Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/c10b5d-c8fc-4c68-b01e-4cc01b6f8847/1/KsGgTjSgLhfWZMq7odPq1s1ott8.roa
File: KsGgTjSgLhfWZMq7odPq1s1ott8.roa (raw, json)
Hash identifier: 830OOaTz5RIirMIw9lL6ZI4S3A+kK31TIwQORc0UgU4=
Subject key identifier: 2A:C1:A0:4E:34:A0:2E:17:D6:64:CA:BB:A1:D3:EA:D6:CD:68:B6:DF
Certificate issuer: /CN=8a16a5fac65ac5e9c5ebbfed71518cae0c1311c5
Certificate serial: 01856F26C6FE20AA35C2959E3CBD17833ED2
Authority key identifier: 8A:16:A5:FA:C6:5A:C5:E9:C5:EB:BF:ED:71:51:8C:AE:0C:13:11:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihal-sZaxenF67_tcVGMrgwTEcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/c10b5d-c8fc-4c68-b01e-4cc01b6f8847/1/KsGgTjSgLhfWZMq7odPq1s1ott8.roa
Signing time: Sun 01 Jan 2023 21:04:50 +0000
ROA not before: Sun 01 Jan 2023 21:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 194.113.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:c6:fe:20:aa:35:c2:95:9e:3c:bd:17:83:3e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a16a5fac65ac5e9c5ebbfed71518cae0c1311c5
Validity
Not Before: Jan 1 21:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ac1a04e34a02e17d664cabba1d3ead6cd68b6df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:21:93:2d:b3:17:dd:58:eb:d9:4e:63:1f:80:
b6:19:84:99:b6:33:23:83:d3:bb:de:f5:35:c1:d5:
80:be:10:82:37:23:a8:a0:15:02:18:70:5d:66:7a:
af:4b:2a:de:53:6c:ca:4e:3e:f4:cd:37:bd:83:19:
fd:19:7e:be:5d:50:5a:0e:1e:ee:7a:e5:bd:8b:03:
2e:8b:73:79:33:6e:03:f5:33:7b:5c:01:cf:ee:7f:
31:52:24:d8:1b:f6:a8:39:69:b0:3b:69:c8:eb:c9:
e7:55:b5:dd:7b:44:25:7e:01:94:97:ac:36:bb:23:
62:df:cd:d7:f8:11:6d:7c:80:75:2a:a1:db:46:42:
63:3f:f3:f4:c5:78:13:ed:94:63:08:d6:9d:bb:63:
ed:b1:75:f0:71:df:53:eb:ad:33:0b:f9:aa:29:2a:
a2:c5:5f:11:a3:ed:c7:7a:f4:2f:60:ce:61:ee:09:
4e:db:e0:48:68:0d:d1:36:1d:dc:ae:c6:7b:1b:be:
2b:e6:e7:1a:3c:7a:96:0a:ad:12:77:2c:a2:71:3b:
9c:c0:ba:de:e9:19:bd:a6:ed:82:d3:5d:8a:cf:9b:
8e:53:23:fb:de:c4:04:f2:9a:dc:92:42:25:fb:1e:
80:48:32:78:b9:f0:a9:a2:44:42:62:41:55:a9:7a:
5d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:C1:A0:4E:34:A0:2E:17:D6:64:CA:BB:A1:D3:EA:D6:CD:68:B6:DF
X509v3 Authority Key Identifier:
keyid:8A:16:A5:FA:C6:5A:C5:E9:C5:EB:BF:ED:71:51:8C:AE:0C:13:11:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihal-sZaxenF67_tcVGMrgwTEcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/c10b5d-c8fc-4c68-b01e-4cc01b6f8847/1/KsGgTjSgLhfWZMq7odPq1s1ott8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/c10b5d-c8fc-4c68-b01e-4cc01b6f8847/1/ihal-sZaxenF67_tcVGMrgwTEcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.246.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ec:27:12:5b:7e:4a:a5:2b:0a:95:af:78:14:7a:99:22:46:
