Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/dc330d-dad2-4e70-a149-91cf4fc703eb/1/1-waYidh5GD70A_YazV-B8jMJT4I.roa
File: 1-waYidh5GD70A_YazV-B8jMJT4I.roa (raw, json)
Hash identifier: Lj+cnRBqKEB3lej1MC31P37q1mvrgWUCTi4CGV3S2OU=
Subject key identifier: FB:06:98:89:D8:79:18:3E:F4:03:F6:1A:CD:5F:81:F2:33:09:4F:82
Certificate issuer: /CN=1083a6411796bf726387f7a55cf84b57ca899beb
Certificate serial: 01878F71533D914EF06A81CD6033AD3A0461
Authority key identifier: 10:83:A6:41:17:96:BF:72:63:87:F7:A5:5C:F8:4B:57:CA:89:9B:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EIOmQReWv3Jjh_elXPhLV8qJm-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/dc330d-dad2-4e70-a149-91cf4fc703eb/1/1-waYidh5GD70A_YazV-B8jMJT4I.roa
Signing time: Mon 17 Apr 2023 13:39:41 +0000
ROA not before: Mon 17 Apr 2023 13:39:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199285
IP address blocks: 85.90.195.0/24 maxlen: 24
2a13:ce80::/32 maxlen: 48
2a13:ce80:f000::/48 maxlen: 48
2a13:ce80::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:71:53:3d:91:4e:f0:6a:81:cd:60:33:ad:3a:04:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1083a6411796bf726387f7a55cf84b57ca899beb
Validity
Not Before: Apr 17 13:39:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb069889d879183ef403f61acd5f81f233094f82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:16:c3:a3:43:5a:24:72:32:e9:43:87:03:9a:
88:72:3b:e4:28:d7:26:1c:40:33:49:83:bd:b1:e4:
0a:56:59:d5:55:f5:9d:ec:f7:cb:24:ce:3c:bb:43:
bc:3a:4d:d0:0e:c1:b2:98:0a:ef:36:bc:21:c9:a7:
e1:15:e5:a3:06:da:b9:97:4c:1c:9e:30:e5:48:a8:
d3:e4:39:74:43:af:cf:95:66:c3:ff:95:e6:11:50:
14:35:7f:ef:69:60:de:71:de:d4:99:81:7a:45:99:
2f:0f:78:b4:1b:4a:f6:9a:eb:e7:38:5c:3f:e1:45:
f8:fb:06:fa:32:a4:8e:2b:56:fc:b9:e7:3a:e6:6d:
0e:3d:52:36:59:70:57:2b:eb:69:cc:c9:e6:71:e2:
7f:62:68:8b:47:b2:cb:76:01:96:bc:37:d4:88:2c:
3f:50:1f:2e:3c:83:67:05:ab:1d:dc:47:06:64:83:
ad:20:89:9b:8b:9e:d9:32:f0:30:e3:4b:57:37:19:
9c:cc:ae:34:31:57:23:69:5f:66:cf:6c:41:f2:ed:
38:05:44:fb:27:87:ae:5f:37:82:6e:0d:ce:db:11:
d9:93:2d:e9:e6:2b:f7:c0:28:36:8d:11:11:c5:d9:
6e:b4:30:a6:92:d7:b3:d0:2a:f1:6a:d5:8d:40:fb:
8b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:06:98:89:D8:79:18:3E:F4:03:F6:1A:CD:5F:81:F2:33:09:4F:82
X509v3 Authority Key Identifier:
keyid:10:83:A6:41:17:96:BF:72:63:87:F7:A5:5C:F8:4B:57:CA:89:9B:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EIOmQReWv3Jjh_elXPhLV8qJm-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/dc330d-dad2-4e70-a149-91cf4fc703eb/1/1-waYidh5GD70A_YazV-B8jMJT4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/dc330d-dad2-4e70-a149-91cf4fc703eb/1/EIOmQReWv3Jjh_elXPhLV8qJm-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.90.195.0/24
