Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bfb423-da69-4265-95e5-f47ae7ddaec0/1/fznXZyRbc5mMf9_9Y_EMGjtrRII.roa
File: fznXZyRbc5mMf9_9Y_EMGjtrRII.roa (raw, json)
Hash identifier: ghzyF8quc5F9IPVpmO4PcszEPzGI7Pxxaug8Wla2+hc=
Subject key identifier: 7F:39:D7:67:24:5B:73:99:8C:7F:DF:FD:63:F1:0C:1A:3B:6B:44:82
Certificate issuer: /CN=69ca7c17232db063491cfa585203369ffbeb76ed
Certificate serial: 0186306AA9C8D418838DBB2B7F8FAAA28FBD
Authority key identifier: 69:CA:7C:17:23:2D:B0:63:49:1C:FA:58:52:03:36:9F:FB:EB:76:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/acp8FyMtsGNJHPpYUgM2n_vrdu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/bfb423-da69-4265-95e5-f47ae7ddaec0/1/fznXZyRbc5mMf9_9Y_EMGjtrRII.roa
Signing time: Wed 08 Feb 2023 09:45:41 +0000
ROA not before: Wed 08 Feb 2023 09:45:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57588
IP address blocks: 185.65.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:30:6a:a9:c8:d4:18:83:8d:bb:2b:7f:8f:aa:a2:8f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69ca7c17232db063491cfa585203369ffbeb76ed
Validity
Not Before: Feb 8 09:45:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f39d767245b73998c7fdffd63f10c1a3b6b4482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3c:fa:55:09:df:d8:b0:1c:5e:9d:e8:6e:d8:
3c:df:b0:c2:92:77:94:4c:29:94:d9:ca:bd:ab:44:
c6:f4:45:bb:8d:56:af:13:88:76:cd:2f:de:0d:24:
55:93:a1:fa:c8:1a:0c:bb:55:ae:81:c1:7e:03:a6:
da:a1:2a:34:6b:30:75:f7:83:a3:3a:c6:67:4f:7e:
16:f8:12:19:e6:39:19:1d:6d:ac:fc:57:e6:15:2a:
12:e9:f2:54:c9:7e:25:ec:6c:6d:4a:fd:11:83:a5:
c5:de:86:f3:73:c1:e3:a5:c0:c7:86:29:36:3c:7f:
82:47:7f:cf:cd:26:5c:ad:cf:ec:ac:47:f4:3c:af:
ee:4e:ba:74:e2:58:2d:64:83:bb:77:d8:a9:d8:2f:
d2:2c:30:c5:5a:96:e4:0b:1e:7e:55:ab:e8:7d:ff:
b5:dd:03:bf:d3:3d:2e:68:74:ca:f8:e7:9b:36:72:
be:17:3d:e2:fe:d4:e6:68:61:74:8f:92:7f:6b:76:
46:e2:e9:1d:ad:ee:3d:ef:c7:4a:ca:16:0b:94:4e:
19:e4:10:a1:78:29:a0:4b:43:56:6c:24:0a:25:47:
71:1b:41:d8:26:0c:63:6c:54:3f:27:b7:72:58:09:
5b:ba:61:3b:39:05:52:41:c9:06:b4:bd:9a:02:76:
6c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:39:D7:67:24:5B:73:99:8C:7F:DF:FD:63:F1:0C:1A:3B:6B:44:82
X509v3 Authority Key Identifier:
keyid:69:CA:7C:17:23:2D:B0:63:49:1C:FA:58:52:03:36:9F:FB:EB:76:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/acp8FyMtsGNJHPpYUgM2n_vrdu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bfb423-da69-4265-95e5-f47ae7ddaec0/1/fznXZyRbc5mMf9_9Y_EMGjtrRII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bfb423-da69-4265-95e5-f47ae7ddaec0/1/acp8FyMtsGNJHPpYUgM2n_vrdu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.254.0/24
