Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/pfKVT1ayn9wlhvmrVlFc6do30IY.roa
File: pfKVT1ayn9wlhvmrVlFc6do30IY.roa (raw, json)
Hash identifier: 0LuDlzzxXvbfe+e5tK3ZG4CqGyKSiSGmn1GfaXSh2cU=
Subject key identifier: A5:F2:95:4F:56:B2:9F:DC:25:86:F9:AB:56:51:5C:E9:DA:37:D0:86
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 018C87D64F5ADDD101F5CFC8B98F7F78E90C
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/pfKVT1ayn9wlhvmrVlFc6do30IY.roa
Signing time: Wed 20 Dec 2023 15:26:58 +0000
ROA not before: Wed 20 Dec 2023 15:26:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200845
IP address blocks: 185.185.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 21 Dec 2023 08:06:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:87:d6:4f:5a:dd:d1:01:f5:cf:c8:b9:8f:7f:78:e9:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Dec 20 15:26:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5f2954f56b29fdc2586f9ab56515ce9da37d086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d3:fa:f0:e0:8c:bc:4e:30:1e:b3:85:5e:44:
bc:82:d4:5b:15:b3:cf:e1:1a:b2:17:5d:a0:f4:34:
de:6f:b1:2f:ff:dc:bd:10:85:d6:9e:b5:7b:01:bf:
46:05:57:b7:23:32:cb:bd:15:cb:42:02:d4:1f:6f:
51:84:b1:44:3d:69:b2:8f:cb:b6:2f:f0:c6:2b:5c:
39:fb:e8:bf:d2:b7:58:20:1c:63:3b:25:78:7c:fc:
d0:80:f3:d8:a3:e1:1a:b3:8d:c0:eb:a3:17:63:19:
fa:84:a8:cc:40:f5:8e:33:7f:85:22:ff:41:26:20:
4e:12:6b:8c:60:23:37:5a:eb:88:db:79:6a:52:e8:
c9:44:18:9c:49:f9:2b:50:87:92:0b:9a:b8:b8:e3:
9b:0e:af:b6:ef:5b:80:c5:28:fc:34:9e:64:3c:16:
7b:78:3c:f5:88:73:68:83:62:51:9b:8e:4f:98:b7:
68:e9:da:05:41:87:3e:0e:a8:e3:5f:fc:96:65:ee:
14:63:a8:32:9a:e6:52:1e:7b:79:4b:8a:c6:8a:b6:
31:04:b5:8a:79:7e:23:16:fa:62:2e:19:dd:2e:ef:
3f:23:52:98:32:1a:b7:d7:93:08:68:ec:16:93:c6:
43:56:d9:f6:7f:26:d5:9a:b9:c0:99:a9:54:4b:e2:
ee:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F2:95:4F:56:B2:9F:DC:25:86:F9:AB:56:51:5C:E9:DA:37:D0:86
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/pfKVT1ayn9wlhvmrVlFc6do30IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.92.0/22
Signature Algorithm: sha256WithRSAEncryption
47:98:60:f7:c6:60:ab:d8:47:ae:7b:43:85:3d:ca:ed:a5:89:
76:f8:fd:35:7e:ed:81:06:2f:a9:8b:b8:59:89:89:72:55:3a:
f9:e5:c3:28:a0:cf:b6:7d:35:5d:5f:4e:65:e2:47:ac:27:bd:
65:a5:b6:bc:a5:3f:aa:44:dd:1a:8f:5a:ee:a7:71:c2:0f:db:
43:02:22:4b:9f:e9:f6:21:46:3e:c7:90:c6:0d:80:f6:37:9d:
7d:ec:3b:3d:a7:85:96:b9:23:a4:73:7f:c6:a7:4c:65:93:e3:
5c:60:c2:37:f5:3f:a9:e6:e3:3b:2c:78:ec:c1:1e:17:59:91:
3f:b4:25:b2:42:4b:75:49:74:f7:38:9d:3c:2c:c3:b1:16:b7:
4e:c9:a9:f5:3c:3c:74:e8:27:91:c4:b8:c4:b0:54:22:2c:34:
e0:03:cb:3e:c5:47:4c:21:a1:44:81:5a:3c:79:79:56:e7:b4:
61:81:f9:95:51:23:d9:cf:7a:a4:b5:01:e5:ef:e3:fe:01:d5:
8c:92:44:65:9d:88:79:08:10:b2:fd:e5:db:61:22:de:52:a1:
43:36:b5:c0:45:5c:fa:41:0e:ed:fd:48:3b:b5:d4:ad:04:80:
a1:94:91:47:fe:05:7d:43:ee:dd:ea:f5:51:91:92:5e:df:61:
39:e8:c4:ac
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyH1k9a3dEB9c/IuY9/eOkMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmMTA3ZTA3OTUyYzA2OTM1OGNkM2Y4MmFhZWNlYjRjNjk0
ODNjYTkwHhcNMjMxMjIwMTUyNjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNWYyOTU0ZjU2YjI5ZmRjMjU4NmY5YWI1NjUxNWNlOWRhMzdkMDg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutP68OCMvE4wHrOFXkS8gtRbFbPP
4RqyF12g9DTeb7Ev/9y9EIXWnrV7Ab9GBVe3IzLLvRXLQgLUH29RhLFEPWmyj8u2
L/DGK1w5++i/0rdYIBxjOyV4fPzQgPPYo+Eas43A66MXYxn6hKjMQPWOM3+FIv9B
JiBOEmuMYCM3WuuI23lqUujJRBicSfkrUIeSC5q4uOObDq+271uAxSj8NJ5kPBZ7
eDz1iHNog2JRm45PmLdo6doFQYc+DqjjX/yWZe4UY6gymuZSHnt5S4rGirYxBLWK
eX4jFvpiLhndLu8/I1KYMhq315MIaOwWk8ZDVtn2fybVmrnAmalUS+LujQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKXylU9Wsp/cJYb5q1ZRXOnaN9CGMB8GA1UdIwQY
MBaAFL8QfgeVLAaTWM0/gqrs60xpSDypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnhCLUI1VXNCcE5ZelQtQ3F1enJUR2xJUEtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi83ZTI4ZWUtYzY1ZC00NTI5LWE0N2It
NDg2MzNkNzE4NTkwLzEvcGZLVlQxYXluOXdsaHZtclZsRmM2ZG8zMElZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi83ZTI4ZWUtYzY1ZC00NTI5LWE0N2ItNDg2MzNkNzE4NTkw
LzEvdnhCLUI1VXNCcE5ZelQtQ3F1enJUR2xJUEtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCublcMA0G
CSqGSIb3DQEBCwUAA4IBAQBHmGD3xmCr2Eeue0OFPcrtpYl2+P01fu2BBi+pi7hZ
iYlyVTr55cMooM+2fTVdX05l4kesJ71lpba8pT+qRN0aj1rup3HCD9tDAiJLn+n2
IUY+x5DGDYD2N5197Ds9p4WWuSOkc3/Gp0xlk+NcYMI39T+p5uM7LHjswR4XWZE/
tCWyQkt1SXT3OJ08LMOxFrdOyan1PDx06CeRxLjEsFQiLDTgA8s+xUdMIaFEgVo8
eXlW57RhgfmVUSPZz3qktQHl7+P+AdWMkkRlnYh5CBCy/eXbYSLeUqFDNrXARVz6
QQ7t/Ug7tdStBIChlJFH/gV9Q+7d6vVRkZJe32E56MSs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:03 2024 by rpki-client on console-fra.rpki-client.org