Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/tMwlV42LsURepNeOe50vn44gSFg.roa
File: tMwlV42LsURepNeOe50vn44gSFg.roa (raw, json)
Hash identifier: 4rqRy7Gw3IRxb5nQ1eof1E9ksYc4VtWx/GuFEM10FCE=
Subject key identifier: B4:CC:25:57:8D:8B:B1:44:5E:A4:D7:8E:7B:9D:2F:9F:8E:20:48:58
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737AD6134B99509B004E91F115B9AFEA
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/tMwlV42LsURepNeOe50vn44gSFg.roa
Signing time: Mon 02 Jan 2023 17:15:08 +0000
ROA not before: Mon 02 Jan 2023 17:15:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205888
IP address blocks: 185.202.188.0/22 maxlen: 24
79.142.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:d6:13:4b:99:50:9b:00:4e:91:f1:15:b9:af:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4cc25578d8bb1445ea4d78e7b9d2f9f8e204858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:57:b1:0a:77:4e:31:36:5e:b6:1f:80:32:ca:
1a:e4:40:b7:cd:16:8c:75:a1:50:38:1d:d0:f4:ee:
d7:f1:2e:ea:fb:94:71:2f:99:57:a1:93:d7:c9:68:
b5:d5:a6:f1:1d:d5:15:c9:5d:30:ee:eb:d5:4b:09:
00:11:75:84:35:fe:92:2e:d9:89:ef:80:a7:5e:6a:
ef:ad:2b:0c:0f:45:bc:91:10:a9:c3:0e:ef:b0:52:
96:30:f9:d5:72:37:8c:e5:b1:17:8e:26:a4:87:df:
c1:7a:4c:3d:04:9a:cc:1c:24:9e:40:0b:fe:5f:63:
2d:bd:08:44:e0:a8:1d:47:cd:86:a7:82:69:1c:68:
ef:40:bb:6e:b5:16:d8:59:4e:1a:65:dd:cd:b0:7e:
8b:95:1e:30:47:36:9b:fd:61:ba:02:d5:f9:19:fd:
84:ec:0f:32:9b:b4:d6:62:03:af:d3:e3:a5:5b:4e:
be:79:11:f0:a5:a5:c3:fd:56:27:78:e3:93:11:16:
5e:80:fd:29:cd:d6:3a:c3:a0:b5:0c:78:4d:a7:6a:
92:e2:36:94:4d:8e:0e:ec:4e:fc:22:49:95:c9:6c:
d8:e2:c5:47:24:28:aa:5c:94:bb:b0:5c:b1:bc:fc:
30:64:53:1f:34:74:b2:42:49:09:c3:4d:d6:1f:69:
85:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:CC:25:57:8D:8B:B1:44:5E:A4:D7:8E:7B:9D:2F:9F:8E:20:48:58
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/tMwlV42LsURepNeOe50vn44gSFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.142.184.0/22
185.202.188.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:dd:d6:83:d6:72:30:f9:d0:4c:43:63:8b:61:7b:5e:dc:8f:
88:8b:5c:f9:be:bf:64:24:0b:5b:47:5c:84:4c:9b:a1:ea:15:
ca:7c:61:49:6c:68:12:41:38:cd:d3:6b:8f:85:b1:7e:af:5f:
c0:e0:60:a5:1f:36:32:c7:77:ed:65:be:9a:ca:e2:5d:36:f8:
99:6b:c6:18:fc:fe:95:52:63:f8:b0:a0:be:f7:95:dc:3b:68:
12:0b:46:c5:36:44:f6:bd:01:0c:d2:5f:90:75:56:aa:c6:d1:
d4:f3:9a:e9:87:c1:dd:27:39:59:5a:2e:5d:9e:2f:ad:18:e6:
e5:92:67:c2:83:e1:4b:61:75:01:66:0d:35:d5:e5:06:ab:3e:
2c:a9:b4:97:23:d8:ad:3b:93:38:b5:87:9f:39:72:9d:4e:60:
c7:b2:ca:ba:33:65:73:3d:da:39:c1:02:7c:b4:5d:18:88:d9:
22:7e:52:0d:35:b9:c9:94:c7:76:e8:18:8a:ca:0b:89:5e:6b:
9b:6a:d3:2f:c8:26:03:0a:ed:8b:cf:66:be:67:a8:e1:79:4c:
8c:0c:c4:a8:80:07:9b:bb:43:51:f0:69:42:89:49:12:74:0f:
38:1c:71:91:bc:4e:df:05:e3:fb:6f:de:28:28:84:1b:75:bc:
c3:ea:93:f8
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVzetYTS5lQmwBOkfEVua/qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjMwMTAyMTcxNTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNGNjMjU1NzhkOGJiMTQ0NWVhNGQ3OGU3YjlkMmY5ZjhlMjA0ODU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlexCndOMTZeth+AMsoa5EC3zRaM
daFQOB3Q9O7X8S7q+5RxL5lXoZPXyWi11abxHdUVyV0w7uvVSwkAEXWENf6SLtmJ
74CnXmrvrSsMD0W8kRCpww7vsFKWMPnVcjeM5bEXjiakh9/Bekw9BJrMHCSeQAv+
X2MtvQhE4KgdR82Gp4JpHGjvQLtutRbYWU4aZd3NsH6LlR4wRzab/WG6AtX5Gf2E
7A8ym7TWYgOv0+OlW06+eRHwpaXD/VYneOOTERZegP0pzdY6w6C1DHhNp2qS4jaU
TY4O7E78IkmVyWzY4sVHJCiqXJS7sFyxvPwwZFMfNHSyQkkJw03WH2mF1QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLTMJVeNi7FEXqTXjnudL5+OIEhYMB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEvdE13bFY0MkxzVVJlcE5lT2U1MHZuNDRnU0ZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCT464AwQC
ucq8MA0GCSqGSIb3DQEBCwUAA4IBAQBL3daD1nIw+dBMQ2OLYXte3I+Ii1z5vr9k
JAtbR1yETJuh6hXKfGFJbGgSQTjN02uPhbF+r1/A4GClHzYyx3ftZb6ayuJdNviZ
a8YY/P6VUmP4sKC+95XcO2gSC0bFNkT2vQEM0l+QdVaqxtHU85rph8HdJzlZWi5d
ni+tGOblkmfCg+FLYXUBZg011eUGqz4sqbSXI9itO5M4tYefOXKdTmDHssq6M2Vz
Pdo5wQJ8tF0YiNkiflINNbnJlMd26BiKyguJXmubatMvyCYDCu2Lz2a+Z6jheUyM
DMSogAebu0NR8GlCiUkSdA84HHGRvE7fBeP7b94oKIQbdbzD6pP4
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org