Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/XhbNcbZQNTkN_M8zmDx2PKQcB3A.roa
File: XhbNcbZQNTkN_M8zmDx2PKQcB3A.roa (raw, json)
Hash identifier: mZDNmVV4rV3LYHVE5mnXIMi2V8w1qYVIgq/d2j3aRNk=
Subject key identifier: 5E:16:CD:71:B6:50:35:39:0D:FC:CF:33:98:3C:76:3C:A4:1C:07:70
Certificate issuer: /CN=dcae4b0471a61872c404142e1f90f5074f0d6f15
Certificate serial: 01856EA6C83E1A22FCA8912CCB3B39AB7305
Authority key identifier: DC:AE:4B:04:71:A6:18:72:C4:04:14:2E:1F:90:F5:07:4F:0D:6F:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3K5LBHGmGHLEBBQuH5D1B08NbxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/XhbNcbZQNTkN_M8zmDx2PKQcB3A.roa
Signing time: Sun 01 Jan 2023 18:45:02 +0000
ROA not before: Sun 01 Jan 2023 18:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199659
IP address blocks: 185.223.88.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:c8:3e:1a:22:fc:a8:91:2c:cb:3b:39:ab:73:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcae4b0471a61872c404142e1f90f5074f0d6f15
Validity
Not Before: Jan 1 18:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e16cd71b65035390dfccf33983c763ca41c0770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e3:d8:22:eb:81:08:f5:06:6a:61:f2:49:99:
7a:62:b5:13:28:d0:1f:60:69:c0:ed:f9:f0:b1:15:
80:d5:4f:e9:e8:42:be:f4:65:8f:86:40:ae:0d:45:
d3:1f:85:f0:af:3f:da:00:ad:61:52:5c:8b:2c:67:
bc:d3:9d:ce:54:ce:69:e5:7c:39:f1:bc:a6:9e:5f:
42:d1:1f:4d:20:80:9f:62:b0:9f:0f:c2:97:1b:fe:
39:ac:89:df:27:90:3b:1e:ad:7b:60:94:a4:fd:03:
11:ab:7f:6d:34:13:f1:c3:de:1d:6c:6e:c0:9c:2f:
ac:fb:86:e9:cd:d0:f7:0b:93:86:1a:11:48:7b:81:
12:31:b4:a2:69:55:a7:1b:12:67:1a:34:1a:a1:da:
40:31:1a:d9:b9:36:1d:6c:94:60:8d:49:33:51:81:
f6:83:13:a2:25:f8:1f:42:07:18:f1:56:67:cb:9b:
e0:aa:32:6b:6a:6f:d0:89:a9:af:59:b4:2b:ae:bb:
56:ab:54:bc:27:5a:b5:ce:f3:9f:df:f8:97:22:1c:
97:61:4d:1a:ef:c9:5c:5b:12:70:14:e8:1f:be:76:
62:fc:44:48:18:04:b8:a9:68:a5:83:34:ca:9a:c5:
11:16:cc:07:08:0d:3f:23:00:44:50:fd:58:56:b8:
c2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:16:CD:71:B6:50:35:39:0D:FC:CF:33:98:3C:76:3C:A4:1C:07:70
X509v3 Authority Key Identifier:
keyid:DC:AE:4B:04:71:A6:18:72:C4:04:14:2E:1F:90:F5:07:4F:0D:6F:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3K5LBHGmGHLEBBQuH5D1B08NbxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/XhbNcbZQNTkN_M8zmDx2PKQcB3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/3K5LBHGmGHLEBBQuH5D1B08NbxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.88.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:64:c4:5b:23:89:01:3c:7b:f9:89:be:9b:b5:14:c2:dd:5d:
