Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/873b2d-e20c-41cf-90d2-4be1053d1fc4/1/8XlGo5WCBHbYn32Nt1rQzT4MHhY.roa
File: 8XlGo5WCBHbYn32Nt1rQzT4MHhY.roa (raw, json)
Hash identifier: n/ChyuFfboTbAn+tSOEE6LaCQRuu66byxKBZtKBntfM=
Subject key identifier: F1:79:46:A3:95:82:04:76:D8:9F:7D:8D:B7:5A:D0:CD:3E:0C:1E:16
Certificate issuer: /CN=8d88629e3c7810acc228e17a18db6794ebed8193
Certificate serial: 01856F4B87305868A2084E4D18EEAA0A674E
Authority key identifier: 8D:88:62:9E:3C:78:10:AC:C2:28:E1:7A:18:DB:67:94:EB:ED:81:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYhinjx4EKzCKOF6GNtnlOvtgZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/873b2d-e20c-41cf-90d2-4be1053d1fc4/1/8XlGo5WCBHbYn32Nt1rQzT4MHhY.roa
Signing time: Sun 01 Jan 2023 21:44:58 +0000
ROA not before: Sun 01 Jan 2023 21:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205428
IP address blocks: 185.216.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:87:30:58:68:a2:08:4e:4d:18:ee:aa:0a:67:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d88629e3c7810acc228e17a18db6794ebed8193
Validity
Not Before: Jan 1 21:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f17946a395820476d89f7d8db75ad0cd3e0c1e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:99:1c:64:44:7f:78:8d:01:cd:fd:5e:5f:bb:
30:d1:71:91:c3:31:3f:1f:05:16:f2:57:9b:4c:61:
aa:59:ca:9a:3d:84:1f:a3:dd:61:35:4d:97:67:b3:
d3:ca:aa:07:da:f0:5d:b4:62:cc:01:f3:29:95:de:
9d:4a:85:e9:42:b7:d9:14:04:b4:95:42:f9:c0:70:
00:a3:32:a1:5e:29:94:61:1f:15:44:ef:a1:7a:d1:
bd:6b:97:85:76:1c:d8:b2:be:60:8c:7e:fc:c8:80:
eb:b4:7c:c1:c7:15:09:ba:8a:c7:3e:3d:e3:f5:7c:
bf:9f:b3:78:d4:e8:99:13:43:fe:f3:7c:ed:3d:a5:
dd:d3:7c:12:8e:f7:24:bb:c1:ac:d4:29:5e:be:5a:
07:35:64:fe:c5:42:96:8c:73:69:06:25:8d:43:5c:
3c:91:56:95:d8:30:52:53:13:6a:e7:20:b1:19:07:
26:90:ff:b9:0b:54:cb:0a:e5:c2:bf:90:a9:01:a7:
fa:d0:ef:59:80:50:7f:5d:6f:5e:ff:ef:d6:6f:31:
35:0d:11:6a:98:50:b3:95:b4:ef:9e:74:b2:68:78:
56:1d:72:10:65:94:cd:60:29:fc:59:bb:05:ae:16:
f3:e4:4d:b0:01:e6:b8:e0:d8:5b:9b:59:7c:a0:d2:
53:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:79:46:A3:95:82:04:76:D8:9F:7D:8D:B7:5A:D0:CD:3E:0C:1E:16
X509v3 Authority Key Identifier:
keyid:8D:88:62:9E:3C:78:10:AC:C2:28:E1:7A:18:DB:67:94:EB:ED:81:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYhinjx4EKzCKOF6GNtnlOvtgZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/873b2d-e20c-41cf-90d2-4be1053d1fc4/1/8XlGo5WCBHbYn32Nt1rQzT4MHhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/873b2d-e20c-41cf-90d2-4be1053d1fc4/1/jYhinjx4EKzCKOF6GNtnlOvtgZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.164.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:4d:75:16:df:cc:78:8c:66:83:66:d5:25:a6:67:96:05:4d:
