Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4d1cf3-67f4-4b83-ad76-c750208662fd/1/m40m0boiWorBwWMaYbv7J5kYtE8.roa
File: m40m0boiWorBwWMaYbv7J5kYtE8.roa (raw, json)
Hash identifier: zntEIcq6szTXcBwmvjNIjpRZDJZbO8feF+xfMDoYzSU=
Subject key identifier: 9B:8D:26:D1:BA:22:5A:8A:C1:C1:63:1A:61:BB:FB:27:99:18:B4:4F
Certificate issuer: /CN=a3d7f84861b266ee2f8d386304cece191c282e7d
Certificate serial: 01856E265972521252AF1DBB1F85868448B1
Authority key identifier: A3:D7:F8:48:61:B2:66:EE:2F:8D:38:63:04:CE:CE:19:1C:28:2E:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o9f4SGGyZu4vjThjBM7OGRwoLn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4d1cf3-67f4-4b83-ad76-c750208662fd/1/m40m0boiWorBwWMaYbv7J5kYtE8.roa
Signing time: Sun 01 Jan 2023 16:24:44 +0000
ROA not before: Sun 01 Jan 2023 16:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209235
IP address blocks: 185.122.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:59:72:52:12:52:af:1d:bb:1f:85:86:84:48:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3d7f84861b266ee2f8d386304cece191c282e7d
Validity
Not Before: Jan 1 16:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b8d26d1ba225a8ac1c1631a61bbfb279918b44f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:11:60:39:df:1f:8f:4e:a7:83:01:ff:d5:97:
55:3b:02:39:46:03:fa:c0:6b:0f:f8:60:6b:ac:46:
40:0f:48:dd:62:9c:57:ce:b1:7e:ad:60:3a:3d:b7:
bb:b2:ac:5f:f5:03:f9:f5:19:43:22:f2:a0:3c:27:
d2:38:1a:78:2d:c7:fd:70:cf:0e:1a:c1:94:f5:7f:
4f:a9:ca:80:4c:83:a1:d0:ec:f6:18:c3:70:ea:59:
aa:3f:6e:47:d6:f9:2b:e0:e2:26:7e:27:36:fd:5f:
4d:fa:eb:ba:df:81:00:02:94:5c:79:75:e2:2a:98:
9c:91:a2:40:c1:c2:69:ec:94:31:58:4b:9d:c5:e0:
c5:72:24:55:43:14:a7:71:41:03:a6:02:cc:cc:65:
41:f7:2f:5e:68:4b:b5:db:87:17:08:16:c4:cd:72:
d8:5b:05:77:11:52:ba:0d:b9:bd:32:a8:4f:50:b3:
40:67:0a:85:03:b7:b3:2e:44:5f:ce:f8:b6:05:95:
70:52:ea:15:19:ca:04:a6:60:a2:4a:36:ae:02:43:
6b:13:eb:6b:c1:cc:d2:45:19:df:85:12:3c:09:8c:
cc:50:12:ab:ca:db:89:da:32:22:2f:1a:7d:ea:13:
8c:b3:a4:59:d9:c0:8e:dd:64:57:08:c9:80:2e:5b:
61:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8D:26:D1:BA:22:5A:8A:C1:C1:63:1A:61:BB:FB:27:99:18:B4:4F
X509v3 Authority Key Identifier:
keyid:A3:D7:F8:48:61:B2:66:EE:2F:8D:38:63:04:CE:CE:19:1C:28:2E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o9f4SGGyZu4vjThjBM7OGRwoLn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4d1cf3-67f4-4b83-ad76-c750208662fd/1/m40m0boiWorBwWMaYbv7J5kYtE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4d1cf3-67f4-4b83-ad76-c750208662fd/1/o9f4SGGyZu4vjThjBM7OGRwoLn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.205.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:04:5b:42:46:c0:ac:51:c9:63:71:67:d4:56:1d:61:38:0d:
90:29:12:9b:9c:07:80:e2:19:5c:73:2b:03:47:d7:23:f4:f3:
d1:45:33:19:8f:3c:25:30:7f:71:d3:ba:e6:e0:31:ce:25:1d:
2f:7a:d3:43:a0:21:77:fd:ed:e2:5c:1e:0e:9a:56:62:d9:4b:
63:57:ee:f1:1d:8b:b6:1e:c4:61:4c:d5:9f:1f:e7:e8:48:92:
14:5f:2f:f8:97:46:e9:e3:6c:75:80:f0:26:9f:fd:47:19:d4:
49:43:c7:1f:c1:a0:f9:00:82:83:c8:ae:25:02:d8:12:be:72:
40:65:ec:21:af:7e:31:12:e7:f9:ee:21:4f:44:53:37:f2:5e:
b3:e1:54:96:98:67:24:ae:06:6a:2c:95:3c:33:82:1c:67:c2:
50:d0:40:4e:48:54:9c:fd:69:5e:ec:2e:b5:ce:ab:be:9e:f8:
c4:31:6a:21:2e:fc:91:b2:ea:ea:ba:2d:ef:4f:8d:41:88:09:
80:71:52:d8:43:f4:3c:c4:b4:bb:cd:97:01:c9:08:31:ad:62:
5d:e8:41:51:a0:ee:52:97:f7:d1:de:a8:70:bc:5d:0b:72:62:
99:a8:90:ec:8f:49:c4:ef:90:f4:10:d0:e9:ff:bd:ef:be:96:
20:fe:36:04
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuJllyUhJSrx27H4WGhEixMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzZDdmODQ4NjFiMjY2ZWUyZjhkMzg2MzA0Y2VjZTE5MWMy
ODJlN2QwHhcNMjMwMTAxMTYyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjhkMjZkMWJhMjI1YThhYzFjMTYzMWE2MWJiZmIyNzk5MThiNDRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhFgOd8fj06ngwH/1ZdVOwI5RgP6
wGsP+GBrrEZAD0jdYpxXzrF+rWA6Pbe7sqxf9QP59RlDIvKgPCfSOBp4Lcf9cM8O
GsGU9X9PqcqATIOh0Oz2GMNw6lmqP25H1vkr4OImfic2/V9N+uu634EAApRceXXi
KpickaJAwcJp7JQxWEudxeDFciRVQxSncUEDpgLMzGVB9y9eaEu124cXCBbEzXLY
WwV3EVK6Dbm9MqhPULNAZwqFA7ezLkRfzvi2BZVwUuoVGcoEpmCiSjauAkNrE+tr
wczSRRnfhRI8CYzMUBKrytuJ2jIiLxp96hOMs6RZ2cCO3WRXCMmALlthJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJuNJtG6IlqKwcFjGmG7+yeZGLRPMB8GA1UdIwQY
MBaAFKPX+EhhsmbuL404YwTOzhkcKC59MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzlmNFNHR3ladTR2alRoakJNN09HUndvTG4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80ZDFjZjMtNjdmNC00YjgzLWFkNzYt
Yzc1MDIwODY2MmZkLzEvbTQwbTBib2lXb3JCd1dNYVlidjdKNWtZdEU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy80ZDFjZjMtNjdmNC00YjgzLWFkNzYtYzc1MDIwODY2MmZk
LzEvbzlmNFNHR3ladTR2alRoakJNN09HUndvTG4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXrNMA0G
CSqGSIb3DQEBCwUAA4IBAQBtBFtCRsCsUcljcWfUVh1hOA2QKRKbnAeA4hlccysD
R9cj9PPRRTMZjzwlMH9x07rm4DHOJR0vetNDoCF3/e3iXB4OmlZi2UtjV+7xHYu2
HsRhTNWfH+foSJIUXy/4l0bp42x1gPAmn/1HGdRJQ8cfwaD5AIKDyK4lAtgSvnJA
Zewhr34xEuf57iFPRFM38l6z4VSWmGckrgZqLJU8M4IcZ8JQ0EBOSFSc/Wle7C61
zqu+nvjEMWohLvyRsurqui3vT41BiAmAcVLYQ/Q8xLS7zZcByQgxrWJd6EFRoO5S
l/fR3qhwvF0LcmKZqJDsj0nE75D0ENDp/73vvpYg/jYE
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:59 2024 by rpki-client on console-ams.rpki-client.org