66:3a:91:56:3a:00:18:ec:69:e7:19:22:cd:2d:00:fe:2b:6b:
20:94:1f:93:ff:52:3b:b4:0f:a6:60:71:24:74:1f:06:32:d1:
4c:60:94:a5:79:e3:43:6f:be:82:e5:cc:33:03:70:07:cd:e4:
b9:3a:56:f1:6e:cb:0a:51:b4:d1:6f:3c:e2:6f:a9:cc:a4:d7:
bb:fa:05:6e:97:24:8a:79:74:05:cc:90:21:b0:95:7e:45:58:
28:94:79:6c:c6:cd:b7:66:27:21:81:4c:19:dd:56:57:3b:17:
ea:25:2e:9f:55:fa:18:31:fe:c1:86:a8:fb:5a:7c:47:9b:6c:
18:a9:cf:ba:82:ec:3c:9b:0a:33:46:50:90:fd:04:f6:30:45:
b7:78:de:0a:7b:2f:f5:29:6c:c6:2c:4f:3a:9d:a9:99:bd:5e:
12:0f:17:02:41:d4:6f:94:aa:60:2b:43:48:da:e6:ca:12:da:
c5:cc:7f:ab:f6:c6:78:7b:3a:6b:d5:52:54:f2:43:9e:99:b3:
f4:04:d9:9c:8e:3d:8f:2b:f4:43:64:10:cf:c4:b2:4f:b9:f7:
a2:9b:6d:8a:04:66:aa:31:25:69:4e:5c:eb:f1:72:2b:00:d4:
0c:70:1a:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVupsg+GiL8qJEsyzs5q3MFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjYWU0YjA0NzFhNjE4NzJjNDA0MTQyZTFmOTBmNTA3NGYw
ZDZmMTUwHhcNMjMwMTAxMTg0NTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTE2Y2Q3MWI2NTAzNTM5MGRmY2NmMzM5ODNjNzYzY2E0MWMwNzcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmePYIuuBCPUGamHySZl6YrUTKNAf
YGnA7fnwsRWA1U/p6EK+9GWPhkCuDUXTH4Xwrz/aAK1hUlyLLGe8053OVM5p5Xw5
8bymnl9C0R9NIICfYrCfD8KXG/45rInfJ5A7Hq17YJSk/QMRq39tNBPxw94dbG7A
nC+s+4bpzdD3C5OGGhFIe4ESMbSiaVWnGxJnGjQaodpAMRrZuTYdbJRgjUkzUYH2
gxOiJfgfQgcY8VZny5vgqjJram/QiamvWbQrrrtWq1S8J1q1zvOf3/iXIhyXYU0a
78lcWxJwFOgfvnZi/ERIGAS4qWilgzTKmsURFswHCA0/IwBEUP1YVrjCNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF4WzXG2UDU5DfzPM5g8djykHAdwMB8GA1UdIwQY
MBaAFNyuSwRxphhyxAQULh+Q9QdPDW8VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0s1TEJIR21HSExFQkJRdUg1RDFCMDhOYnhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi82N2Y5YTctYTZlOC00MjZlLWJhYzQt
NGI2OGIxNWQzMDFhLzEvWGhiTmNiWlFOVGtOX004em1EeDJQS1FjQjNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi82N2Y5YTctYTZlOC00MjZlLWJhYzQtNGI2OGIxNWQzMDFh
LzEvM0s1TEJIR21HSExFQkJRdUg1RDFCMDhOYnhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCud9YMA0G
CSqGSIb3DQEBCwUAA4IBAQCqZMRbI4kBPHv5ib6btRTC3V1mOpFWOgAY7GnnGSLN
LQD+K2sglB+T/1I7tA+mYHEkdB8GMtFMYJSleeNDb76C5cwzA3AHzeS5OlbxbssK
UbTRbzzib6nMpNe7+gVulySKeXQFzJAhsJV+RVgolHlsxs23ZichgUwZ3VZXOxfq
JS6fVfoYMf7Bhqj7WnxHm2wYqc+6guw8mwozRlCQ/QT2MEW3eN4Key/1KWzGLE86
namZvV4SDxcCQdRvlKpgK0NI2ubKEtrFzH+r9sZ4ezpr1VJU8kOembP0BNmcjj2P
K/RDZBDPxLJPufeim22KBGaqMSVpTlzr8XIrANQMcBpP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:03 2024 by rpki-client on console-fra.rpki-client.org