Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/f96aIa4lvwYGmtFFuVLZm6y3JsI.roa
File: f96aIa4lvwYGmtFFuVLZm6y3JsI.roa (raw, json)
Hash identifier: RQIyPnnW3+cZu0AcUVKfVudzrJQpbkfK2i/tIILAJy4=
Subject key identifier: 7F:DE:9A:21:AE:25:BF:06:06:9A:D1:45:B9:52:D9:9B:AC:B7:26:C2
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01856F66EF60077F8F2C89D479EE1620DF14
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/f96aIa4lvwYGmtFFuVLZm6y3JsI.roa
Signing time: Sun 01 Jan 2023 22:14:55 +0000
ROA not before: Sun 01 Jan 2023 22:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 148.222.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Jan 2023 08:56:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:ef:60:07:7f:8f:2c:89:d4:79:ee:16:20:df:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 22:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7fde9a21ae25bf06069ad145b952d99bacb726c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3b:86:19:4a:cf:15:91:7d:a1:79:e3:82:9f:
98:5e:71:61:e5:6d:58:35:7d:4e:04:9f:a7:99:3a:
4d:e8:95:11:64:98:cc:a7:2f:24:0e:53:08:8c:dd:
58:0f:d4:50:b3:c8:19:cc:d8:f0:a2:f8:d4:1b:9e:
53:81:1f:48:ca:97:a1:04:a2:01:0a:3f:a8:9a:23:
59:b3:ca:b0:47:0a:6d:5a:0c:f6:7f:63:f1:c4:b9:
d3:fe:0d:f5:7c:49:38:89:c5:d0:85:3b:63:dc:10:
07:c3:34:84:ec:e1:86:38:04:aa:18:3a:9f:6e:04:
00:5a:c2:07:bb:25:60:60:ce:bf:25:08:ba:16:4e:
4b:11:03:50:a5:fe:87:5a:07:de:39:46:c5:52:4d:
5b:0a:7c:49:68:7b:ec:ba:f6:cb:e9:13:f3:df:8a:
49:ba:39:e2:d8:a9:ff:b2:98:9e:b8:ad:0c:19:ae:
97:08:5c:27:9c:a0:55:3c:7f:4b:67:86:37:e1:ae:
7e:73:a2:e1:19:04:da:a0:89:56:c2:7e:09:59:1b:
29:a7:19:c1:7b:25:90:32:e1:65:da:12:1c:b9:c9:
0b:a4:b3:cd:9d:dc:e5:cf:13:7e:33:08:9b:97:3f:
0f:df:b7:d2:cb:dd:86:a3:2b:cb:6b:58:1b:0c:d9:
97:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:DE:9A:21:AE:25:BF:06:06:9A:D1:45:B9:52:D9:9B:AC:B7:26:C2
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/f96aIa4lvwYGmtFFuVLZm6y3JsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.222.240.0/22
Signature Algorithm: sha256WithRSAEncryption
86:b3:4b:44:5f:45:38:3d:55:fc:5e:ea:55:ff:7e:86:06:25:
c5:b4:a5:91:14:eb:3c:48:2b:17:81:49:30:1f:aa:1a:94:ae:
89:5a:bd:51:75:d0:6f:01:0d:7c:ac:39:01:b4:1e:86:dd:a1:
8c:24:cb:35:ac:81:00:e1:53:11:c0:cd:1c:96:14:6f:83:10:
47:8c:cc:69:34:53:a2:4c:a3:e2:37:76:73:08:5c:e0:c9:d6:
b0:b8:d2:ec:9f:ce:a1:82:dd:f1:ab:15:bb:9d:19:8e:79:a6:
1e:1b:7a:c2:a5:1b:92:8d:49:81:a7:72:e2:94:87:76:cd:d9:
de:33:29:96:52:24:36:ac:c5:10:1f:c0:bb:73:e8:c3:6e:4b:
64:dd:43:cd:32:ef:8a:93:bd:d2:3d:8f:ca:f3:4d:2b:2e:02:
9c:dc:27:ce:95:ec:5e:19:7a:c0:3f:4f:8d:75:c0:70:c9:34:
33:71:42:a3:56:db:93:e8:a9:87:33:cc:5c:fb:fd:6f:4c:aa:
0f:51:b5:6f:3c:3f:ef:1e:ed:28:cb:a0:c5:14:40:72:cd:31:
65:79:dd:6f:e7:eb:e4:40:c4:ea:99:20:14:b6:d3:bf:f6:da:
d9:7c:7d:1c:ec:62:b2:a5:e7:39:5c:1c:af:b8:d0:89:aa:d2:
d4:e9:02:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvZu9gB3+PLInUee4WIN8UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjMwMTAxMjIxNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmRlOWEyMWFlMjViZjA2MDY5YWQxNDViOTUyZDk5YmFjYjcyNmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizuGGUrPFZF9oXnjgp+YXnFh5W1Y
NX1OBJ+nmTpN6JURZJjMpy8kDlMIjN1YD9RQs8gZzNjwovjUG55TgR9IypehBKIB
Cj+omiNZs8qwRwptWgz2f2PxxLnT/g31fEk4icXQhTtj3BAHwzSE7OGGOASqGDqf
bgQAWsIHuyVgYM6/JQi6Fk5LEQNQpf6HWgfeOUbFUk1bCnxJaHvsuvbL6RPz34pJ
ujni2Kn/spieuK0MGa6XCFwnnKBVPH9LZ4Y34a5+c6LhGQTaoIlWwn4JWRsppxnB
eyWQMuFl2hIcuckLpLPNndzlzxN+Mwiblz8P37fSy92GoyvLa1gbDNmXlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH/emiGuJb8GBprRRblS2ZustybCMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvZjk2YUlhNGx2d1lHbXRGRnVWTFptNnkzSnNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClN7wMA0G
CSqGSIb3DQEBCwUAA4IBAQCGs0tEX0U4PVX8XupV/36GBiXFtKWRFOs8SCsXgUkw
H6oalK6JWr1RddBvAQ18rDkBtB6G3aGMJMs1rIEA4VMRwM0clhRvgxBHjMxpNFOi
TKPiN3ZzCFzgydawuNLsn86hgt3xqxW7nRmOeaYeG3rCpRuSjUmBp3LilId2zdne
MymWUiQ2rMUQH8C7c+jDbktk3UPNMu+Kk73SPY/K800rLgKc3CfOlexeGXrAP0+N
dcBwyTQzcUKjVtuT6KmHM8xc+/1vTKoPUbVvPD/vHu0oy6DFFEByzTFled1v5+vk
QMTqmSAUttO/9trZfH0c7GKypec5XByvuNCJqtLU6QJj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org