Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fffee1-bd46-4523-9eca-705563137d7a/1/igmQjxQnzyxPRsZxN7h_VgcOuJo.roa
File: igmQjxQnzyxPRsZxN7h_VgcOuJo.roa (raw, json)
Hash identifier: VkP3xmp45C9eJ+XiqUzfBmS039GTELS8Vc7t+Ile3zc=
Subject key identifier: 8A:09:90:8F:14:27:CF:2C:4F:46:C6:71:37:B8:7F:56:07:0E:B8:9A
Certificate issuer: /CN=35d851c114a3f779ea80257b1ee1826acdae4a4e
Certificate serial: 018572CCDC42A21FEC1F6B2F6C7A82BE0EA4
Authority key identifier: 35:D8:51:C1:14:A3:F7:79:EA:80:25:7B:1E:E1:82:6A:CD:AE:4A:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdhRwRSj93nqgCV7HuGCas2uSk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fffee1-bd46-4523-9eca-705563137d7a/1/igmQjxQnzyxPRsZxN7h_VgcOuJo.roa
Signing time: Mon 02 Jan 2023 14:05:06 +0000
ROA not before: Mon 02 Jan 2023 14:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42143
IP address blocks: 185.207.52.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:dc:42:a2:1f:ec:1f:6b:2f:6c:7a:82:be:0e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d851c114a3f779ea80257b1ee1826acdae4a4e
Validity
Not Before: Jan 2 14:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a09908f1427cf2c4f46c67137b87f56070eb89a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:1d:6f:da:d8:30:7c:c6:42:58:df:b0:a7:2e:
f6:04:90:6e:b0:4c:65:58:cf:16:82:c3:9a:6e:e9:
b8:8a:80:ec:ee:d4:4c:c0:61:a3:4f:06:f0:0b:09:
96:98:63:73:b4:00:3c:d4:bc:b9:49:c2:c2:9a:96:
e4:50:38:cd:cf:8e:6b:c1:87:d8:cd:9b:12:12:e6:
92:58:75:c6:84:be:25:22:2f:2d:29:9c:73:59:1d:
2b:86:79:ad:41:6a:c8:c6:20:cf:84:37:b2:db:f4:
1b:c4:a6:97:e3:7d:eb:06:47:34:03:c0:2a:d4:ba:
d7:52:a5:12:06:89:50:d7:7b:c7:6c:c6:bb:10:4e:
c0:c1:d8:28:fc:12:e1:2a:5d:20:11:22:3f:aa:40:
d5:dd:e7:0a:03:8c:30:09:ab:eb:8b:47:e7:18:c8:
21:07:fb:bf:ae:0d:53:4c:31:07:8e:a1:44:38:cc:
d5:56:0f:bf:58:1e:6a:50:11:af:a0:08:f2:ac:dd:
c3:68:98:8b:55:ed:0d:fa:6f:51:42:79:4e:07:9f:
01:a4:35:3d:75:09:cc:00:0f:02:48:3b:d8:27:80:
a9:ff:eb:f9:67:98:a2:7e:07:08:dc:fb:ab:9b:b0:
f3:9c:9c:0e:49:39:a5:5a:a4:76:98:24:51:d0:66:
c5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:09:90:8F:14:27:CF:2C:4F:46:C6:71:37:B8:7F:56:07:0E:B8:9A
X509v3 Authority Key Identifier:
keyid:35:D8:51:C1:14:A3:F7:79:EA:80:25:7B:1E:E1:82:6A:CD:AE:4A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdhRwRSj93nqgCV7HuGCas2uSk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fffee1-bd46-4523-9eca-705563137d7a/1/igmQjxQnzyxPRsZxN7h_VgcOuJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fffee1-bd46-4523-9eca-705563137d7a/1/NdhRwRSj93nqgCV7HuGCas2uSk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.52.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:14:cc:52:63:59:31:1d:8b:4e:97:17:a3:79:bb:15:fb:d0:
58:33:f6:cd:dd:7c:ee:b2:0d:da:96:69:de:ad:93:6e:e5:7d:
56:6f:a9:89:95:72:91:f0:81:d6:bd:b7:62:f7:6b:3f:e1:47:
8b:60:f7:fd:50:24:aa:47:1f:d8:ec:0b:1c:a8:d5:62:31:c7:
0d:bf:6e:20:af:89:77:fd:6b:4d:88:13:f9:0a:65:38:d6:85:
c8:b7:51:f7:54:e7:d4:aa:4d:a8:6a:85:9f:81:68:d6:6b:ce:
16:a3:d4:cc:eb:e1:7a:f6:ae:73:fc:45:b3:9d:03:b2:81:5e:
dd:d6:a8:73:1f:86:21:a9:d3:ad:c8:84:71:07:26:bf:bd:60:
16:57:e3:63:84:fe:1c:8f:16:70:0f:a3:78:0e:af:8b:e1:86:
29:43:c9:6e:08:bf:f8:0c:6d:9e:5d:49:58:6a:ec:80:9b:fe:
9a:dd:7d:1f:60:50:b8:fc:56:b0:d2:5a:b1:a2:22:0a:ee:75:
16:bc:d3:54:ed:cc:24:a4:db:0c:1d:3b:5c:9b:41:e8:49:4b:
d3:ab:23:eb:bd:04:fb:7e:00:8a:13:6f:be:1a:00:63:2f:18:
a7:3f:36:8e:b3:b1:93:86:d9:4a:ef:d8:5e:60:97:21:1b:9c:
8f:01:25:72
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyzNxCoh/sH2svbHqCvg6kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1ZDg1MWMxMTRhM2Y3NzllYTgwMjU3YjFlZTE4MjZhY2Rh
ZTRhNGUwHhcNMjMwMTAyMTQwNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTA5OTA4ZjE0MjdjZjJjNGY0NmM2NzEzN2I4N2Y1NjA3MGViODlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8B1v2tgwfMZCWN+wpy72BJBusExl
WM8WgsOabum4ioDs7tRMwGGjTwbwCwmWmGNztAA81Ly5ScLCmpbkUDjNz45rwYfY
zZsSEuaSWHXGhL4lIi8tKZxzWR0rhnmtQWrIxiDPhDey2/QbxKaX433rBkc0A8Aq
1LrXUqUSBolQ13vHbMa7EE7Awdgo/BLhKl0gESI/qkDV3ecKA4wwCavri0fnGMgh
B/u/rg1TTDEHjqFEOMzVVg+/WB5qUBGvoAjyrN3DaJiLVe0N+m9RQnlOB58BpDU9
dQnMAA8CSDvYJ4Cp/+v5Z5iifgcI3Purm7DznJwOSTmlWqR2mCRR0GbFvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIoJkI8UJ88sT0bGcTe4f1YHDriaMB8GA1UdIwQY
MBaAFDXYUcEUo/d56oAlex7hgmrNrkpOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmRoUndSU2o5M25xZ0NWN0h1R0NhczJ1U2s0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mZmZlZTEtYmQ0Ni00NTIzLTllY2Et
NzA1NTYzMTM3ZDdhLzEvaWdtUWp4UW56eXhQUnNaeE43aF9WZ2NPdUpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9mZmZlZTEtYmQ0Ni00NTIzLTllY2EtNzA1NTYzMTM3ZDdh
LzEvTmRoUndSU2o5M25xZ0NWN0h1R0NhczJ1U2s0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuc80MA0G
CSqGSIb3DQEBCwUAA4IBAQAaFMxSY1kxHYtOlxejebsV+9BYM/bN3Xzusg3almne
rZNu5X1Wb6mJlXKR8IHWvbdi92s/4UeLYPf9UCSqRx/Y7AscqNViMccNv24gr4l3
/WtNiBP5CmU41oXIt1H3VOfUqk2oaoWfgWjWa84Wo9TM6+F69q5z/EWznQOygV7d
1qhzH4YhqdOtyIRxBya/vWAWV+NjhP4cjxZwD6N4Dq+L4YYpQ8luCL/4DG2eXUlY
auyAm/6a3X0fYFC4/Faw0lqxoiIK7nUWvNNU7cwkpNsMHTtcm0HoSUvTqyPrvQT7
fgCKE2++GgBjLxinPzaOs7GThtlK79heYJchG5yPASVy
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:49 2024 by rpki-client on console-ams.rpki-client.org