Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/3550d9-3022-4dba-a75a-1c0d4a21cb23/1/9fvdsxfYEzcaC9dtena8YOwIlgw.roa
File: 9fvdsxfYEzcaC9dtena8YOwIlgw.roa (raw, json)
Hash identifier: oY7pLGkm9theqq3JhCbdBPT61llBX3qlC8G00E2eNHE=
Subject key identifier: F5:FB:DD:B3:17:D8:13:37:1A:0B:D7:6D:7A:76:BC:60:EC:08:96:0C
Certificate issuer: /CN=76d47c234a8b92f31d3989cc42219f80c947da19
Certificate serial: 0185706763BC4F592D40B2A9271797A2609F
Authority key identifier: 76:D4:7C:23:4A:8B:92:F3:1D:39:89:CC:42:21:9F:80:C9:47:DA:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dtR8I0qLkvMdOYnMQiGfgMlH2hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/3550d9-3022-4dba-a75a-1c0d4a21cb23/1/9fvdsxfYEzcaC9dtena8YOwIlgw.roa
Signing time: Mon 02 Jan 2023 02:55:01 +0000
ROA not before: Mon 02 Jan 2023 02:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48095
IP address blocks: 185.217.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:63:bc:4f:59:2d:40:b2:a9:27:17:97:a2:60:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76d47c234a8b92f31d3989cc42219f80c947da19
Validity
Not Before: Jan 2 02:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5fbddb317d813371a0bd76d7a76bc60ec08960c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:28:4b:f1:d5:cd:b7:68:b0:46:e8:52:7d:e4:
1a:00:75:0c:53:e1:a7:08:04:f7:97:50:85:e1:b3:
07:ea:be:fc:d4:2e:76:36:dc:17:13:f5:7b:8f:6e:
2a:1a:55:3e:73:76:14:b7:14:c8:f3:11:01:54:68:
48:e2:a1:82:eb:8e:e3:35:cd:8e:4a:52:a1:2a:55:
c6:61:f7:33:65:a0:3d:6c:56:ce:de:76:4b:00:2b:
29:40:d8:76:73:b8:e7:79:cd:44:b2:cf:c1:49:8f:
6d:c5:99:1d:f8:a5:6f:23:37:01:8d:92:1c:9d:ac:
bb:26:43:dc:9c:fb:bf:06:33:d7:d3:96:74:a3:ee:
e0:f2:c6:25:4f:8a:4e:e3:a6:e1:c8:75:78:ed:43:
5c:34:95:00:98:28:ca:2f:3b:a2:f6:7e:ec:60:43:
fc:9d:0d:f3:6e:86:d0:f7:9b:9b:17:dc:a0:d6:c1:
a9:8b:60:4d:88:a5:7d:81:64:31:eb:93:1f:3c:5d:
91:ca:06:17:18:fa:13:c3:56:25:66:39:78:89:05:
50:06:ab:9e:57:1f:67:98:d7:23:6d:88:60:06:fa:
f6:6d:23:20:21:87:74:ca:97:9a:9b:67:b7:d3:f0:
48:db:1b:c1:47:23:7c:21:f9:76:0a:62:91:d8:01:
2a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:FB:DD:B3:17:D8:13:37:1A:0B:D7:6D:7A:76:BC:60:EC:08:96:0C
X509v3 Authority Key Identifier:
keyid:76:D4:7C:23:4A:8B:92:F3:1D:39:89:CC:42:21:9F:80:C9:47:DA:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dtR8I0qLkvMdOYnMQiGfgMlH2hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/3550d9-3022-4dba-a75a-1c0d4a21cb23/1/9fvdsxfYEzcaC9dtena8YOwIlgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/3550d9-3022-4dba-a75a-1c0d4a21cb23/1/dtR8I0qLkvMdOYnMQiGfgMlH2hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.24.0/22
