Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/RH2qYhFnGxZd-G0uttLDeYwmGZ8.roa
File: RH2qYhFnGxZd-G0uttLDeYwmGZ8.roa (raw, json)
Hash identifier: s1UvpkFQ7nzPH4pvZhxxuotKTXtfR0TuGfDJ7SN1fFU=
Subject key identifier: 44:7D:AA:62:11:67:1B:16:5D:F8:6D:2E:B6:D2:C3:79:8C:26:19:9F
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 018B206ADB322FDAC11BA3FF9AE8B70F17FC
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/RH2qYhFnGxZd-G0uttLDeYwmGZ8.roa
Signing time: Wed 11 Oct 2023 20:25:55 +0000
ROA not before: Wed 11 Oct 2023 20:25:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 193.149.179.0/24 maxlen: 24
85.208.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:20:6a:db:32:2f:da:c1:1b:a3:ff:9a:e8:b7:0f:17:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Oct 11 20:25:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=447daa6211671b165df86d2eb6d2c3798c26199f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d5:db:85:a4:68:e1:91:1d:39:73:ef:22:ea:
70:6f:94:20:ef:72:73:33:dd:f1:32:c2:05:cf:41:
cd:2d:a2:30:47:91:69:3a:97:c5:d2:54:07:04:3c:
ca:b8:5c:d7:78:e9:a6:75:24:92:88:3e:b5:3e:cd:
30:71:79:92:1f:e2:24:a9:3e:ab:bc:4c:fa:88:c0:
7b:78:c7:11:39:52:a2:78:80:ce:c6:78:b5:5d:4c:
b5:79:8a:bf:47:52:ef:8c:01:cf:98:83:6f:5f:be:
52:5f:da:bc:5b:86:c1:34:40:6d:ff:45:a5:cc:69:
ad:70:d4:a2:1d:4c:38:63:d9:58:a8:99:7f:09:71:
2e:cd:06:15:44:82:ee:fb:18:12:44:f5:84:8c:7d:
1c:8f:6e:5f:9c:57:6f:8c:c0:10:b5:27:e2:9d:c6:
f5:dc:f2:c5:97:73:73:fe:2d:32:96:da:35:16:67:
6d:c6:52:a7:5e:38:8e:09:6c:dd:29:42:6d:65:e6:
40:1b:b5:09:ba:16:93:1f:5f:70:9a:60:14:cd:f7:
0b:41:3d:e0:f6:1d:21:93:d1:ad:c5:a0:b3:a9:ca:
68:3a:97:45:9e:bb:65:7b:93:42:0c:c6:0b:bb:00:
84:01:89:a3:51:3d:b0:a3:35:f6:5e:bb:d6:50:83:
b3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7D:AA:62:11:67:1B:16:5D:F8:6D:2E:B6:D2:C3:79:8C:26:19:9F
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/RH2qYhFnGxZd-G0uttLDeYwmGZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.46.0/24
193.149.179.0/24
Signature Algorithm: sha256WithRSAEncryption
84:22:6f:58:07:8a:b9:6b:8c:84:6b:70:d4:40:69:2e:d0:31:
8c:aa:08:f7:dc:86:00:80:75:b6:1e:65:d2:7b:08:cc:4b:10:
58:2d:81:26:fe:99:2e:90:97:4a:db:94:99:62:5f:be:12:e5:
03:61:a0:58:6f:57:38:a5:37:71:5d:63:91:82:c4:78:5c:7b:
a1:67:c6:b3:2c:9d:a5:ac:87:c2:17:b8:2d:65:04:87:52:65:
6c:39:be:6f:dd:18:48:8c:5e:30:08:c5:b9:0f:0f:04:4a:43:
29:44:ca:1b:a6:a8:44:14:f0:e4:34:aa:d8:a6:cb:d1:39:30:
3e:f8:2a:cb:9a:12:dc:cc:3d:1f:5a:c6:a2:8c:42:4c:03:23:
29:46:0d:d7:ed:4b:4b:0d:0f:e1:98:02:db:b0:40:62:12:8b:
df:95:c8:a4:db:58:01:9a:4f:91:03:28:8c:bc:61:10:b0:ed:
37:e5:7e:bf:50:a4:49:1e:a4:02:fa:94:a2:09:ce:e9:ce:92:
b7:21:ce:3f:4b:6b:b8:f4:8b:ed:6f:21:89:98:ae:53:b7:fa:
8f:c6:6f:b2:f9:d0:fb:0f:66:a4:ef:49:ee:a1:8f:2e:02:eb:
6c:d2:24:c0:43:bd:36:8a:7e:b3:16:79:82:1b:38:40:a6:f5:
34:53:a6:14
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYsgatsyL9rBG6P/mui3Dxf8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NTE2MDViNjc1ZWNlNGUwZmNlNzE3NWFlMzFhOTNmYTgy
NzJiYTYwHhcNMjMxMDExMjAyNTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDdkYWE2MjExNjcxYjE2NWRmODZkMmViNmQyYzM3OThjMjYxOTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtXbhaRo4ZEdOXPvIupwb5Qg73Jz
M93xMsIFz0HNLaIwR5FpOpfF0lQHBDzKuFzXeOmmdSSSiD61Ps0wcXmSH+IkqT6r
vEz6iMB7eMcROVKieIDOxni1XUy1eYq/R1LvjAHPmINvX75SX9q8W4bBNEBt/0Wl
zGmtcNSiHUw4Y9lYqJl/CXEuzQYVRILu+xgSRPWEjH0cj25fnFdvjMAQtSfincb1
3PLFl3Nz/i0ylto1FmdtxlKnXjiOCWzdKUJtZeZAG7UJuhaTH19wmmAUzfcLQT3g
9h0hk9GtxaCzqcpoOpdFnrtle5NCDMYLuwCEAYmjUT2wozX2XrvWUIOz+wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFER9qmIRZxsWXfhtLrbSw3mMJhmfMB8GA1UdIwQY
MBaAFAVRYFtnXs5OD85xda4xqT+oJyumMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yOGVhNDUtN2QzMC00NmRmLThmMmEt
MDc3OWY0OGVjZWEwLzEvUkgycVloRm5HeFpkLUcwdXR0TERlWXdtR1o4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8yOGVhNDUtN2QzMC00NmRmLThmMmEtMDc3OWY0OGVjZWEw
LzEvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVdAuAwQA
wZWzMA0GCSqGSIb3DQEBCwUAA4IBAQCEIm9YB4q5a4yEa3DUQGku0DGMqgj33IYA
gHW2HmXSewjMSxBYLYEm/pkukJdK25SZYl++EuUDYaBYb1c4pTdxXWORgsR4XHuh
Z8azLJ2lrIfCF7gtZQSHUmVsOb5v3RhIjF4wCMW5Dw8ESkMpRMobpqhEFPDkNKrY
psvROTA++CrLmhLczD0fWsaijEJMAyMpRg3X7UtLDQ/hmALbsEBiEovflcik21gB
mk+RAyiMvGEQsO035X6/UKRJHqQC+pSiCc7pzpK3Ic4/S2u49IvtbyGJmK5Tt/qP
xm+y+dD7D2ak70nuoY8uAuts0iTAQ702in6zFnmCGzhApvU0U6YU
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:36 2024 by rpki-client on console-ams.rpki-client.org