Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/4WdE3Qb2QDLVlofpGdNUJY0cSXM.roa
File: 4WdE3Qb2QDLVlofpGdNUJY0cSXM.roa (raw, json)
Hash identifier: FMuY2+v0gF5c5D44ATmf+nMO98OO79yNJZqP+6INSgE=
Subject key identifier: E1:67:44:DD:06:F6:40:32:D5:96:87:E9:19:D3:54:25:8D:1C:49:73
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737ABC1A96BA916E85E8FC493639A63F
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/4WdE3Qb2QDLVlofpGdNUJY0cSXM.roa
Signing time: Mon 02 Jan 2023 17:15:01 +0000
ROA not before: Mon 02 Jan 2023 17:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39281
IP address blocks: 194.35.88.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:bc:1a:96:ba:91:6e:85:e8:fc:49:36:39:a6:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e16744dd06f64032d59687e919d354258d1c4973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:68:2e:6a:80:5a:e1:63:9e:9d:6d:80:62:07:
49:63:cf:d7:c2:57:e5:6f:ca:69:50:d3:8b:dd:32:
81:c2:6d:b5:c5:a7:cf:56:ed:55:59:b3:33:46:02:
ca:c4:59:c5:ec:55:de:86:36:08:28:b7:cd:8d:21:
0f:01:f2:92:d2:db:09:9d:37:49:aa:df:dc:d6:10:
4a:e7:32:df:56:0c:67:2e:b7:03:83:6e:40:0f:60:
73:d1:4c:18:a3:eb:e4:45:6f:62:60:30:39:f2:ea:
c0:41:31:5f:25:97:53:02:14:8e:e0:ae:3a:65:0b:
e4:af:e9:b7:fb:78:46:63:9e:b3:b5:fc:5a:26:e6:
52:71:6a:53:52:81:a4:97:3c:16:1b:53:be:fb:8a:
9f:05:b7:0f:a8:75:19:fe:96:c1:9b:1a:5f:da:30:
fe:67:1e:68:5d:aa:7e:18:74:56:1e:24:74:30:17:
c4:f8:53:d6:91:31:22:07:b2:d6:61:0f:dc:3f:4b:
63:ed:7c:83:8e:ee:55:33:0b:71:c2:7b:6d:2e:e3:
ee:24:5e:89:1a:22:3f:e0:56:89:76:f2:3a:e7:71:
f6:47:63:4c:f5:b5:99:ec:72:98:4e:73:7a:cb:9b:
77:46:99:bf:10:6d:42:95:a8:62:b2:74:d5:aa:d8:
ab:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:67:44:DD:06:F6:40:32:D5:96:87:E9:19:D3:54:25:8D:1C:49:73
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/4WdE3Qb2QDLVlofpGdNUJY0cSXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.88.0/22
Signature Algorithm: sha256WithRSAEncryption
57:0b:ab:32:46:6d:6b:b6:f7:dc:3e:bc:12:58:00:9b:37:71:
bd:48:47:c0:ba:8d:06:be:d0:be:98:d0:e1:35:0d:58:df:b7:
41:86:f0:17:60:0e:6b:09:7a:2c:8f:01:01:ba:8e:70:43:65:
b2:3d:70:12:d5:67:5f:23:d7:71:5f:eb:a5:b3:68:9c:f0:0e:
dd:44:2d:1d:33:cb:d4:4d:55:6a:14:1f:35:a8:4f:a4:1a:e7:
b3:41:c3:08:71:55:e4:35:c3:d3:8c:e9:5e:ba:93:86:54:90:
6b:51:1c:02:f3:99:fc:f3:a0:7f:99:6b:b1:7e:54:57:54:37:
72:c7:d3:0c:6a:d3:09:af:ec:44:9f:15:08:11:34:f7:86:d2:
72:f6:ab:f1:4f:e0:7c:e0:00:18:6a:c2:10:a1:96:fb:db:fe:
3f:5d:5c:01:02:4b:f4:2b:d6:29:76:78:1c:93:d3:89:fc:69:
3c:c6:8a:ad:82:e9:da:75:e5:b0:3b:f3:23:b4:cb:66:61:79:
e1:c0:21:cf:b0:6c:aa:e0:20:5d:ec:28:2e:5f:58:e1:cf:02:
2f:ae:97:3d:73:df:b0:6c:da:be:99:97:22:2d:cf:da:79:79:
24:c1:fb:a0:a9:68:b6:64:80:7d:f2:9c:6a:f9:42:7b:ca:8e:
ea:c5:63:d5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzerwalrqRboXo/Ek2OaY/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjMwMTAyMTcxNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTY3NDRkZDA2ZjY0MDMyZDU5Njg3ZTkxOWQzNTQyNThkMWM0OTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9mguaoBa4WOenW2AYgdJY8/Xwlfl
b8ppUNOL3TKBwm21xafPVu1VWbMzRgLKxFnF7FXehjYIKLfNjSEPAfKS0tsJnTdJ
qt/c1hBK5zLfVgxnLrcDg25AD2Bz0UwYo+vkRW9iYDA58urAQTFfJZdTAhSO4K46
ZQvkr+m3+3hGY56ztfxaJuZScWpTUoGklzwWG1O++4qfBbcPqHUZ/pbBmxpf2jD+
Zx5oXap+GHRWHiR0MBfE+FPWkTEiB7LWYQ/cP0tj7XyDju5VMwtxwnttLuPuJF6J
GiI/4FaJdvI653H2R2NM9bWZ7HKYTnN6y5t3Rpm/EG1ClahisnTVqtirEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOFnRN0G9kAy1ZaH6RnTVCWNHElzMB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEvNFdkRTNRYjJRRExWbG9mcEdkTlVKWTBjU1hNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwiNYMA0G
CSqGSIb3DQEBCwUAA4IBAQBXC6syRm1rtvfcPrwSWACbN3G9SEfAuo0GvtC+mNDh
NQ1Y37dBhvAXYA5rCXosjwEBuo5wQ2WyPXAS1WdfI9dxX+uls2ic8A7dRC0dM8vU
TVVqFB81qE+kGuezQcMIcVXkNcPTjOleupOGVJBrURwC85n886B/mWuxflRXVDdy
x9MMatMJr+xEnxUIETT3htJy9qvxT+B84AAYasIQoZb72/4/XVwBAkv0K9Ypdngc
k9OJ/Gk8xoqtgunadeWwO/MjtMtmYXnhwCHPsGyq4CBd7CguX1jhzwIvrpc9c9+w
bNq+mZciLc/aeXkkwfugqWi2ZIB98pxq+UJ7yo7qxWPV
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org