Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/TocSrFQOgKrrFrEMNSy1z0ChHts.roa
File: TocSrFQOgKrrFrEMNSy1z0ChHts.roa (raw, json)
Hash identifier: 4y0t+d3gd+EDErk211V6kItk4bakcj+7dWyK2BG8ciQ=
Subject key identifier: 4E:87:12:AC:54:0E:80:AA:EB:16:B1:0C:35:2C:B5:CF:40:A1:1E:DB
Certificate issuer: /CN=40fc07299711adfa222e27b128b76d1d97450582
Certificate serial: 01856E01FC22587A59394C70AA932A72F95E
Authority key identifier: 40:FC:07:29:97:11:AD:FA:22:2E:27:B1:28:B7:6D:1D:97:45:05:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/TocSrFQOgKrrFrEMNSy1z0ChHts.roa
Signing time: Sun 01 Jan 2023 15:45:01 +0000
ROA not before: Sun 01 Jan 2023 15:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204158
IP address blocks: 185.112.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:fc:22:58:7a:59:39:4c:70:aa:93:2a:72:f9:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40fc07299711adfa222e27b128b76d1d97450582
Validity
Not Before: Jan 1 15:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e8712ac540e80aaeb16b10c352cb5cf40a11edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d0:1b:4b:80:94:87:0c:58:3e:f5:26:91:85:
04:6a:2c:86:d3:c2:74:76:f0:83:a1:2b:9e:2a:a1:
02:e2:f5:66:6a:72:14:d6:ce:f8:21:5b:1f:f0:f7:
c8:e9:c8:f3:6a:e1:15:6c:fe:04:17:69:f2:4f:66:
5e:41:be:6e:3d:5b:f3:f3:9e:e4:46:db:2e:d8:bc:
b3:4a:f3:ca:3a:54:00:2f:ad:20:63:16:f5:9f:75:
5d:d7:2b:80:e2:ee:6c:1b:ea:d8:3f:56:11:f7:5a:
59:2a:90:a8:0a:10:ef:b7:7b:c3:71:de:c6:5c:4e:
8a:f3:c2:e9:2c:47:c8:d5:5c:5e:0c:c9:5d:9d:a7:
8e:c4:a3:4d:c1:2f:7b:67:4d:f0:d3:63:1f:86:65:
e5:c5:50:c9:9c:b3:6a:ff:71:1c:bc:20:bd:28:80:
f7:23:c0:ca:e8:3f:94:23:45:b1:3f:04:2f:04:07:
c6:9c:2f:84:6b:35:f7:7f:0e:4e:72:1d:7b:23:ab:
f2:18:12:ee:3c:20:1c:08:27:fe:74:02:f7:4a:37:
2c:1c:1a:85:18:9a:a5:fe:24:63:e5:4a:0e:80:54:
35:22:b4:7e:c7:06:20:91:60:77:b3:7c:65:e9:2f:
20:a3:9d:fb:33:7a:ce:49:2b:f8:9c:0d:dc:72:c3:
d3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:87:12:AC:54:0E:80:AA:EB:16:B1:0C:35:2C:B5:CF:40:A1:1E:DB
X509v3 Authority Key Identifier:
keyid:40:FC:07:29:97:11:AD:FA:22:2E:27:B1:28:B7:6D:1D:97:45:05:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/TocSrFQOgKrrFrEMNSy1z0ChHts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.4.0/22
Signature Algorithm: sha256WithRSAEncryption
44:70:4f:5c:d0:ad:3a:01:f7:13:12:11:11:b1:af:6d:b5:2e:
23:0b:99:d8:55:37:2c:d0:91:73:a5:fa:78:35:5a:53:00:da:
