Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/1201bf-e6de-483a-bc23-d6bce7c831ce/1/80KvjNbSujVW0aHnN-3O1_RXX-c.roa
File: 80KvjNbSujVW0aHnN-3O1_RXX-c.roa (raw, json)
Hash identifier: r/OcVtLGOgCReSdW367oUlQOgQm9Yy5UV0gMmQPAAC8=
Subject key identifier: F3:42:AF:8C:D6:D2:BA:35:56:D1:A1:E7:37:ED:CE:D7:F4:57:5F:E7
Certificate issuer: /CN=1a0100943a8708028be40d4fa4f29c9ad9cc568b
Certificate serial: 018C3946DE24CEF79F8A69150EE8A4E924E8
Authority key identifier: 1A:01:00:94:3A:87:08:02:8B:E4:0D:4F:A4:F2:9C:9A:D9:CC:56:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GgEAlDqHCAKL5A1PpPKcmtnMVos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/1201bf-e6de-483a-bc23-d6bce7c831ce/1/80KvjNbSujVW0aHnN-3O1_RXX-c.roa
Signing time: Tue 05 Dec 2023 09:19:54 +0000
ROA not before: Tue 05 Dec 2023 09:19:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51169
IP address blocks: 185.249.116.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:39:46:de:24:ce:f7:9f:8a:69:15:0e:e8:a4:e9:24:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a0100943a8708028be40d4fa4f29c9ad9cc568b
Validity
Not Before: Dec 5 09:19:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f342af8cd6d2ba3556d1a1e737edced7f4575fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ca:73:8b:37:06:c1:06:9a:fc:24:d8:20:9c:
b5:40:a7:69:32:70:5d:85:b7:84:b5:e9:e2:a9:3c:
38:d3:28:e3:2a:38:54:d6:fd:1b:53:60:68:c2:3c:
84:21:3f:4e:50:43:7b:54:e0:30:8b:2b:89:73:b1:
cd:47:3a:66:35:b6:13:b8:c0:f4:79:68:72:d3:82:
86:14:78:95:8a:e5:87:63:d3:f5:8a:5d:04:aa:fa:
70:fe:ca:8f:65:cd:e3:a2:ab:2d:04:2c:ed:c3:53:
fa:3d:80:d5:7d:da:46:1c:56:73:89:70:4b:0e:59:
7d:5c:3c:37:7d:8d:de:63:3f:dc:6a:19:7e:e7:11:
f3:ad:51:62:b6:59:8a:40:72:b0:78:ed:83:25:26:
e3:7a:9d:53:59:e8:3e:72:b2:a0:30:59:28:bc:42:
b0:9d:8c:46:c4:da:c5:e1:f5:39:bc:81:e2:d0:62:
0d:f6:d6:98:57:17:06:0e:9d:0b:15:f2:71:7c:2e:
5d:fd:fe:d6:70:a5:b8:79:3c:40:0d:9b:b7:bc:28:
44:61:70:70:7b:b3:9b:e4:e2:c2:ec:32:e7:8f:80:
b9:5c:5f:ff:50:50:42:86:25:1a:e1:f0:94:d7:9c:
42:83:e7:8c:cf:ea:54:50:15:00:e2:fe:54:35:f7:
a9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:42:AF:8C:D6:D2:BA:35:56:D1:A1:E7:37:ED:CE:D7:F4:57:5F:E7
X509v3 Authority Key Identifier:
keyid:1A:01:00:94:3A:87:08:02:8B:E4:0D:4F:A4:F2:9C:9A:D9:CC:56:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GgEAlDqHCAKL5A1PpPKcmtnMVos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/1201bf-e6de-483a-bc23-d6bce7c831ce/1/80KvjNbSujVW0aHnN-3O1_RXX-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/1201bf-e6de-483a-bc23-d6bce7c831ce/1/GgEAlDqHCAKL5A1PpPKcmtnMVos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.116.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:ce:24:d1:ef:5a:81:c4:99:3c:c4:ea:f5:f2:5b:53:54:ba:
11:35:b6:42:cd:72:68:a0:6a:fc:17:ba:8a:71:fc:76:30:b2:
d5:fa:13:50:60:74:a6:ec:97:dd:bc:ba:55:ea:ee:7f:35:c8:
38:aa:9c:a3:34:29:e9:f3:64:59:38:c4:41:ee:ce:77:1a:67:
e0:57:50:27:75:ff:26:2f:6e:c1:6a:52:fd:ab:59:f3:37:08:
3f:25:33:5b:34:aa:6a:50:d7:44:10:21:54:1d:8b:1d:e2:8c:
7e:22:98:e2:af:05:6f:40:e5:f4:9b:4d:3a:ef:e0:0a:fd:8a:
9f:7e:27:e9:a9:ac:b6:87:52:2c:60:b1:61:83:a4:e4:04:26:
b5:4a:a9:e5:2c:a3:d1:4d:13:33:86:f1:ea:f5:88:6c:f3:fe:
82:97:a3:cb:43:72:6f:a4:45:d1:77:70:ea:8f:53:87:6a:bb:
08:75:e7:2c:32:bd:90:1d:6b:6d:43:7f:18:af:52:bb:23:cd:
f1:7d:2d:66:89:80:29:ee:cd:ea:d0:a0:01:71:c5:38:a3:f1:
64:72:8d:3b:30:b0:4b:14:09:41:1c:16:d7:63:0c:07:f3:8c:
39:64:2a:27:d7:6b:4f:71:8b:00:6b:51:14:91:52:27:ad:44:
77:af:72:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYw5Rt4kzvefimkVDuik6SToMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhMDEwMDk0M2E4NzA4MDI4YmU0MGQ0ZmE0ZjI5YzlhZDlj
YzU2OGIwHhcNMjMxMjA1MDkxOTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzQyYWY4Y2Q2ZDJiYTM1NTZkMWExZTczN2VkY2VkN2Y0NTc1ZmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgcpzizcGwQaa/CTYIJy1QKdpMnBd
hbeEteniqTw40yjjKjhU1v0bU2BowjyEIT9OUEN7VOAwiyuJc7HNRzpmNbYTuMD0
eWhy04KGFHiViuWHY9P1il0Eqvpw/sqPZc3joqstBCztw1P6PYDVfdpGHFZziXBL
Dll9XDw3fY3eYz/cahl+5xHzrVFitlmKQHKweO2DJSbjep1TWeg+crKgMFkovEKw
nYxGxNrF4fU5vIHi0GIN9taYVxcGDp0LFfJxfC5d/f7WcKW4eTxADZu3vChEYXBw
e7Ob5OLC7DLnj4C5XF//UFBChiUa4fCU15xCg+eMz+pUUBUA4v5UNfepOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPNCr4zW0ro1VtGh5zftztf0V1/nMB8GA1UdIwQY
MBaAFBoBAJQ6hwgCi+QNT6TynJrZzFaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2dFQWxEcUhDQUtMNUExUHBQS2NtdG5NVm9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8xMjAxYmYtZTZkZS00ODNhLWJjMjMt
ZDZiY2U3YzgzMWNlLzEvODBLdmpOYlN1alZXMGFIbk4tM08xX1JYWC1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8xMjAxYmYtZTZkZS00ODNhLWJjMjMtZDZiY2U3YzgzMWNl
LzEvR2dFQWxEcUhDQUtMNUExUHBQS2NtdG5NVm9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufl0MA0G
CSqGSIb3DQEBCwUAA4IBAQCfziTR71qBxJk8xOr18ltTVLoRNbZCzXJooGr8F7qK
cfx2MLLV+hNQYHSm7JfdvLpV6u5/Ncg4qpyjNCnp82RZOMRB7s53GmfgV1Andf8m
L27BalL9q1nzNwg/JTNbNKpqUNdEECFUHYsd4ox+IpjirwVvQOX0m0067+AK/Yqf
fifpqay2h1IsYLFhg6TkBCa1SqnlLKPRTRMzhvHq9Yhs8/6Cl6PLQ3JvpEXRd3Dq
j1OHarsIdecsMr2QHWttQ38Yr1K7I83xfS1miYAp7s3q0KABccU4o/Fkco07MLBL
FAlBHBbXYwwH84w5ZCon12tPcYsAa1EUkVInrUR3r3LP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:26 2024 by rpki-client on console-fra.rpki-client.org