Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/k9ZaDimwLO5rrY3BG7n-G83hjQU.roa
File: k9ZaDimwLO5rrY3BG7n-G83hjQU.roa (raw, json)
Hash identifier: 36TekSJjbHav/or821qDN4wShs09hY8G1b/AC0t3wOw=
Subject key identifier: 93:D6:5A:0E:29:B0:2C:EE:6B:AD:8D:C1:1B:B9:FE:1B:CD:E1:8D:05
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 018751AAB83001B6B8351C5A006D165141AD
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/k9ZaDimwLO5rrY3BG7n-G83hjQU.roa
Signing time: Wed 05 Apr 2023 13:45:55 +0000
ROA not before: Wed 05 Apr 2023 13:45:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12390
IP address blocks: 185.199.56.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:51:aa:b8:30:01:b6:b8:35:1c:5a:00:6d:16:51:41:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 5 13:45:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93d65a0e29b02cee6bad8dc11bb9fe1bcde18d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cd:e3:f8:db:ef:6c:00:c4:0b:b9:6e:be:3e:
77:0c:e1:9c:b8:8a:9b:09:ed:f2:90:39:8a:7a:3e:
b3:a2:50:1a:68:31:7a:4e:97:ae:56:55:4d:27:21:
28:67:e1:e0:9d:cb:7d:74:83:c4:80:35:21:48:73:
b9:33:dc:1a:16:ea:15:3b:b4:eb:29:a8:0a:9f:3d:
26:a8:d8:24:3d:08:f4:25:25:79:eb:ff:ab:c6:d5:
6d:79:18:36:9b:4f:27:31:4b:7b:71:ba:72:13:2c:
4c:aa:c9:2a:9b:d2:8e:64:7f:85:34:89:69:09:69:
12:65:bf:64:d8:a9:3e:ac:dc:da:b1:ef:e0:fe:37:
f4:15:f7:a5:52:5d:23:20:41:cf:47:80:34:c5:b1:
3f:ae:ed:05:60:3f:d2:96:d5:c1:f3:fd:fd:0b:0b:
ed:9b:27:34:55:8d:85:a8:63:5f:83:42:19:b1:93:
89:b5:fd:58:46:50:1e:7f:bd:bf:56:df:87:41:43:
47:ba:a6:71:57:5b:4e:57:25:37:74:9e:6a:77:11:
f4:6e:fe:8a:78:b6:59:2b:a8:aa:b9:a5:38:ff:47:
ae:95:f1:6b:ed:c3:0b:5c:6e:8c:64:79:cc:25:61:
ef:a9:17:7d:78:70:0a:7b:63:c2:40:27:6a:9e:24:
13:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D6:5A:0E:29:B0:2C:EE:6B:AD:8D:C1:1B:B9:FE:1B:CD:E1:8D:05
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/k9ZaDimwLO5rrY3BG7n-G83hjQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.56.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:4d:5e:a3:35:04:b5:4d:ae:d7:a4:bd:28:e4:5b:9e:52:97:
89:87:a4:d3:7b:81:72:fe:87:79:1d:9d:85:7f:70:23:75:be:
8f:9f:34:a5:85:9d:2e:96:3e:55:9d:16:b9:e5:16:90:d4:97:
57:6b:4b:5e:7b:c3:e4:54:52:00:38:a1:f0:61:63:b2:74:50:
03:4e:03:50:4c:d7:b7:4b:6a:4c:56:55:e3:12:db:a6:fc:24:
c6:6b:22:ab:3d:39:73:3a:8b:73:34:ae:fe:7b:94:88:92:f6:
a1:81:2a:cb:d5:08:ab:aa:fb:53:63:3e:e3:4a:7c:6a:58:cc:
28:14:bc:0c:36:3a:31:08:75:0b:7f:40:e9:ba:89:da:67:90:
78:85:97:fa:85:56:c2:08:08:77:43:fc:4d:f0:af:82:e0:25:
e6:03:93:6a:88:f5:b3:99:de:da:56:a1:18:a7:50:c5:94:62:
61:c8:09:59:6e:10:92:71:5a:bb:3a:3e:a1:2e:64:72:6d:35:
a3:6a:dc:d8:69:60:9e:02:6e:6f:57:60:4a:35:a9:fe:96:cd:
27:68:45:74:24:d5:b7:0f:ca:04:79:b9:46:46:5f:eb:4d:86:
ed:96:be:4a:42:67:86:7a:bf:92:85:1f:9b:12:b8:d1:3b:62:
68:e9:00:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdRqrgwAba4NRxaAG0WUUGtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjMwNDA1MTM0NTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2Q2NWEwZTI5YjAyY2VlNmJhZDhkYzExYmI5ZmUxYmNkZTE4ZDA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2M3j+NvvbADEC7luvj53DOGcuIqb
Ce3ykDmKej6zolAaaDF6TpeuVlVNJyEoZ+Hgnct9dIPEgDUhSHO5M9waFuoVO7Tr
KagKnz0mqNgkPQj0JSV56/+rxtVteRg2m08nMUt7cbpyEyxMqskqm9KOZH+FNIlp
CWkSZb9k2Kk+rNzase/g/jf0FfelUl0jIEHPR4A0xbE/ru0FYD/SltXB8/39Cwvt
myc0VY2FqGNfg0IZsZOJtf1YRlAef72/Vt+HQUNHuqZxV1tOVyU3dJ5qdxH0bv6K
eLZZK6iquaU4/0eulfFr7cMLXG6MZHnMJWHvqRd9eHAKe2PCQCdqniQTtQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJPWWg4psCzua62NwRu5/hvN4Y0FMB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvazlaYURpbXdMTzVyclkzQkc3bi1HODNoalFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucc4MA0G
CSqGSIb3DQEBCwUAA4IBAQB/TV6jNQS1Ta7XpL0o5FueUpeJh6TTe4Fy/od5HZ2F
f3Ajdb6PnzSlhZ0ulj5VnRa55RaQ1JdXa0tee8PkVFIAOKHwYWOydFADTgNQTNe3
S2pMVlXjEtum/CTGayKrPTlzOotzNK7+e5SIkvahgSrL1QirqvtTYz7jSnxqWMwo
FLwMNjoxCHULf0DpuonaZ5B4hZf6hVbCCAh3Q/xN8K+C4CXmA5NqiPWzmd7aVqEY
p1DFlGJhyAlZbhCScVq7Oj6hLmRybTWjatzYaWCeAm5vV2BKNan+ls0naEV0JNW3
D8oEeblGRl/rTYbtlr5KQmeGer+ShR+bErjRO2Jo6QAi
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:02 2024 by rpki-client on console-fra.rpki-client.org