Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/fV6rAJEZH4norhYF6aVS1yOvA1o.roa
File: fV6rAJEZH4norhYF6aVS1yOvA1o.roa (raw, json)
Hash identifier: einjpRbWTp8lF1fPEcpoCG0OW+3oUeDiGQ7+XApZU/8=
Subject key identifier: 7D:5E:AB:00:91:19:1F:89:E8:AE:16:05:E9:A5:52:D7:23:AF:03:5A
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 01857079747781A67AFE696403BC01821BF8
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/fV6rAJEZH4norhYF6aVS1yOvA1o.roa
Signing time: Mon 02 Jan 2023 03:14:45 +0000
ROA not before: Mon 02 Jan 2023 03:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209181
IP address blocks: 185.89.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:74:77:81:a6:7a:fe:69:64:03:bc:01:82:1b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 2 03:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d5eab0091191f89e8ae1605e9a552d723af035a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4a:d2:9b:6e:df:9e:90:01:15:4b:49:94:93:
51:cd:08:6a:99:4b:eb:92:79:b8:54:f8:e7:f6:c2:
1a:9c:6b:74:61:0d:fb:66:c7:d5:24:7e:b0:61:92:
f5:59:15:41:fe:b7:60:9a:88:61:4c:1d:87:09:c3:
56:91:7d:57:65:86:94:30:bf:64:ad:e1:ac:37:31:
3c:b8:df:30:53:79:6f:f6:c5:b3:3c:93:b9:c7:a2:
0b:ae:ba:cd:ac:0e:75:66:f1:63:03:26:8d:d4:9d:
5e:b4:50:a8:64:11:66:21:d2:5a:1b:08:b1:b0:a1:
38:3e:f9:a8:ad:29:48:51:8e:6d:37:5d:2f:82:a4:
a5:e4:81:de:02:cb:83:60:35:6e:a3:e3:84:85:80:
84:ee:cc:58:ac:b3:b5:e5:a6:21:98:46:25:08:d5:
8a:13:c4:c4:1d:fb:1a:d9:09:12:3a:2d:dc:64:8d:
5b:f2:27:b9:06:45:e3:d1:27:5b:74:5b:c6:6a:d4:
27:06:f3:4f:a1:d5:de:ca:ec:b6:a0:79:48:9f:f1:
36:ec:08:e8:db:be:7d:24:c0:c2:76:86:92:43:71:
9f:0f:94:06:85:32:d9:09:5e:6b:a9:18:ca:ac:74:
0b:74:e9:87:5e:36:ee:1e:78:71:06:61:94:f7:72:
89:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:5E:AB:00:91:19:1F:89:E8:AE:16:05:E9:A5:52:D7:23:AF:03:5A
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/fV6rAJEZH4norhYF6aVS1yOvA1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.248.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:8a:1e:72:39:60:87:20:45:cd:ec:46:cd:f8:5c:5b:f9:65:
b1:07:69:e8:4d:da:2a:7f:b8:2c:c8:98:f2:98:b2:bd:e8:17:
a1:ae:0d:7c:e2:bc:1c:1b:68:06:e9:8e:7d:aa:12:4d:55:46:
3a:68:63:57:fd:c4:dd:34:30:56:b3:e3:fd:7a:b9:aa:db:a2:
9c:f6:72:97:92:4b:f6:ed:07:3a:10:e2:f5:1d:72:a0:98:24:
68:ca:4e:79:a8:3b:2e:3c:3d:35:03:f0:7f:8d:a1:83:ac:fc:
19:c1:8a:38:1a:41:b2:74:ae:3b:8d:7d:d2:1f:4d:7e:4b:d3:
04:30:88:46:a1:20:97:53:24:4f:fd:69:38:77:26:74:35:33:
d1:48:83:4b:e4:46:09:46:c3:06:58:89:68:68:84:78:24:96:
c3:5a:01:5c:15:ec:11:cf:a4:51:0d:50:fe:49:41:96:25:40:
ac:e0:14:2a:7f:32:6d:a3:f3:e9:8c:e2:c7:6a:85:6b:44:62:
2f:9f:0a:b3:45:e1:46:96:50:c0:2b:2f:57:8e:0e:8a:82:cb:
d9:8e:32:dc:fb:87:17:1f:ff:6b:d3:cf:f4:98:13:15:13:dd:
7e:96:2c:7e:4c:ed:57:b6:bc:9e:22:a7:10:63:1a:f6:f9:ce:
8e:6f:38:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVweXR3gaZ6/mlkA7wBghv4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMDc0MzQ5NmM3ZmYzZWZmYjg3MDYwMTEzOWNhZDlkMmYy
NzFlMTAwHhcNMjMwMTAyMDMxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDVlYWIwMDkxMTkxZjg5ZThhZTE2MDVlOWE1NTJkNzIzYWYwMzVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhErSm27fnpABFUtJlJNRzQhqmUvr
knm4VPjn9sIanGt0YQ37ZsfVJH6wYZL1WRVB/rdgmohhTB2HCcNWkX1XZYaUML9k
reGsNzE8uN8wU3lv9sWzPJO5x6ILrrrNrA51ZvFjAyaN1J1etFCoZBFmIdJaGwix
sKE4PvmorSlIUY5tN10vgqSl5IHeAsuDYDVuo+OEhYCE7sxYrLO15aYhmEYlCNWK
E8TEHfsa2QkSOi3cZI1b8ie5BkXj0SdbdFvGatQnBvNPodXeyuy2oHlIn/E27Ajo
2759JMDCdoaSQ3GfD5QGhTLZCV5rqRjKrHQLdOmHXjbuHnhxBmGU93KJqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH1eqwCRGR+J6K4WBemlUtcjrwNaMB8GA1UdIwQY
MBaAFJ8HQ0lsf/Pv+4cGAROcrZ0vJx4QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbndkRFNXeF84LV83aHdZQkU1eXRuUzhuSGhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8yMmI3YWItZmMxMS00MDdhLWJkM2Mt
NjM0MTEzNjdkOTBhLzEvZlY2ckFKRVpING5vcmhZRjZhVlMxeU92QTFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS8yMmI3YWItZmMxMS00MDdhLWJkM2MtNjM0MTEzNjdkOTBh
LzEvbndkRFNXeF84LV83aHdZQkU1eXRuUzhuSGhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVn4MA0G
CSqGSIb3DQEBCwUAA4IBAQArih5yOWCHIEXN7EbN+Fxb+WWxB2noTdoqf7gsyJjy
mLK96Behrg184rwcG2gG6Y59qhJNVUY6aGNX/cTdNDBWs+P9ermq26Kc9nKXkkv2
7Qc6EOL1HXKgmCRoyk55qDsuPD01A/B/jaGDrPwZwYo4GkGydK47jX3SH01+S9ME
MIhGoSCXUyRP/Wk4dyZ0NTPRSINL5EYJRsMGWIloaIR4JJbDWgFcFewRz6RRDVD+
SUGWJUCs4BQqfzJto/PpjOLHaoVrRGIvnwqzReFGllDAKy9Xjg6KgsvZjjLc+4cX
H/9r08/0mBMVE91+lix+TO1XtryeIqcQYxr2+c6ObzgG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:19 2024 by rpki-client on console-fra.rpki-client.org