Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/zASQNV70mIViH4VEWUI1fnAEu_o.roa
File: zASQNV70mIViH4VEWUI1fnAEu_o.roa (raw, json)
Hash identifier: 0jfLo1C2gIrbhMZ8JEOwCel81mLBdMIl9NZCfggVlNE=
Subject key identifier: CC:04:90:35:5E:F4:98:85:62:1F:85:44:59:42:35:7E:70:04:BB:FA
Certificate issuer: /CN=435e41960d590e99804e90b9af0365584c712c72
Certificate serial: 01856FA70F61C3851027817BAEF8C3B8DAE0
Authority key identifier: 43:5E:41:96:0D:59:0E:99:80:4E:90:B9:AF:03:65:58:4C:71:2C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q15Blg1ZDpmATpC5rwNlWExxLHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/zASQNV70mIViH4VEWUI1fnAEu_o.roa
Signing time: Sun 01 Jan 2023 23:24:57 +0000
ROA not before: Sun 01 Jan 2023 23:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204686
IP address blocks: 185.196.150.0/24 maxlen: 24
185.196.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:0f:61:c3:85:10:27:81:7b:ae:f8:c3:b8:da:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435e41960d590e99804e90b9af0365584c712c72
Validity
Not Before: Jan 1 23:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc0490355ef49885621f85445942357e7004bbfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9e:13:05:f8:6a:a0:4b:2c:74:97:b9:bb:5e:
12:ab:c8:87:1d:ea:da:e7:db:c8:29:73:73:11:c2:
11:44:42:ea:b8:08:67:14:f7:d5:67:93:fe:0f:e3:
57:6e:93:62:44:0f:bb:7f:3c:25:a4:bc:f7:b1:a0:
ce:2e:2f:a1:22:f0:2f:bf:06:96:f9:24:79:98:e6:
c8:34:34:ab:70:a7:39:42:cb:98:70:10:9e:f4:4a:
fb:2a:c4:18:a9:e8:05:5a:ae:25:4e:7e:bd:f7:09:
c2:85:28:bf:d8:96:9f:7f:70:2c:b0:e1:0a:52:cb:
50:4b:30:80:1f:7b:6d:cf:4d:db:8c:9a:bf:b1:b9:
4e:2e:de:74:f4:96:56:bc:a0:57:b6:c2:e4:c2:16:
87:84:60:71:93:97:3f:11:14:5b:12:50:6d:8c:3b:
ae:0e:4b:d0:8e:e0:5a:48:84:ec:70:fe:2f:89:d1:
e8:9d:88:6c:1a:fc:13:91:96:f0:05:ca:4c:b7:1c:
90:09:e4:45:46:04:6a:c5:2a:42:19:81:82:85:d0:
d5:73:b0:90:ef:5a:94:67:ea:51:da:2b:eb:e3:40:
55:44:17:f6:71:86:7e:a7:38:78:8f:cf:9c:4b:18:
2d:0e:8d:53:23:49:56:c5:0d:cc:5a:2d:9b:59:17:
fd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:04:90:35:5E:F4:98:85:62:1F:85:44:59:42:35:7E:70:04:BB:FA
X509v3 Authority Key Identifier:
keyid:43:5E:41:96:0D:59:0E:99:80:4E:90:B9:AF:03:65:58:4C:71:2C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q15Blg1ZDpmATpC5rwNlWExxLHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/zASQNV70mIViH4VEWUI1fnAEu_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/7e2f28-5cae-4e6f-a5f0-01bb5fd534f5/1/Q15Blg1ZDpmATpC5rwNlWExxLHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.149.0-185.196.150.255