Signature Algorithm: sha256WithRSAEncryption
52:67:03:65:88:fd:4c:d5:fd:ce:cf:fe:7a:1f:53:ac:dc:33:
0a:59:33:ac:f6:b9:80:30:3a:fe:34:a3:e5:1e:d4:7b:5a:12:
58:40:53:a5:73:ec:5a:ef:ab:5a:38:b0:93:2e:01:18:f9:c7:
31:f9:72:c0:9b:73:57:78:57:04:3b:31:5b:ee:b6:53:d5:67:
dc:b0:28:78:30:c7:72:70:8a:b0:aa:fb:63:b3:76:a7:94:12:
6c:3d:66:3d:fb:88:d4:94:27:51:f4:10:bb:fd:b3:2e:fb:a8:
16:5e:f8:21:28:20:d1:5f:33:93:61:82:d2:08:69:56:b7:37:
4a:12:b5:33:2b:87:40:f1:b1:17:7f:e9:1a:95:22:4b:18:79:
72:bf:51:bb:5c:aa:df:ef:0c:8d:c1:b0:c3:65:37:8e:34:38:
fa:7a:2a:63:30:c2:0c:e2:65:a9:22:4d:33:ee:16:c8:e3:6a:
72:4a:84:cf:9c:8f:82:0f:b6:86:4f:b5:41:fe:fc:82:9a:8c:
2d:94:72:f1:5d:33:49:62:64:f0:79:d0:bc:86:a4:53:06:06:
78:97:54:31:ea:9f:2d:99:83:ae:fd:c5:60:49:3e:73:68:b8:
c5:ab:6a:05:ec:b1:67:22:ee:96:c1:b1:c6:ae:77:8b:b2:62:
20:cb:dd:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYwaqnI1BiDjbsrf4+qoo+9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5Y2E3YzE3MjMyZGIwNjM0OTFjZmE1ODUyMDMzNjlmZmJl
Yjc2ZWQwHhcNMjMwMjA4MDk0NTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZjM5ZDc2NzI0NWI3Mzk5OGM3ZmRmZmQ2M2YxMGMxYTNiNmI0NDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Tz6VQnf2LAcXp3obtg837DCkneU
TCmU2cq9q0TG9EW7jVavE4h2zS/eDSRVk6H6yBoMu1WugcF+A6baoSo0azB194Oj
OsZnT34W+BIZ5jkZHW2s/FfmFSoS6fJUyX4l7GxtSv0Rg6XF3obzc8HjpcDHhik2
PH+CR3/PzSZcrc/srEf0PK/uTrp04lgtZIO7d9ip2C/SLDDFWpbkCx5+Vavoff+1
3QO/0z0uaHTK+OebNnK+Fz3i/tTmaGF0j5J/a3ZG4ukdre4978dKyhYLlE4Z5BCh
eCmgS0NWbCQKJUdxG0HYJgxjbFQ/J7dyWAlbumE7OQVSQckGtL2aAnZsBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH8512ckW3OZjH/f/WPxDBo7a0SCMB8GA1UdIwQY
MBaAFGnKfBcjLbBjSRz6WFIDNp/763btMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWNwOEZ5TXRzR05KSFBwWVVnTTJuX3ZyZHUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9iZmI0MjMtZGE2OS00MjY1LTk1ZTUt
ZjQ3YWU3ZGRhZWMwLzEvZnpuWFp5UmJjNW1NZjlfOVlfRU1HanRyUklJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9iZmI0MjMtZGE2OS00MjY1LTk1ZTUtZjQ3YWU3ZGRhZWMw
LzEvYWNwOEZ5TXRzR05KSFBwWVVnTTJuX3ZyZHUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUH+MA0G
CSqGSIb3DQEBCwUAA4IBAQBSZwNliP1M1f3Oz/56H1Os3DMKWTOs9rmAMDr+NKPl
HtR7WhJYQFOlc+xa76taOLCTLgEY+ccx+XLAm3NXeFcEOzFb7rZT1WfcsCh4MMdy
cIqwqvtjs3anlBJsPWY9+4jUlCdR9BC7/bMu+6gWXvghKCDRXzOTYYLSCGlWtzdK
ErUzK4dA8bEXf+kalSJLGHlyv1G7XKrf7wyNwbDDZTeONDj6eipjMMIM4mWpIk0z
7hbI42pySoTPnI+CD7aGT7VB/vyCmowtlHLxXTNJYmTwedC8hqRTBgZ4l1Qx6p8t
mYOu/cVgST5zaLjFq2oF7LFnIu6WwbHGrneLsmIgy93h
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:18 2024 by rpki-client on console-fra.rpki-client.org