Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/pQ5n6Gqln2-CqUVYseIAgN7PFTY.roa
File: pQ5n6Gqln2-CqUVYseIAgN7PFTY.roa (raw, json)
Hash identifier: 3xZGvpjxujwpKmugE4hmDl4zS2dgNheKsa+HOxUOVAo=
Subject key identifier: A5:0E:67:E8:6A:A5:9F:6F:82:A9:45:58:B1:E2:00:80:DE:CF:15:36
Certificate issuer: /CN=4b8d822165e7f01f722c973967f7554605240802
Certificate serial: 0185725599CD6D86E7B57E4B04C551D1FA91
Authority key identifier: 4B:8D:82:21:65:E7:F0:1F:72:2C:97:39:67:F7:55:46:05:24:08:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S42CIWXn8B9yLJc5Z_dVRgUkCAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/pQ5n6Gqln2-CqUVYseIAgN7PFTY.roa
Signing time: Mon 02 Jan 2023 11:54:50 +0000
ROA not before: Mon 02 Jan 2023 11:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49453
IP address blocks: 185.251.144.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:99:cd:6d:86:e7:b5:7e:4b:04:c5:51:d1:fa:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b8d822165e7f01f722c973967f7554605240802
Validity
Not Before: Jan 2 11:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a50e67e86aa59f6f82a94558b1e20080decf1536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:22:1d:d3:6f:21:90:1d:65:60:fc:89:3a:72:
a4:fe:b9:f2:71:38:5b:1d:4b:3a:69:65:63:3c:2e:
ee:37:f3:a8:0a:aa:5a:7c:f1:f2:43:32:d3:80:39:
17:12:0d:96:bf:11:40:31:3a:b9:c8:6c:36:c1:13:
5d:d5:e9:87:a8:1b:3e:c1:76:ba:d0:5d:26:94:56:
81:2c:d1:24:c6:4e:45:12:08:9c:4a:0f:45:bc:f2:
06:7e:ec:80:90:23:5c:c6:bb:39:c4:6f:31:6c:2e:
43:39:7a:a8:8d:ac:7f:36:d6:30:eb:65:f0:7c:da:
5b:2a:70:73:d3:6e:b7:45:7b:68:21:5f:c4:0d:e2:
65:9c:ea:e2:02:f6:b0:c4:55:ba:10:bc:fe:f3:20:
ce:42:c1:6b:c2:04:0d:aa:ad:43:35:bd:a0:36:c5:
3a:b8:cc:99:fe:ec:92:fd:ab:65:39:ab:60:2b:32:
f3:11:1f:b2:e0:3b:20:45:1e:70:97:9b:0a:5b:b1:
6c:97:6b:4d:35:91:07:03:ee:0e:1c:11:80:45:09:
37:27:10:73:96:b2:85:b3:56:a9:3c:42:29:09:8a:
b6:a6:4c:d5:9e:d9:43:23:8d:50:25:77:b2:89:7f:
8f:d1:9b:59:59:72:96:34:ea:97:41:d7:af:66:20:
56:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:0E:67:E8:6A:A5:9F:6F:82:A9:45:58:B1:E2:00:80:DE:CF:15:36
X509v3 Authority Key Identifier:
keyid:4B:8D:82:21:65:E7:F0:1F:72:2C:97:39:67:F7:55:46:05:24:08:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S42CIWXn8B9yLJc5Z_dVRgUkCAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/pQ5n6Gqln2-CqUVYseIAgN7PFTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/S42CIWXn8B9yLJc5Z_dVRgUkCAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.144.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:2e:83:e0:69:4b:c5:21:5a:9b:f4:28:e6:c0:4e:d8:ad:ca:
f0:18:eb:db:e8:9a:f6:97:d3:c2:f4:83:3e:81:79:70:44:80:
bd:5e:86:4b:23:ec:55:8d:60:17:67:98:0a:e6:98:19:2f:ba:
ec:ad:e3:58:01:d1:22:b9:ab:41:09:ef:b7:1a:f7:8d:6d:63:
76:06:a1:07:62:6e:c1:f2:41:61:4d:1b:36:11:c6:51:cc:b3:
34:9d:4f:1f:c2:96:03:3e:e9:c9:ec:70:7a:bf:e7:90:28:ae:
18:f3:c6:08:37:48:ea:f8:56:84:0f:ae:55:09:76:21:3f:ec:
1e:34:ee:ca:96:3a:64:05:c6:47:cb:80:9f:2c:62:f8:27:0b:
db:89:86:e3:ce:99:ef:59:2a:49:f1:fe:1a:ff:9c:a2:e9:bb:
7f:cd:44:7e:af:03:6e:78:49:25:80:c9:9c:b0:f0:0d:3a:9c:
47:7d:6c:3c:df:56:35:c0:c4:67:26:97:3f:7e:09:10:be:8f:
8b:8d:e1:ad:86:41:75:03:56:11:f6:92:10:da:a9:8d:1a:48:
53:59:34:c3:f5:fb:03:06:af:b8:79:34:a4:70:7b:c9:40:89:
7b:55:72:65:6e:dd:84:01:81:83:b0:49:9a:dc:90:41:75:84:
24:54:9b:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyVZnNbYbntX5LBMVR0fqRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiOGQ4MjIxNjVlN2YwMWY3MjJjOTczOTY3Zjc1NTQ2MDUy
NDA4MDIwHhcNMjMwMTAyMTE1NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTBlNjdlODZhYTU5ZjZmODJhOTQ1NThiMWUyMDA4MGRlY2YxNTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSId028hkB1lYPyJOnKk/rnycThb
HUs6aWVjPC7uN/OoCqpafPHyQzLTgDkXEg2WvxFAMTq5yGw2wRNd1emHqBs+wXa6
0F0mlFaBLNEkxk5FEgicSg9FvPIGfuyAkCNcxrs5xG8xbC5DOXqojax/NtYw62Xw
fNpbKnBz0263RXtoIV/EDeJlnOriAvawxFW6ELz+8yDOQsFrwgQNqq1DNb2gNsU6
uMyZ/uyS/atlOatgKzLzER+y4DsgRR5wl5sKW7Fsl2tNNZEHA+4OHBGARQk3JxBz
lrKFs1apPEIpCYq2pkzVntlDI41QJXeyiX+P0ZtZWXKWNOqXQdevZiBW7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKUOZ+hqpZ9vgqlFWLHiAIDezxU2MB8GA1UdIwQY
MBaAFEuNgiFl5/AfciyXOWf3VUYFJAgCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzQyQ0lXWG44Qjl5TEpjNVpfZFZSZ1VrQ0FJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zMmU3NzYtOGYzNi00ZDE2LTk1NmEt
NWFmOTU4Y2VhZjZlLzEvcFE1bjZHcWxuMi1DcVVWWXNlSUFnTjdQRlRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8zMmU3NzYtOGYzNi00ZDE2LTk1NmEtNWFmOTU4Y2VhZjZl
LzEvUzQyQ0lXWG44Qjl5TEpjNVpfZFZSZ1VrQ0FJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufuQMA0G
CSqGSIb3DQEBCwUAA4IBAQBaLoPgaUvFIVqb9CjmwE7YrcrwGOvb6Jr2l9PC9IM+
gXlwRIC9XoZLI+xVjWAXZ5gK5pgZL7rsreNYAdEiuatBCe+3GveNbWN2BqEHYm7B
8kFhTRs2EcZRzLM0nU8fwpYDPunJ7HB6v+eQKK4Y88YIN0jq+FaED65VCXYhP+we
NO7KljpkBcZHy4CfLGL4JwvbiYbjzpnvWSpJ8f4a/5yi6bt/zUR+rwNueEklgMmc
sPANOpxHfWw831Y1wMRnJpc/fgkQvo+LjeGthkF1A1YR9pIQ2qmNGkhTWTTD9fsD
Bq+4eTSkcHvJQIl7VXJlbt2EAYGDsEma3JBBdYQkVJtP
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org