Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/AgjSHabsz1f2lXe9M7hM3IbmsLA.roa
File: AgjSHabsz1f2lXe9M7hM3IbmsLA.roa (raw, json)
Hash identifier: jeiXgUWmXCgg8CmV8IWYe4tWCwT77sb76sSjOs3Q4lE=
Subject key identifier: 02:08:D2:1D:A6:EC:CF:57:F6:95:77:BD:33:B8:4C:DC:86:E6:B0:B0
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 018C8B69D5E526B61C095EE73F1862236F2C
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/AgjSHabsz1f2lXe9M7hM3IbmsLA.roa
Signing time: Thu 21 Dec 2023 08:06:58 +0000
ROA not before: Thu 21 Dec 2023 08:06:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200845
IP address blocks: 185.185.92.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8b:69:d5:e5:26:b6:1c:09:5e:e7:3f:18:62:23:6f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Dec 21 08:06:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0208d21da6eccf57f69577bd33b84cdc86e6b0b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a7:d9:bd:b3:2f:e7:67:35:a6:45:37:ee:f2:
c1:83:e7:42:12:27:2e:ac:0a:2d:bf:8e:24:5b:7b:
4a:51:8e:c9:cc:dc:4c:de:fc:5d:b3:40:aa:f2:4e:
71:d3:7e:a2:b1:43:9c:02:2b:aa:ce:8c:18:76:0f:
d5:ad:dd:e9:6a:08:03:41:3a:7d:3d:fa:40:3b:a6:
43:d8:ea:85:50:d6:01:24:db:a6:76:a9:18:32:d6:
f0:2b:e3:00:1d:e9:df:a6:b0:d5:f1:87:24:6c:f5:
e7:11:1f:70:70:25:69:ae:6b:4c:35:4c:86:f3:d1:
eb:f2:86:42:c2:63:5a:5c:cf:c5:a5:23:ab:64:a2:
6a:e5:b3:1f:cb:62:1e:f6:df:c3:c0:07:99:d2:05:
49:fd:a9:41:b4:c1:42:15:0e:1c:68:fe:d3:66:2a:
fb:8d:a9:dd:1b:9f:13:c3:52:c7:eb:77:e9:fe:5f:
2e:cc:38:38:d9:39:cd:8a:7e:f3:95:1e:1b:74:1b:
5b:f4:83:36:5f:ee:0c:c2:b8:47:f8:60:60:8b:b9:
f6:af:00:d3:f3:d2:7d:4f:ff:32:d6:a8:57:9a:e3:
f8:5e:bb:6a:30:53:22:11:21:ca:f8:a5:0a:40:38:
cf:42:c4:c4:8a:da:d3:a1:a4:0d:1f:b8:b2:85:85:
ce:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:08:D2:1D:A6:EC:CF:57:F6:95:77:BD:33:B8:4C:DC:86:E6:B0:B0
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/AgjSHabsz1f2lXe9M7hM3IbmsLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.92.0/22
Signature Algorithm: sha256WithRSAEncryption
15:09:b2:3b:b8:5a:3c:8c:24:04:77:7a:0e:88:59:e4:42:a7:
3d:58:16:85:09:4a:c3:2e:5d:38:05:b4:c5:c2:b6:3d:cb:5a:
9d:83:a9:fb:32:13:ca:6c:a2:98:b5:bd:4b:ec:3b:b3:64:11:
7d:d7:12:fe:ec:d8:80:24:32:28:f5:a7:28:ca:5b:4b:21:c6:
27:d7:05:4b:2e:7a:7d:27:94:e6:19:58:96:fc:2d:76:7f:71:
5e:44:9a:4a:15:74:ed:f7:53:2c:28:fe:79:e8:08:53:61:6b:
10:20:1d:6c:88:34:6b:6d:46:ff:5f:33:42:aa:47:6a:75:6f:
99:cd:f1:0d:99:6a:dc:60:12:c9:00:c6:a2:8f:06:85:2d:d2:
2e:d6:bc:67:60:3a:55:48:b0:8e:81:3f:b8:30:18:72:f5:fb:
f7:7e:d9:f3:d7:25:d4:e0:bf:de:bf:1d:d6:aa:f6:c9:98:bf:
38:85:3b:26:66:43:a9:50:e2:0c:b2:90:32:b3:3c:27:e3:ad:
fb:42:35:c8:15:48:2c:bb:bb:84:bc:ba:26:9a:b8:36:5f:d8:
ed:2c:c6:17:56:c9:06:80:31:59:1e:c8:c9:7b:04:00:f4:4b:
8b:d2:40:dc:75:3f:db:16:4d:09:55:69:51:2c:ab:7b:51:be:
34:1c:99:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyLadXlJrYcCV7nPxhiI28sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmMTA3ZTA3OTUyYzA2OTM1OGNkM2Y4MmFhZWNlYjRjNjk0
ODNjYTkwHhcNMjMxMjIxMDgwNjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjA4ZDIxZGE2ZWNjZjU3ZjY5NTc3YmQzM2I4NGNkYzg2ZTZiMGIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6fZvbMv52c1pkU37vLBg+dCEicu
rAotv44kW3tKUY7JzNxM3vxds0Cq8k5x036isUOcAiuqzowYdg/Vrd3paggDQTp9
PfpAO6ZD2OqFUNYBJNumdqkYMtbwK+MAHenfprDV8YckbPXnER9wcCVprmtMNUyG
89Hr8oZCwmNaXM/FpSOrZKJq5bMfy2Ie9t/DwAeZ0gVJ/alBtMFCFQ4caP7TZir7
jandG58Tw1LH63fp/l8uzDg42TnNin7zlR4bdBtb9IM2X+4MwrhH+GBgi7n2rwDT
89J9T/8y1qhXmuP4XrtqMFMiESHK+KUKQDjPQsTEitrToaQNH7iyhYXOGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAII0h2m7M9X9pV3vTO4TNyG5rCwMB8GA1UdIwQY
MBaAFL8QfgeVLAaTWM0/gqrs60xpSDypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnhCLUI1VXNCcE5ZelQtQ3F1enJUR2xJUEtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi83ZTI4ZWUtYzY1ZC00NTI5LWE0N2It
NDg2MzNkNzE4NTkwLzEvQWdqU0hhYnN6MWYybFhlOU03aE0zSWJtc0xBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi83ZTI4ZWUtYzY1ZC00NTI5LWE0N2ItNDg2MzNkNzE4NTkw
LzEvdnhCLUI1VXNCcE5ZelQtQ3F1enJUR2xJUEtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCublcMA0G
CSqGSIb3DQEBCwUAA4IBAQAVCbI7uFo8jCQEd3oOiFnkQqc9WBaFCUrDLl04BbTF
wrY9y1qdg6n7MhPKbKKYtb1L7DuzZBF91xL+7NiAJDIo9acoyltLIcYn1wVLLnp9
J5TmGViW/C12f3FeRJpKFXTt91MsKP556AhTYWsQIB1siDRrbUb/XzNCqkdqdW+Z
zfENmWrcYBLJAMaijwaFLdIu1rxnYDpVSLCOgT+4MBhy9fv3ftnz1yXU4L/evx3W
qvbJmL84hTsmZkOpUOIMspAyszwn4637QjXIFUgsu7uEvLommrg2X9jtLMYXVskG
gDFZHsjJewQA9EuL0kDcdT/bFk0JVWlRLKt7Ub40HJln
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:36 2024 by rpki-client on console-ams.rpki-client.org