Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/xAzPcmwW1s-6Xe0jqHVrzJxZylg.roa
File: xAzPcmwW1s-6Xe0jqHVrzJxZylg.roa (raw, json)
Hash identifier: TMZTGislUXoYiVFfeBPYrgStpx/9PY1i+OcclL66JZY=
Subject key identifier: C4:0C:CF:72:6C:16:D6:CF:BA:5D:ED:23:A8:75:6B:CC:9C:59:CA:58
Certificate issuer: /CN=af8df7c4f79133730fe3e6894777a79604a5cb79
Certificate serial: 01856D8189B3FBD0AEB645B13EB6DCC509B7
Authority key identifier: AF:8D:F7:C4:F7:91:33:73:0F:E3:E6:89:47:77:A7:96:04:A5:CB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/xAzPcmwW1s-6Xe0jqHVrzJxZylg.roa
Signing time: Sun 01 Jan 2023 13:24:44 +0000
ROA not before: Sun 01 Jan 2023 13:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62002
IP address blocks: 185.49.196.0/22 maxlen: 22
2a01:a520::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:89:b3:fb:d0:ae:b6:45:b1:3e:b6:dc:c5:09:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af8df7c4f79133730fe3e6894777a79604a5cb79
Validity
Not Before: Jan 1 13:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c40ccf726c16d6cfba5ded23a8756bcc9c59ca58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:07:2a:c8:0e:47:1c:e5:55:0b:5b:52:ec:fe:
00:3b:da:50:f9:9b:3f:30:be:bd:ff:4f:25:30:a4:
6a:46:e0:ce:d4:86:00:2c:4d:ef:60:52:05:6f:ee:
a3:12:32:4d:fd:50:81:07:f8:e8:c7:44:0c:79:76:
e2:61:35:c6:3b:1b:26:63:8e:52:c6:c9:83:16:f7:
01:47:06:6f:62:f0:34:e1:36:c0:6b:6f:e5:92:e8:
c8:25:7d:6e:0a:4f:2d:53:7a:05:e9:1b:38:71:85:
22:2e:2f:40:9f:30:80:4a:60:b1:21:ab:94:71:e8:
5d:31:29:d6:0a:b5:bc:3b:04:52:32:a7:75:fa:ad:
f6:9d:71:f7:be:b4:c3:7d:e2:4a:90:25:88:03:69:
50:6e:02:d3:42:0a:1b:5f:59:5a:03:4a:dd:66:e8:
43:c5:80:db:99:ea:3c:1f:d9:b8:0a:6a:3f:db:43:
8c:48:86:b2:3e:75:a9:bd:57:b8:3a:f1:7d:63:d1:
8c:df:c6:1f:02:c5:dd:2b:bd:11:27:ef:32:ac:50:
d1:43:dd:49:de:d2:e1:d0:c6:f8:1a:33:e4:e9:0a:
ed:08:18:91:de:3a:a3:d3:56:1a:9c:3c:d5:58:df:
b8:35:30:be:06:53:c8:e5:6b:1e:0b:63:30:cb:b1:
87:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:0C:CF:72:6C:16:D6:CF:BA:5D:ED:23:A8:75:6B:CC:9C:59:CA:58
X509v3 Authority Key Identifier:
keyid:AF:8D:F7:C4:F7:91:33:73:0F:E3:E6:89:47:77:A7:96:04:A5:CB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/xAzPcmwW1s-6Xe0jqHVrzJxZylg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.196.0/22
IPv6:
2a01:a520::/32
Signature Algorithm: sha256WithRSAEncryption
34:b7:ed:c9:45:ae:2c:8c:8d:ff:7b:65:b7:92:e7:18:4c:b9:
2b:f3:a7:93:39:6f:8a:7e:19:c0:b5:a0:8f:ae:db:2f:8c:9b:
d8:ba:e1:3b:b7:c4:44:d6:fd:b4:55:0c:10:e9:fa:33:73:3d:
b9:8c:3c:ee:a4:46:a9:d3:47:e2:87:72:27:83:42:37:5a:96:
ef:c1:01:06:0a:ee:f9:21:95:f1:f0:22:31:4e:ce:88:73:6a:
69:ec:31:a3:9c:95:2e:68:97:7e:8c:db:e4:b2:9e:4d:91:39:
f5:4d:3e:50:52:2b:2f:47:7e:f8:51:04:c8:f0:dc:a5:24:4e:
a2:1b:a9:62:51:b3:e9:5a:fe:84:17:62:17:66:d8:7c:e9:9e:
93:04:39:dd:f1:f1:85:a5:a4:83:0b:87:83:d3:bd:1f:47:ad:
57:aa:32:88:85:ec:3b:86:16:c4:2e:90:53:32:f4:ea:2a:cf:
d7:7d:30:06:07:1e:71:89:3f:03:b9:7d:a8:66:16:37:39:37:
12:e3:01:42:1a:ad:bf:a5:49:37:16:33:5c:1c:51:40:46:02:
d8:9f:76:f7:3d:10:30:d7:5b:e9:90:f0:4c:b6:77:45:36:a6:
2a:e7:ab:1f:43:dc:63:2f:e3:f9:2a:cc:75:ad:62:98:02:88:
9c:ca:4a:09
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVtgYmz+9CutkWxPrbcxQm3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmOGRmN2M0Zjc5MTMzNzMwZmUzZTY4OTQ3NzdhNzk2MDRh
NWNiNzkwHhcNMjMwMTAxMTMyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDBjY2Y3MjZjMTZkNmNmYmE1ZGVkMjNhODc1NmJjYzljNTljYTU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhgcqyA5HHOVVC1tS7P4AO9pQ+Zs/
ML69/08lMKRqRuDO1IYALE3vYFIFb+6jEjJN/VCBB/jox0QMeXbiYTXGOxsmY45S
xsmDFvcBRwZvYvA04TbAa2/lkujIJX1uCk8tU3oF6Rs4cYUiLi9AnzCASmCxIauU
cehdMSnWCrW8OwRSMqd1+q32nXH3vrTDfeJKkCWIA2lQbgLTQgobX1laA0rdZuhD
xYDbmeo8H9m4Cmo/20OMSIayPnWpvVe4OvF9Y9GM38YfAsXdK70RJ+8yrFDRQ91J
3tLh0Mb4GjPk6QrtCBiR3jqj01YanDzVWN+4NTC+BlPI5WseC2Mwy7GH8wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFMQMz3JsFtbPul3tI6h1a8ycWcpYMB8GA1UdIwQY
MBaAFK+N98T3kTNzD+PmiUd3p5YEpct5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjQzM3hQZVJNM01QNC1hSlIzZW5sZ1NseTNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC81MGZmMDAtNzc3YS00MTFkLTkzOGIt
ZjRkNjBlY2RmMmIyLzEveEF6UGNtd1cxcy02WGUwanFIVnJ6SnhaeWxnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC81MGZmMDAtNzc3YS00MTFkLTkzOGItZjRkNjBlY2RmMmIy
LzEvcjQzM3hQZVJNM01QNC1hSlIzZW5sZ1NseTNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTHEMA0E
AgACMAcDBQAqAaUgMA0GCSqGSIb3DQEBCwUAA4IBAQA0t+3JRa4sjI3/e2W3kucY
TLkr86eTOW+KfhnAtaCPrtsvjJvYuuE7t8RE1v20VQwQ6fozcz25jDzupEap00fi
h3Ing0I3WpbvwQEGCu75IZXx8CIxTs6Ic2pp7DGjnJUuaJd+jNvksp5NkTn1TT5Q
UisvR374UQTI8NylJE6iG6liUbPpWv6EF2IXZth86Z6TBDnd8fGFpaSDC4eD070f
R61XqjKIhew7hhbELpBTMvTqKs/XfTAGBx5xiT8DuX2oZhY3OTcS4wFCGq2/pUk3
FjNcHFFARgLYn3b3PRAw11vpkPBMtndFNqYq56sfQ9xjL+P5Ksx1rWKYAoicykoJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:26 2024 by rpki-client on console-ams.rpki-client.org