMzT01xM0dLdnQzNURHR3ozd3NCeDVDdDdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8yMTk0NWQtMjg5OS00ZDlkLWFhNDUt
YjBhMjhiYjM1YjIwLzEvQTBic3pTaXU1Tzcza2ZrMFFPRHNMa25ORjZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC8yMTk0NWQtMjg5OS00ZDlkLWFhNDUtYjBhMjhiYjM1YjIw
LzEveGMzT01xM0dLdnQzNURHR3ozd3NCeDVDdDdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucP0MA0G
CSqGSIb3DQEBCwUAA4IBAQBjky/OUuDxu/jM6nR8QMFSts4F9jYjIlBGt/5pz315
RqkN04y/s+3SIKESrKdy9SOzgnFLBsWsbyGKp4nlmggRD4ZnAL2bYf7ctn+A99Lq
JsEjW5Ffr75shJflJh+QjKnBhQ0P2msK8awlHhrtlxCfUTpITyQDq5fzacUOoCry
V5uhn6zvehspjZR/51nGlI8i6c2t2YEhFoeTBso7T74jMRSue18Aj0Yd8NqsVKg/
S4gM376H1aVEikG4JQOT14hplJ0xFvgLr7EKXdXDXMTjd9D319XhWcSk/scK8Au/
AWUud4F0YvfK4NnL3CaWm4eepdEHz0CIg8SG7JezaoOw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:37 2024 by rpki-client on console-fra.rpki-client.org