Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/u9a2PtcewuslroX2jkc7N3wVXio.roa
File: u9a2PtcewuslroX2jkc7N3wVXio.roa (raw, json)
Hash identifier: JAjC+iH3rT7dbVH1So7V3yBRdjOPaUQNazcLGtvWAO0=
Subject key identifier: BB:D6:B6:3E:D7:1E:C2:EB:25:AE:85:F6:8E:47:3B:37:7C:15:5E:2A
Certificate issuer: /CN=261b941dbe59651fafbba9724a12775e07edb635
Certificate serial: 01856CCAC4A2870271598E4A4B1ED18D1E68
Authority key identifier: 26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/u9a2PtcewuslroX2jkc7N3wVXio.roa
Signing time: Sun 01 Jan 2023 10:05:05 +0000
ROA not before: Sun 01 Jan 2023 10:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8218
IP address blocks: 185.172.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:c4:a2:87:02:71:59:8e:4a:4b:1e:d1:8d:1e:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261b941dbe59651fafbba9724a12775e07edb635
Validity
Not Before: Jan 1 10:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbd6b63ed71ec2eb25ae85f68e473b377c155e2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2f:1d:af:6b:d6:44:fc:84:cb:d8:62:d0:32:
71:54:b2:2d:66:50:ce:4e:79:45:3a:58:69:a5:c6:
7a:3c:f9:3d:5d:df:1e:5c:78:7b:f8:21:bb:9e:ea:
2c:e2:a0:3b:92:28:62:84:af:94:0e:7f:06:c9:3e:
a4:9d:1a:7f:5f:f8:cc:38:cc:48:32:7a:a5:f3:07:
e9:58:45:73:25:27:cd:21:57:b8:22:90:35:6e:f1:
b8:d5:c3:c6:90:dd:60:3c:55:3a:46:84:96:1a:1b:
07:c9:90:55:42:ef:4a:32:9f:fd:97:04:4e:f7:a5:
80:ea:73:e6:9a:d1:ea:61:6b:45:28:89:2a:d7:a8:
41:e1:34:92:88:70:99:b2:05:53:cd:0f:52:08:a0:
67:8d:09:05:c0:16:5e:ee:e8:1a:4a:3d:8a:dc:30:
65:2d:27:e4:4d:b8:17:f0:a0:f7:b7:9c:9b:4b:09:
6c:eb:a7:21:bf:33:f0:5d:19:00:b0:6b:3b:fb:b7:
bb:8e:bd:34:37:fa:e1:17:b3:2e:28:3b:23:c7:36:
00:2a:6a:35:5f:31:50:37:77:0b:0d:d5:ed:ff:de:
12:e0:0f:66:79:1a:ef:fa:21:06:3c:5b:cb:32:6e:
fe:a5:52:aa:7e:d0:07:88:24:f0:36:3d:5b:b4:fd:
ee:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D6:B6:3E:D7:1E:C2:EB:25:AE:85:F6:8E:47:3B:37:7C:15:5E:2A
X509v3 Authority Key Identifier:
keyid:26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/u9a2PtcewuslroX2jkc7N3wVXio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.152.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:47:78:fb:17:db:11:8b:03:9d:84:11:04:59:b9:e2:10:af:
21:1b:10:11:9f:96:5e:36:95:3e:a3:c7:c8:c6:73:bf:e0:2d:
f0:61:01:71:40:33:9d:77:a2:d8:e0:c2:20:00:9c:11:a1:bb:
59:0d:49:c8:a4:65:d4:05:16:03:ae:5c:5c:15:35:da:0b:5d:
ea:d3:ae:c5:e8:fa:01:59:dc:af:a9:7d:64:9d:a3:58:ba:1d:
99:ce:82:88:8d:95:77:41:0c:9d:d6:44:0b:27:8b:05:88:27:
d7:21:d6:7b:96:1c:33:f9:c0:5b:bc:e5:d8:fd:a9:b7:8c:fc:
d1:98:f5:46:b0:28:2f:d8:89:ff:1a:9a:bc:18:59:8e:c4:12:
91:cd:8f:5a:f0:49:84:fa:03:32:c2:7c:68:dd:3e:31:9f:b0:
ea:2c:0d:16:a1:2f:f9:a4:a3:d7:e9:40:ed:54:8d:6e:86:e8:
a1:71:c3:f1:0c:8c:5f:38:94:b2:d0:86:ea:1b:a2:83:61:1a:
b3:58:6f:e1:f8:37:79:45:17:0f:36:c3:55:c6:54:90:c8:5f:
08:2b:bb:52:17:fb:9d:de:62:c8:10:62:75:87:c1:6b:84:10:
33:6c:4f:5f:93:3d:7a:0e:de:f7:c3:bc:84:d7:bb:85:af:d8:
90:31:a7:1a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsysSihwJxWY5KSx7RjR5oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2MWI5NDFkYmU1OTY1MWZhZmJiYTk3MjRhMTI3NzVlMDdl
ZGI2MzUwHhcNMjMwMTAxMTAwNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYmQ2YjYzZWQ3MWVjMmViMjVhZTg1ZjY4ZTQ3M2IzNzdjMTU1ZTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAni8dr2vWRPyEy9hi0DJxVLItZlDO
TnlFOlhppcZ6PPk9Xd8eXHh7+CG7nuos4qA7kihihK+UDn8GyT6knRp/X/jMOMxI
Mnql8wfpWEVzJSfNIVe4IpA1bvG41cPGkN1gPFU6RoSWGhsHyZBVQu9KMp/9lwRO
96WA6nPmmtHqYWtFKIkq16hB4TSSiHCZsgVTzQ9SCKBnjQkFwBZe7ugaSj2K3DBl
LSfkTbgX8KD3t5ybSwls66chvzPwXRkAsGs7+7e7jr00N/rhF7MuKDsjxzYAKmo1
XzFQN3cLDdXt/94S4A9meRrv+iEGPFvLMm7+pVKqftAHiCTwNj1btP3u1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLvWtj7XHsLrJa6F9o5HOzd8FV4qMB8GA1UdIwQY
MBaAFCYblB2+WWUfr7upckoSd14H7bY1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmh1VUhiNVpaUi12dTZseVNoSjNYZ2Z0dGpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8yZjgzMGYtYWY0ZC00ZDMzLWEzMDAt
Yjk4ZGY1NDRiYzIwLzEvdTlhMlB0Y2V3dXNscm9YMmprYzdOM3dWWGlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My8yZjgzMGYtYWY0ZC00ZDMzLWEzMDAtYjk4ZGY1NDRiYzIw
LzEvSmh1VUhiNVpaUi12dTZseVNoSjNYZ2Z0dGpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuayYMA0G
CSqGSIb3DQEBCwUAA4IBAQA7R3j7F9sRiwOdhBEEWbniEK8hGxARn5ZeNpU+o8fI
xnO/4C3wYQFxQDOdd6LY4MIgAJwRobtZDUnIpGXUBRYDrlxcFTXaC13q067F6PoB
WdyvqX1knaNYuh2ZzoKIjZV3QQyd1kQLJ4sFiCfXIdZ7lhwz+cBbvOXY/am3jPzR
mPVGsCgv2In/Gpq8GFmOxBKRzY9a8EmE+gMywnxo3T4xn7DqLA0WoS/5pKPX6UDt
VI1uhuihccPxDIxfOJSy0IbqG6KDYRqzWG/h+Dd5RRcPNsNVxlSQyF8IK7tSF/ud
3mLIEGJ1h8FrhBAzbE9fkz16Dt73w7yE17uFr9iQMaca
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:53 2024 by rpki-client on console-ams.rpki-client.org