d4:b6:db:0f:69:62:65:57:79:b1:ef:89:65:e5:98:1d:56:15:
85:19:bd:40:53:de:8b:61:c0:69:7b:12:c0:33:ec:4b:8c:fb:
ee:0d:7d:39:82:19:22:f9:94:22:51:14:6a:61:03:c2:17:bb:
0e:4e:20:ca:9a:f9:66:db:24:83:52:95:e8:39:87:58:95:1a:
11:97:9c:1f:ce:01:b3:24:10:43:57:63:c2:fe:71:49:fe:d0:
bc:2d:f9:93:b8:30:e5:a5:fb:45:44:a7:53:b1:46:fe:c9:60:
b0:5f:41:c0:da:51:2a:1a:2b:19:74:10:18:97:15:93:aa:2e:
b6:c8:a3:bd:19:a5:1d:8e:b3:3a:63:50:ff:8b:75:af:3e:e6:
eb:13:e3:13:a3:1f:88:0c:d8:1e:98:ad:ed:99:57:01:39:48:
0b:c9:7c:49:2c:c2:99:cb:39:ed:c6:ee:a6:ec:60:93:b9:e6:
78:15:66:f8:19:0a:d9:06:bc:35:37:a4:63:ec:f4:5d:e4:de:
70:03:b7:e9:74:82:f3:02:0b:3e:70:0a:0b:94:1f:51:c4:04:
04:ed:e9:4c:34:ba:ad:eb:75:b1:43:d0:c8:7a:b6:4d:5c:8a:
86:b2:72:7f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvS4cwWGiiCE5NGO6qCmdOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkODg2MjllM2M3ODEwYWNjMjI4ZTE3YTE4ZGI2Nzk0ZWJl
ZDgxOTMwHhcNMjMwMTAxMjE0NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTc5NDZhMzk1ODIwNDc2ZDg5ZjdkOGRiNzVhZDBjZDNlMGMxZTE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJkcZER/eI0Bzf1eX7sw0XGRwzE/
HwUW8lebTGGqWcqaPYQfo91hNU2XZ7PTyqoH2vBdtGLMAfMpld6dSoXpQrfZFAS0
lUL5wHAAozKhXimUYR8VRO+hetG9a5eFdhzYsr5gjH78yIDrtHzBxxUJuorHPj3j
9Xy/n7N41OiZE0P+83ztPaXd03wSjvcku8Gs1ClevloHNWT+xUKWjHNpBiWNQ1w8
kVaV2DBSUxNq5yCxGQcmkP+5C1TLCuXCv5CpAaf60O9ZgFB/XW9e/+/WbzE1DRFq
mFCzlbTvnnSyaHhWHXIQZZTNYCn8WbsFrhbz5E2wAea44Nhbm1l8oNJTFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPF5RqOVggR22J99jbda0M0+DB4WMB8GA1UdIwQY
MBaAFI2IYp48eBCswijhehjbZ5Tr7YGTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalloaW5qeDRFS3pDS09GNkdOdG5sT3Z0Z1pNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi84NzNiMmQtZTIwYy00MWNmLTkwZDIt
NGJlMTA1M2QxZmM0LzEvOFhsR281V0NCSGJZbjMyTnQxclF6VDRNSGhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi84NzNiMmQtZTIwYy00MWNmLTkwZDItNGJlMTA1M2QxZmM0
LzEvalloaW5qeDRFS3pDS09GNkdOdG5sT3Z0Z1pNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCudikMA0G
CSqGSIb3DQEBCwUAA4IBAQAtTXUW38x4jGaDZtUlpmeWBU3UttsPaWJlV3mx74ll
5ZgdVhWFGb1AU96LYcBpexLAM+xLjPvuDX05ghki+ZQiURRqYQPCF7sOTiDKmvlm
2ySDUpXoOYdYlRoRl5wfzgGzJBBDV2PC/nFJ/tC8LfmTuDDlpftFRKdTsUb+yWCw
X0HA2lEqGisZdBAYlxWTqi62yKO9GaUdjrM6Y1D/i3WvPubrE+MTox+IDNgemK3t
mVcBOUgLyXxJLMKZyzntxu6m7GCTueZ4FWb4GQrZBrw1N6Rj7PRd5N5wA7fpdILz
Ags+cAoLlB9RxAQE7elMNLqt63WxQ9DIerZNXIqGsnJ/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:50 2024 by rpki-client on console-fra.rpki-client.org