Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/c4WkCHq2axkOgETyWqBLY19d1bw.roa
File: c4WkCHq2axkOgETyWqBLY19d1bw.roa (raw, json)
Hash identifier: A+z5db2FffSfTBq/MAIu7//0DDF7se3wV16Q2y+nUeg=
Subject key identifier: 73:85:A4:08:7A:B6:6B:19:0E:80:44:F2:5A:A0:4B:63:5F:5D:D5:BC
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01856D0AF8595C7A84540D481557D8D0AC70
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/c4WkCHq2axkOgETyWqBLY19d1bw.roa
Signing time: Sun 01 Jan 2023 11:15:13 +0000
ROA not before: Sun 01 Jan 2023 11:15:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209698
IP address blocks: 85.143.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:f8:59:5c:7a:84:54:0d:48:15:57:d8:d0:ac:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:15:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7385a4087ab66b190e8044f25aa04b635f5dd5bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c6:23:f1:ab:26:bd:5c:43:37:e1:99:99:11:
70:3e:da:a2:16:df:30:ba:84:21:e0:3f:95:60:6d:
cd:ff:cc:70:d4:5a:8a:c0:e6:f0:61:6a:63:20:ef:
0d:a2:fc:f9:1c:10:47:06:cd:85:34:c5:47:0c:6f:
00:f8:82:07:66:63:c1:2d:b5:b0:51:58:83:aa:7c:
4d:2a:07:43:61:45:fd:86:98:24:61:28:18:c2:51:
95:dc:04:66:b1:04:b6:97:36:06:a0:42:8f:22:09:
f6:56:d2:65:28:d1:06:ab:05:68:d7:07:a3:0f:26:
2f:5e:a6:42:1c:42:37:a0:16:2a:bd:f5:be:5d:1f:
a7:66:b6:34:68:5d:b4:f0:fc:38:0a:f0:f2:0a:c2:
98:41:f6:be:40:25:53:6f:0c:5f:0b:63:f0:e6:a0:
3f:ba:8a:e3:4b:18:68:53:2b:4c:a1:e2:05:6d:e0:
99:e6:2e:eb:8e:e6:e6:2b:b0:89:5c:07:4b:17:72:
78:e8:93:e2:84:0b:88:da:98:77:53:1d:2c:1c:57:
ed:96:a9:4b:f5:ab:63:bd:33:43:c7:79:c0:c5:be:
bb:9d:a6:79:b0:3f:88:b1:95:1d:2b:bb:05:21:92:
f9:df:8f:42:09:9b:d2:3f:78:35:c0:28:53:0f:ec:
8f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:85:A4:08:7A:B6:6B:19:0E:80:44:F2:5A:A0:4B:63:5F:5D:D5:BC
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/c4WkCHq2axkOgETyWqBLY19d1bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.16.0/24
Signature Algorithm: sha256WithRSAEncryption
79:84:f2:ff:94:16:d5:ea:43:59:d2:bf:9c:43:0c:98:67:2b:
9c:0f:ce:51:6b:06:e6:78:fc:6c:43:cb:cc:d4:c7:55:2c:fc:
40:23:ad:9a:3f:a4:71:eb:79:cb:10:9f:49:05:89:f6:78:c2:
a7:41:dd:b1:a0:f4:0f:27:3c:dd:7c:b6:fc:db:50:fe:4d:a4:
1a:72:7e:d7:94:19:c3:9e:9b:49:ee:42:5f:a1:3f:88:d6:27:
d2:59:0c:a3:42:70:f8:d5:18:4e:bf:80:c7:3e:63:64:f8:f0:
b3:4c:31:3b:2f:d5:a1:47:3b:c6:4f:d8:b8:46:f9:78:cc:e4:
52:42:e0:e3:ac:be:86:d4:48:a2:0a:c1:b5:40:d7:b3:24:c4:
a3:e3:d1:a8:86:72:9e:28:67:9d:46:8c:72:4c:7e:f0:f3:56:
95:7a:52:2e:7d:ba:6f:0e:e8:e1:2c:97:9e:ae:82:66:d7:31:
0d:85:34:83:b3:ad:27:25:19:ab:63:3c:31:d7:1f:3b:8c:19:
76:a0:eb:45:31:19:95:51:9d:1f:12:93:3e:4c:27:15:01:6e:
63:a0:6a:4d:8c:9f:e4:97:45:9f:42:33:00:20:ad:67:77:3c:
83:e5:e3:8d:50:a7:da:3b:e6:f5:de:c6:f1:a6:86:b2:e2:09:
0c:56:64:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtCvhZXHqEVA1IFVfY0KxwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YjIyMDIzYjZlYWQ0YzI5NjgzYTlmZWQ0NDkzZDAzZGVl
MmM2ODUwHhcNMjMwMTAxMTExNTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Mzg1YTQwODdhYjY2YjE5MGU4MDQ0ZjI1YWEwNGI2MzVmNWRkNWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8Yj8asmvVxDN+GZmRFwPtqiFt8w
uoQh4D+VYG3N/8xw1FqKwObwYWpjIO8Novz5HBBHBs2FNMVHDG8A+IIHZmPBLbWw
UViDqnxNKgdDYUX9hpgkYSgYwlGV3ARmsQS2lzYGoEKPIgn2VtJlKNEGqwVo1wej
DyYvXqZCHEI3oBYqvfW+XR+nZrY0aF208Pw4CvDyCsKYQfa+QCVTbwxfC2Pw5qA/
uorjSxhoUytMoeIFbeCZ5i7rjubmK7CJXAdLF3J46JPihAuI2ph3Ux0sHFftlqlL
9atjvTNDx3nAxb67naZ5sD+IsZUdK7sFIZL5349CCZvSP3g1wChTD+yPpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHOFpAh6tmsZDoBE8lqgS2NfXdW8MB8GA1UdIwQY
MBaAFDiyICO26tTCloOp/tRJPQPe4saFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMt
NDBkOTViZDMzZmNiLzEvYzRXa0NIcTJheGtPZ0VUeVdxQkxZMTlkMWJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMtNDBkOTViZDMzZmNi
LzEvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVY8QMA0G
CSqGSIb3DQEBCwUAA4IBAQB5hPL/lBbV6kNZ0r+cQwyYZyucD85RawbmePxsQ8vM
1MdVLPxAI62aP6Rx63nLEJ9JBYn2eMKnQd2xoPQPJzzdfLb821D+TaQacn7XlBnD
nptJ7kJfoT+I1ifSWQyjQnD41RhOv4DHPmNk+PCzTDE7L9WhRzvGT9i4Rvl4zORS
QuDjrL6G1EiiCsG1QNezJMSj49GohnKeKGedRoxyTH7w81aVelIufbpvDujhLJee
roJm1zENhTSDs60nJRmrYzwx1x87jBl2oOtFMRmVUZ0fEpM+TCcVAW5joGpNjJ/k
l0WfQjMAIK1ndzyD5eONUKfaO+b13sbxpoay4gkMVmRh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org