Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/_jqHp2LVju-LkOLU75af36y4TaI.roa
File: _jqHp2LVju-LkOLU75af36y4TaI.roa (raw, json)
Hash identifier: hbUuUBZdeCFzUv+JdFW4MT4q6v+585Q0zwBoisfkE8Y=
Subject key identifier: FE:3A:87:A7:62:D5:8E:EF:8B:90:E2:D4:EF:96:9F:DF:AC:B8:4D:A2
Certificate issuer: /CN=680e20ccfb2d5898c2162900d1468070a7024956
Certificate serial: 0185899464F787C2B4A6673B0A3541C7D5F6
Authority key identifier: 68:0E:20:CC:FB:2D:58:98:C2:16:29:00:D1:46:80:70:A7:02:49:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/_jqHp2LVju-LkOLU75af36y4TaI.roa
Signing time: Sat 07 Jan 2023 00:14:41 +0000
ROA not before: Sat 07 Jan 2023 00:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25459
IP address blocks: 185.95.44.0/22 maxlen: 22
2a01:4520::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:89:94:64:f7:87:c2:b4:a6:67:3b:0a:35:41:c7:d5:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=680e20ccfb2d5898c2162900d1468070a7024956
Validity
Not Before: Jan 7 00:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe3a87a762d58eef8b90e2d4ef969fdfacb84da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ac:bc:f7:d6:1d:d3:b9:18:9d:a7:21:24:0d:
4b:7c:b6:91:cb:0f:64:e5:cf:7b:45:4a:52:4d:e5:
5d:71:c7:e7:77:5f:e9:4b:7d:b8:6b:5c:22:2c:49:
c9:c9:2c:87:61:4f:a7:96:c5:fa:c8:3c:fe:07:0a:
b9:07:e6:f9:a0:79:3e:db:df:74:b9:f9:45:7b:d5:
55:3a:37:96:3e:78:48:aa:bd:a6:21:de:98:5b:c9:
b8:b7:06:40:d8:4a:45:35:e8:f4:8b:bd:9d:8f:5f:
21:ac:ac:a3:f2:a7:5d:9d:da:00:1b:63:20:7c:86:
d1:29:2b:f6:55:c9:39:e5:0a:7b:28:16:d8:a8:2b:
99:72:ca:ce:ca:36:c1:95:0f:01:24:ba:86:88:a3:
ad:dd:57:1f:85:fb:1d:e8:54:54:bc:5a:57:78:ca:
b4:0f:cd:22:38:6e:d4:d6:ef:7e:be:69:9e:92:83:
41:a0:f4:51:c1:ce:96:d6:25:ce:73:cf:e0:58:5e:
99:20:9d:8c:73:b8:37:1c:9c:2f:40:02:0d:f0:d8:
8b:d3:db:2b:d3:8e:aa:0b:fe:58:3a:dd:bc:26:df:
62:df:45:f1:3f:cf:d0:13:15:39:14:de:d2:70:8e:
57:94:b6:33:9f:b9:2c:f7:8c:f1:2b:4e:7d:ad:5d:
60:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:3A:87:A7:62:D5:8E:EF:8B:90:E2:D4:EF:96:9F:DF:AC:B8:4D:A2
X509v3 Authority Key Identifier:
keyid:68:0E:20:CC:FB:2D:58:98:C2:16:29:00:D1:46:80:70:A7:02:49:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/_jqHp2LVju-LkOLU75af36y4TaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.44.0/22
IPv6:
2a01:4520::/32
Signature Algorithm: sha256WithRSAEncryption
50:4d:a7:07:bd:66:47:95:84:d2:ad:69:0d:86:37:69:a3:8a:
8d:32:1e:23:65:21:51:14:76:e2:a6:53:5d:fe:13:68:28:c6:
c3:45:59:bb:3c:83:f8:de:fe:94:41:a7:91:ae:d7:72:0a:66:
2f:b0:d6:86:c0:38:bc:ed:44:7e:6f:1c:a5:08:0e:83:c0:2c:
9e:6f:eb:df:a8:62:0a:89:bc:1e:e7:ea:98:64:f1:f6:48:2a:
8b:d7:ce:2a:25:aa:3e:9c:d6:53:aa:8c:46:14:17:f5:46:cb:
97:67:a3:32:a0:92:f7:25:c3:fb:70:1a:ac:63:8b:f4:14:a8:
f9:95:33:39:6b:c0:05:41:bb:55:66:b8:87:db:cc:7c:94:ec:
e9:77:c4:19:24:eb:90:de:95:81:46:16:cd:3f:26:28:ff:d6:
04:5d:4b:54:92:e9:cc:e4:c8:2f:3d:66:bd:19:a3:19:25:3d:
66:96:c1:61:77:c2:79:f8:a5:b6:8e:91:66:bc:ae:11:c5:39:
6e:06:be:e9:5b:46:98:09:ca:e1:5c:d4:de:44:86:b2:87:95:
4b:b8:f4:48:98:ae:6b:d8:2b:cf:c2:66:93:ff:4f:de:bc:98:
da:e7:e6:ab:e1:ae:82:24:9e:1d:c1:d1:29:4e:fd:aa:13:5a:
56:c2:f8:84
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYWJlGT3h8K0pmc7CjVBx9X2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MGUyMGNjZmIyZDU4OThjMjE2MjkwMGQxNDY4MDcwYTcw
MjQ5NTYwHhcNMjMwMTA3MDAxNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTNhODdhNzYyZDU4ZWVmOGI5MGUyZDRlZjk2OWZkZmFjYjg0ZGEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgKy899Yd07kYnachJA1LfLaRyw9k
5c97RUpSTeVdccfnd1/pS324a1wiLEnJySyHYU+nlsX6yDz+Bwq5B+b5oHk+2990
uflFe9VVOjeWPnhIqr2mId6YW8m4twZA2EpFNej0i72dj18hrKyj8qddndoAG2Mg
fIbRKSv2Vck55Qp7KBbYqCuZcsrOyjbBlQ8BJLqGiKOt3Vcfhfsd6FRUvFpXeMq0
D80iOG7U1u9+vmmekoNBoPRRwc6W1iXOc8/gWF6ZIJ2Mc7g3HJwvQAIN8NiL09sr
046qC/5YOt28Jt9i30XxP8/QExU5FN7ScI5XlLYzn7ks94zxK059rV1g1wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFP46h6di1Y7vi5Di1O+Wn9+suE2iMB8GA1UdIwQY
MBaAFGgOIMz7LViYwhYpANFGgHCnAklWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUE0Z3pQc3RXSmpDRmlrQTBVYUFjS2NDU1ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny83OTZmOGMtYmRiNy00NDFmLWJkYmIt
MDM1NDFkMjMxNTc0LzEvX2pxSHAyTFZqdS1Ma09MVTc1YWYzNnk0VGFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny83OTZmOGMtYmRiNy00NDFmLWJkYmItMDM1NDFkMjMxNTc0
LzEvYUE0Z3pQc3RXSmpDRmlrQTBVYUFjS2NDU1ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuV8sMA0E
AgACMAcDBQAqAUUgMA0GCSqGSIb3DQEBCwUAA4IBAQBQTacHvWZHlYTSrWkNhjdp
o4qNMh4jZSFRFHbiplNd/hNoKMbDRVm7PIP43v6UQaeRrtdyCmYvsNaGwDi87UR+
bxylCA6DwCyeb+vfqGIKibwe5+qYZPH2SCqL184qJao+nNZTqoxGFBf1RsuXZ6My
oJL3JcP7cBqsY4v0FKj5lTM5a8AFQbtVZriH28x8lOzpd8QZJOuQ3pWBRhbNPyYo
/9YEXUtUkunM5MgvPWa9GaMZJT1mlsFhd8J5+KW2jpFmvK4RxTluBr7pW0aYCcrh
XNTeRIayh5VLuPRImK5r2CvPwmaT/0/evJja5+ar4a6CJJ4dwdEpTv2qE1pWwviE
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:02 2024 by rpki-client on console-ams.rpki-client.org