Signature Algorithm: sha256WithRSAEncryption
b9:5f:d7:a0:de:ca:33:70:dc:ce:76:cd:d9:12:03:bc:be:2f:
52:01:f8:c4:7a:58:98:b2:aa:dc:d1:40:81:5a:22:55:e7:22:
be:76:56:e4:0c:5f:f8:8f:b3:69:cd:8c:46:49:c1:7a:e0:30:
ce:85:02:b7:2a:7e:75:a2:4f:ec:70:5d:8a:a6:2f:72:d1:65:
b9:6c:22:04:df:ef:18:ec:5b:c6:13:35:16:37:2a:ed:9d:cf:
b1:14:06:59:4d:0b:28:02:22:3b:6e:49:f5:06:d2:4c:36:dc:
d8:60:67:1c:8c:fc:c9:e9:46:fe:cf:f2:10:d7:ec:ce:cd:06:
1e:de:c1:a4:98:0c:d6:17:39:19:81:b9:d7:1f:22:96:11:69:
4a:94:c2:5c:62:c7:fc:cf:14:9d:45:5d:7a:c7:77:9c:db:90:
6a:ae:00:75:e4:5b:91:44:24:4c:c5:4c:87:92:74:f9:c3:50:
b1:66:f1:5b:fb:7b:ae:92:12:c3:d2:24:20:cb:00:ae:07:f7:
50:48:f2:68:03:b8:9d:4e:02:75:c2:af:8a:ca:ff:fc:90:27:
58:2f:9e:c9:dd:a7:b4:29:9d:2f:78:15:73:d1:4a:ab:38:12:
e4:f7:98:b1:9b:8d:38:8e:87:88:de:64:f2:f9:be:4d:81:cb:
4e:19:05:8f
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVvpw9hw4UQJ4F7rvjDuNrgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzNWU0MTk2MGQ1OTBlOTk4MDRlOTBiOWFmMDM2NTU4NGM3
MTJjNzIwHhcNMjMwMTAxMjMyNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzA0OTAzNTVlZjQ5ODg1NjIxZjg1NDQ1OTQyMzU3ZTcwMDRiYmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnp4TBfhqoEssdJe5u14Sq8iHHera
59vIKXNzEcIRRELquAhnFPfVZ5P+D+NXbpNiRA+7fzwlpLz3saDOLi+hIvAvvwaW
+SR5mObINDSrcKc5QsuYcBCe9Er7KsQYqegFWq4lTn699wnChSi/2Jaff3AssOEK
UstQSzCAH3ttz03bjJq/sblOLt509JZWvKBXtsLkwhaHhGBxk5c/ERRbElBtjDuu
DkvQjuBaSITscP4vidHonYhsGvwTkZbwBcpMtxyQCeRFRgRqxSpCGYGChdDVc7CQ
71qUZ+pR2ivr40BVRBf2cYZ+pzh4j8+cSxgtDo1TI0lWxQ3MWi2bWRf9vQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFMwEkDVe9JiFYh+FRFlCNX5wBLv6MB8GA1UdIwQY
MBaAFENeQZYNWQ6ZgE6Qua8DZVhMcSxyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTE1QmxnMVpEcG1BVHBDNXJ3TmxXRXh4TEhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC83ZTJmMjgtNWNhZS00ZTZmLWE1ZjAt
MDFiYjVmZDUzNGY1LzEvekFTUU5WNzBtSVZpSDRWRVdVSTFmbkFFdV9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC83ZTJmMjgtNWNhZS00ZTZmLWE1ZjAtMDFiYjVmZDUzNGY1
LzEvUTE1QmxnMVpEcG1BVHBDNXJ3TmxXRXh4TEhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC5xJUD
BAC5xJYwDQYJKoZIhvcNAQELBQADggEBALlf16DeyjNw3M52zdkSA7y+L1IB+MR6
WJiyqtzRQIFaIlXnIr52VuQMX/iPs2nNjEZJwXrgMM6FArcqfnWiT+xwXYqmL3LR
ZblsIgTf7xjsW8YTNRY3Ku2dz7EUBllNCygCIjtuSfUG0kw23NhgZxyM/MnpRv7P
8hDX7M7NBh7ewaSYDNYXORmBudcfIpYRaUqUwlxix/zPFJ1FXXrHd5zbkGquAHXk
W5FEJEzFTIeSdPnDULFm8Vv7e66SEsPSJCDLAK4H91BI8mgDuJ1OAnXCr4rK//yQ
J1gvnsndp7QpnS94FXPRSqs4EuT3mLGbjTiOh4jeZPL5vk2By04ZBY8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:55 2024 by rpki-client on console-fra.rpki-client.org