Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/fSFoLSSxQb_dRdYZDdbj4B3TdwA.roa
File: fSFoLSSxQb_dRdYZDdbj4B3TdwA.roa (raw, json)
Hash identifier: GSQ4KnOllRC2FHPj03dJri8iaosWgoBiHtSkhu9nibE=
Subject key identifier: 7D:21:68:2D:24:B1:41:BF:DD:45:D6:19:0D:D6:E3:E0:1D:D3:77:00
Certificate issuer: /CN=46815ca15d72a5a696f8bcdf486f5801966772bb
Certificate serial: 01856E2FB337B3A0AD5450D53F9A1CCA4CE6
Authority key identifier: 46:81:5C:A1:5D:72:A5:A6:96:F8:BC:DF:48:6F:58:01:96:67:72:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RoFcoV1ypaaW-LzfSG9YAZZncrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/fSFoLSSxQb_dRdYZDdbj4B3TdwA.roa
Signing time: Sun 01 Jan 2023 16:34:57 +0000
ROA not before: Sun 01 Jan 2023 16:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60607
IP address blocks: 185.28.160.0/24 maxlen: 24
185.28.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jul 2023 10:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:b3:37:b3:a0:ad:54:50:d5:3f:9a:1c:ca:4c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46815ca15d72a5a696f8bcdf486f5801966772bb
Validity
Not Before: Jan 1 16:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d21682d24b141bfdd45d6190dd6e3e01dd37700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:37:c9:25:6e:93:ec:cf:7e:9b:7a:18:8a:c6:
39:96:93:39:99:b9:a3:6d:0a:7f:77:a1:48:c1:88:
8c:d6:5f:94:b9:99:8c:e6:aa:34:53:5d:7b:2d:57:
9f:e2:d2:df:a6:58:71:8b:84:a2:cf:4e:6b:7a:fb:
fb:29:e6:25:d4:b2:59:72:e2:2e:a1:f1:50:c6:c3:
0e:8b:bb:eb:95:11:db:c9:3c:0b:df:18:fc:42:d3:
7b:3f:39:79:a0:00:c2:2d:1e:17:1c:c2:c3:dd:86:
1a:14:41:fa:14:2b:60:1b:6d:a5:1b:7d:78:c9:4d:
73:13:c3:71:6d:44:e3:9c:10:91:92:cb:b7:b8:7f:
95:1a:51:15:ca:81:39:ca:4b:72:bd:b9:fa:a6:65:
75:e0:a5:5b:b5:9a:7f:c6:d2:7e:cc:a6:5a:40:2b:
18:5c:fa:b5:43:d4:a3:1b:39:f0:14:b6:c3:7a:90:
22:73:ba:f6:35:63:b9:28:82:8c:42:08:4f:d4:18:
0c:93:10:57:32:d1:da:7d:18:8c:21:41:ec:7e:f6:
43:1b:61:5e:48:c3:9d:89:55:dc:d3:bc:3f:de:e3:
f9:61:25:d2:5c:00:00:cc:64:12:04:a1:6c:a0:90:
2f:2a:4c:1b:21:54:5b:26:2f:4e:51:98:ac:f6:37:
7f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:21:68:2D:24:B1:41:BF:DD:45:D6:19:0D:D6:E3:E0:1D:D3:77:00
X509v3 Authority Key Identifier:
keyid:46:81:5C:A1:5D:72:A5:A6:96:F8:BC:DF:48:6F:58:01:96:67:72:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RoFcoV1ypaaW-LzfSG9YAZZncrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/fSFoLSSxQb_dRdYZDdbj4B3TdwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/RoFcoV1ypaaW-LzfSG9YAZZncrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.160.0/23
