Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/eVc3hMat5_een5EwwcCW1upCYc4.roa
File: eVc3hMat5_een5EwwcCW1upCYc4.roa (raw, json)
Hash identifier: MjBo/XyLQo5DyYVb3OYqCkZ8ptnh7+cd4sfgRm1VIP8=
Subject key identifier: 79:57:37:84:C6:AD:E7:F7:9E:9F:91:30:C1:C0:96:D6:EA:42:61:CE
Certificate issuer: /CN=407c7083460e1a4c72c4bc4276313d3a85944a87
Certificate serial: 01856EA69A0C1BAD617708DCE4FB68DC8DE0
Authority key identifier: 40:7C:70:83:46:0E:1A:4C:72:C4:BC:42:76:31:3D:3A:85:94:4A:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/eVc3hMat5_een5EwwcCW1upCYc4.roa
Signing time: Sun 01 Jan 2023 18:44:50 +0000
ROA not before: Sun 01 Jan 2023 18:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199811
IP address blocks: 185.210.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 17 Jul 2023 12:53:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:9a:0c:1b:ad:61:77:08:dc:e4:fb:68:dc:8d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407c7083460e1a4c72c4bc4276313d3a85944a87
Validity
Not Before: Jan 1 18:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79573784c6ade7f79e9f9130c1c096d6ea4261ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:2f:fc:36:14:16:57:9e:82:95:20:f5:de:5d:
a2:95:88:1b:d6:8e:5f:c2:f4:cb:00:a6:59:ab:98:
5f:6a:4c:4c:b9:be:14:68:d2:03:f8:3a:1d:23:72:
d0:b6:98:51:b0:d3:15:e2:da:68:11:36:14:55:af:
28:5d:51:15:e8:3a:43:3e:32:28:0b:0a:d0:cc:d6:
e7:7d:58:a1:3e:24:5c:86:68:63:92:0d:9c:7a:cb:
21:02:92:6f:c9:bd:67:c4:97:ec:dc:b8:a8:a0:ab:
bc:f5:9b:7a:eb:bb:bf:df:e7:09:a3:58:8b:27:61:
8f:93:c1:e4:61:65:11:4d:f3:95:b7:d3:79:7f:9e:
7e:f5:d9:ac:29:21:0a:31:fe:b0:f9:4f:6d:09:3d:
1a:e3:c1:3a:7c:43:9a:ff:48:d2:a5:6d:db:f1:f7:
06:e5:e1:8b:d8:d5:d8:f8:96:df:89:19:9c:ba:89:
12:65:3d:22:56:7a:d2:0f:5a:72:b0:c3:f0:25:83:
7f:4f:84:dc:5f:15:09:e2:fd:99:b1:18:b2:5c:7e:
e1:70:30:09:23:fa:56:8f:2d:ac:f0:c5:c3:f3:f4:
4a:dd:e9:dc:7c:ba:ab:e5:88:ca:3b:f5:3c:de:28:
30:e2:8c:5e:55:b4:17:92:cc:e1:06:cf:bb:3f:3a:
23:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:57:37:84:C6:AD:E7:F7:9E:9F:91:30:C1:C0:96:D6:EA:42:61:CE
X509v3 Authority Key Identifier:
keyid:40:7C:70:83:46:0E:1A:4C:72:C4:BC:42:76:31:3D:3A:85:94:4A:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/eVc3hMat5_een5EwwcCW1upCYc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.64.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:1d:a4:2b:21:5f:96:aa:6f:d1:59:89:a9:1e:3c:70:ce:75:
