Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/vFf9eYZ_A3BtcXs0XH8reOypVX0.roa
File: vFf9eYZ_A3BtcXs0XH8reOypVX0.roa (raw, json)
Hash identifier: XaHYJbkbCGUMAvB8eFS/o9Q+4csFZHVeg79U8+M6NIs=
Subject key identifier: BC:57:FD:79:86:7F:03:70:6D:71:7B:34:5C:7F:2B:78:EC:A9:55:7D
Certificate issuer: /CN=ebc66403ad0c4537af9c32b0def0c52ac2aab104
Certificate serial: 018C0E80A845E6A8FA9487117F97E1721D56
Authority key identifier: EB:C6:64:03:AD:0C:45:37:AF:9C:32:B0:DE:F0:C5:2A:C2:AA:B1:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68ZkA60MRTevnDKw3vDFKsKqsQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/vFf9eYZ_A3BtcXs0XH8reOypVX0.roa
Signing time: Mon 27 Nov 2023 01:59:21 +0000
ROA not before: Mon 27 Nov 2023 01:59:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.33.92.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:0e:80:a8:45:e6:a8:fa:94:87:11:7f:97:e1:72:1d:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebc66403ad0c4537af9c32b0def0c52ac2aab104
Validity
Not Before: Nov 27 01:59:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc57fd79867f03706d717b345c7f2b78eca9557d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:25:8a:6d:36:67:3c:7e:8b:fa:67:2d:74:36:
f8:ee:6f:b2:58:94:1d:51:f8:1c:5b:b4:13:89:d9:
a5:13:25:73:5e:e5:23:7f:57:9b:c1:f4:67:81:ef:
c3:40:bd:50:bd:e2:8f:f5:a2:a2:2a:e0:1c:7f:eb:
64:8e:7f:88:f0:07:e5:80:35:78:b0:bd:a2:43:32:
43:d2:ec:b4:ba:c5:19:86:00:08:6f:96:cb:32:cf:
86:0e:a3:d5:17:04:29:27:45:65:2d:d4:43:56:9b:
3b:07:10:8b:4b:16:b6:c4:de:66:1e:ba:1b:9e:c2:
70:c4:49:8e:69:a0:80:62:db:f8:e3:dc:75:93:c0:
05:c8:b7:02:7d:82:26:8a:74:c7:92:c9:42:ef:0f:
59:de:c5:1a:50:51:b4:d7:37:da:47:58:5e:85:6f:
f9:52:0c:51:d2:43:30:24:34:1e:4d:8e:d0:2f:cc:
a8:95:ff:c2:e1:65:07:55:11:a6:82:92:ab:08:9c:
e2:c1:21:08:86:fa:70:4f:12:cd:13:d3:8c:f1:cc:
58:18:6e:ab:c7:dc:49:6a:15:37:25:15:e3:a5:d1:
bf:61:40:c3:20:7d:f0:fb:83:ad:cd:eb:f8:c9:12:
d6:b0:1c:eb:61:84:75:80:46:4a:29:2f:04:cf:4d:
68:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:57:FD:79:86:7F:03:70:6D:71:7B:34:5C:7F:2B:78:EC:A9:55:7D
X509v3 Authority Key Identifier:
keyid:EB:C6:64:03:AD:0C:45:37:AF:9C:32:B0:DE:F0:C5:2A:C2:AA:B1:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68ZkA60MRTevnDKw3vDFKsKqsQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/vFf9eYZ_A3BtcXs0XH8reOypVX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/68ZkA60MRTevnDKw3vDFKsKqsQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.92.0/23
Signature Algorithm: sha256WithRSAEncryption
