Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/fYDju0aBNRI6Ie0KLJMkqF6aPsk.roa
File: fYDju0aBNRI6Ie0KLJMkqF6aPsk.roa (raw, json)
Hash identifier: yzjdCV5p/n38WaAJTBtSDl11dh9qvdQU4xAkYckgR3Q=
Subject key identifier: 7D:80:E3:BB:46:81:35:12:3A:21:ED:0A:2C:93:24:A8:5E:9A:3E:C9
Certificate issuer: /CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Certificate serial: 0188249AAF515513D5DB3A86C963461011A0
Authority key identifier: A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/fYDju0aBNRI6Ie0KLJMkqF6aPsk.roa
Signing time: Tue 16 May 2023 12:48:17 +0000
ROA not before: Tue 16 May 2023 12:48:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29255
IP address blocks: 185.29.92.0/22 maxlen: 22
185.27.220.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:24:9a:af:51:55:13:d5:db:3a:86:c9:63:46:10:11:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Validity
Not Before: May 16 12:48:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d80e3bb468135123a21ed0a2c9324a85e9a3ec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9e:f6:79:6a:fe:6a:fc:12:ee:07:7e:ea:47:
cb:e7:3c:8b:36:ab:30:02:70:f3:24:81:62:b8:0f:
34:1c:22:45:c0:fd:40:44:0a:8b:21:92:58:cb:bf:
44:c2:60:d4:11:57:b2:6b:6d:49:3c:90:a6:90:92:
59:1a:c0:eb:57:4e:9a:2c:a8:77:be:f9:ab:92:05:
fa:a6:11:42:d1:cc:85:0b:ae:73:7e:0a:99:9c:08:
0a:15:4c:6b:3c:18:80:1b:b1:54:83:93:6c:17:93:
8f:17:ea:ac:8e:1d:c4:ca:81:ab:5b:af:06:12:bb:
0c:06:77:18:be:03:a5:6b:f6:4b:1a:56:b6:b8:f0:
ad:b7:bd:bd:d6:6b:60:67:76:ba:40:51:52:a6:55:
d1:dd:5f:07:09:45:4f:0d:26:16:f0:4a:31:46:2b:
64:8e:f6:c0:28:c0:03:b2:c1:8a:cc:89:d8:9c:4f:
4c:d3:cc:af:a9:d0:4c:93:e8:25:9b:b3:a0:78:1d:
d3:71:3d:02:0d:15:36:75:ab:10:34:93:1f:d5:b7:
78:e7:54:c7:b2:53:1b:29:8e:f5:98:18:aa:d5:39:
ce:0b:cb:a4:86:63:03:05:90:4b:a8:b6:4e:b8:af:
86:15:14:cf:45:eb:d4:33:12:1e:bf:e6:e5:f4:f3:
94:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:80:E3:BB:46:81:35:12:3A:21:ED:0A:2C:93:24:A8:5E:9A:3E:C9
X509v3 Authority Key Identifier:
keyid:A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/fYDju0aBNRI6Ie0KLJMkqF6aPsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/pjvMbSX3R2-7PsM_bbw-nurZIhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.220.0/22
185.29.92.0/22
Signature Algorithm: sha256WithRSAEncryption
76:63:52:77:74:25:58:4e:0e:ef:f3:e8:5c:17:d0:a5:f5:4b:
16:9f:67:78:c8:70:8c:e9:6b:d8:2f:f7:8d:2e:c2:97:c7:67:
6d:47:aa:9c:4f:9f:ef:23:03:64:11:8c:d4:2f:d6:6e:cf:28:
04:4a:ad:b1:7f:c1:02:76:63:a7:69:8a:48:d0:ed:7d:33:78:
6a:7a:23:7e:a8:e1:7c:67:ef:fb:ec:6c:6e:69:ef:69:8d:8a:
68:a3:29:c0:2c:1d:b6:d2:24:cf:d7:95:7e:d6:83:05:7c:f3:
8a:a2:f2:c5:69:0f:b2:fb:0d:ab:25:8f:bc:63:6d:ab:f4:50:
b1:55:76:cc:1c:5d:40:81:16:2c:e1:00:ad:4a:ec:b2:21:18:
a8:44:4f:53:38:84:29:03:7a:b4:a8:97:39:ff:3f:ff:53:17:
1b:25:7f:33:12:bd:44:1f:7b:36:a8:02:fd:d4:28:30:75:07:
28:58:ad:11:8e:2a:32:4d:7f:b3:c8:d6:e4:c2:2c:fc:0e:ce:
25:bf:af:30:12:b4:ce:17:49:fd:30:81:71:c9:ce:62:db:9f:
98:f6:b2:a0:ac:50:1b:aa:b4:1c:91:24:f6:51:7d:48:5b:32:
4d:65:e3:15:b5:dd:4c:fc:c2:3c:1b:f6:b6:07:9f:97:81:b6:
13:6f:e9:05
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYgkmq9RVRPV2zqGyWNGEBGgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2M2JjYzZkMjVmNzQ3NmZiYjNlYzMzZjZkYmMzZTllZWFk
OTIyMTIwHhcNMjMwNTE2MTI0ODE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDgwZTNiYjQ2ODEzNTEyM2EyMWVkMGEyYzkzMjRhODVlOWEzZWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJ72eWr+avwS7gd+6kfL5zyLNqsw
AnDzJIFiuA80HCJFwP1ARAqLIZJYy79EwmDUEVeya21JPJCmkJJZGsDrV06aLKh3
vvmrkgX6phFC0cyFC65zfgqZnAgKFUxrPBiAG7FUg5NsF5OPF+qsjh3EyoGrW68G
ErsMBncYvgOla/ZLGla2uPCtt7291mtgZ3a6QFFSplXR3V8HCUVPDSYW8EoxRitk
jvbAKMADssGKzInYnE9M08yvqdBMk+glm7OgeB3TcT0CDRU2dasQNJMf1bd451TH
slMbKY71mBiq1TnOC8ukhmMDBZBLqLZOuK+GFRTPRevUMxIev+bl9POUTQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFH2A47tGgTUSOiHtCiyTJKhemj7JMB8GA1UdIwQY
MBaAFKY7zG0l90dvuz7DP228Pp7q2SISMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGp2TWJTWDNSMi03UHNNX2Jidy1udXJaSWhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS83NjhmZGItZDFiNS00YmVmLWJjYmQt
NDkyNGZhMDAwYjdjLzEvZllEanUwYUJOUkk2SWUwS0xKTWtxRjZhUHNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS83NjhmZGItZDFiNS00YmVmLWJjYmQtNDkyNGZhMDAwYjdj
LzEvcGp2TWJTWDNSMi03UHNNX2Jidy1udXJaSWhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuRvcAwQC
uR1cMA0GCSqGSIb3DQEBCwUAA4IBAQB2Y1J3dCVYTg7v8+hcF9Cl9UsWn2d4yHCM
6WvYL/eNLsKXx2dtR6qcT5/vIwNkEYzUL9ZuzygESq2xf8ECdmOnaYpI0O19M3hq
eiN+qOF8Z+/77Gxuae9pjYpooynALB220iTP15V+1oMFfPOKovLFaQ+y+w2rJY+8
Y22r9FCxVXbMHF1AgRYs4QCtSuyyIRioRE9TOIQpA3q0qJc5/z//UxcbJX8zEr1E
H3s2qAL91CgwdQcoWK0RjioyTX+zyNbkwiz8Ds4lv68wErTOF0n9MIFxyc5i25+Y
9rKgrFAbqrQckST2UX1IWzJNZeMVtd1M/MI8G/a2B5+XgbYTb+kF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:14 2024 by rpki-client on console-fra.rpki-client.org