Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/_CGH9LQG3BDGd7vCpo_OUN5TufE.roa
File: _CGH9LQG3BDGd7vCpo_OUN5TufE.roa (raw, json)
Hash identifier: +nYvpNvxppilROje1U1qg7QyJqlBCDJjyTKNwxDJykQ=
Subject key identifier: FC:21:87:F4:B4:06:DC:10:C6:77:BB:C2:A6:8F:CE:50:DE:53:B9:F1
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 01857054CB1B2D8DC285F9444E013BF8E95F
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/_CGH9LQG3BDGd7vCpo_OUN5TufE.roa
Signing time: Mon 02 Jan 2023 02:34:43 +0000
ROA not before: Mon 02 Jan 2023 02:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48430
IP address blocks: 92.118.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:54:cb:1b:2d:8d:c2:85:f9:44:4e:01:3b:f8:e9:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Jan 2 02:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc2187f4b406dc10c677bbc2a68fce50de53b9f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ec:f5:fd:89:f6:e3:ce:81:1d:98:3a:fc:c6:
b0:28:69:e5:5a:38:27:a5:f9:db:51:92:a8:a1:26:
97:cd:ef:7b:43:7f:b5:e5:9a:2f:ac:7c:b0:cb:b9:
5a:19:21:6d:88:c3:76:b6:c6:9f:1c:09:22:3d:2c:
f4:26:a0:52:b7:49:fb:45:61:86:06:92:0d:53:91:
37:2f:df:b4:4e:1b:52:a5:c5:02:57:f3:46:70:41:
57:7d:7b:87:bf:12:f0:7c:ae:f4:88:a5:9a:86:0a:
ca:c4:7c:71:66:a2:d5:a4:32:11:ea:f5:c9:2c:dc:
5f:20:27:cb:dd:01:87:7a:a0:f3:eb:a5:ed:c7:42:
31:d2:9d:fb:5e:7d:7e:58:09:81:b2:d0:e7:1c:05:
fd:ba:6f:b6:02:94:a8:fe:d8:f2:a8:52:04:41:40:
8d:8a:4b:69:02:b2:71:26:01:c3:1c:4d:9a:00:e3:
25:fb:1b:dd:f4:e7:a9:e1:db:51:96:d4:ea:cb:7d:
c3:b5:5c:fa:57:3f:14:23:11:73:d3:6c:e7:90:cb:
d1:a2:4d:2f:9e:22:5d:b2:71:4e:6f:bb:eb:27:70:
a3:72:9a:2e:d0:46:fb:1d:84:d9:80:9a:3e:e8:bf:
24:36:01:a5:61:5e:4c:b6:f3:2a:1a:d3:d3:46:31:
24:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:21:87:F4:B4:06:DC:10:C6:77:BB:C2:A6:8F:CE:50:DE:53:B9:F1
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/_CGH9LQG3BDGd7vCpo_OUN5TufE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.124.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:20:82:a5:29:1e:44:19:67:4b:b4:fa:87:b2:63:64:da:75:
e1:5f:9d:2d:df:ce:36:55:14:df:d8:a1:db:a8:2b:23:de:72:
82:68:3b:7c:e7:4d:8e:dc:0c:90:39:02:1e:f7:29:e3:a5:7b:
d5:86:ef:41:aa:30:f0:14:9c:c9:1f:74:ff:fa:8a:67:9f:77:
95:6e:b8:0f:88:a5:97:a1:e3:1f:1c:67:9b:69:fc:4e:f5:b0:
ea:df:c9:d2:06:5d:e3:1b:e9:22:e7:51:1a:75:ec:d8:ad:dd:
06:2b:2d:f1:e3:89:c7:0d:70:0f:43:bb:6d:a6:92:11:4e:67:
3e:7d:4d:13:7c:a5:55:23:39:23:1d:df:08:ff:75:80:04:4e:
bd:76:fb:24:17:75:a1:b4:0c:6d:54:ec:67:7b:7f:fe:18:6d:
1d:47:5c:5a:1b:9e:c9:b3:a0:a5:4c:8c:8b:22:24:eb:ae:cd:
dd:28:f1:5a:c8:ac:a4:45:20:c6:84:35:cb:67:5d:1d:14:00:
05:09:ea:37:a3:e3:50:45:ec:e2:7c:74:d1:ee:2f:75:cc:8b:
9c:ba:90:5d:08:77:33:2d:1e:a2:41:f4:6a:c4:b2:98:06:02:
37:96:fb:ed:9a:0a:ed:03:83:70:b6:77:6d:c7:15:3f:c4:de:
3b:bc:3a:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwVMsbLY3ChflETgE7+OlfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3
MjRmNzUwHhcNMjMwMTAyMDIzNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzIxODdmNGI0MDZkYzEwYzY3N2JiYzJhNjhmY2U1MGRlNTNiOWYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+z1/Yn2486BHZg6/MawKGnlWjgn
pfnbUZKooSaXze97Q3+15ZovrHywy7laGSFtiMN2tsafHAkiPSz0JqBSt0n7RWGG
BpINU5E3L9+0ThtSpcUCV/NGcEFXfXuHvxLwfK70iKWahgrKxHxxZqLVpDIR6vXJ
LNxfICfL3QGHeqDz66Xtx0Ix0p37Xn1+WAmBstDnHAX9um+2ApSo/tjyqFIEQUCN
iktpArJxJgHDHE2aAOMl+xvd9Oep4dtRltTqy33DtVz6Vz8UIxFz02znkMvRok0v
niJdsnFOb7vrJ3Cjcpou0Eb7HYTZgJo+6L8kNgGlYV5MtvMqGtPTRjEkJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPwhh/S0BtwQxne7wqaPzlDeU7nxMB8GA1UdIwQY
MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt
MzZkZTY1NzIzMmJlLzEvX0NHSDlMUUczQkRHZDd2Q3BvX09VTjVUdWZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl
LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXHZ8MA0G
CSqGSIb3DQEBCwUAA4IBAQBNIIKlKR5EGWdLtPqHsmNk2nXhX50t3842VRTf2KHb
qCsj3nKCaDt8502O3AyQOQIe9ynjpXvVhu9BqjDwFJzJH3T/+opnn3eVbrgPiKWX
oeMfHGebafxO9bDq38nSBl3jG+ki51EadezYrd0GKy3x44nHDXAPQ7ttppIRTmc+
fU0TfKVVIzkjHd8I/3WABE69dvskF3WhtAxtVOxne3/+GG0dR1xaG57Js6ClTIyL
IiTrrs3dKPFayKykRSDGhDXLZ10dFAAFCeo3o+NQRezifHTR7i91zIucupBdCHcz
LR6iQfRqxLKYBgI3lvvtmgrtA4NwtndtxxU/xN47vDoc
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:00 2024 by rpki-client on console-ams.rpki-client.org