Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/ab2b10-5e87-4624-9776-59a0c5ff6505/1/1iMcz78UMkrcB2_f9mNKWifLEvQ.roa
File: 1iMcz78UMkrcB2_f9mNKWifLEvQ.roa (raw, json)
Hash identifier: EUHsn58fdycRNwwTCDh6MdL+BtW/8e59Bue9UmxolOc=
Subject key identifier: D6:23:1C:CF:BF:14:32:4A:DC:07:6F:DF:F6:63:4A:5A:27:CB:12:F4
Certificate issuer: /CN=878eca3bccd4e5c2efb3608ee83a57f9ae821be6
Certificate serial: 01856EAFBCD803354A75C97C01F8A010E0C9
Authority key identifier: 87:8E:CA:3B:CC:D4:E5:C2:EF:B3:60:8E:E8:3A:57:F9:AE:82:1B:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h47KO8zU5cLvs2CO6DpX-a6CG-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/ab2b10-5e87-4624-9776-59a0c5ff6505/1/1iMcz78UMkrcB2_f9mNKWifLEvQ.roa
Signing time: Sun 01 Jan 2023 18:54:48 +0000
ROA not before: Sun 01 Jan 2023 18:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201333
IP address blocks: 185.196.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:bc:d8:03:35:4a:75:c9:7c:01:f8:a0:10:e0:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878eca3bccd4e5c2efb3608ee83a57f9ae821be6
Validity
Not Before: Jan 1 18:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6231ccfbf14324adc076fdff6634a5a27cb12f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8b:17:59:ba:dc:be:f0:54:54:cf:15:d2:95:
4d:97:e3:a9:5b:e0:06:a1:a5:80:e8:8a:97:af:bd:
08:40:6f:a1:99:8e:50:de:43:4a:f0:89:39:3c:51:
28:a1:74:69:6e:4f:1b:8a:09:b3:84:57:c0:3f:30:
d3:4b:85:94:d3:a9:68:b1:86:4a:58:78:63:d6:29:
01:17:3d:b3:c6:18:8a:9d:53:37:a4:d6:ea:2b:3c:
9e:71:c2:00:5b:10:c4:ea:d2:8c:0a:f8:6a:73:bb:
8f:25:c3:7c:62:80:09:6b:bd:03:4f:e7:e4:57:14:
47:d3:25:79:0e:3d:71:71:82:9b:7e:d9:e0:35:89:
d0:08:39:14:81:c2:a8:cc:8b:a3:00:2c:3b:21:60:
d7:60:df:a5:d9:2e:26:8a:44:18:0c:50:4a:2d:f7:
90:8a:a6:e8:a1:35:e9:c3:44:36:a5:30:58:5f:ad:
3f:54:47:38:5d:d5:be:2f:88:1e:72:f4:6b:a6:76:
6d:ba:3d:f7:a5:d1:a3:97:5e:e2:42:f3:8f:0a:e2:
76:b7:98:6d:23:9b:ba:ad:dd:cd:23:14:17:c0:fe:
75:1e:21:93:0e:d0:05:de:9a:59:5c:ad:fd:a8:aa:
72:14:2d:46:96:08:e9:16:a9:e9:80:dd:f5:71:c8:
b7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:23:1C:CF:BF:14:32:4A:DC:07:6F:DF:F6:63:4A:5A:27:CB:12:F4
X509v3 Authority Key Identifier:
keyid:87:8E:CA:3B:CC:D4:E5:C2:EF:B3:60:8E:E8:3A:57:F9:AE:82:1B:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h47KO8zU5cLvs2CO6DpX-a6CG-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ab2b10-5e87-4624-9776-59a0c5ff6505/1/1iMcz78UMkrcB2_f9mNKWifLEvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ab2b10-5e87-4624-9776-59a0c5ff6505/1/h47KO8zU5cLvs2CO6DpX-a6CG-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.164.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:50:46:4c:70:46:71:aa:89:f7:cf:b2:61:1d:a5:b2:22:98:
ba:b9:a4:7b:48:27:21:a8:0d:5a:0a:af:c1:d4:bc:db:47:91:
88:a1:f0:40:b4:11:98:77:9a:13:c1:9a:54:b4:99:b0:86:e9:
49:44:fc:2f:65:12:16:dc:17:62:94:3d:f5:3d:57:37:fd:d5:
0d:45:98:8d:7f:26:c6:6e:f7:9e:90:a5:c2:7d:3c:cf:8c:0c:
a1:35:d6:6d:4d:76:c8:85:60:da:26:28:c4:27:3f:48:2a:de:
44:07:9b:b3:a6:dd:42:0c:64:2e:37:33:95:ab:62:ac:63:73:
df:f9:db:3c:70:c6:df:57:51:0c:03:a5:82:e0:78:9c:d7:1b:
0c:ce:e5:69:d3:cd:93:5b:6d:74:a9:bc:c7:39:08:88:ce:1b:
23:5f:9c:37:b6:e7:60:44:e6:93:e1:1f:be:f2:4f:bf:c5:50:
9b:38:99:6e:8f:02:d9:4b:8c:a7:dd:5a:ad:1e:b2:3f:fd:44:
32:01:57:bc:10:aa:b7:7b:57:ab:0c:00:f3:a5:fd:6d:81:41:
22:81:86:26:d3:e5:45:5a:50:2e:17:23:3c:43:a9:e2:7e:6b:
54:6e:44:23:3a:80:0b:b5:a5:6e:89:77:ee:70:3f:b0:25:b6:
c1:42:f1:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVur7zYAzVKdcl8AfigEODJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3OGVjYTNiY2NkNGU1YzJlZmIzNjA4ZWU4M2E1N2Y5YWU4
MjFiZTYwHhcNMjMwMTAxMTg1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNjIzMWNjZmJmMTQzMjRhZGMwNzZmZGZmNjYzNGE1YTI3Y2IxMmY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkIsXWbrcvvBUVM8V0pVNl+OpW+AG
oaWA6IqXr70IQG+hmY5Q3kNK8Ik5PFEooXRpbk8bigmzhFfAPzDTS4WU06losYZK
WHhj1ikBFz2zxhiKnVM3pNbqKzyeccIAWxDE6tKMCvhqc7uPJcN8YoAJa70DT+fk
VxRH0yV5Dj1xcYKbftngNYnQCDkUgcKozIujACw7IWDXYN+l2S4mikQYDFBKLfeQ
iqbooTXpw0Q2pTBYX60/VEc4XdW+L4gecvRrpnZtuj33pdGjl17iQvOPCuJ2t5ht
I5u6rd3NIxQXwP51HiGTDtAF3ppZXK39qKpyFC1GlgjpFqnpgN31cci3fQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNYjHM+/FDJK3Adv3/ZjSlonyxL0MB8GA1UdIwQY
MBaAFIeOyjvM1OXC77Ngjug6V/mughvmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDQ3S084elU1Y0x2czJDTzZEcFgtYTZDRy1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi9hYjJiMTAtNWU4Ny00NjI0LTk3NzYt
NTlhMGM1ZmY2NTA1LzEvMWlNY3o3OFVNa3JjQjJfZjltTktXaWZMRXZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi9hYjJiMTAtNWU4Ny00NjI0LTk3NzYtNTlhMGM1ZmY2NTA1
LzEvaDQ3S084elU1Y0x2czJDTzZEcFgtYTZDRy1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucSkMA0G
CSqGSIb3DQEBCwUAA4IBAQB8UEZMcEZxqon3z7JhHaWyIpi6uaR7SCchqA1aCq/B
1LzbR5GIofBAtBGYd5oTwZpUtJmwhulJRPwvZRIW3BdilD31PVc3/dUNRZiNfybG
bveekKXCfTzPjAyhNdZtTXbIhWDaJijEJz9IKt5EB5uzpt1CDGQuNzOVq2KsY3Pf
+ds8cMbfV1EMA6WC4Hic1xsMzuVp082TW210qbzHOQiIzhsjX5w3tudgROaT4R++
8k+/xVCbOJlujwLZS4yn3VqtHrI//UQyAVe8EKq3e1erDADzpf1tgUEigYYm0+VF
WlAuFyM8Q6nifmtUbkQjOoALtaVuiXfucD+wJbbBQvHD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:51 2024 by rpki-client on console-ams.rpki-client.org