Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/ajLTjz2eg7EdPxktd-s78XYFpQ0.roa
File: ajLTjz2eg7EdPxktd-s78XYFpQ0.roa (raw, json)
Hash identifier: xMlMd/a8Y69JBPonfObYpUxHw7RH4qC80p5mY2Klq/o=
Subject key identifier: 6A:32:D3:8F:3D:9E:83:B1:1D:3F:19:2D:77:EB:3B:F1:76:05:A5:0D
Certificate issuer: /CN=c1aaf043fe209c0345362205f8cc7cd61951c27e
Certificate serial: 01856ECBA7709C5C9BBE2BE7A2A25ED6BB0F
Authority key identifier: C1:AA:F0:43:FE:20:9C:03:45:36:22:05:F8:CC:7C:D6:19:51:C2:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/warwQ_4gnANFNiIF-Mx81hlRwn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/ajLTjz2eg7EdPxktd-s78XYFpQ0.roa
Signing time: Sun 01 Jan 2023 19:25:18 +0000
ROA not before: Sun 01 Jan 2023 19:25:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29608
IP address blocks: 185.150.88.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:a7:70:9c:5c:9b:be:2b:e7:a2:a2:5e:d6:bb:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1aaf043fe209c0345362205f8cc7cd61951c27e
Validity
Not Before: Jan 1 19:25:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a32d38f3d9e83b11d3f192d77eb3bf17605a50d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:37:a1:12:49:7d:80:71:7b:04:74:4b:ac:84:
83:73:10:cf:66:7b:f7:df:b3:d2:71:12:10:74:0b:
b7:61:0d:bf:b1:db:dc:df:4f:d3:4c:23:a2:52:38:
49:cb:1a:6a:d8:b4:ed:5b:81:b3:b8:b1:5d:80:9c:
83:a8:11:d1:e2:7e:9a:78:52:b9:2e:35:29:dd:7e:
b4:bc:ac:ed:ce:44:1a:c7:33:df:5a:51:b0:a9:e9:
e5:6a:1a:1e:dc:77:12:52:6a:c8:9a:49:74:66:a2:
5a:f9:d2:ce:12:70:43:8c:a4:37:7d:f1:79:f1:6d:
07:83:05:57:16:4c:1f:37:b2:b3:c4:26:8c:86:20:
b6:3a:c9:91:d4:b0:9f:6e:9b:82:f3:b1:af:68:28:
d7:a9:f4:35:93:b3:8c:6a:a3:11:7f:bd:5f:63:58:
07:91:6d:88:27:b2:4d:69:36:f5:41:bb:29:44:6e:
13:5c:72:ed:90:b8:e0:08:fc:03:85:a1:1d:f4:cd:
50:09:85:d6:be:1c:9a:a3:1f:e1:a2:24:26:58:34:
1c:b2:fb:9c:f0:6f:c7:2b:3d:63:35:89:82:b3:79:
7b:37:7b:62:9b:4d:9c:b2:a8:46:51:76:18:af:0a:
5f:31:17:2f:29:6b:f6:c0:7d:cb:dd:82:01:5c:32:
db:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:32:D3:8F:3D:9E:83:B1:1D:3F:19:2D:77:EB:3B:F1:76:05:A5:0D
X509v3 Authority Key Identifier:
keyid:C1:AA:F0:43:FE:20:9C:03:45:36:22:05:F8:CC:7C:D6:19:51:C2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/warwQ_4gnANFNiIF-Mx81hlRwn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/ajLTjz2eg7EdPxktd-s78XYFpQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6c27f0-137d-471b-9d1d-b7578b10ba7e/1/warwQ_4gnANFNiIF-Mx81hlRwn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.88.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:b9:16:a1:24:c2:08:55:e0:9c:ca:10:0d:64:8e:2c:77:41:
bf:4e:16:1a:d7:e6:12:f3:9f:9f:8e:a6:c3:a7:53:aa:6f:b3:
bc:aa:6b:e4:e0:b8:2e:b2:69:6c:37:9e:07:71:e9:46:26:0f:
f7:db:52:79:71:c9:23:3b:ba:44:91:ba:ca:14:73:d9:db:72:
d1:1d:6f:13:cf:51:4d:16:a3:6d:2b:2c:04:39:c2:59:bd:2e:
21:da:08:d5:c3:38:24:59:b0:df:90:d6:ab:9d:ae:61:e6:ff:
1d:7c:85:09:0c:e1:6e:56:d5:d2:ca:6b:14:1d:1d:21:c5:17:
22:76:f2:ba:af:a3:99:00:af:fe:dc:ca:cb:b9:ae:df:26:58:
55:ce:77:22:c5:5d:c2:73:1a:43:e7:ed:e0:2b:ad:0d:7c:e0:
74:75:ce:a8:ea:cd:25:87:92:40:fb:42:8c:96:b1:c3:9d:3a:
9b:49:b1:d0:0d:03:30:e4:b6:ab:f6:cf:c5:ce:7f:5e:fe:78:
36:23:0a:2e:d4:5e:7b:7d:b5:bd:27:85:a0:d4:e9:1f:be:9c:
ef:b0:35:cd:31:4b:dc:bc:ec:95:b8:dd:12:56:0a:17:2c:6c:
c2:30:bb:90:6f:7d:2e:37:38:08:29:3f:1d:ea:a6:19:98:a0:
68:ba:83:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuy6dwnFybvivnoqJe1rsPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMxYWFmMDQzZmUyMDljMDM0NTM2MjIwNWY4Y2M3Y2Q2MTk1
MWMyN2UwHhcNMjMwMTAxMTkyNTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTMyZDM4ZjNkOWU4M2IxMWQzZjE5MmQ3N2ViM2JmMTc2MDVhNTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jehEkl9gHF7BHRLrISDcxDPZnv3
37PScRIQdAu3YQ2/sdvc30/TTCOiUjhJyxpq2LTtW4GzuLFdgJyDqBHR4n6aeFK5
LjUp3X60vKztzkQaxzPfWlGwqenlahoe3HcSUmrImkl0ZqJa+dLOEnBDjKQ3ffF5
8W0HgwVXFkwfN7KzxCaMhiC2OsmR1LCfbpuC87GvaCjXqfQ1k7OMaqMRf71fY1gH
kW2IJ7JNaTb1QbspRG4TXHLtkLjgCPwDhaEd9M1QCYXWvhyaox/hoiQmWDQcsvuc
8G/HKz1jNYmCs3l7N3tim02csqhGUXYYrwpfMRcvKWv2wH3L3YIBXDLbUwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGoy0489noOxHT8ZLXfrO/F2BaUNMB8GA1UdIwQY
MBaAFMGq8EP+IJwDRTYiBfjMfNYZUcJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd2Fyd1FfNGduQU5GTmlJRi1NeDgxaGxSd240LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC82YzI3ZjAtMTM3ZC00NzFiLTlkMWQt
Yjc1NzhiMTBiYTdlLzEvYWpMVGp6MmVnN0VkUHhrdGQtczc4WFlGcFEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC82YzI3ZjAtMTM3ZC00NzFiLTlkMWQtYjc1NzhiMTBiYTdl
LzEvd2Fyd1FfNGduQU5GTmlJRi1NeDgxaGxSd240LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZZYMA0G
CSqGSIb3DQEBCwUAA4IBAQAeuRahJMIIVeCcyhANZI4sd0G/ThYa1+YS85+fjqbD
p1Oqb7O8qmvk4LgusmlsN54HcelGJg/321J5cckjO7pEkbrKFHPZ23LRHW8Tz1FN
FqNtKywEOcJZvS4h2gjVwzgkWbDfkNarna5h5v8dfIUJDOFuVtXSymsUHR0hxRci
dvK6r6OZAK/+3MrLua7fJlhVzncixV3CcxpD5+3gK60NfOB0dc6o6s0lh5JA+0KM
lrHDnTqbSbHQDQMw5Lar9s/Fzn9e/ng2Iwou1F57fbW9J4Wg1OkfvpzvsDXNMUvc
vOyVuN0SVgoXLGzCMLuQb30uNzgIKT8d6qYZmKBouoOW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:59 2024 by rpki-client on console-fra.rpki-client.org