Signature Algorithm: sha256WithRSAEncryption
89:45:66:20:fb:43:8f:a0:16:75:55:04:ec:4b:a3:21:cf:14:
9f:44:71:d8:27:67:9b:84:40:fe:1c:a0:e4:7c:25:6f:a2:57:
08:18:8a:ec:67:4b:84:bd:a6:4c:58:e5:5b:a4:62:34:86:35:
d9:91:05:61:20:22:82:90:f7:d1:16:9e:ca:fa:b2:96:97:d6:
18:aa:e5:12:04:de:8a:fc:e4:10:f9:8a:1a:ae:76:3e:ce:f3:
b6:42:0d:2e:ec:db:a6:eb:d6:cb:78:92:32:b4:01:73:2b:0e:
3c:2e:54:1b:b2:c6:f0:4d:25:51:e4:01:66:58:8d:74:c9:1d:
34:01:28:bc:a3:e2:5c:e1:09:f1:9e:69:b2:0e:06:79:50:23:
48:1e:95:ba:f5:30:1c:c1:aa:b0:1f:c8:ab:bd:59:fb:12:dd:
a4:e1:ed:94:8a:22:e5:01:ee:20:06:34:a8:c6:4f:aa:3d:33:
4f:85:85:4b:dd:fd:fe:33:eb:10:85:05:00:cc:48:3c:78:e2:
0f:21:6a:96:60:ec:c0:df:8b:a4:a1:a1:15:c2:55:59:0c:11:
d4:ec:f3:b7:23:bf:75:46:21:fc:e0:1d:45:97:b5:b2:6e:32:
2d:9d:bd:50:80:75:79:fd:ea:f4:14:ca:23:e5:8d:c2:0a:40:
8d:2a:a6:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwZ2O8T1ktQLKpJxeXomCfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2ZDQ3YzIzNGE4YjkyZjMxZDM5ODljYzQyMjE5ZjgwYzk0
N2RhMTkwHhcNMjMwMTAyMDI1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNWZiZGRiMzE3ZDgxMzM3MWEwYmQ3NmQ3YTc2YmM2MGVjMDg5NjBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuChL8dXNt2iwRuhSfeQaAHUMU+Gn
CAT3l1CF4bMH6r781C52NtwXE/V7j24qGlU+c3YUtxTI8xEBVGhI4qGC647jNc2O
SlKhKlXGYfczZaA9bFbO3nZLACspQNh2c7jnec1Ess/BSY9txZkd+KVvIzcBjZIc
nay7JkPcnPu/BjPX05Z0o+7g8sYlT4pO46bhyHV47UNcNJUAmCjKLzui9n7sYEP8
nQ3zbobQ95ubF9yg1sGpi2BNiKV9gWQx65MfPF2RygYXGPoTw1YlZjl4iQVQBque
Vx9nmNcjbYhgBvr2bSMgIYd0ypeam2e30/BI2xvBRyN8Ifl2CmKR2AEqWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPX73bMX2BM3GgvXbXp2vGDsCJYMMB8GA1UdIwQY
MBaAFHbUfCNKi5LzHTmJzEIhn4DJR9oZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHRSOEkwcUxrdk1kT1luTVFpR2ZnTWxIMmhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8zNTUwZDktMzAyMi00ZGJhLWE3NWEt
MWMwZDRhMjFjYjIzLzEvOWZ2ZHN4ZllFemNhQzlkdGVuYThZT3dJbGd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy8zNTUwZDktMzAyMi00ZGJhLWE3NWEtMWMwZDRhMjFjYjIz
LzEvZHRSOEkwcUxrdk1kT1luTVFpR2ZnTWxIMmhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCudkYMA0G
CSqGSIb3DQEBCwUAA4IBAQCJRWYg+0OPoBZ1VQTsS6MhzxSfRHHYJ2ebhED+HKDk
fCVvolcIGIrsZ0uEvaZMWOVbpGI0hjXZkQVhICKCkPfRFp7K+rKWl9YYquUSBN6K
/OQQ+YoarnY+zvO2Qg0u7Num69bLeJIytAFzKw48LlQbssbwTSVR5AFmWI10yR00
ASi8o+Jc4QnxnmmyDgZ5UCNIHpW69TAcwaqwH8irvVn7Et2k4e2UiiLlAe4gBjSo
xk+qPTNPhYVL3f3+M+sQhQUAzEg8eOIPIWqWYOzA34ukoaEVwlVZDBHU7PO3I791
RiH84B1Fl7WybjItnb1QgHV5/er0FMoj5Y3CCkCNKqYr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:48 2024 by rpki-client on console-fra.rpki-client.org