Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/FmV4WAS878IV8ADeLcl9oA9gZPk.roa
File: FmV4WAS878IV8ADeLcl9oA9gZPk.roa (raw, json)
Hash identifier: 8rkwO8ydX5Wz1cPs1dTDUhtlSvM+sRwGSj2T7bt1oUg=
Subject key identifier: 16:65:78:58:04:BC:EF:C2:15:F0:00:DE:2D:C9:7D:A0:0F:60:64:F9
Certificate issuer: /CN=79065ccf1ebe555b3752717e595c275bcad00b4e
Certificate serial: 0185AA0B971099459CD24008F8A5815A29BA
Authority key identifier: 79:06:5C:CF:1E:BE:55:5B:37:52:71:7E:59:5C:27:5B:CA:D0:0B:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eQZczx6-VVs3UnF-WVwnW8rQC04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/FmV4WAS878IV8ADeLcl9oA9gZPk.roa
Signing time: Fri 13 Jan 2023 07:32:44 +0000
ROA not before: Fri 13 Jan 2023 07:32:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.59.8.0/24 maxlen: 24
194.59.9.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:aa:0b:97:10:99:45:9c:d2:40:08:f8:a5:81:5a:29:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79065ccf1ebe555b3752717e595c275bcad00b4e
Validity
Not Before: Jan 13 07:32:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1665785804bcefc215f000de2dc97da00f6064f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a0:94:66:58:9f:8a:0d:8e:ca:cd:16:5f:8c:
3f:d5:93:bb:4d:9e:d3:3a:d3:91:83:a4:ff:1f:44:
b7:23:0a:74:a6:ab:87:a0:51:83:64:cf:6a:ca:fb:
b4:33:dc:17:02:d4:eb:5c:5a:bd:34:1f:ff:d8:c5:
83:c5:27:23:b6:1d:fc:05:ec:dc:49:ac:38:e8:c8:
4b:12:72:3a:fb:d1:2b:66:1f:14:47:65:ab:98:47:
f2:a0:25:98:e5:8e:49:de:cc:da:ca:54:70:02:f5:
97:dd:fc:4f:18:f8:b1:31:8f:08:c2:d1:7c:43:71:
e6:23:91:84:07:1c:c1:80:84:c6:09:ab:80:02:32:
ad:24:af:c3:73:89:0b:6e:2d:68:a3:0b:85:b3:68:
48:28:08:ca:f7:11:91:82:15:0b:53:8c:10:ac:3c:
ef:47:9e:12:b6:34:a0:c2:83:5c:93:e9:89:8e:37:
67:81:c3:10:30:99:09:29:08:c7:59:60:85:13:8f:
20:c5:5b:2c:5c:48:5a:0d:74:9d:b4:e9:0e:5d:9f:
51:17:e3:1d:58:0b:74:d1:67:79:7d:92:96:a2:52:
fa:23:c7:6d:8f:9b:43:5b:6f:ce:08:92:e0:9d:99:
b2:87:8e:85:a0:7c:c2:ef:d1:db:bf:8d:98:d7:e2:
e3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:65:78:58:04:BC:EF:C2:15:F0:00:DE:2D:C9:7D:A0:0F:60:64:F9
X509v3 Authority Key Identifier:
keyid:79:06:5C:CF:1E:BE:55:5B:37:52:71:7E:59:5C:27:5B:CA:D0:0B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eQZczx6-VVs3UnF-WVwnW8rQC04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/FmV4WAS878IV8ADeLcl9oA9gZPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/eQZczx6-VVs3UnF-WVwnW8rQC04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.8.0/23
Signature Algorithm: sha256WithRSAEncryption
