Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/04975c-ef49-4754-96f9-9812d7cfd694/1/_g0FDsmd4w6cn3B4qkzXALhBIyY.roa
File: _g0FDsmd4w6cn3B4qkzXALhBIyY.roa (raw, json)
Hash identifier: BZGazaGGDIE0fDkSHEfg2s/7Q/xDMgmNIpJXlCZVCMs=
Subject key identifier: FE:0D:05:0E:C9:9D:E3:0E:9C:9F:70:78:AA:4C:D7:00:B8:41:23:26
Certificate issuer: /CN=3b4df9a5460cbd450b4e75380393a821e85c74d8
Certificate serial: 0189F38860B84387549FFBB66B6AF8B28505
Authority key identifier: 3B:4D:F9:A5:46:0C:BD:45:0B:4E:75:38:03:93:A8:21:E8:5C:74:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O035pUYMvUULTnU4A5OoIehcdNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/04975c-ef49-4754-96f9-9812d7cfd694/1/_g0FDsmd4w6cn3B4qkzXALhBIyY.roa
Signing time: Mon 14 Aug 2023 10:12:28 +0000
ROA not before: Mon 14 Aug 2023 10:12:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59715
IP address blocks: 185.5.200.0/22 maxlen: 24
2a02:cdc0::/29 maxlen: 52
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f3:88:60:b8:43:87:54:9f:fb:b6:6b:6a:f8:b2:85:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b4df9a5460cbd450b4e75380393a821e85c74d8
Validity
Not Before: Aug 14 10:12:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe0d050ec99de30e9c9f7078aa4cd700b8412326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b2:5e:87:98:6b:1e:e1:22:0c:25:f4:7b:35:
6a:23:30:63:22:61:14:08:9f:36:04:39:96:9e:bd:
a7:1d:eb:ef:01:f3:e8:a9:19:00:54:fc:2e:91:88:
db:48:e6:f2:4d:f1:49:ef:5d:19:87:38:b5:6c:0a:
82:49:00:37:40:02:8c:c7:12:9c:cf:fd:8a:90:eb:
02:9b:d2:13:b5:12:8e:c4:be:de:06:9b:1d:ff:cf:
fd:fe:b3:8f:f5:6d:e1:36:e2:17:06:fb:3b:d1:a6:
a4:b9:9c:83:18:a2:c9:9a:4f:97:eb:5e:fe:26:41:
84:9f:44:79:1d:1f:d3:44:77:b2:2c:bf:10:7d:af:
44:e0:5c:2e:00:3b:f3:4d:7c:87:03:b6:0b:78:c8:
2c:bd:4d:03:cb:ff:2a:d2:80:11:2a:52:7a:5d:5d:
c1:61:84:75:f7:42:1c:49:11:66:79:f2:08:b8:cd:
59:5d:37:d3:2e:99:0e:ee:be:54:d7:0c:33:9e:22:
b1:19:fa:88:f1:99:66:01:da:b0:ae:f7:25:2e:dc:
49:d5:ab:db:a2:6e:87:a7:f3:c9:b5:af:ae:d4:79:
6f:ec:7e:f9:e3:8a:9a:60:8f:99:38:5a:0b:8f:9e:
b1:26:4f:78:ea:69:fc:7c:51:68:53:1e:44:e8:53:
d9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:0D:05:0E:C9:9D:E3:0E:9C:9F:70:78:AA:4C:D7:00:B8:41:23:26
X509v3 Authority Key Identifier:
keyid:3B:4D:F9:A5:46:0C:BD:45:0B:4E:75:38:03:93:A8:21:E8:5C:74:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O035pUYMvUULTnU4A5OoIehcdNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/04975c-ef49-4754-96f9-9812d7cfd694/1/_g0FDsmd4w6cn3B4qkzXALhBIyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/04975c-ef49-4754-96f9-9812d7cfd694/1/O035pUYMvUULTnU4A5OoIehcdNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.200.0/22