71:20:e3:62:64:77:9f:b8:91:53:a9:1c:36:22:da:da:67:9a:
9d:f2:2f:bc:29:a3:a7:e5:a4:51:f5:5f:b3:a8:de:ff:4e:a2:
ef:81:26:8b:b6:78:30:ed:e7:ea:c9:7f:52:d1:1a:16:1c:d3:
0d:2f:52:8c:ea:b0:c2:4e:96:e6:99:bb:9c:e6:e1:01:ef:c3:
77:44:4f:73:68:6c:46:3e:d5:a0:76:4e:e4:e1:1f:f5:47:2d:
c0:98:60:a7:4f:77:ee:f8:f5:c3:9c:ff:f2:e7:d0:ec:4a:15:
99:f9:03:f8:b5:04:44:8d:b5:91:f7:fd:1f:8d:78:eb:c6:5b:
5d:b2:61:9a:14:16:0f:c1:05:01:91:ee:12:0e:d6:5d:c6:c5:
58:32:b8:41:a3:51:b5:42:27:77:cc:0c:fb:b2:d8:71:93:3c:
8c:e7:e2:45:80:fa:52:32:23:1d:48:33:86:95:67:af:80:e4:
d6:17:55:82:19:52:0a:5f:05:f1:15:3d:1b:df:8c:7e:04:2b:
18:d3:e0:f8:ad:0d:bd:61:84:cc:0a:fd:22:a3:99:ef:58:c3:
dc:f4:01:94:09:a1:7e:14:8e:09:50:2d:06:7d:13:e8:e1:5a:
05:d0:0c:e5:05:cf:b3:74:ce:d3:ae:9e:dd:e8:c2:39:f6:14:
70:38:a3:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwOgKhF5qj6lIcRf5fhch1WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViYzY2NDAzYWQwYzQ1MzdhZjljMzJiMGRlZjBjNTJhYzJh
YWIxMDQwHhcNMjMxMTI3MDE1OTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzU3ZmQ3OTg2N2YwMzcwNmQ3MTdiMzQ1YzdmMmI3OGVjYTk1NTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoiWKbTZnPH6L+mctdDb47m+yWJQd
UfgcW7QTidmlEyVzXuUjf1ebwfRnge/DQL1QveKP9aKiKuAcf+tkjn+I8AflgDV4
sL2iQzJD0uy0usUZhgAIb5bLMs+GDqPVFwQpJ0VlLdRDVps7BxCLSxa2xN5mHrob
nsJwxEmOaaCAYtv449x1k8AFyLcCfYIminTHkslC7w9Z3sUaUFG01zfaR1hehW/5
UgxR0kMwJDQeTY7QL8yolf/C4WUHVRGmgpKrCJziwSEIhvpwTxLNE9OM8cxYGG6r
x9xJahU3JRXjpdG/YUDDIH3w+4Otzev4yRLWsBzrYYR1gEZKKS8Ez01ooQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLxX/XmGfwNwbXF7NFx/K3jsqVV9MB8GA1UdIwQY
MBaAFOvGZAOtDEU3r5wysN7wxSrCqrEEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNjhaa0E2ME1SVGV2bkRLdzN2REZLc0txc1FRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi83MjgxZGEtMGViMC00MGE4LTk5ODMt
ZDFhOWRhNGExMzBkLzEvdkZmOWVZWl9BM0J0Y1hzMFhIOHJlT3lwVlgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi83MjgxZGEtMGViMC00MGE4LTk5ODMtZDFhOWRhNGExMzBk
LzEvNjhaa0E2ME1SVGV2bkRLdzN2REZLc0txc1FRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuSFcMA0G
CSqGSIb3DQEBCwUAA4IBAQBxIONiZHefuJFTqRw2ItraZ5qd8i+8KaOn5aRR9V+z
qN7/TqLvgSaLtngw7efqyX9S0RoWHNMNL1KM6rDCTpbmmbuc5uEB78N3RE9zaGxG
PtWgdk7k4R/1Ry3AmGCnT3fu+PXDnP/y59DsShWZ+QP4tQREjbWR9/0fjXjrxltd
smGaFBYPwQUBke4SDtZdxsVYMrhBo1G1Qid3zAz7sthxkzyM5+JFgPpSMiMdSDOG
lWevgOTWF1WCGVIKXwXxFT0b34x+BCsY0+D4rQ29YYTMCv0io5nvWMPc9AGUCaF+
FI4JUC0GfRPo4VoF0AzlBc+zdM7Trp7d6MI59hRwOKNJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:15 2024 by rpki-client on console-ams.rpki-client.org