Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/F7-IdpMps9-E2WLW_5caBkGaRzQ.roa
File: F7-IdpMps9-E2WLW_5caBkGaRzQ.roa (raw, json)
Hash identifier: C660r4rHsI5aibI7qDIH0rWkUdhd0eguLOqh2Vb+HbE=
Subject key identifier: 17:BF:88:76:93:29:B3:DF:84:D9:62:D6:FF:97:1A:06:41:9A:47:34
Certificate issuer: /CN=c3c0591e2eb49d0559e6fce7ee2aa81f0f59ba6f
Certificate serial: 0185701EEB28BFC66672DE0F18F7A57F2385
Authority key identifier: C3:C0:59:1E:2E:B4:9D:05:59:E6:FC:E7:EE:2A:A8:1F:0F:59:BA:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/F7-IdpMps9-E2WLW_5caBkGaRzQ.roa
Signing time: Mon 02 Jan 2023 01:35:52 +0000
ROA not before: Mon 02 Jan 2023 01:35:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203523
IP address blocks: 185.122.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:eb:28:bf:c6:66:72:de:0f:18:f7:a5:7f:23:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c0591e2eb49d0559e6fce7ee2aa81f0f59ba6f
Validity
Not Before: Jan 2 01:35:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17bf88769329b3df84d962d6ff971a06419a4734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f7:bf:1c:6b:39:f7:d6:b6:c1:42:8a:b2:34:
c6:6d:72:ee:d6:0c:3c:70:b7:e7:6b:a7:a5:cd:b0:
7b:7d:35:bf:65:6b:aa:35:3a:23:a0:2c:1e:ae:fd:
a8:c0:d0:35:4b:6e:c5:ed:6a:2a:30:79:ab:7f:58:
aa:c2:7d:59:4f:81:91:73:0c:76:b8:b9:44:98:3c:
45:18:17:d3:1f:5d:ed:61:92:1b:5d:1e:d0:73:d2:
bb:5c:5d:38:b0:bf:5b:01:75:20:19:f6:ad:79:21:
83:2d:1c:91:f7:a5:f6:34:f4:84:93:1b:0b:ab:19:
27:82:45:f4:4d:9d:0e:d3:85:0a:16:dd:b3:ee:c9:
13:a7:36:60:49:9f:9d:34:e0:92:96:dd:d1:5c:ef:
79:6f:6f:86:24:6f:33:a6:b2:12:2c:2c:bc:11:ce:
5c:ad:df:f5:51:bd:66:53:76:f3:a5:c0:c6:70:75:
41:4e:97:a4:42:7f:ce:35:04:72:b4:6d:4c:7c:8f:
da:68:ac:13:9d:ea:18:89:0d:d6:74:91:cb:1b:4b:
d1:05:cd:e2:4a:cc:3f:54:00:c8:6d:66:54:4a:34:
60:c1:69:5a:c7:76:50:32:a5:73:24:02:76:de:91:
23:43:97:66:df:c9:f0:d6:38:95:10:a8:7c:90:d7:
54:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:BF:88:76:93:29:B3:DF:84:D9:62:D6:FF:97:1A:06:41:9A:47:34
X509v3 Authority Key Identifier:
keyid:C3:C0:59:1E:2E:B4:9D:05:59:E6:FC:E7:EE:2A:A8:1F:0F:59:BA:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/F7-IdpMps9-E2WLW_5caBkGaRzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/w8BZHi60nQVZ5vzn7iqoHw9Zum8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.220.0/24
Signature Algorithm: sha256WithRSAEncryption
97:03:e9:94:03:b4:3f:43:17:44:50:5a:03:2c:99:b7:9b:ff:
