Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/4xo2sIBgabMVvN1kIJVP-BQHItQ.roa
File: 4xo2sIBgabMVvN1kIJVP-BQHItQ.roa (raw, json)
Hash identifier: NRbY998UaK8G+KhJmNDOBi/GDq1dyS5aEs7ddk+NN1E=
Subject key identifier: E3:1A:36:B0:80:60:69:B3:15:BC:DD:64:20:95:4F:F8:14:07:22:D4
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 01892246C658848BF667B4DADF38DADCC382
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/4xo2sIBgabMVvN1kIJVP-BQHItQ.roa
Signing time: Tue 04 Jul 2023 19:00:10 +0000
ROA not before: Tue 04 Jul 2023 19:00:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 89.22.192.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 22 Aug 2023 06:19:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:22:46:c6:58:84:8b:f6:67:b4:da:df:38:da:dc:c3:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jul 4 19:00:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e31a36b0806069b315bcdd6420954ff8140722d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:35:f3:a9:a7:9a:cb:ba:61:c2:ed:36:1c:02:
3d:eb:48:a6:b2:24:21:20:19:9c:07:a6:70:95:17:
cc:7f:74:69:29:a1:e1:ba:3a:65:70:5d:32:94:e0:
eb:4d:05:52:fb:3b:33:d6:67:53:6d:63:23:01:3a:
5d:c3:ca:2b:9a:d4:35:51:49:ec:53:a9:ec:c1:4d:
bd:56:86:5d:7e:0e:c1:e7:00:c8:82:cc:e2:76:e9:
10:fb:e2:18:ea:b9:09:66:dd:a6:78:2c:46:3c:81:
d4:28:68:a1:ce:bf:dd:42:5d:8c:5f:84:72:82:f1:
30:8b:12:15:f9:dc:ba:3e:fb:66:46:af:5a:89:00:
5c:2d:29:65:f9:bf:01:20:b0:e4:12:5c:9a:bd:bb:
2d:b8:34:71:56:0c:3a:8e:19:de:b2:5f:a2:79:e6:
86:34:9c:39:32:e2:f3:99:ac:7b:45:04:93:43:e3:
6f:ef:78:31:91:61:9c:e6:77:ae:4f:9d:6c:3c:14:
b2:da:17:c1:05:ba:d0:ab:78:5f:85:3b:77:c1:e3:
45:b1:4f:75:60:0b:2b:32:a9:9b:00:24:38:8c:7c:
23:d3:1e:8f:54:6c:ed:a2:87:66:89:26:27:cd:4d:
be:a2:cc:c5:89:c9:63:3e:00:4e:b1:43:f6:54:df:
ab:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:1A:36:B0:80:60:69:B3:15:BC:DD:64:20:95:4F:F8:14:07:22:D4
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/4xo2sIBgabMVvN1kIJVP-BQHItQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.22.192.0/21
Signature Algorithm: sha256WithRSAEncryption
37:90:58:1a:f0:0e:d8:07:22:c0:b1:66:08:97:52:9d:d3:e2:
c6:4c:24:ff:a3:a2:6d:ed:a1:cc:9a:40:d7:d5:73:c8:58:6e:
4c:29:0a:10:e3:6c:97:b0:4b:13:ac:e0:ad:11:5e:6c:dc:a8:
e0:9a:73:32:ee:7d:ff:74:8b:88:e5:68:77:b5:38:73:46:c4:
5e:22:c8:04:01:f2:23:50:68:1a:85:45:a8:b3:95:93:36:86:
05:71:f6:e2:bb:19:ab:da:45:c0:d5:ca:e8:0e:19:69:e1:8e:
a9:2c:69:53:a5:9a:9c:29:92:4c:b9:59:b9:dc:ca:1f:ac:62:
42:12:2a:2b:e6:5a:8c:d2:4a:d7:e7:d0:dc:2a:45:53:fd:64:
27:72:43:ee:c8:eb:79:a6:48:7c:a5:9c:42:60:42:94:5f:be:
a8:84:d2:bf:0c:aa:c0:f7:7c:80:5e:c1:bc:ac:82:d3:22:a4:
43:cd:4b:ff:b2:99:4b:af:b4:36:93:c2:33:02:8b:28:27:db:
67:8a:fc:95:50:c2:56:43:99:32:35:e2:f9:78:1b:e7:6c:96:
17:0f:64:79:3a:34:0d:98:f9:b6:b9:30:c1:11:f4:24:5d:28:
a5:17:8a:72:bf:2c:83:a0:b1:e5:ee:1b:54:9c:b3:35:92:f3:
9b:50:ef:c7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkiRsZYhIv2Z7Ta3zja3MOCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NmQ5ZDUwYjNiODlkNTFjOGFhMjQ5M2U3ZWY0NzAxZDYy
NTFkYWQwHhcNMjMwNzA0MTkwMDEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzFhMzZiMDgwNjA2OWIzMTViY2RkNjQyMDk1NGZmODE0MDcyMmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDXzqaeay7phwu02HAI960imsiQh
IBmcB6ZwlRfMf3RpKaHhujplcF0ylODrTQVS+zsz1mdTbWMjATpdw8ormtQ1UUns
U6nswU29VoZdfg7B5wDIgszidukQ++IY6rkJZt2meCxGPIHUKGihzr/dQl2MX4Ry
gvEwixIV+dy6PvtmRq9aiQBcLSll+b8BILDkElyavbstuDRxVgw6jhnesl+ieeaG
NJw5MuLzmax7RQSTQ+Nv73gxkWGc5neuT51sPBSy2hfBBbrQq3hfhTt3weNFsU91
YAsrMqmbACQ4jHwj0x6PVGztoodmiSYnzU2+oszFicljPgBOsUP2VN+rPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOMaNrCAYGmzFbzdZCCVT/gUByLUMB8GA1UdIwQY
MBaAFMZtnVCzuJ1RyKokk+fvRwHWJR2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMt
YjdjNTc4Yjc0ZTM1LzEvNHhvMnNJQmdhYk1Wdk4xa0lKVlAtQlFISXRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMtYjdjNTc4Yjc0ZTM1
LzEveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDWRbAMA0G
CSqGSIb3DQEBCwUAA4IBAQA3kFga8A7YByLAsWYIl1Kd0+LGTCT/o6Jt7aHMmkDX
1XPIWG5MKQoQ42yXsEsTrOCtEV5s3KjgmnMy7n3/dIuI5Wh3tThzRsReIsgEAfIj
UGgahUWos5WTNoYFcfbiuxmr2kXA1croDhlp4Y6pLGlTpZqcKZJMuVm53MofrGJC
Eior5lqM0krX59DcKkVT/WQnckPuyOt5pkh8pZxCYEKUX76ohNK/DKrA93yAXsG8
rILTIqRDzUv/splLr7Q2k8IzAosoJ9tnivyVUMJWQ5kyNeL5eBvnbJYXD2R5OjQN
mPm2uTDBEfQkXSilF4pyvyyDoLHl7htUnLM1kvObUO/H
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org