af:e9:9e:f4:84:3d:15:bb:50:b4:82:96:4c:5b:ba:57:63:50:
9f:27:7d:70:cb:4c:83:f7:b4:7a:ed:a3:5f:d8:e1:16:0f:f6:
0d:27:81:fd:aa:71:c9:66:4b:76:59:86:5a:bb:03:5c:89:d0:
c9:20:57:b3:cf:37:25:2b:0b:1a:ef:28:4a:d4:03:47:5c:bf:
60:60:7c:8a:4e:df:7d:9c:d4:5f:af:0f:55:7e:0f:54:64:a4:
50:0f:c1:b6:78:46:a9:1e:7b:2e:36:cd:6c:93:8e:a2:e3:7d:
c3:75:a7:3c:2c:92:c2:6a:a6:ec:f3:19:24:fb:eb:b2:33:bb:
cb:74:21:6d:1f:f4:08:75:03:c0:3f:15:92:27:28:47:96:c7:
f7:09:f2:37:6d:ce:d1:1f:7a:8a:3d:83:1d:4c:63:86:f8:28:
fc:e8:32:9c:ad:f7:01:96:2a:07:b5:de:7c:28:25:72:9c:bd:
78:0d:51:68:20:1f:79:62:21:18:62:c9:70:79:a0:da:e6:4f:
0d:79:e1:9c:09:d0:f0:0f:3b:a9:c6:78:9b:fc:ed:62:db:48:
76:eb:58:5f:b8:a7:52:cc:9e:92:a4:ec:e1:36:7d:4f:1c:3d:
9b:fd:ec:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvJsb+IKo1wpWePL0Xgz7SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhMTZhNWZhYzY1YWM1ZTljNWViYmZlZDcxNTE4Y2FlMGMx
MzExYzUwHhcNMjMwMTAxMjEwNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYWMxYTA0ZTM0YTAyZTE3ZDY2NGNhYmJhMWQzZWFkNmNkNjhiNmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjSGTLbMX3Vjr2U5jH4C2GYSZtjMj
g9O73vU1wdWAvhCCNyOooBUCGHBdZnqvSyreU2zKTj70zTe9gxn9GX6+XVBaDh7u
euW9iwMui3N5M24D9TN7XAHP7n8xUiTYG/aoOWmwO2nI68nnVbXde0QlfgGUl6w2
uyNi383X+BFtfIB1KqHbRkJjP/P0xXgT7ZRjCNadu2PtsXXwcd9T660zC/mqKSqi
xV8Ro+3HevQvYM5h7glO2+BIaA3RNh3crsZ7G74r5ucaPHqWCq0SdyyicTucwLre
6Rm9pu2C012Kz5uOUyP73sQE8prckkIl+x6ASDJ4ufCpokRCYkFVqXpdSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCrBoE40oC4X1mTKu6HT6tbNaLbfMB8GA1UdIwQY
MBaAFIoWpfrGWsXpxeu/7XFRjK4MExHFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWhhbC1zWmF4ZW5GNjdfdGNWR01yZ3dURWNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi9jMTBiNWQtYzhmYy00YzY4LWIwMWUt
NGNjMDFiNmY4ODQ3LzEvS3NHZ1RqU2dMaGZXWk1xN29kUHExczFvdHQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNi9jMTBiNWQtYzhmYy00YzY4LWIwMWUtNGNjMDFiNmY4ODQ3
LzEvaWhhbC1zWmF4ZW5GNjdfdGNWR01yZ3dURWNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwnH2MA0G
CSqGSIb3DQEBCwUAA4IBAQAL7CcSW35KpSsKla94FHqZIkav6Z70hD0Vu1C0gpZM
W7pXY1CfJ31wy0yD97R67aNf2OEWD/YNJ4H9qnHJZkt2WYZauwNcidDJIFezzzcl
Kwsa7yhK1ANHXL9gYHyKTt99nNRfrw9Vfg9UZKRQD8G2eEapHnsuNs1sk46i433D
dac8LJLCaqbs8xkk++uyM7vLdCFtH/QIdQPAPxWSJyhHlsf3CfI3bc7RH3qKPYMd
TGOG+Cj86DKcrfcBlioHtd58KCVynL14DVFoIB95YiEYYslweaDa5k8NeeGcCdDw
Dzupxnib/O1i20h261hfuKdSzJ6SpOzhNn1PHD2b/eyp
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:17 2024 by rpki-client on console-fra.rpki-client.org