Signature Algorithm: sha256WithRSAEncryption
37:c2:20:45:d6:f1:41:4a:c3:38:6a:b0:f3:49:42:39:e4:46:
15:e0:86:c0:b0:cc:55:16:d1:de:19:a8:37:b6:be:c4:6a:24:
ca:81:53:77:3d:e1:ea:50:ce:ad:7e:ef:3a:cc:4d:49:df:c8:
4b:52:3e:e6:80:23:ed:b7:af:50:68:aa:ce:9e:29:b5:47:78:
ce:fd:72:b3:8c:33:53:e8:2d:6e:9d:6c:63:85:aa:d4:c8:a9:
84:95:75:c9:a4:31:0b:15:1e:ab:61:d0:1d:62:95:7e:19:8f:
bc:71:fc:26:82:a5:fa:23:b0:50:d1:a5:dd:ce:83:9e:81:3e:
f8:db:88:7e:25:01:5f:ee:38:ac:6e:90:e4:f7:16:46:ba:8a:
bc:76:7d:68:d5:e9:02:31:4a:00:49:89:05:b1:e9:6f:31:1a:
17:31:30:1d:f5:cc:e2:1e:8c:50:e7:09:24:6f:f7:7e:70:a9:
17:54:fa:27:64:95:66:b2:c0:85:79:4b:a9:03:98:fc:b1:09:
3f:a3:d5:3c:14:28:30:5f:f1:b9:1f:4d:8e:a5:4b:63:20:f8:
ed:85:77:41:a4:4d:9f:41:85:4f:e7:7e:cf:27:16:08:8a:d6:
a4:af:e8:f1:b6:27:06:a8:c9:d8:ca:8a:89:64:09:53:8d:39:
ea:11:f5:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuL7M3s6CtVFDVP5ocykzmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2ODE1Y2ExNWQ3MmE1YTY5NmY4YmNkZjQ4NmY1ODAxOTY2
NzcyYmIwHhcNMjMwMTAxMTYzNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDIxNjgyZDI0YjE0MWJmZGQ0NWQ2MTkwZGQ2ZTNlMDFkZDM3NzAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjfJJW6T7M9+m3oYisY5lpM5mbmj
bQp/d6FIwYiM1l+UuZmM5qo0U117LVef4tLfplhxi4Siz05revv7KeYl1LJZcuIu
ofFQxsMOi7vrlRHbyTwL3xj8QtN7Pzl5oADCLR4XHMLD3YYaFEH6FCtgG22lG314
yU1zE8NxbUTjnBCRksu3uH+VGlEVyoE5yktyvbn6pmV14KVbtZp/xtJ+zKZaQCsY
XPq1Q9SjGznwFLbDepAic7r2NWO5KIKMQghP1BgMkxBXMtHafRiMIUHsfvZDG2Fe
SMOdiVXc07w/3uP5YSXSXAAAzGQSBKFsoJAvKkwbIVRbJi9OUZis9jd/TQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH0haC0ksUG/3UXWGQ3W4+Ad03cAMB8GA1UdIwQY
MBaAFEaBXKFdcqWmlvi830hvWAGWZ3K7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUm9GY29WMXlwYWFXLUx6ZlNHOVlBWlpuY3JzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC82NmJkNGItMWU1Ni00YjQ2LThiYWIt
ZDM4YTc2NjBiNTFlLzEvZlNGb0xTU3hRYl9kUmRZWkRkYmo0QjNUZHdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC82NmJkNGItMWU1Ni00YjQ2LThiYWItZDM4YTc2NjBiNTFl
LzEvUm9GY29WMXlwYWFXLUx6ZlNHOVlBWlpuY3JzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuRygMA0G
CSqGSIb3DQEBCwUAA4IBAQA3wiBF1vFBSsM4arDzSUI55EYV4IbAsMxVFtHeGag3
tr7EaiTKgVN3PeHqUM6tfu86zE1J38hLUj7mgCPtt69QaKrOnim1R3jO/XKzjDNT
6C1unWxjharUyKmElXXJpDELFR6rYdAdYpV+GY+8cfwmgqX6I7BQ0aXdzoOegT74
24h+JQFf7jisbpDk9xZGuoq8dn1o1ekCMUoASYkFselvMRoXMTAd9cziHoxQ5wkk
b/d+cKkXVPonZJVmssCFeUupA5j8sQk/o9U8FCgwX/G5H02OpUtjIPjthXdBpE2f
QYVP537PJxYIitakr+jxticGqMnYyoqJZAlTjTnqEfXh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:14 2024 by rpki-client on console-fra.rpki-client.org