Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/60b62b-8e2c-443e-a162-b4c2dca593b3/1/D_CIsXqEnhahUY8HgNTBV_MjAKo.roa
File: D_CIsXqEnhahUY8HgNTBV_MjAKo.roa (raw, json)
Hash identifier: Xi6jrw1dNVMTxyeDbU22BvKk82yfwcUsPdRnORlbNOc=
Subject key identifier: 0F:F0:88:B1:7A:84:9E:16:A1:51:8F:07:80:D4:C1:57:F3:23:00:AA
Certificate issuer: /CN=fc534d4c4343cd89918969d56da185674b166355
Certificate serial: 01856FA7144F75354648F7D57122CEFB1B15
Authority key identifier: FC:53:4D:4C:43:43:CD:89:91:89:69:D5:6D:A1:85:67:4B:16:63:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FNNTENDzYmRiWnVbaGFZ0sWY1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/60b62b-8e2c-443e-a162-b4c2dca593b3/1/D_CIsXqEnhahUY8HgNTBV_MjAKo.roa
Signing time: Sun 01 Jan 2023 23:24:58 +0000
ROA not before: Sun 01 Jan 2023 23:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42273
IP address blocks: 194.50.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:14:4f:75:35:46:48:f7:d5:71:22:ce:fb:1b:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc534d4c4343cd89918969d56da185674b166355
Validity
Not Before: Jan 1 23:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ff088b17a849e16a1518f0780d4c157f32300aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:12:15:b0:77:51:74:9c:23:5a:56:5f:a8:27:
22:fe:7e:9f:04:7f:ad:3e:cf:3d:63:a6:4a:a4:da:
dd:5e:db:3c:b0:91:17:28:c0:41:59:94:55:8e:5a:
31:63:a3:ca:e8:4e:22:90:64:c7:a2:d6:37:20:85:
c9:02:8f:0d:0e:d7:5a:df:31:71:4e:b9:f8:ca:39:
32:3a:b1:db:22:c9:9a:a4:0c:84:51:c8:7a:6c:7d:
86:db:e7:e3:75:5d:e0:85:81:ba:2e:71:de:1e:5c:
77:43:82:11:d9:26:fc:ab:21:bf:09:e7:aa:75:49:
35:7e:7d:e8:cb:c2:25:40:19:95:5a:21:8e:c2:e5:
ff:ed:ac:10:d5:c4:95:b3:f5:ad:62:68:f5:22:bf:
83:22:06:74:73:1b:8b:f2:13:cc:b5:bd:9a:5f:5c:
c0:23:a6:50:b9:4d:87:16:c7:4e:30:43:8e:84:0c:
5b:75:c2:72:f9:13:b4:65:c0:e3:1c:1d:ad:83:64:
ce:f5:35:dc:b9:31:71:44:c1:5d:3d:10:6c:06:16:
4b:d3:69:36:7f:6b:27:c6:59:73:e6:63:22:05:23:
91:c4:cf:9d:17:73:5a:87:94:e8:59:d9:70:8e:be:
15:d6:04:28:2b:c6:6c:1a:a0:eb:66:56:83:11:ae:
8f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F0:88:B1:7A:84:9E:16:A1:51:8F:07:80:D4:C1:57:F3:23:00:AA
X509v3 Authority Key Identifier:
keyid:FC:53:4D:4C:43:43:CD:89:91:89:69:D5:6D:A1:85:67:4B:16:63:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FNNTENDzYmRiWnVbaGFZ0sWY1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/60b62b-8e2c-443e-a162-b4c2dca593b3/1/D_CIsXqEnhahUY8HgNTBV_MjAKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/60b62b-8e2c-443e-a162-b4c2dca593b3/1/_FNNTENDzYmRiWnVbaGFZ0sWY1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.166.0/24
