Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/68d348-ab65-415f-9751-ca1fbf7bb8c8/1/CxvkXwkdSQHG-NIccV9l1TjybsM.roa
File: CxvkXwkdSQHG-NIccV9l1TjybsM.roa (raw, json)
Hash identifier: dPB2/TXLCuve1/g2BbpaqVQD73tLNbkSEcXRmFWAlvI=
Subject key identifier: 0B:1B:E4:5F:09:1D:49:01:C6:F8:D2:1C:71:5F:65:D5:38:F2:6E:C3
Certificate issuer: /CN=f2ca4020efee61c3106ac9fece79c7a68f71a9cb
Certificate serial: 0185BA993E85A65EC4A4CA8B4E08E8D81163
Authority key identifier: F2:CA:40:20:EF:EE:61:C3:10:6A:C9:FE:CE:79:C7:A6:8F:71:A9:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8spAIO_uYcMQasn-znnHpo9xqcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/68d348-ab65-415f-9751-ca1fbf7bb8c8/1/CxvkXwkdSQHG-NIccV9l1TjybsM.roa
Signing time: Mon 16 Jan 2023 12:41:23 +0000
ROA not before: Mon 16 Jan 2023 12:41:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 194.165.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ba:99:3e:85:a6:5e:c4:a4:ca:8b:4e:08:e8:d8:11:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2ca4020efee61c3106ac9fece79c7a68f71a9cb
Validity
Not Before: Jan 16 12:41:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b1be45f091d4901c6f8d21c715f65d538f26ec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4b:b0:a4:1d:b2:1d:ef:a8:3c:7e:97:33:b0:
8f:a5:d0:e7:c4:47:6e:36:55:43:5f:39:54:cc:fb:
9d:bf:53:c7:1d:3e:65:3a:30:de:89:38:b5:8c:75:
1a:51:c4:a5:b8:f0:d4:e1:4a:bb:48:2d:e7:4e:2e:
32:23:d2:a8:fa:b4:6e:5c:59:e9:be:a4:49:8c:bf:
1e:a3:c0:58:5c:74:60:08:c0:25:ed:61:21:8b:ec:
29:33:be:44:dd:07:93:8f:5d:c4:c9:13:11:e3:55:
5f:6e:d2:80:44:4a:27:78:c7:ac:a0:4f:66:12:73:
0b:f1:8b:2c:e7:d4:c5:ff:a3:ad:01:ec:4b:9e:cc:
2e:59:76:32:84:28:cf:8a:12:61:4d:13:ca:27:cc:
5c:5c:dc:f8:85:fa:c5:b1:b3:14:26:1c:a6:4a:6f:
3c:9c:4d:3c:d9:e0:e7:fe:6d:58:f3:99:6e:6d:1b:
7c:45:e1:8f:a3:4e:91:e2:c9:04:d6:14:a1:b4:49:
88:1b:dc:42:53:f0:b9:8e:97:65:7a:09:75:04:0e:
94:6a:0a:b7:00:3b:f7:8e:fe:29:d3:ae:c3:4c:f6:
3c:a4:59:f8:e3:1a:e4:3f:39:43:db:6a:69:1c:0a:
97:fc:4d:ff:17:c0:8a:71:81:d9:9d:32:9f:81:1e:
a5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:1B:E4:5F:09:1D:49:01:C6:F8:D2:1C:71:5F:65:D5:38:F2:6E:C3
X509v3 Authority Key Identifier:
keyid:F2:CA:40:20:EF:EE:61:C3:10:6A:C9:FE:CE:79:C7:A6:8F:71:A9:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8spAIO_uYcMQasn-znnHpo9xqcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/68d348-ab65-415f-9751-ca1fbf7bb8c8/1/CxvkXwkdSQHG-NIccV9l1TjybsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/68d348-ab65-415f-9751-ca1fbf7bb8c8/1/8spAIO_uYcMQasn-znnHpo9xqcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.59.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:94:25:ed:c2:39:9d:5f:b5:3d:ef:3b:b7:37:15:28:b5:f6:
ca:56:3b:6c:6d:89:c1:69:2d:15:4d:88:92:23:dd:b0:3e:cf:
eb:ba:1b:02:67:c4:80:35:8d:97:e3:ed:99:5c:03:07:8d:d7:
1d:e8:7a:09:1e:f3:62:64:5c:e6:bc:a8:3b:fb:43:bf:37:9b:
28:bd:3e:58:9e:d2:b5:8f:0a:ad:b7:ec:98:e1:18:eb:00:76:
e2:4b:60:be:2a:8c:21:7d:95:b1:d5:05:b7:69:94:71:02:46:
90:99:c3:57:2f:4d:0a:db:32:f7:7e:6f:1e:6e:ca:bb:23:29:
7b:47:57:3d:e9:41:98:fd:09:67:29:b6:a8:99:26:53:a3:51:
43:35:d0:d6:84:bd:e2:d2:d2:51:a5:09:68:b7:b3:41:14:c5:
25:74:e8:52:b8:15:1e:f8:2f:22:ec:92:f7:36:3f:bc:d2:78:
f1:bc:97:8b:8a:27:f9:99:06:00:0a:97:61:11:46:4c:99:ab:
f9:a1:45:71:79:6a:e5:2f:fa:75:6b:43:a3:04:71:55:c7:81:
ce:10:5b:c3:a3:3e:d2:4f:1c:4c:78:e1:82:91:40:6d:64:4b:
7e:75:fb:08:15:24:ce:71:1b:7a:7a:fd:04:e1:42:d5:42:66:
0e:e4:0b:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYW6mT6Fpl7EpMqLTgjo2BFjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyY2E0MDIwZWZlZTYxYzMxMDZhYzlmZWNlNzljN2E2OGY3
MWE5Y2IwHhcNMjMwMTE2MTI0MTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjFiZTQ1ZjA5MWQ0OTAxYzZmOGQyMWM3MTVmNjVkNTM4ZjI2ZWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEuwpB2yHe+oPH6XM7CPpdDnxEdu
NlVDXzlUzPudv1PHHT5lOjDeiTi1jHUaUcSluPDU4Uq7SC3nTi4yI9Ko+rRuXFnp
vqRJjL8eo8BYXHRgCMAl7WEhi+wpM75E3QeTj13EyRMR41VfbtKAREoneMesoE9m
EnML8Yss59TF/6OtAexLnswuWXYyhCjPihJhTRPKJ8xcXNz4hfrFsbMUJhymSm88
nE082eDn/m1Y85lubRt8ReGPo06R4skE1hShtEmIG9xCU/C5jpdlegl1BA6Uagq3
ADv3jv4p067DTPY8pFn44xrkPzlD22ppHAqX/E3/F8CKcYHZnTKfgR6lbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAsb5F8JHUkBxvjSHHFfZdU48m7DMB8GA1UdIwQY
MBaAFPLKQCDv7mHDEGrJ/s55x6aPcanLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHNwQUlPX3VZY01RYXNuLXpubkhwbzl4cWNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS82OGQzNDgtYWI2NS00MTVmLTk3NTEt
Y2ExZmJmN2JiOGM4LzEvQ3h2a1h3a2RTUUhHLU5JY2NWOWwxVGp5YnNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS82OGQzNDgtYWI2NS00MTVmLTk3NTEtY2ExZmJmN2JiOGM4
LzEvOHNwQUlPX3VZY01RYXNuLXpubkhwbzl4cWNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwqU7MA0G
CSqGSIb3DQEBCwUAA4IBAQCylCXtwjmdX7U97zu3NxUotfbKVjtsbYnBaS0VTYiS
I92wPs/ruhsCZ8SANY2X4+2ZXAMHjdcd6HoJHvNiZFzmvKg7+0O/N5sovT5YntK1
jwqtt+yY4RjrAHbiS2C+KowhfZWx1QW3aZRxAkaQmcNXL00K2zL3fm8ebsq7Iyl7
R1c96UGY/QlnKbaomSZTo1FDNdDWhL3i0tJRpQlot7NBFMUldOhSuBUe+C8i7JL3
Nj+80njxvJeLiif5mQYACpdhEUZMmav5oUVxeWrlL/p1a0OjBHFVx4HOEFvDoz7S
TxxMeOGCkUBtZEt+dfsIFSTOcRt6ev0E4ULVQmYO5Au4
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org