b8:2c:22:5b:c2:f6:49:a7:a7:8c:1f:96:82:fd:99:c2:ad:8d:
85:80:07:77:2f:ac:d2:64:e4:98:63:27:d7:fc:ae:4e:de:63:
3c:e2:f2:62:93:95:79:03:32:a6:55:16:aa:58:5d:ed:3d:3e:
be:a2:b9:57:2c:33:fb:c3:18:50:02:b4:84:0c:31:00:e3:70:
bd:91:be:7b:6d:05:8c:99:11:ad:05:cf:b3:33:91:85:5f:6a:
22:57:e0:61:13:0e:68:e3:6f:54:dc:e1:dd:6b:f8:59:a2:68:
6c:1a:ef:14:01:b0:a9:22:db:d1:de:a2:bd:db:fa:91:19:79:
18:b5:10:41:99:fc:d5:22:2f:9c:99:80:2d:a4:6b:13:10:4c:
d2:21:f8:1c:f8:28:2a:80:ce:3c:83:81:f7:c5:6e:42:80:ff:
50:d6:e0:cb:30:30:fa:3e:99:d6:bd:93:34:b4:7d:ff:a3:b7:
06:56:22:3a:3e:f1:71:c7:09:35:93:f6:82:92:bf:39:06:de:
2c:f8:0d:da:99:a4:f8:4a:f2:ec:93:50:ca:59:6a:82:24:7e:
0a:d6:a3:8c:5f:52:63:ec:93:8d:19:f3:52:6f:c0:e2:85:94:
5f:33:eb:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwHusov8Zmct4PGPelfyOFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzA1OTFlMmViNDlkMDU1OWU2ZmNlN2VlMmFhODFmMGY1
OWJhNmYwHhcNMjMwMTAyMDEzNTUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxN2JmODg3NjkzMjliM2RmODRkOTYyZDZmZjk3MWEwNjQxOWE0NzM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPe/HGs599a2wUKKsjTGbXLu1gw8
cLfna6elzbB7fTW/ZWuqNTojoCwerv2owNA1S27F7WoqMHmrf1iqwn1ZT4GRcwx2
uLlEmDxFGBfTH13tYZIbXR7Qc9K7XF04sL9bAXUgGfateSGDLRyR96X2NPSEkxsL
qxkngkX0TZ0O04UKFt2z7skTpzZgSZ+dNOCSlt3RXO95b2+GJG8zprISLCy8Ec5c
rd/1Ub1mU3bzpcDGcHVBTpekQn/ONQRytG1MfI/aaKwTneoYiQ3WdJHLG0vRBc3i
Ssw/VADIbWZUSjRgwWlax3ZQMqVzJAJ23pEjQ5dm38nw1jiVEKh8kNdUaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBe/iHaTKbPfhNli1v+XGgZBmkc0MB8GA1UdIwQY
MBaAFMPAWR4utJ0FWeb85+4qqB8PWbpvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhCWkhpNjBuUVZaNXZ6bjdpcW9IdzladW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy80YjhhYWItMjA5OS00M2FmLWI0MWQt
ZTM0MDcxNzQ2NjNiLzEvRjctSWRwTXBzOS1FMldMV181Y2FCa0dhUnpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy80YjhhYWItMjA5OS00M2FmLWI0MWQtZTM0MDcxNzQ2NjNi
LzEvdzhCWkhpNjBuUVZaNXZ6bjdpcW9IdzladW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXrcMA0G
CSqGSIb3DQEBCwUAA4IBAQCXA+mUA7Q/QxdEUFoDLJm3m/+4LCJbwvZJp6eMH5aC
/ZnCrY2FgAd3L6zSZOSYYyfX/K5O3mM84vJik5V5AzKmVRaqWF3tPT6+orlXLDP7
wxhQArSEDDEA43C9kb57bQWMmRGtBc+zM5GFX2oiV+BhEw5o429U3OHda/hZomhs
Gu8UAbCpItvR3qK92/qRGXkYtRBBmfzVIi+cmYAtpGsTEEzSIfgc+CgqgM48g4H3
xW5CgP9Q1uDLMDD6PpnWvZM0tH3/o7cGViI6PvFxxwk1k/aCkr85Bt4s+A3amaT4
SvLsk1DKWWqCJH4K1qOMX1Jj7JONGfNSb8DihZRfM+sF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:38 2024 by rpki-client on console-fra.rpki-client.org