Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/FYg5OnfNoDUDM5RURYDZdUpKCyA.roa
File: FYg5OnfNoDUDM5RURYDZdUpKCyA.roa (raw, json)
Hash identifier: aVZmlSJJVXXpq713e6qIBDFzjXz+dv57GqYAnK1CQhg=
Subject key identifier: 15:88:39:3A:77:CD:A0:35:03:33:94:54:45:80:D9:75:4A:4A:0B:20
Certificate issuer: /CN=cbf23be1115f022aa269d9cea439bb8b492307e2
Certificate serial: 01856D9D3ABA4A78F3090BE51FEE29FC6094
Authority key identifier: CB:F2:3B:E1:11:5F:02:2A:A2:69:D9:CE:A4:39:BB:8B:49:23:07:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_I74RFfAiqiadnOpDm7i0kjB-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/FYg5OnfNoDUDM5RURYDZdUpKCyA.roa
Signing time: Sun 01 Jan 2023 13:54:58 +0000
ROA not before: Sun 01 Jan 2023 13:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3549
IP address blocks: 185.64.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:3a:ba:4a:78:f3:09:0b:e5:1f:ee:29:fc:60:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbf23be1115f022aa269d9cea439bb8b492307e2
Validity
Not Before: Jan 1 13:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1588393a77cda035033394544580d9754a4a0b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:85:7d:66:03:06:d8:f4:d7:90:4a:2c:34:74:
6e:73:29:7b:3b:03:35:9b:5b:09:d6:94:b8:23:3b:
e0:0e:67:e8:87:a7:f3:0d:0e:e0:41:f0:a1:c0:a5:
b4:8c:d3:ac:df:9b:eb:c4:3a:7a:56:a8:9c:a0:21:
54:46:45:e8:c4:42:38:7d:64:b5:cb:e2:a4:7e:ab:
1f:6e:70:db:b8:3f:e9:47:ab:93:d8:ec:d4:4e:87:
0d:ba:17:5a:03:41:55:ae:cd:ed:c4:1c:a9:a6:28:
ce:03:02:c2:88:33:98:38:a9:4b:14:8a:7e:dd:04:
3c:d0:68:7f:a5:f4:b6:27:93:87:f1:ad:f9:d8:0f:
8b:6b:30:47:e5:4b:6a:57:7e:47:89:d2:dd:3a:66:
03:10:8a:ef:63:a4:14:e4:9f:14:06:d3:8c:7e:7a:
a1:4e:13:5b:f0:62:31:72:57:eb:d7:ee:52:4c:46:
65:66:02:22:48:78:03:62:a7:5a:5f:38:f7:23:2d:
e0:7c:5d:e8:92:60:72:f1:05:22:48:9f:0b:39:f5:
92:9e:34:7c:32:ac:08:7f:52:06:36:7e:94:8c:30:
18:db:23:d3:47:c4:35:04:07:44:08:4d:0e:5d:c1:
b0:cf:f6:1c:31:3e:e0:05:da:93:3d:96:24:d5:61:
9e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:88:39:3A:77:CD:A0:35:03:33:94:54:45:80:D9:75:4A:4A:0B:20
X509v3 Authority Key Identifier:
keyid:CB:F2:3B:E1:11:5F:02:2A:A2:69:D9:CE:A4:39:BB:8B:49:23:07:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_I74RFfAiqiadnOpDm7i0kjB-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/FYg5OnfNoDUDM5RURYDZdUpKCyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/y_I74RFfAiqiadnOpDm7i0kjB-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.252.0/22
Signature Algorithm: sha256WithRSAEncryption
