Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/fNiVk17_taC-zIafIKleLiCavn8.roa
File: fNiVk17_taC-zIafIKleLiCavn8.roa (raw, json)
Hash identifier: 7cGB5y9fEsarIrKPY5ka82RygKoxUROrgeXNjGjz9yk=
Subject key identifier: 7C:D8:95:93:5E:FF:B5:A0:BE:CC:86:9F:20:A9:5E:2E:20:9A:BE:7F
Certificate issuer: /CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Certificate serial: 01856F94AA24EDD0F6F867088B11058180D2
Authority key identifier: 62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/fNiVk17_taC-zIafIKleLiCavn8.roa
Signing time: Sun 01 Jan 2023 23:04:51 +0000
ROA not before: Sun 01 Jan 2023 23:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 185.82.88.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:aa:24:ed:d0:f6:f8:67:08:8b:11:05:81:80:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Validity
Not Before: Jan 1 23:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cd895935effb5a0becc869f20a95e2e209abe7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7a:25:14:34:63:e0:5e:6e:77:d9:40:76:a9:
db:74:ba:7f:67:96:a8:7e:6e:60:36:41:ee:56:51:
ba:f5:3c:dd:de:0b:a1:fd:56:c5:d5:ef:12:50:2e:
b7:e1:a8:94:64:08:2c:b3:b0:0f:8f:ae:70:0c:de:
eb:69:16:5b:3a:ab:bb:9d:c8:8b:f2:7a:29:16:bf:
86:8b:79:c9:a0:ca:97:6d:76:8d:3c:6d:cc:96:4b:
13:c4:62:58:c4:42:b1:3a:0d:4a:db:56:9a:a4:cc:
5f:5d:2d:6c:0d:ca:21:d9:9f:48:37:f2:aa:60:68:
fb:6c:dc:5a:28:ee:13:27:0c:ee:a5:bd:55:39:4c:
83:62:59:8f:85:26:df:5e:03:ae:94:60:4a:cc:e7:
11:99:dc:1b:b7:cc:6b:fe:c3:12:f7:9a:f5:25:aa:
63:f2:a3:1b:b3:ce:c9:d8:3c:64:9e:0d:6d:e1:e9:
f0:3a:35:66:19:b5:a0:26:a5:ff:3f:69:95:2b:7e:
da:d2:d3:17:79:e9:75:34:ed:07:de:a7:07:3c:22:
17:67:81:18:e1:6b:d6:11:46:ae:3c:4f:37:76:4b:
e8:fc:b9:6b:e8:8b:5b:ac:16:ec:e6:0c:bc:35:8d:
bd:90:21:f9:cc:2f:c8:59:14:30:13:44:82:1e:5c:
a2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:D8:95:93:5E:FF:B5:A0:BE:CC:86:9F:20:A9:5E:2E:20:9A:BE:7F
X509v3 Authority Key Identifier:
keyid:62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/fNiVk17_taC-zIafIKleLiCavn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.88.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:88:d0:d0:fc:3f:12:4d:56:ff:f9:8c:2b:6d:3f:e0:f7:54:
9d:ec:bc:32:ca:68:10:1f:3b:fe:b5:4d:19:4e:d3:e0:3f:64:
62:0f:e7:f3:4e:99:a7:db:15:0e:57:c4:0d:4e:92:1e:d3:a9:
cf:d1:2c:d4:2a:89:89:1d:42:1d:9c:3e:52:33:af:cf:7b:eb:
7b:f9:08:89:d8:da:91:1a:2f:62:e3:02:72:55:7a:79:c7:c3:
d5:5a:a5:b1:84:7b:3a:7b:dc:99:d0:a8:1c:12:fc:06:09:4c:
24:27:b4:48:34:10:77:46:95:9e:07:fa:1c:33:6e:0d:17:19:
a1:45:26:ff:d5:3c:ef:87:05:da:0b:ff:45:e6:d1:dd:96:f2:
99:e0:8b:09:44:3a:34:52:c8:4c:2f:7e:21:e9:8d:93:91:f3:
92:18:28:54:e7:13:d8:88:12:cb:0c:86:63:a1:4b:76:5d:f6:
48:e2:df:74:35:d2:29:63:2e:84:ba:96:db:a8:b5:69:ae:41:
98:29:11:61:a9:57:6c:e9:f3:36:36:86:aa:4b:75:a3:b3:81:
2c:4e:23:b4:a8:d0:ba:61:40:3f:a4:da:ab:3c:59:3b:cf:39:
ad:65:21:9c:26:5d:58:fa:8d:6f:69:94:94:e1:fa:2f:dc:c3:
b7:4b:50:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvlKok7dD2+GcIixEFgYDSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyNmEyOGI3YzYzZWY2YWIyMTRhNTJjZmE3YzNlNzhkYjlh
NDA4MjMwHhcNMjMwMTAxMjMwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Y2Q4OTU5MzVlZmZiNWEwYmVjYzg2OWYyMGE5NWUyZTIwOWFiZTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXolFDRj4F5ud9lAdqnbdLp/Z5ao
fm5gNkHuVlG69Tzd3guh/VbF1e8SUC634aiUZAgss7APj65wDN7raRZbOqu7nciL
8nopFr+Gi3nJoMqXbXaNPG3MlksTxGJYxEKxOg1K21aapMxfXS1sDcoh2Z9IN/Kq
YGj7bNxaKO4TJwzupb1VOUyDYlmPhSbfXgOulGBKzOcRmdwbt8xr/sMS95r1Japj
8qMbs87J2Dxkng1t4enwOjVmGbWgJqX/P2mVK37a0tMXeel1NO0H3qcHPCIXZ4EY
4WvWEUauPE83dkvo/Llr6ItbrBbs5gy8NY29kCH5zC/IWRQwE0SCHlyiWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHzYlZNe/7WgvsyGnyCpXi4gmr5/MB8GA1UdIwQY
MBaAFGJqKLfGPvarIUpSz6fD5425pAgjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWW1vb3Q4WS05cXNoU2xMUHA4UG5qYm1rQ0NNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zYzA3ODUtYjI3My00MDcyLWE2MzUt
ZDJjZDI2YjY5ZGYxLzEvZk5pVmsxN190YUMteklhZklLbGVMaUNhdm44LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8zYzA3ODUtYjI3My00MDcyLWE2MzUtZDJjZDI2YjY5ZGYx
LzEvWW1vb3Q4WS05cXNoU2xMUHA4UG5qYm1rQ0NNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVJYMA0G
CSqGSIb3DQEBCwUAA4IBAQA6iNDQ/D8STVb/+YwrbT/g91Sd7LwyymgQHzv+tU0Z
TtPgP2RiD+fzTpmn2xUOV8QNTpIe06nP0SzUKomJHUIdnD5SM6/Pe+t7+QiJ2NqR
Gi9i4wJyVXp5x8PVWqWxhHs6e9yZ0KgcEvwGCUwkJ7RINBB3RpWeB/ocM24NFxmh
RSb/1TzvhwXaC/9F5tHdlvKZ4IsJRDo0UshML34h6Y2TkfOSGChU5xPYiBLLDIZj
oUt2XfZI4t90NdIpYy6EupbbqLVprkGYKRFhqVds6fM2NoaqS3Wjs4EsTiO0qNC6
YUA/pNqrPFk7zzmtZSGcJl1Y+o1vaZSU4fov3MO3S1BT
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:39 2024 by rpki-client on console-fra.rpki-client.org