Signature Algorithm: sha256WithRSAEncryption
04:be:fa:06:a3:bc:38:2e:7c:fc:95:67:ce:3b:5a:66:cf:80:
9b:63:ec:e5:f7:93:55:bc:b4:d0:52:19:3f:11:48:3a:9f:48:
bc:bd:c4:80:d4:bf:c3:49:3e:3b:17:97:c8:11:c0:00:9e:a0:
10:f8:95:13:19:2b:3e:2d:4f:d0:f7:1c:83:a4:ac:50:5d:ae:
a6:72:6f:70:f1:17:49:a7:e0:9e:32:f2:8c:54:45:90:bc:8b:
95:d1:d8:66:87:49:c1:0c:40:19:8b:01:97:00:52:45:17:e0:
0c:a3:1d:c8:90:5a:4e:1b:0c:c3:91:0a:37:d7:2f:4d:13:10:
1d:96:70:d4:0c:ec:0e:f4:26:b4:e4:8d:a4:c5:34:86:99:96:
db:32:73:a1:3d:8a:e2:7f:98:ed:a8:41:c1:85:ad:7d:85:8c:
98:75:58:60:35:c2:ab:30:ca:4a:98:da:62:14:3b:92:bb:48:
ee:6d:7d:af:ad:7a:78:45:3b:d6:ac:49:56:51:74:b8:07:a8:
1c:68:8c:c4:cb:df:1b:01:ec:57:05:9b:43:d7:3f:29:8b:11:
53:2e:26:83:f5:00:b2:b9:3d:f3:5b:73:8f:7c:f3:0e:9a:15:
22:bf:a0:c8:4e:3d:45:38:98:99:ed:f4:e7:5c:d7:7e:f3:7d:
d2:17:be:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvpxRPdTVGSPfVcSLO+xsVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjNTM0ZDRjNDM0M2NkODk5MTg5NjlkNTZkYTE4NTY3NGIx
NjYzNTUwHhcNMjMwMTAxMjMyNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmYwODhiMTdhODQ5ZTE2YTE1MThmMDc4MGQ0YzE1N2YzMjMwMGFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkBIVsHdRdJwjWlZfqCci/n6fBH+t
Ps89Y6ZKpNrdXts8sJEXKMBBWZRVjloxY6PK6E4ikGTHotY3IIXJAo8NDtda3zFx
Trn4yjkyOrHbIsmapAyEUch6bH2G2+fjdV3ghYG6LnHeHlx3Q4IR2Sb8qyG/Ceeq
dUk1fn3oy8IlQBmVWiGOwuX/7awQ1cSVs/WtYmj1Ir+DIgZ0cxuL8hPMtb2aX1zA
I6ZQuU2HFsdOMEOOhAxbdcJy+RO0ZcDjHB2tg2TO9TXcuTFxRMFdPRBsBhZL02k2
f2snxllz5mMiBSORxM+dF3Nah5ToWdlwjr4V1gQoK8ZsGqDrZlaDEa6PjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA/wiLF6hJ4WoVGPB4DUwVfzIwCqMB8GA1UdIwQY
MBaAFPxTTUxDQ82JkYlp1W2hhWdLFmNVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0ZOTlRFTkR6WW1SaVduVmJhR0ZaMHNXWTFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82MGI2MmItOGUyYy00NDNlLWExNjIt
YjRjMmRjYTU5M2IzLzEvRF9DSXNYcUVuaGFoVVk4SGdOVEJWX01qQUtvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni82MGI2MmItOGUyYy00NDNlLWExNjItYjRjMmRjYTU5M2Iz
LzEvX0ZOTlRFTkR6WW1SaVduVmJhR0ZaMHNXWTFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjKmMA0G
CSqGSIb3DQEBCwUAA4IBAQAEvvoGo7w4Lnz8lWfOO1pmz4CbY+zl95NVvLTQUhk/
EUg6n0i8vcSA1L/DST47F5fIEcAAnqAQ+JUTGSs+LU/Q9xyDpKxQXa6mcm9w8RdJ
p+CeMvKMVEWQvIuV0dhmh0nBDEAZiwGXAFJFF+AMox3IkFpOGwzDkQo31y9NExAd
lnDUDOwO9Ca05I2kxTSGmZbbMnOhPYrif5jtqEHBha19hYyYdVhgNcKrMMpKmNpi
FDuSu0jubX2vrXp4RTvWrElWUXS4B6gcaIzEy98bAexXBZtD1z8pixFTLiaD9QCy
uT3zW3OPfPMOmhUiv6DITj1FOJiZ7fTnXNd+833SF74b
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:37 2024 by rpki-client on console-fra.rpki-client.org