85:80:09:20:30:0b:8e:b0:35:b2:a8:9d:14:cd:08:eb:cd:4c:
e2:fc:75:d6:0e:ac:2f:67:70:34:e1:d2:1a:60:7d:51:28:e7:
7f:3d:f2:44:bf:86:c0:be:0e:f4:7a:0d:dd:8e:54:6e:23:b3:
e6:5a:da:ab:20:ee:a4:a1:91:8a:f5:14:ec:be:4b:c6:6e:7d:
68:01:c6:cd:dd:5e:ff:f6:a7:32:38:c4:a4:8f:fc:fb:0d:ac:
3c:7d:bf:35:30:38:a4:55:69:a3:89:45:cc:d5:27:3e:ec:f0:
35:78:d8:11:bf:8c:81:7e:06:4d:67:6b:54:04:66:95:37:67:
80:d9:bf:80:85:86:73:ad:a1:14:45:23:00:fe:11:46:ba:6b:
d8:e5:51:11:1e:c5:f4:ef:ec:fa:16:be:a4:a8:25:9a:7a:a8:
4c:57:90:cb:2f:42:8d:2b:ea:15:bc:5e:ba:b0:ad:93:ec:a9:
48:4b:0d:4c:09:e4:e0:cb:11:61:94:05:ab:7f:5d:31:7f:98:
7d:e2:80:55:97:47:ba:8a:d3:1e:55:4c:4d:de:b7:79:32:14:
e2:a9:ff:f7:e3:84:31:4e:a2:be:32:4d:b2:cc:45:c8:81:f0:
a1:d1:d5:0e:53:4c:e9:e7:8b:0b:66:f0:d2:92:37:23:75:f1:
b0:3e:fc:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtnTq6SnjzCQvlH+4p/GCUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiZjIzYmUxMTE1ZjAyMmFhMjY5ZDljZWE0MzliYjhiNDky
MzA3ZTIwHhcNMjMwMTAxMTM1NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTg4MzkzYTc3Y2RhMDM1MDMzMzk0NTQ0NTgwZDk3NTRhNGEwYjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYV9ZgMG2PTXkEosNHRucyl7OwM1
m1sJ1pS4IzvgDmfoh6fzDQ7gQfChwKW0jNOs35vrxDp6VqicoCFURkXoxEI4fWS1
y+KkfqsfbnDbuD/pR6uT2OzUTocNuhdaA0FVrs3txByppijOAwLCiDOYOKlLFIp+
3QQ80Gh/pfS2J5OH8a352A+LazBH5UtqV35HidLdOmYDEIrvY6QU5J8UBtOMfnqh
ThNb8GIxclfr1+5STEZlZgIiSHgDYqdaXzj3Iy3gfF3okmBy8QUiSJ8LOfWSnjR8
MqwIf1IGNn6UjDAY2yPTR8Q1BAdECE0OXcGwz/YcMT7gBdqTPZYk1WGe1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBWIOTp3zaA1AzOUVEWA2XVKSgsgMB8GA1UdIwQY
MBaAFMvyO+ERXwIqomnZzqQ5u4tJIwfiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveV9JNzRSRmZBaXFpYWRuT3BEbTdpMGtqQi1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi81NjMxM2YtZWM0ZS00YzFjLWIzODgt
YmUzMjUyYWM0OTgwLzEvRllnNU9uZk5vRFVETTVSVVJZRFpkVXBLQ3lBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi81NjMxM2YtZWM0ZS00YzFjLWIzODgtYmUzMjUyYWM0OTgw
LzEveV9JNzRSRmZBaXFpYWRuT3BEbTdpMGtqQi1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuUD8MA0G
CSqGSIb3DQEBCwUAA4IBAQCFgAkgMAuOsDWyqJ0UzQjrzUzi/HXWDqwvZ3A04dIa
YH1RKOd/PfJEv4bAvg70eg3djlRuI7PmWtqrIO6koZGK9RTsvkvGbn1oAcbN3V7/
9qcyOMSkj/z7Daw8fb81MDikVWmjiUXM1Sc+7PA1eNgRv4yBfgZNZ2tUBGaVN2eA
2b+AhYZzraEURSMA/hFGumvY5VERHsX07+z6Fr6kqCWaeqhMV5DLL0KNK+oVvF66
sK2T7KlISw1MCeTgyxFhlAWrf10xf5h94oBVl0e6itMeVUxN3rd5MhTiqf/344Qx
TqK+Mk2yzEXIgfCh0dUOU0zp54sLZvDSkjcjdfGwPvxB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:07 2024 by rpki-client on console-fra.rpki-client.org