IPv6:
2a02:cdc0::/29
Signature Algorithm: sha256WithRSAEncryption
90:76:aa:fd:36:aa:45:6f:8a:89:2f:2a:df:cf:9a:d1:7d:fd:
bc:0f:38:38:cb:1f:03:6b:40:b0:50:b1:13:a1:35:57:04:aa:
5f:f1:5e:4c:d5:c8:ac:f5:73:80:f8:6c:72:df:b9:af:90:5d:
d6:d1:01:71:56:d3:a5:0e:e0:b1:0a:33:e1:de:e5:59:dc:7b:
6c:c6:9b:31:70:2c:90:26:ed:7c:0c:d2:fc:6b:ec:5e:f0:97:
15:35:0d:ad:15:03:11:e3:9e:59:44:1f:3f:99:59:f3:30:a4:
20:e1:8b:a1:26:40:09:66:52:22:f8:5d:9a:22:b6:e2:9f:68:
4a:c6:10:44:99:e4:f4:38:39:e5:19:ae:6a:9e:82:5f:f8:9f:
bb:d6:a7:a7:15:b0:f4:93:d4:49:ab:01:a7:12:d0:f2:c7:f9:
e7:8c:da:54:20:22:c4:8c:14:03:0a:ba:0f:23:51:90:b0:5f:
4a:c9:12:97:07:da:33:29:64:eb:b1:bd:d5:30:3e:89:f4:bd:
b1:cb:ae:0e:c8:ac:b8:4a:09:ff:4c:3f:4f:50:12:6b:5f:b1:
d4:9a:23:ff:57:ce:44:1f:f9:8f:fd:33:b5:b4:7b:1c:65:a1:
b0:0a:33:80:f2:99:bc:76:a8:c9:8d:13:af:cc:aa:df:14:79:
7d:86:3d:af
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYnziGC4Q4dUn/u2a2r4soUFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNGRmOWE1NDYwY2JkNDUwYjRlNzUzODAzOTNhODIxZTg1
Yzc0ZDgwHhcNMjMwODE0MTAxMjI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTBkMDUwZWM5OWRlMzBlOWM5ZjcwNzhhYTRjZDcwMGI4NDEyMzI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrJeh5hrHuEiDCX0ezVqIzBjImEU
CJ82BDmWnr2nHevvAfPoqRkAVPwukYjbSObyTfFJ710Zhzi1bAqCSQA3QAKMxxKc
z/2KkOsCm9ITtRKOxL7eBpsd/8/9/rOP9W3hNuIXBvs70aakuZyDGKLJmk+X617+
JkGEn0R5HR/TRHeyLL8Qfa9E4FwuADvzTXyHA7YLeMgsvU0Dy/8q0oARKlJ6XV3B
YYR190IcSRFmefIIuM1ZXTfTLpkO7r5U1wwzniKxGfqI8ZlmAdqwrvclLtxJ1avb
om6Hp/PJta+u1Hlv7H7544qaYI+ZOFoLj56xJk946mn8fFFoUx5E6FPZbwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFP4NBQ7JneMOnJ9weKpM1wC4QSMmMB8GA1UdIwQY
MBaAFDtN+aVGDL1FC051OAOTqCHoXHTYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzAzNXBVWU12VVVMVG5VNEE1T29JZWhjZE5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8wNDk3NWMtZWY0OS00NzU0LTk2Zjkt
OTgxMmQ3Y2ZkNjk0LzEvX2cwRkRzbWQ0dzZjbjNCNHFrelhBTGhCSXlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni8wNDk3NWMtZWY0OS00NzU0LTk2ZjktOTgxMmQ3Y2ZkNjk0
LzEvTzAzNXBVWU12VVVMVG5VNEE1T29JZWhjZE5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuQXIMA0E
AgACMAcDBQMqAs3AMA0GCSqGSIb3DQEBCwUAA4IBAQCQdqr9NqpFb4qJLyrfz5rR
ff28Dzg4yx8Da0CwULEToTVXBKpf8V5M1cis9XOA+Gxy37mvkF3W0QFxVtOlDuCx
CjPh3uVZ3HtsxpsxcCyQJu18DNL8a+xe8JcVNQ2tFQMR455ZRB8/mVnzMKQg4Yuh
JkAJZlIi+F2aIrbin2hKxhBEmeT0ODnlGa5qnoJf+J+71qenFbD0k9RJqwGnEtDy
x/nnjNpUICLEjBQDCroPI1GQsF9KyRKXB9ozKWTrsb3VMD6J9L2xy64OyKy4Sgn/
TD9PUBJrX7HUmiP/V85EH/mP/TO1tHscZaGwCjOA8pm8dqjJjROvzKrfFHl9hj2v
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org