Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/1-zsXNMx1QB54QcsMIyS9iOi9KNk.roa
File: 1-zsXNMx1QB54QcsMIyS9iOi9KNk.roa (raw, json)
Hash identifier: cdIRxMpFrJfyvxuDDi9KtejC4OJ73dBqyxE5NSHcVSc=
Subject key identifier: FB:3B:17:34:CC:75:40:1E:78:41:CB:0C:23:24:BD:88:E8:BD:28:D9
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018CC9BAA2286A1360A335F89087807D81A0
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/1-zsXNMx1QB54QcsMIyS9iOi9KNk.roa
Signing time: Tue 02 Jan 2024 10:31:40 +0000
ROA not before: Tue 02 Jan 2024 10:31:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211585
IP address blocks: 94.241.160.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 06:16:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:ba:a2:28:6a:13:60:a3:35:f8:90:87:80:7d:81:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 10:31:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb3b1734cc75401e7841cb0c2324bd88e8bd28d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:83:51:96:ba:42:97:01:fa:d6:61:ca:61:83:
96:e5:63:d2:b5:94:00:3c:1e:fa:76:a4:dc:6c:e2:
1f:5f:c5:0d:ec:aa:90:7e:22:09:8a:57:bb:97:02:
ad:7b:77:77:24:db:f9:11:12:66:dc:5f:9e:02:63:
03:0d:ca:84:b0:1c:fc:96:c8:42:1a:5f:59:72:83:
7c:58:59:34:0f:2d:b2:a3:bf:4f:6c:a0:25:aa:4a:
ed:b9:2c:22:eb:be:78:02:a0:aa:c5:98:f9:f2:f3:
bd:6e:1c:2b:db:d7:99:2a:45:6f:44:c6:2f:78:8e:
91:07:a0:fa:66:43:14:4b:0c:a1:67:bf:6e:fe:e9:
1b:2a:f2:f4:38:96:3d:a1:07:3c:f4:e9:47:f8:9b:
62:94:84:54:e3:da:6a:29:5b:20:53:04:07:76:d0:
b7:1c:48:43:8a:8b:6a:04:56:ba:52:82:8a:d8:12:
dc:90:c7:ae:9e:20:f1:ef:a7:cf:8c:39:07:df:07:
65:6c:4c:36:a4:5d:ac:b5:43:1f:4e:44:a9:47:bf:
1f:0b:c8:30:18:c1:a9:5b:f1:e3:52:e9:e5:6e:5d:
7d:25:ce:74:3f:b0:3c:76:42:97:8d:df:ec:c9:93:
bb:ff:85:30:0f:92:33:2d:6b:08:cd:ea:ec:9a:5b:
db:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:3B:17:34:CC:75:40:1E:78:41:CB:0C:23:24:BD:88:E8:BD:28:D9
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/1-zsXNMx1QB54QcsMIyS9iOi9KNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.160.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:a7:a3:6d:b2:54:af:dc:5e:cc:50:73:c1:e8:8a:42:a1:4b:
14:91:9c:d2:97:70:90:a0:87:34:02:45:b6:09:68:93:f5:f4:
72:08:03:da:c4:56:86:82:21:8e:b8:ff:fb:f3:7a:14:70:f0:
4f:69:8c:ef:01:90:80:1f:70:e1:f4:be:d9:c6:64:12:3e:c7:
59:2d:4b:d7:5e:9a:91:ac:2d:5a:4e:97:23:7f:a8:39:1a:1a:
a3:d9:88:90:00:b1:f7:a3:b9:91:da:18:95:73:2f:83:ba:cd:
7a:83:25:c6:70:cc:9b:27:ba:ca:24:cc:94:b6:b1:8c:17:c4:
3a:8f:3b:1e:41:76:93:d6:19:75:4c:a5:74:5f:6a:67:dc:18:
e1:af:27:47:c0:64:6e:d9:39:06:e7:fd:38:10:d6:d1:7f:66:
9d:24:b3:7a:77:2e:8b:42:61:d1:ad:01:f7:a7:50:84:66:fc:
6b:df:36:bb:9b:f0:d5:6f:5c:fe:2d:24:83:df:d0:0f:30:dc:
44:46:c1:e3:c0:68:7f:65:99:53:b4:98:20:b0:ad:f8:2c:4d:
0d:a3:a4:37:a9:8f:8e:62:20:9d:f9:38:60:0c:02:af:86:2b:
2b:56:24:c5:c2:e9:d9:9d:58:42:78:c2:e6:80:26:30:c5:88:
99:aa:c2:f7
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzJuqIoahNgozX4kIeAfYGgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjQwMTAyMTAzMTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYjNiMTczNGNjNzU0MDFlNzg0MWNiMGMyMzI0YmQ4OGU4YmQyOGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoINRlrpClwH61mHKYYOW5WPStZQA
PB76dqTcbOIfX8UN7KqQfiIJile7lwKte3d3JNv5ERJm3F+eAmMDDcqEsBz8lshC
Gl9ZcoN8WFk0Dy2yo79PbKAlqkrtuSwi6754AqCqxZj58vO9bhwr29eZKkVvRMYv
eI6RB6D6ZkMUSwyhZ79u/ukbKvL0OJY9oQc89OlH+JtilIRU49pqKVsgUwQHdtC3
HEhDiotqBFa6UoKK2BLckMeuniDx76fPjDkH3wdlbEw2pF2stUMfTkSpR78fC8gw
GMGpW/HjUunlbl19Jc50P7A8dkKXjd/syZO7/4UwD5IzLWsIzersmlvb+wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPs7FzTMdUAeeEHLDCMkvYjovSjZMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvMS16c1hOTXgxUUI1NFFjc01JeVM5aU9pOUtOay5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYjgvNDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQz
NC8xL3duZU40cW0tbUFJU0E0TG5VTkZaNlZoeXdxNC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAl7xoDAN
BgkqhkiG9w0BAQsFAAOCAQEAf6ejbbJUr9xezFBzweiKQqFLFJGc0pdwkKCHNAJF
tglok/X0cggD2sRWhoIhjrj/+/N6FHDwT2mM7wGQgB9w4fS+2cZkEj7HWS1L116a
kawtWk6XI3+oORoao9mIkACx96O5kdoYlXMvg7rNeoMlxnDMmye6yiTMlLaxjBfE
Oo87HkF2k9YZdUyldF9qZ9wY4a8nR8Bkbtk5Buf9OBDW0X9mnSSzencui0Jh0a0B
96dQhGb8a982u5vw1W9c/i0kg9/QDzDcREbB48Bof2WZU7SYILCt+CxNDaOkN6mP
jmIgnfk4YAwCr4YrK1YkxcLp2Z1YQnjC5oAmMMWImarC9w==
-----END CERTIFICATE-----
Generated at Thu Jan 18 07:41:17 2024 by rpki-client on console-fra.rpki-client.org