Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/B4cic8BZQgdukDVT5FEbElyOwkE.roa
File: B4cic8BZQgdukDVT5FEbElyOwkE.roa (raw, json)
Hash identifier: g5DC4yD6U6BiPT8c0BGSdEy4bHvlKaEDpSHGXs6wG10=
Subject key identifier: 07:87:22:73:C0:59:42:07:6E:90:35:53:E4:51:1B:12:5C:8E:C2:41
Certificate issuer: /CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Certificate serial: 0192584767D5D23A0A7A7B7D0075DD34E0C9
Authority key identifier: E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/B4cic8BZQgdukDVT5FEbElyOwkE.roa
Signing time: Fri 04 Oct 2024 16:05:27 +0000
ROA not before: Fri 04 Oct 2024 16:05:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 185.129.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 07 Oct 2024 15:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:58:47:67:d5:d2:3a:0a:7a:7b:7d:00:75:dd:34:e0:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Validity
Not Before: Oct 4 16:05:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07872273c05942076e903553e4511b125c8ec241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:32:b4:e5:29:2d:27:31:1c:93:d6:cc:4c:5a:
77:16:b8:ba:60:d7:9e:ee:28:cd:87:c6:46:b8:45:
9e:73:5d:5a:ee:9e:9d:ee:ef:b4:30:d6:01:ec:dd:
de:40:e6:d3:5a:d0:6e:83:2d:0c:c0:c5:12:f1:1d:
0a:0c:76:c8:fc:b9:70:33:28:af:77:5e:88:49:c7:
8f:63:7e:d4:c3:c8:ed:5e:07:2d:10:1c:6a:a3:0e:
1c:73:12:75:d5:64:eb:12:88:46:c9:e1:bc:c5:b1:
b2:cd:5a:e2:fa:1f:da:c6:15:c9:a4:e0:08:bf:98:
75:90:ce:27:cb:8e:eb:8d:62:02:ef:5f:0f:b1:34:
27:74:d6:97:fb:6d:fc:53:eb:11:dd:41:61:24:7d:
4a:23:29:5a:0c:3f:f5:03:b2:87:65:59:b7:8f:f6:
65:2c:ce:f7:04:5f:0f:e3:67:f6:64:f1:36:79:39:
b9:55:6b:6b:f6:f9:72:c2:fa:69:f1:c8:45:8b:19:
3b:c9:98:b2:a3:7e:02:26:69:52:60:95:4d:87:66:
f7:fb:4a:62:39:d2:00:2c:a4:9f:15:64:67:81:24:
ef:5f:20:de:7b:9e:cc:3e:71:2f:b7:32:06:aa:da:
51:ba:65:e9:da:a4:63:d3:41:0e:ad:bd:54:3d:7a:
46:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:87:22:73:C0:59:42:07:6E:90:35:53:E4:51:1B:12:5C:8E:C2:41
X509v3 Authority Key Identifier:
keyid:E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/B4cic8BZQgdukDVT5FEbElyOwkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/5hvX3R-KyLQZK6eKWSNItd0KGmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.208.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:98:cf:ea:1d:3b:90:3a:50:0d:05:76:1d:4c:e9:b7:44:90:
5d:72:1b:a6:16:e8:2a:f1:38:5b:d6:a9:a7:27:b5:a1:3a:1a:
ab:02:92:ef:5c:9d:1a:2f:50:2a:23:c5:1d:54:45:ec:a7:1d:
3c:3e:96:f6:42:22:3f:2d:13:5a:a9:fd:8a:a1:c0:bc:15:fc:
f5:c8:1a:a6:22:26:81:f1:3b:6e:74:c2:b5:2e:c2:f1:46:5f:
e2:96:e6:ca:76:cc:6d:36:61:14:5e:76:9c:0f:7d:c2:c2:ed:
48:92:ec:b0:21:76:68:0e:10:25:36:87:77:ba:1c:83:ad:c1:
7f:41:d5:97:3d:1e:13:63:2e:73:b9:21:7a:6d:7c:a1:7c:96:
99:78:56:7d:99:9e:e9:9c:a4:25:24:44:9e:a5:53:3d:ac:88:
65:2c:8a:65:95:57:40:0e:07:62:c8:cb:b9:0d:82:31:16:01:
58:f1:e4:21:6d:66:ff:24:c9:ef:13:0b:8f:65:75:e3:6c:10:
6a:d1:e3:9e:a2:1d:87:74:a1:99:2a:2a:3d:79:28:34:cd:6b:
b0:65:cc:62:f3:14:ab:22:a1:a6:3c:23:ad:28:1b:fe:b1:bb:
db:0a:57:ae:72:fd:58:52:3a:8f:10:53:71:cd:2e:4a:60:3c:
1e:e1:95:e9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJYR2fV0joKent9AHXdNODJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2MWJkN2RkMWY4YWM4YjQxOTJiYTc4YTU5MjM0OGI1ZGQw
YTFhNjYwHhcNMjQxMDA0MTYwNTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzg3MjI3M2MwNTk0MjA3NmU5MDM1NTNlNDUxMWIxMjVjOGVjMjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5DK05SktJzEck9bMTFp3Fri6YNee
7ijNh8ZGuEWec11a7p6d7u+0MNYB7N3eQObTWtBugy0MwMUS8R0KDHbI/LlwMyiv
d16IScePY37Uw8jtXgctEBxqow4ccxJ11WTrEohGyeG8xbGyzVri+h/axhXJpOAI
v5h1kM4ny47rjWIC718PsTQndNaX+238U+sR3UFhJH1KIylaDD/1A7KHZVm3j/Zl
LM73BF8P42f2ZPE2eTm5VWtr9vlywvpp8chFixk7yZiyo34CJmlSYJVNh2b3+0pi
OdIALKSfFWRngSTvXyDee57MPnEvtzIGqtpRumXp2qRj00EOrb1UPXpGGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAeHInPAWUIHbpA1U+RRGxJcjsJBMB8GA1UdIwQY
MBaAFOYb190fisi0GSunilkjSLXdChpmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWh2WDNSLUt5TFFaSzZlS1dTTkl0ZDBLR21ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80YWNjMTUtYmJhMC00NDU5LTk2Njct
ZGU5YjJmOGY3ZTI5LzEvQjRjaWM4QlpRZ2R1a0RWVDVGRWJFbHlPd2tFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80YWNjMTUtYmJhMC00NDU5LTk2NjctZGU5YjJmOGY3ZTI5
LzEvNWh2WDNSLUt5TFFaSzZlS1dTTkl0ZDBLR21ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYHQMA0G
CSqGSIb3DQEBCwUAA4IBAQDNmM/qHTuQOlANBXYdTOm3RJBdchumFugq8Thb1qmn
J7WhOhqrApLvXJ0aL1AqI8UdVEXspx08Ppb2QiI/LRNaqf2KocC8Ffz1yBqmIiaB
8TtudMK1LsLxRl/ilubKdsxtNmEUXnacD33Cwu1IkuywIXZoDhAlNod3uhyDrcF/
QdWXPR4TYy5zuSF6bXyhfJaZeFZ9mZ7pnKQlJESepVM9rIhlLIpllVdADgdiyMu5
DYIxFgFY8eQhbWb/JMnvEwuPZXXjbBBq0eOeoh2HdKGZKio9eSg0zWuwZcxi8xSr
IqGmPCOtKBv+sbvbCleucv1YUjqPEFNxzS5KYDwe4ZXp
-----END CERTIFICATE-----
Generated at Mon Oct 7 20:37:58 2024 by rpki-client on console-fra.rpki-client.org