Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Qosz2sIR5ClEzlVIHgTZk4lfUh4.roa
File: Qosz2sIR5ClEzlVIHgTZk4lfUh4.roa (raw, json)
Hash identifier: DKmCuKkqI2++FVeYlsRukvpXYHL2/hcQCmWbVxmEbYU=
Subject key identifier: 42:8B:33:DA:C2:11:E4:29:44:CE:55:48:1E:04:D9:93:89:5F:52:1E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018C49C1680C2D6B0D551E2D4BC34825484D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Qosz2sIR5ClEzlVIHgTZk4lfUh4.roa
Signing time: Fri 08 Dec 2023 14:07:40 +0000
ROA not before: Fri 08 Dec 2023 14:07:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200623
IP address blocks: 185.222.163.0/24 maxlen: 24
82.115.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Dec 2023 12:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:49:c1:68:0c:2d:6b:0d:55:1e:2d:4b:c3:48:25:48:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 8 14:07:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=428b33dac211e42944ce55481e04d993895f521e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:25:16:72:a4:39:67:76:8f:4a:6e:cf:b2:7d:
4e:1e:a7:44:64:01:ab:46:dd:72:49:6f:99:6f:0d:
ca:f7:25:28:94:7b:ee:b4:4d:16:34:f5:96:2e:6d:
ca:14:c4:75:0d:a8:93:9d:79:b7:a1:8d:0c:4d:a1:
29:bf:22:99:22:e8:38:ea:3d:f2:6b:82:fa:86:a1:
2f:08:2d:f9:23:97:cf:4f:30:60:24:b8:a6:a3:ce:
27:b3:a4:4b:e4:c3:7f:a2:a4:de:15:a0:6e:6b:08:
ad:f3:25:b8:f0:d2:d6:bf:02:3d:2c:cb:76:bc:4a:
95:50:cc:d5:3e:89:bd:1f:3f:10:53:8f:90:f0:51:
36:a0:b5:f1:73:32:96:97:62:38:fb:b4:8f:32:36:
cd:8f:eb:65:69:82:74:b9:48:24:96:44:3d:2c:ea:
1f:b1:e7:0a:a2:4c:ad:f7:8d:42:be:4c:f7:53:63:
40:d0:4c:12:af:1f:c3:07:6e:22:a5:78:d3:a5:a9:
bc:be:b1:b2:09:ef:70:42:63:e1:4b:21:67:11:df:
84:11:95:32:13:6c:26:72:d6:d5:60:b3:8c:4b:8c:
b8:39:ac:ed:0d:2f:a8:e3:75:f1:c2:61:c9:e7:2a:
25:3b:b1:91:02:0c:92:44:e7:ad:24:eb:2f:6d:92:
8f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:8B:33:DA:C2:11:E4:29:44:CE:55:48:1E:04:D9:93:89:5F:52:1E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Qosz2sIR5ClEzlVIHgTZk4lfUh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.209.0/24
185.222.163.0/24
Signature Algorithm: sha256WithRSAEncryption
31:f9:1a:af:59:86:1d:03:72:fe:7d:fb:ad:80:ca:4a:7c:05:
79:8a:70:ed:b4:3b:b0:30:75:1b:6d:7c:49:7a:88:54:09:eb:
e0:03:e2:41:c6:61:0c:5d:84:89:98:2f:37:c8:0c:36:ea:5b:
42:27:5f:f3:2e:84:ae:3f:6d:11:41:12:f0:04:b1:e2:ce:96:
a7:ca:b3:e2:ae:5b:e1:67:ed:7e:46:4a:71:38:16:a7:97:ab:
38:91:56:72:75:60:f9:d7:ad:8c:02:b8:8e:72:94:13:37:0e:
03:46:24:ac:35:4e:04:76:ba:93:71:e0:1a:07:6f:19:24:74:
7a:b4:f5:b5:bc:74:54:36:ec:64:33:7d:1e:4f:e0:f1:95:07:
c8:26:85:38:79:4d:7a:df:44:a8:33:76:d2:b2:41:5b:0f:24:
6c:3d:25:e9:d4:d3:0c:97:91:c4:d1:f3:b1:a4:e4:d8:38:f0:
dd:88:10:eb:22:c1:43:a8:0a:ba:03:2b:57:3c:55:44:09:26:
7e:c2:dc:0f:b8:16:37:39:be:5d:74:b9:fa:9e:28:af:3f:c7:
09:f8:6e:c1:2d:2b:69:f3:0f:58:b6:01:db:43:87:2d:02:d8:
b9:98:5a:7a:a9:41:eb:e0:aa:56:29:1d:ef:7c:04:62:a0:f1:
63:3c:5f:1b
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYxJwWgMLWsNVR4tS8NIJUhNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMxMjA4MTQwNzQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MjhiMzNkYWMyMTFlNDI5NDRjZTU1NDgxZTA0ZDk5Mzg5NWY1MjFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCUWcqQ5Z3aPSm7Psn1OHqdEZAGr
Rt1ySW+Zbw3K9yUolHvutE0WNPWWLm3KFMR1DaiTnXm3oY0MTaEpvyKZIug46j3y
a4L6hqEvCC35I5fPTzBgJLimo84ns6RL5MN/oqTeFaBuawit8yW48NLWvwI9LMt2
vEqVUMzVPom9Hz8QU4+Q8FE2oLXxczKWl2I4+7SPMjbNj+tlaYJ0uUgklkQ9LOof
secKokyt941Cvkz3U2NA0EwSrx/DB24ipXjTpam8vrGyCe9wQmPhSyFnEd+EEZUy
E2wmctbVYLOMS4y4OaztDS+o43XxwmHJ5yolO7GRAgySROetJOsvbZKPvwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEKLM9rCEeQpRM5VSB4E2ZOJX1IeMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvUW9zejJzSVI1Q2xFemxWSUhnVFprNGxmVWg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUnPRAwQA
ud6jMA0GCSqGSIb3DQEBCwUAA4IBAQAx+RqvWYYdA3L+ffutgMpKfAV5inDttDuw
MHUbbXxJeohUCevgA+JBxmEMXYSJmC83yAw26ltCJ1/zLoSuP20RQRLwBLHizpan
yrPirlvhZ+1+RkpxOBanl6s4kVZydWD5162MAriOcpQTNw4DRiSsNU4EdrqTceAa
B28ZJHR6tPW1vHRUNuxkM30eT+DxlQfIJoU4eU1630SoM3bSskFbDyRsPSXp1NMM
l5HE0fOxpOTYOPDdiBDrIsFDqAq6AytXPFVECSZ+wtwPuBY3Ob5ddLn6niivP8cJ
+G7BLStp8w9YtgHbQ4ctAti5mFp6qUHr4KpWKR3vfARioPFjPF8b
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:33 2024 by rpki-client on console-ams.rpki-client.org