Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/Fm0-kdkDwoCsqhSrQ-Iyvlr7wL0.roa
File: Fm0-kdkDwoCsqhSrQ-Iyvlr7wL0.roa (raw, json)
Hash identifier: rxjinjxvDD97b2CvwMXxq+X1Sl6M6qyBb4KzcIZYANU=
Subject key identifier: 16:6D:3E:91:D9:03:C2:80:AC:AA:14:AB:43:E2:32:BE:5A:FB:C0:BD
Certificate issuer: /CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Certificate serial: 01856BF7E62D447AD3FEDD4202111B786A2F
Authority key identifier: B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/Fm0-kdkDwoCsqhSrQ-Iyvlr7wL0.roa
Signing time: Sun 01 Jan 2023 06:14:46 +0000
ROA not before: Sun 01 Jan 2023 06:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203306
IP address blocks: 5.63.185.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:f7:e6:2d:44:7a:d3:fe:dd:42:02:11:1b:78:6a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Validity
Not Before: Jan 1 06:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=166d3e91d903c280acaa14ab43e232be5afbc0bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:20:cc:2a:93:83:d6:79:fe:e8:7b:53:60:13:
d1:3d:5d:87:43:fd:31:52:8f:73:b7:48:d3:86:1d:
83:9f:8f:5c:af:84:ed:12:07:a9:34:3a:24:3e:30:
60:bb:3d:c1:24:dd:f1:db:36:af:44:f6:a2:cb:86:
ed:a7:87:96:e6:19:89:6c:54:f2:f0:f0:80:4d:f3:
a1:a3:04:5e:6f:91:91:dd:89:11:bd:26:c2:b5:66:
bc:bc:7a:67:86:38:ec:44:11:d8:39:1a:42:81:2d:
dc:9b:e1:79:1f:e2:6a:cc:97:5f:39:76:00:af:9f:
4b:9e:e8:8b:1f:cc:4c:f3:78:bb:9d:72:fa:72:34:
bb:81:12:ce:0d:37:f8:29:6c:0a:65:77:48:48:c9:
70:a1:aa:11:66:53:8c:a5:d1:16:28:ac:d3:75:ea:
66:42:d6:66:3f:00:ef:2b:1c:0b:e0:07:a8:d5:81:
28:78:a6:db:e2:c5:dd:db:ba:8a:55:36:77:15:e7:
3f:6c:f9:a3:f4:e8:7e:d3:46:db:ed:30:a5:e2:b4:
97:c8:05:55:75:7d:8b:b0:d5:be:7d:d8:77:5d:e4:
b3:c6:f0:58:4e:ba:e9:d9:dd:b9:5d:2e:41:89:87:
f2:48:6e:a9:d5:6f:5b:55:85:61:06:7a:ca:84:e6:
73:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:6D:3E:91:D9:03:C2:80:AC:AA:14:AB:43:E2:32:BE:5A:FB:C0:BD
X509v3 Authority Key Identifier:
keyid:B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/Fm0-kdkDwoCsqhSrQ-Iyvlr7wL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.185.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:be:64:5b:6c:d1:fd:48:ea:72:6e:58:c8:e7:1a:83:8a:34:
fd:dc:91:2f:ca:22:02:44:f1:7c:e0:2e:e8:ef:50:23:ea:a5:
27:8b:0f:02:73:df:3b:73:70:6e:be:77:ed:08:da:8e:a5:db:
28:5d:6e:e6:04:70:26:a3:e5:39:8d:43:ed:b4:e1:76:ca:7c:
c9:c3:be:f9:4d:47:b1:51:dd:d5:93:28:77:49:ac:d8:45:0b:
8d:c0:34:2f:5e:47:23:56:a5:88:b6:79:c6:93:a8:f9:05:b2:
67:cb:69:f7:a3:a9:8f:fb:17:58:9a:be:bb:ec:82:e2:ea:39:
e6:7e:8b:5d:22:d1:e3:cf:77:51:c7:70:b2:f4:f5:30:13:77:
21:25:ba:77:1f:04:54:d7:69:99:97:0a:ad:b3:97:ec:1f:1f:
57:30:b5:94:76:17:64:79:10:60:27:95:86:b6:a9:ac:2a:b8:
ca:e0:92:8e:10:e9:2c:76:a0:94:ee:84:25:79:45:d7:aa:84:
87:92:30:b2:9e:b7:20:ee:6f:64:f6:88:75:b8:c8:c9:a0:eb:
f5:10:e1:3d:c2:66:1e:57:4b:d3:ea:bc:8f:c5:77:84:21:d3:
4a:6c:bb:49:85:33:bb:37:50:24:a5:ee:d2:d0:68:1a:81:82:
f1:67:a0:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr9+YtRHrT/t1CAhEbeGovMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5Zjc0YTQ3YTZkMWEwYmY0YzIxNmU1ZmFiNGQ5MWZiMTI5
ZGYzZDYwHhcNMjMwMTAxMDYxNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjZkM2U5MWQ5MDNjMjgwYWNhYTE0YWI0M2UyMzJiZTVhZmJjMGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0CDMKpOD1nn+6HtTYBPRPV2HQ/0x
Uo9zt0jThh2Dn49cr4TtEgepNDokPjBguz3BJN3x2zavRPaiy4btp4eW5hmJbFTy
8PCATfOhowReb5GR3YkRvSbCtWa8vHpnhjjsRBHYORpCgS3cm+F5H+JqzJdfOXYA
r59LnuiLH8xM83i7nXL6cjS7gRLODTf4KWwKZXdISMlwoaoRZlOMpdEWKKzTdepm
QtZmPwDvKxwL4Aeo1YEoeKbb4sXd27qKVTZ3Fec/bPmj9Oh+00bb7TCl4rSXyAVV
dX2LsNW+fdh3XeSzxvBYTrrp2d25XS5BiYfySG6p1W9bVYVhBnrKhOZzmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBZtPpHZA8KArKoUq0PiMr5a+8C9MB8GA1UdIwQY
MBaAFLn3Skem0aC/TCFuX6tNkfsSnfPWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWZkS1I2YlJvTDlNSVc1ZnEwMlIteEtkODlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8yNGEwYmQtMDgzOC00Yzk1LTljY2Qt
MzBmNjA4YWRlNDhkLzEvRm0wLWtka0R3b0NzcWhTclEtSXl2bHI3d0wwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy8yNGEwYmQtMDgzOC00Yzk1LTljY2QtMzBmNjA4YWRlNDhk
LzEvdWZkS1I2YlJvTDlNSVc1ZnEwMlIteEtkODlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABT+5MA0G
CSqGSIb3DQEBCwUAA4IBAQB/vmRbbNH9SOpybljI5xqDijT93JEvyiICRPF84C7o
71Aj6qUniw8Cc987c3BuvnftCNqOpdsoXW7mBHAmo+U5jUPttOF2ynzJw775TUex
Ud3Vkyh3SazYRQuNwDQvXkcjVqWItnnGk6j5BbJny2n3o6mP+xdYmr677ILi6jnm
fotdItHjz3dRx3Cy9PUwE3chJbp3HwRU12mZlwqts5fsHx9XMLWUdhdkeRBgJ5WG
tqmsKrjK4JKOEOksdqCU7oQleUXXqoSHkjCynrcg7m9k9oh1uMjJoOv1EOE9wmYe
V0vT6ryPxXeEIdNKbLtJhTO7N1Akpe7S0GgagYLxZ6An
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:16 2024 by rpki-client on console-fra.rpki-client.org