Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/idC7_8AVi4to-cd85wq0mkLNpt0.roa
File: idC7_8AVi4to-cd85wq0mkLNpt0.roa (raw, json)
Hash identifier: pujR+R8c2iyWDBJAzNnimhVFqDMRgncgX+xZ3daHHTw=
Subject key identifier: 89:D0:BB:FF:C0:15:8B:8B:68:F9:C7:7C:E7:0A:B4:9A:42:CD:A6:DD
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018ADC59B0F85D2E7E001556379A57F3ED03
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/idC7_8AVi4to-cd85wq0mkLNpt0.roa
Signing time: Thu 28 Sep 2023 15:12:59 +0000
ROA not before: Thu 28 Sep 2023 15:12:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6461
IP address blocks: 185.226.204.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Sep 2023 17:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:dc:59:b0:f8:5d:2e:7e:00:15:56:37:9a:57:f3:ed:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Sep 28 15:12:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89d0bbffc0158b8b68f9c77ce70ab49a42cda6dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0f:18:da:e3:45:a4:ab:ab:69:f0:17:88:66:
d4:1e:6e:ee:0d:cf:2f:d4:c7:e7:69:01:7d:ae:d4:
9b:62:43:77:77:15:10:f9:aa:ef:cb:ec:57:cb:b1:
44:77:a7:19:b5:1b:21:60:40:97:b5:5e:18:d5:4b:
aa:6f:a8:a1:fa:f2:86:16:59:af:84:21:46:93:e0:
f7:b7:b8:93:6c:3d:70:60:54:1f:ec:39:36:88:45:
85:6d:68:ec:c2:43:6b:0a:0a:ee:1f:88:ba:00:0c:
8e:6f:72:ea:de:ba:cd:96:54:40:0d:23:b5:88:23:
b1:b1:b6:8d:92:82:31:b6:7a:e6:a5:79:df:07:ca:
ba:2c:49:92:6c:09:94:88:bd:be:c5:8e:56:cf:2c:
db:49:9f:05:64:55:f2:2d:4b:d5:00:6b:7a:dc:37:
0d:da:4f:6e:43:52:bf:65:42:90:05:2d:ff:f2:b5:
8b:4b:5e:ef:ae:75:93:82:92:e4:58:c7:66:1d:4a:
50:6c:f8:30:a1:24:c2:82:51:00:8e:1b:ea:6e:29:
44:fd:ad:82:0c:da:6d:3e:38:8e:3a:ad:de:76:2f:
bf:4d:be:6b:6e:32:22:7f:1a:8c:54:b9:da:40:9b:
a2:19:13:e0:71:48:18:5e:5a:58:f0:fa:83:99:15:
de:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D0:BB:FF:C0:15:8B:8B:68:F9:C7:7C:E7:0A:B4:9A:42:CD:A6:DD
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/idC7_8AVi4to-cd85wq0mkLNpt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.204.0/22
Signature Algorithm: sha256WithRSAEncryption
96:69:89:81:4f:19:c7:8d:e4:56:de:70:4e:59:c3:7a:bf:a7:
58:98:0a:f8:21:ce:f6:04:a0:f9:c0:90:35:fe:ef:21:11:20:
a8:cb:08:7f:3b:7c:cb:22:c2:6b:76:ef:5b:be:6e:2d:b1:e9:
70:59:d5:41:95:f0:af:7b:a2:c6:ee:af:e3:eb:e1:ca:e4:64:
53:e0:38:5b:2f:3d:a2:00:be:d7:d6:f6:ee:5d:39:46:7a:45:
59:d1:9b:4e:57:ec:32:33:a1:d3:ef:95:b6:e2:49:91:8f:ab:
45:ba:70:3a:7b:19:94:22:aa:21:f7:f4:0c:e2:9e:b6:c0:3e:
8b:0c:a9:93:ec:54:ca:7c:23:66:f5:37:0b:e7:18:0f:ba:e4:
82:ff:b8:08:8d:bc:26:a6:70:f6:17:30:6e:3f:59:f8:50:7a:
ce:b1:d3:5e:a0:fe:82:aa:3a:a8:ba:12:fd:35:8d:bb:ff:fa:
48:75:92:53:c0:9b:6c:ec:bf:c2:22:9e:b9:ca:90:96:83:f7:
2c:72:23:17:0c:39:95:b0:ee:fd:02:08:d2:ca:1b:5d:c1:d1:
4b:68:45:52:c8:4a:ad:f3:15:90:73:04:0c:f3:7d:3c:db:83:
8b:08:0e:90:02:17:c8:fa:d9:43:c3:9e:53:52:cb:42:39:75:
d5:ad:a9:1e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrcWbD4XS5+ABVWN5pX8+0DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyNjYwNWI0ZDI3ZjEzOTY4ZTg3OTRlNmVmMDkxMjIzNzQ4
ODE3ZDgwHhcNMjMwOTI4MTUxMjU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWQwYmJmZmMwMTU4YjhiNjhmOWM3N2NlNzBhYjQ5YTQyY2RhNmRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAig8Y2uNFpKurafAXiGbUHm7uDc8v
1MfnaQF9rtSbYkN3dxUQ+arvy+xXy7FEd6cZtRshYECXtV4Y1Uuqb6ih+vKGFlmv
hCFGk+D3t7iTbD1wYFQf7Dk2iEWFbWjswkNrCgruH4i6AAyOb3Lq3rrNllRADSO1
iCOxsbaNkoIxtnrmpXnfB8q6LEmSbAmUiL2+xY5WzyzbSZ8FZFXyLUvVAGt63DcN
2k9uQ1K/ZUKQBS3/8rWLS17vrnWTgpLkWMdmHUpQbPgwoSTCglEAjhvqbilE/a2C
DNptPjiOOq3edi+/Tb5rbjIifxqMVLnaQJuiGRPgcUgYXlpY8PqDmRXeFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFInQu//AFYuLaPnHfOcKtJpCzabdMB8GA1UdIwQY
MBaAFIJmBbTSfxOWjoeU5u8JEiN0iBfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ21ZRnROSl9FNWFPaDVUbTd3a1NJM1NJRjlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9mYmNjMzItMzNjOC00MWZmLTg5ZmEt
MmQxOTE4YmExYzBlLzEvaWRDN184QVZpNHRvLWNkODV3cTBta0xOcHQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny9mYmNjMzItMzNjOC00MWZmLTg5ZmEtMmQxOTE4YmExYzBl
LzEvZ21ZRnROSl9FNWFPaDVUbTd3a1NJM1NJRjlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCueLMMA0G
CSqGSIb3DQEBCwUAA4IBAQCWaYmBTxnHjeRW3nBOWcN6v6dYmAr4Ic72BKD5wJA1
/u8hESCoywh/O3zLIsJrdu9bvm4tselwWdVBlfCve6LG7q/j6+HK5GRT4DhbLz2i
AL7X1vbuXTlGekVZ0ZtOV+wyM6HT75W24kmRj6tFunA6exmUIqoh9/QM4p62wD6L
DKmT7FTKfCNm9TcL5xgPuuSC/7gIjbwmpnD2FzBuP1n4UHrOsdNeoP6CqjqouhL9
NY27//pIdZJTwJts7L/CIp65ypCWg/csciMXDDmVsO79AgjSyhtdwdFLaEVSyEqt
8xWQcwQM830824OLCA6QAhfI+tlDw55TUstCOXXVrake
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org