2d:10:7b:f7:10:3c:c2:08:47:15:93:98:0d:e0:26:6d:4c:a5:
06:6b:a7:f9:06:e5:59:28:e9:df:10:6c:5a:40:ce:bc:65:e9:
35:4e:47:33:99:08:59:b8:8a:a1:8d:2f:e7:f0:1a:82:d7:84:
17:26:58:cc:18:1c:60:f3:42:8b:3d:90:61:3f:ed:11:62:e1:
4d:f4:24:a0:b2:37:57:9d:62:20:25:38:6f:2d:09:10:bd:08:
46:d7:ee:aa:be:85:57:18:ea:a6:6d:81:21:16:1d:08:70:cf:
4c:f3:7d:51:86:6d:d5:1a:0a:ae:59:06:b6:43:0d:de:88:5c:
96:6c:96:96:21:03:1c:5c:a0:6e:26:d9:d9:c4:34:7c:8a:e7:
7d:c7:61:b2:4e:32:ab:54:72:5b:a5:a7:89:14:f8:ae:3f:df:
83:6f:6b:00:76:fb:5b:f7:d8:66:a6:5f:fb:8c:f7:7a:54:b9:
c9:5d:b5:5a:52:ee:80:97:29:69:8e:41:32:bc:87:89:20:5f:
fb:d0:14:a6:fc:50:33:f7:7c:3d:00:93:42:22:d0:a5:e3:c2:
cd:88:e7:eb:c6:61:52:53:18:17:26:ab:64:bb:85:09:3b:1e:
02:46:bf:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuppoMG61hdwjc5Pto3I3gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwN2M3MDgzNDYwZTFhNGM3MmM0YmM0Mjc2MzEzZDNhODU5
NDRhODcwHhcNMjMwMTAxMTg0NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTU3Mzc4NGM2YWRlN2Y3OWU5ZjkxMzBjMWMwOTZkNmVhNDI2MWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgS/8NhQWV56ClSD13l2ilYgb1o5f
wvTLAKZZq5hfakxMub4UaNID+DodI3LQtphRsNMV4tpoETYUVa8oXVEV6DpDPjIo
CwrQzNbnfVihPiRchmhjkg2cesshApJvyb1nxJfs3LiooKu89Zt667u/3+cJo1iL
J2GPk8HkYWURTfOVt9N5f55+9dmsKSEKMf6w+U9tCT0a48E6fEOa/0jSpW3b8fcG
5eGL2NXY+JbfiRmcuokSZT0iVnrSD1pysMPwJYN/T4TcXxUJ4v2ZsRiyXH7hcDAJ
I/pWjy2s8MXD8/RK3encfLqr5YjKO/U83igw4oxeVbQXkszhBs+7PzojaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHlXN4TGref3np+RMMHAltbqQmHOMB8GA1UdIwQY
MBaAFEB8cINGDhpMcsS8QnYxPTqFlEqHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUh4d2cwWU9Ha3h5eEx4Q2RqRTlPb1dVU29jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi84YTc1NjktZWQ3NC00YTkyLTg2Mjct
OTg1ZWQxNWM5YWViLzEvZVZjM2hNYXQ1X2VlbjVFd3djQ1cxdXBDWWM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi84YTc1NjktZWQ3NC00YTkyLTg2MjctOTg1ZWQxNWM5YWVi
LzEvUUh4d2cwWU9Ha3h5eEx4Q2RqRTlPb1dVU29jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCudJAMA0G
CSqGSIb3DQEBCwUAA4IBAQBNHaQrIV+Wqm/RWYmpHjxwznUtEHv3EDzCCEcVk5gN
4CZtTKUGa6f5BuVZKOnfEGxaQM68Zek1TkczmQhZuIqhjS/n8BqC14QXJljMGBxg
80KLPZBhP+0RYuFN9CSgsjdXnWIgJThvLQkQvQhG1+6qvoVXGOqmbYEhFh0IcM9M
831Rhm3VGgquWQa2Qw3eiFyWbJaWIQMcXKBuJtnZxDR8iud9x2GyTjKrVHJbpaeJ
FPiuP9+Db2sAdvtb99hmpl/7jPd6VLnJXbVaUu6AlylpjkEyvIeJIF/70BSm/FAz
93w9AJNCItCl48LNiOfrxmFSUxgXJqtku4UJOx4CRr+5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:19 2024 by rpki-client on console-fra.rpki-client.org