Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/vGhkuOm4XGxKDyt8u9sSpCK2gmw.roa
File: vGhkuOm4XGxKDyt8u9sSpCK2gmw.roa (raw, json)
Hash identifier: VLgCJgTzc0kcbfCfrNIuKR9SKQxYkECtxu2mLv3dF0s=
Subject key identifier: BC:68:64:B8:E9:B8:5C:6C:4A:0F:2B:7C:BB:DB:12:A4:22:B6:82:6C
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 01893C7315AB6F59187E869C4FAA6ECB5BCB
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/vGhkuOm4XGxKDyt8u9sSpCK2gmw.roa
Signing time: Sun 09 Jul 2023 20:58:42 +0000
ROA not before: Sun 09 Jul 2023 20:58:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210912
IP address blocks: 185.63.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Aug 2023 10:25:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3c:73:15:ab:6f:59:18:7e:86:9c:4f:aa:6e:cb:5b:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: Jul 9 20:58:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc6864b8e9b85c6c4a0f2b7cbbdb12a422b6826c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c9:02:3f:e5:b5:6d:db:a9:f1:50:9f:be:c3:
b7:bb:b2:7a:1c:86:db:89:f7:75:f7:43:d8:c2:52:
83:f3:98:a7:90:b8:5b:ad:bf:6f:e4:c1:56:bf:ab:
8c:c6:5a:a7:10:85:57:08:3c:9d:20:de:88:e0:86:
80:93:af:38:ac:6a:03:12:a1:75:69:b7:98:cf:c6:
e8:e3:1d:b5:fd:b1:c5:21:40:e2:28:05:8c:f5:bf:
e3:19:f7:43:81:f2:4f:3b:fd:e5:6b:c7:0b:f2:2c:
5e:36:59:b6:e3:ea:d7:e5:bc:47:b8:1c:45:da:d0:
3e:b2:0c:53:4d:8c:60:c8:13:87:20:d4:33:fe:ae:
ad:8c:a6:18:25:42:96:95:c0:96:c8:fa:fc:c7:9d:
07:69:7c:47:4c:76:25:4c:c3:4e:3c:30:78:94:88:
bb:c9:73:ca:f4:fe:f7:45:00:5f:51:8f:70:27:9e:
6f:38:a5:e4:50:52:74:96:45:f9:70:a6:6f:81:ad:
2c:59:c9:d8:d2:5f:05:6d:ff:da:78:c0:d5:60:ff:
e8:8e:47:86:96:f3:da:b4:58:4e:ff:5f:ec:4a:e4:
d8:f9:57:ab:93:c9:03:ec:84:78:a1:43:cf:cc:51:
b8:84:0c:8c:6c:e9:f0:81:dd:ab:58:78:09:62:35:
08:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:68:64:B8:E9:B8:5C:6C:4A:0F:2B:7C:BB:DB:12:A4:22:B6:82:6C
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/vGhkuOm4XGxKDyt8u9sSpCK2gmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.33.0/24
Signature Algorithm: sha256WithRSAEncryption
75:98:ed:e9:47:f5:14:cb:7d:09:46:dc:b2:4f:ce:cd:09:8d:
17:c5:7c:5c:6c:f9:1b:66:97:06:f9:82:05:a0:d4:59:bb:6e:
4f:2c:a4:dd:d4:0b:77:f5:55:43:22:a7:24:16:0b:c8:86:1e:
d2:b9:8c:d1:dc:2f:39:5f:cd:97:ca:ff:1e:94:d6:fe:35:c4:
76:cb:36:94:71:6c:b4:38:32:26:29:80:72:78:01:77:e2:83:
50:a9:40:e5:e7:b2:4a:5b:88:11:66:e4:0f:b4:eb:54:c1:62:
28:70:b2:8d:3d:70:2d:3a:bc:8b:30:1a:70:eb:b1:f2:e3:00:
13:05:16:fb:0f:b7:8b:73:08:e6:d4:41:9f:c7:13:68:ef:0c:
b0:e3:33:08:8d:ab:7e:df:85:43:ba:23:58:11:eb:5c:ca:3b:
62:3a:4b:23:27:1b:5c:05:d2:65:00:95:85:ca:45:2d:20:e9:
bd:93:e0:fe:45:96:2c:d4:64:15:06:34:71:9e:bd:17:dd:a2:
5a:ec:c3:2b:d7:58:1e:b4:22:c5:86:60:ff:a5:51:b4:9b:c8:
63:31:59:dd:0c:8a:33:9e:b2:fc:da:18:59:83:31:70:79:67:
c9:04:6c:eb:ff:ed:10:9c:19:27:70:47:19:66:0c:9f:62:61:
d9:bc:26:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYk8cxWrb1kYfoacT6puy1vLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzZGQxMWQzNDZiNjNiYjFlYjIyYTA3YzI2Y2MxMjkxYTJh
MDY4OTUwHhcNMjMwNzA5MjA1ODQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzY4NjRiOGU5Yjg1YzZjNGEwZjJiN2NiYmRiMTJhNDIyYjY4MjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMkCP+W1bdup8VCfvsO3u7J6HIbb
ifd190PYwlKD85inkLhbrb9v5MFWv6uMxlqnEIVXCDydIN6I4IaAk684rGoDEqF1
abeYz8bo4x21/bHFIUDiKAWM9b/jGfdDgfJPO/3la8cL8ixeNlm24+rX5bxHuBxF
2tA+sgxTTYxgyBOHINQz/q6tjKYYJUKWlcCWyPr8x50HaXxHTHYlTMNOPDB4lIi7
yXPK9P73RQBfUY9wJ55vOKXkUFJ0lkX5cKZvga0sWcnY0l8Fbf/aeMDVYP/ojkeG
lvPatFhO/1/sSuTY+Verk8kD7IR4oUPPzFG4hAyMbOnwgd2rWHgJYjUIKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLxoZLjpuFxsSg8rfLvbEqQitoJsMB8GA1UdIwQY
MBaAFLPdEdNGtjux6yKgfCbMEpGioGiVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9hNDE4OTgtZGEwOC00NjlkLWJlMWEt
OGJiYzIyNmU2YzQ1LzEvdkdoa3VPbTRYR3hLRHl0OHU5c1NwQ0syZ213LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9hNDE4OTgtZGEwOC00NjlkLWJlMWEtOGJiYzIyNmU2YzQ1
LzEvczkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuT8hMA0G
CSqGSIb3DQEBCwUAA4IBAQB1mO3pR/UUy30JRtyyT87NCY0XxXxcbPkbZpcG+YIF
oNRZu25PLKTd1At39VVDIqckFgvIhh7SuYzR3C85X82Xyv8elNb+NcR2yzaUcWy0
ODImKYByeAF34oNQqUDl57JKW4gRZuQPtOtUwWIocLKNPXAtOryLMBpw67Hy4wAT
BRb7D7eLcwjm1EGfxxNo7wyw4zMIjat+34VDuiNYEetcyjtiOksjJxtcBdJlAJWF
ykUtIOm9k+D+RZYs1GQVBjRxnr0X3aJa7MMr11getCLFhmD/pVG0m8hjMVndDIoz
nrL82hhZgzFweWfJBGzr/+0QnBkncEcZZgyfYmHZvCYw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:23 2024 by rpki-client on console-ams.rpki-client.org