65:e1:44:51:ac:70:3f:c4:11:93:32:02:52:86:92:d7:36:f6:
d3:cf:6b:bd:e4:3d:ce:39:3a:4b:83:3d:9e:60:22:c6:a4:11:
53:d7:16:1e:3a:1d:7f:80:c2:36:70:36:c7:65:bb:d7:03:0e:
05:5e:7a:b8:dc:82:9f:b7:5c:ae:09:96:ad:b4:ea:2b:78:5e:
ff:d9:88:0d:6a:28:e4:28:18:6d:35:17:51:67:aa:f5:3c:c9:
45:aa:cf:e2:c7:9e:7a:2c:a6:1c:a2:27:c6:41:00:9e:42:7c:
a8:44:85:2d:2a:2c:b9:4f:03:51:6a:64:36:48:b1:9a:73:66:
27:42:ab:6b:4f:f0:67:03:df:97:89:5e:50:31:69:a9:87:fc:
47:e4:a2:d1:d7:43:bf:f6:01:6b:29:f2:6c:f8:04:d8:04:e4:
bd:ee:df:86:12:36:b4:d9:ac:0c:71:90:a0:5c:d0:7d:ee:19:
f4:4e:55:50:08:0c:2f:35:e5:41:2d:79:c7:f1:62:e4:77:c0:
b4:24:a2:84:c2:3e:bc:c1:72:86:3a:97:06:cb:8f:ef:d1:bb:
84:4d:16:e7:e4:66:5a:d4:4d:ce:98:8e:b2:f3:06:cf:c2:b5:
fc:7a:51:eb:df:b3:f5:ac:30:84:a3:f5:14:2a:89:dd:b1:a0:
a2:1f:0b:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWqC5cQmUWc0kAI+KWBWim6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5MDY1Y2NmMWViZTU1NWIzNzUyNzE3ZTU5NWMyNzViY2Fk
MDBiNGUwHhcNMjMwMTEzMDczMjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjY1Nzg1ODA0YmNlZmMyMTVmMDAwZGUyZGM5N2RhMDBmNjA2NGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaCUZlifig2Oys0WX4w/1ZO7TZ7T
OtORg6T/H0S3Iwp0pquHoFGDZM9qyvu0M9wXAtTrXFq9NB//2MWDxScjth38Bezc
Saw46MhLEnI6+9ErZh8UR2WrmEfyoCWY5Y5J3szaylRwAvWX3fxPGPixMY8IwtF8
Q3HmI5GEBxzBgITGCauAAjKtJK/Dc4kLbi1oowuFs2hIKAjK9xGRghULU4wQrDzv
R54StjSgwoNck+mJjjdngcMQMJkJKQjHWWCFE48gxVssXEhaDXSdtOkOXZ9RF+Md
WAt00Wd5fZKWolL6I8dtj5tDW2/OCJLgnZmyh46FoHzC79Hbv42Y1+LjiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBZleFgEvO/CFfAA3i3JfaAPYGT5MB8GA1UdIwQY
MBaAFHkGXM8evlVbN1JxfllcJ1vK0AtOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVFaY3p4Ni1WVnMzVW5GLVdWd25XOHJRQzA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9iZTRlMzEtM2RiZS00MTMwLWI0NTIt
MDE3ZWI1NzM1YjEzLzEvRm1WNFdBUzg3OElWOEFEZUxjbDlvQTlnWlBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9iZTRlMzEtM2RiZS00MTMwLWI0NTItMDE3ZWI1NzM1YjEz
LzEvZVFaY3p4Ni1WVnMzVW5GLVdWd25XOHJRQzA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwjsIMA0G
CSqGSIb3DQEBCwUAA4IBAQBl4URRrHA/xBGTMgJShpLXNvbTz2u95D3OOTpLgz2e
YCLGpBFT1xYeOh1/gMI2cDbHZbvXAw4FXnq43IKft1yuCZattOoreF7/2YgNaijk
KBhtNRdRZ6r1PMlFqs/ix556LKYcoifGQQCeQnyoRIUtKiy5TwNRamQ2SLGac2Yn
QqtrT/BnA9+XiV5QMWmph/xH5KLR10O/9gFrKfJs+ATYBOS97t+GEja02awMcZCg
XNB97hn0TlVQCAwvNeVBLXnH8WLkd8C0JKKEwj68wXKGOpcGy4/v0buETRbn5GZa
1E3OmI6y8wbPwrX8elHr37P1rDCEo/UUKondsaCiHwva
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:35 2023 by rpki-client on console-ams.rpki-client.org