IPv6:
2a13:ce80::/29
Signature Algorithm: sha256WithRSAEncryption
1b:72:c2:22:89:a7:10:e0:92:eb:f3:d9:23:fa:84:4b:67:dc:
4b:37:3c:c2:3e:fb:38:a3:72:e1:bf:f7:00:ac:33:bb:87:fd:
7d:5a:17:8d:9a:cb:16:0b:c4:24:71:d3:6b:7d:44:d5:35:37:
47:44:65:e7:01:44:b0:af:79:6e:d9:3c:84:e5:a0:64:a9:c9:
ae:94:c0:ec:e1:ad:3d:0b:a6:8a:59:ea:39:5f:fe:7b:87:7b:
97:e0:64:88:76:de:da:bf:22:4f:ba:53:63:f5:69:20:cc:ad:
86:32:7c:a0:1f:92:51:54:1e:91:fa:a3:38:e8:cb:79:ad:79:
c8:c8:69:53:ef:4e:ab:e8:82:70:fa:f8:11:21:3e:ff:06:3b:
4c:4c:68:70:56:86:ff:89:10:7d:32:21:9d:a2:2b:09:e6:0e:
01:57:cb:d3:ce:19:00:50:af:fa:55:9f:1f:1e:6e:2c:c9:aa:
e9:e8:c0:9c:9e:3d:3f:f1:a0:9b:a3:d3:fa:37:66:5e:9d:3a:
ac:60:08:c4:39:a9:be:3e:9b:43:31:e4:28:16:39:24:4d:0f:
13:32:82:99:d0:d2:d3:d5:f1:57:68:18:55:22:cf:66:4c:43:
1b:35:10:47:8e:05:4a:68:66:1d:38:49:59:7b:cd:8a:92:c5:
46:29:75:88
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgISAYePcVM9kU7waoHNYDOtOgRhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwODNhNjQxMTc5NmJmNzI2Mzg3ZjdhNTVjZjg0YjU3Y2E4
OTliZWIwHhcNMjMwNDE3MTMzOTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYjA2OTg4OWQ4NzkxODNlZjQwM2Y2MWFjZDVmODFmMjMzMDk0ZjgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhbDo0NaJHIy6UOHA5qIcjvkKNcm
HEAzSYO9seQKVlnVVfWd7PfLJM48u0O8Ok3QDsGymArvNrwhyafhFeWjBtq5l0wc
njDlSKjT5Dl0Q6/PlWbD/5XmEVAUNX/vaWDecd7UmYF6RZkvD3i0G0r2muvnOFw/
4UX4+wb6MqSOK1b8uec65m0OPVI2WXBXK+tpzMnmceJ/YmiLR7LLdgGWvDfUiCw/
UB8uPINnBasd3EcGZIOtIImbi57ZMvAw40tXNxmczK40MVcjaV9mz2xB8u04BUT7
J4euXzeCbg3O2xHZky3p5iv3wCg2jRERxdlutDCmktez0CrxatWNQPuLvQIDAQAB
o4ICGTCCAhUwHQYDVR0OBBYEFPsGmInYeRg+9AP2Gs1fgfIzCU+CMB8GA1UdIwQY
MBaAFBCDpkEXlr9yY4f3pVz4S1fKiZvrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUlPbVFSZVd2M0pqaF9lbFhQaExWOHFKbS1zLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kYzMzMGQtZGFkMi00ZTcwLWExNDkt
OTFjZjRmYzcwM2ViLzEvMS13YVlpZGg1R0Q3MEFfWWF6Vi1COGpNSlQ0SS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZGIvZGMzMzBkLWRhZDItNGU3MC1hMTQ5LTkxY2Y0ZmM3MDNl
Yi8xL0VJT21RUmVXdjNKamhfZWxYUGhMVjhxSm0tcy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAFVawzAN
BAIAAjAHAwUDKhPOgDANBgkqhkiG9w0BAQsFAAOCAQEAG3LCIomnEOCS6/PZI/qE
S2fcSzc8wj77OKNy4b/3AKwzu4f9fVoXjZrLFgvEJHHTa31E1TU3R0Rl5wFEsK95
btk8hOWgZKnJrpTA7OGtPQumilnqOV/+e4d7l+BkiHbe2r8iT7pTY/VpIMythjJ8
oB+SUVQekfqjOOjLea15yMhpU+9Oq+iCcPr4ESE+/wY7TExocFaG/4kQfTIhnaIr
CeYOAVfL084ZAFCv+lWfHx5uLMmq6ejAnJ49P/Ggm6PT+jdmXp06rGAIxDmpvj6b
QzHkKBY5JE0PEzKCmdDS09XxV2gYVSLPZkxDGzUQR44FSmhmHThJWXvNipLFRil1
iA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:14 2024 by rpki-client on console-fra.rpki-client.org