90:00:a7:78:39:85:db:bd:7d:df:bb:1a:e7:7d:d4:bf:09:f6:
c4:4b:4c:8a:ee:24:cf:97:b0:5d:0e:bb:6c:35:09:6f:5f:2b:
5f:c3:98:6f:c1:bf:4b:7a:05:78:67:92:6b:b3:fd:e7:1d:c5:
c0:6d:fb:d3:5e:50:88:76:2b:4b:b1:b5:f5:e0:7e:f2:b2:70:
ab:3b:9f:0e:38:d3:24:fc:0c:c1:cb:be:b8:d5:42:c4:0d:2b:
fd:e1:66:2e:08:0f:2b:e6:83:8b:b4:dd:8a:ee:9d:d0:7c:8f:
39:2a:f9:8e:e6:e4:21:f4:79:84:94:2b:86:3b:06:9a:1e:69:
da:d0:e1:cd:4f:fa:a5:69:2d:0a:e6:be:7a:44:0d:88:09:3f:
aa:e5:3e:48:05:ea:bf:7d:e5:1d:4d:e4:a6:76:40:93:1c:33:
49:1f:fa:ce:24:7a:9d:78:63:8c:ab:d5:d4:35:c9:6b:d8:30:
61:6c:5c:d3:f1:fd:12:c0:6a:cd:e5:2a:eb:b0:b0:d5:e3:24:
36:2d:8e:c3:d9:32:e5:88:8b:81:67:52:c4:be:18:da:e4:4d:
70:7c:ae:ff
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuAfwiWHpZOUxwqpMqcvleMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwZmMwNzI5OTcxMWFkZmEyMjJlMjdiMTI4Yjc2ZDFkOTc0
NTA1ODIwHhcNMjMwMTAxMTU0NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTg3MTJhYzU0MGU4MGFhZWIxNmIxMGMzNTJjYjVjZjQwYTExZWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9AbS4CUhwxYPvUmkYUEaiyG08J0
dvCDoSueKqEC4vVmanIU1s74IVsf8PfI6cjzauEVbP4EF2nyT2ZeQb5uPVvz857k
Rtsu2LyzSvPKOlQAL60gYxb1n3Vd1yuA4u5sG+rYP1YR91pZKpCoChDvt3vDcd7G
XE6K88LpLEfI1VxeDMldnaeOxKNNwS97Z03w02MfhmXlxVDJnLNq/3EcvCC9KID3
I8DK6D+UI0WxPwQvBAfGnC+EazX3fw5Och17I6vyGBLuPCAcCCf+dAL3SjcsHBqF
GJql/iRj5UoOgFQ1IrR+xwYgkWB3s3xl6S8go537M3rOSSv4nA3ccsPThQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE6HEqxUDoCq6xaxDDUstc9AoR7bMB8GA1UdIwQY
MBaAFED8BymXEa36Ii4nsSi3bR2XRQWCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVB3SEtaY1JyZm9pTGlleEtMZHRIWmRGQllJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi81ZGM4N2EtZjMyOS00YzQ0LTgyMzUt
NzdlM2JlYWI2MWViLzEvVG9jU3JGUU9nS3JyRnJFTU5TeTF6MENoSHRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi81ZGM4N2EtZjMyOS00YzQ0LTgyMzUtNzdlM2JlYWI2MWVi
LzEvUVB3SEtaY1JyZm9pTGlleEtMZHRIWmRGQllJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXAEMA0G
CSqGSIb3DQEBCwUAA4IBAQBEcE9c0K06AfcTEhERsa9ttS4jC5nYVTcs0JFzpfp4
NVpTANqQAKd4OYXbvX3fuxrnfdS/CfbES0yK7iTPl7BdDrtsNQlvXytfw5hvwb9L
egV4Z5Jrs/3nHcXAbfvTXlCIditLsbX14H7ysnCrO58OONMk/AzBy7641ULEDSv9
4WYuCA8r5oOLtN2K7p3QfI85KvmO5uQh9HmElCuGOwaaHmna0OHNT/qlaS0K5r56
RA2ICT+q5T5IBeq/feUdTeSmdkCTHDNJH/rOJHqdeGOMq9XUNclr2DBhbFzT8f0S
wGrN5SrrsLDV4yQ2LY7D2TLliIuBZ1LEvhja5E1wfK7/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:11 2024 by rpki-client on console-fra.rpki-client.org