Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/7NLzNd7VAHpF_LUGczbdV1o89Bc.roa
File: 7NLzNd7VAHpF_LUGczbdV1o89Bc.roa (raw, json)
Hash identifier: lRnm224ebSQOALZs3nZNSswWVhA89UXDB8Hk/PkvjzY=
Subject key identifier: EC:D2:F3:35:DE:D5:00:7A:45:FC:B5:06:73:36:DD:57:5A:3C:F4:17
Certificate issuer: /CN=fc35877cc038bffdb97bb3d6ea216ab52b3a0582
Certificate serial: 018CC348C8E2DB38163EBBFB211898C47EBB
Authority key identifier: FC:35:87:7C:C0:38:BF:FD:B9:7B:B3:D6:EA:21:6A:B5:2B:3A:05:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_DWHfMA4v_25e7PW6iFqtSs6BYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/7NLzNd7VAHpF_LUGczbdV1o89Bc.roa
Signing time: Mon 01 Jan 2024 04:29:36 +0000
ROA not before: Mon 01 Jan 2024 04:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199927
IP address blocks: 185.42.56.0/22 maxlen: 22
2a04:8e40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 20 Aug 2024 07:18:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:c8:e2:db:38:16:3e:bb:fb:21:18:98:c4:7e:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc35877cc038bffdb97bb3d6ea216ab52b3a0582
Validity
Not Before: Jan 1 04:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ecd2f335ded5007a45fcb5067336dd575a3cf417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e0:8e:ca:1c:aa:b1:63:02:de:3b:b1:e0:f6:
fd:90:4b:25:a6:65:dc:66:10:e8:e2:15:3b:d5:80:
f5:0a:ee:f3:47:24:af:22:21:9a:38:85:a9:bd:17:
fc:4f:97:4e:1b:52:d7:c6:e4:38:17:08:cf:8e:31:
05:31:6e:5d:83:e6:fc:9e:b9:15:72:ac:a7:a6:81:
4c:48:04:fa:36:98:84:23:54:0f:a4:d4:32:03:d5:
09:97:bf:31:29:b3:85:f9:3a:b5:62:cb:d9:ce:1d:
86:2c:58:58:4d:e9:6e:23:51:5c:1e:9a:29:35:c7:
58:87:f5:0f:03:78:19:e9:75:83:0d:94:0f:af:c2:
74:d9:f0:14:43:28:27:b4:75:a5:1e:aa:0b:27:11:
f2:b8:6d:77:5a:7c:d2:8b:79:d2:bd:8e:7f:c8:64:
b7:b0:46:4c:32:68:7a:45:11:d5:04:b3:86:1f:e9:
29:56:0a:2b:ca:15:cb:10:d6:91:00:92:2c:8c:b7:
ba:bf:d2:84:10:26:f8:be:e2:b9:90:1d:b5:d0:c6:
8b:32:8c:ec:c3:be:62:6f:0c:5e:09:4e:80:e3:97:
36:52:80:8a:85:3c:db:9b:35:e8:99:f3:af:f5:04:
0d:93:87:81:88:55:94:38:a1:c5:de:65:b6:c1:2c:
72:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D2:F3:35:DE:D5:00:7A:45:FC:B5:06:73:36:DD:57:5A:3C:F4:17
X509v3 Authority Key Identifier:
keyid:FC:35:87:7C:C0:38:BF:FD:B9:7B:B3:D6:EA:21:6A:B5:2B:3A:05:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_DWHfMA4v_25e7PW6iFqtSs6BYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/7NLzNd7VAHpF_LUGczbdV1o89Bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/_DWHfMA4v_25e7PW6iFqtSs6BYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.56.0/22
IPv6:
2a04:8e40::/29
Signature Algorithm: sha256WithRSAEncryption
9e:cb:32:30:4d:63:81:71:cb:1c:b4:68:1a:ff:c5:73:2a:72:
1d:cc:5a:65:b3:b9:20:07:80:26:70:92:68:b4:28:49:da:a7:
b0:9c:69:2a:dc:0b:79:bd:d1:d0:db:d1:66:1a:82:ce:26:5e:
66:3b:ee:61:56:01:9f:e0:5f:38:12:be:20:01:06:b5:d9:55:
c4:b7:37:7e:62:55:c3:e6:ff:b7:5c:9c:ab:79:7b:0f:0e:a0:
3f:e9:1e:a8:49:e1:cb:f7:8f:5a:2c:f6:f9:23:69:3e:e6:0f:
6c:48:60:d5:73:e3:54:e3:fb:52:40:80:c3:b0:c3:28:89:5d:
17:29:83:e9:8b:c6:0b:60:45:fa:4e:fd:81:dd:fd:4a:2f:6c:
85:7c:a7:2c:47:19:52:57:b5:b3:2d:d0:43:3e:2c:1e:cb:cc:
9f:a6:0f:c9:97:1b:c3:a6:6d:fc:54:4f:10:a7:04:dc:5f:1c:
9f:d6:c3:19:64:e2:72:37:26:05:28:bd:ae:3c:e4:9e:48:4f:
0b:be:ce:dc:46:e7:d5:4c:8e:cb:ee:e6:55:68:50:ea:0d:51:
0e:92:75:9c:57:6d:db:9e:66:ef:18:62:b4:1d:fd:24:0a:41:
0d:e6:31:62:b1:51:46:2f:bb:d6:29:2b:26:6b:31:a1:f7:e7:
e0:f3:af:03
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzDSMji2zgWPrv7IRiYxH67MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjMzU4NzdjYzAzOGJmZmRiOTdiYjNkNmVhMjE2YWI1MmIz
YTA1ODIwHhcNMjQwMTAxMDQyOTM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlY2QyZjMzNWRlZDUwMDdhNDVmY2I1MDY3MzM2ZGQ1NzVhM2NmNDE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOCOyhyqsWMC3jux4Pb9kEslpmXc
ZhDo4hU71YD1Cu7zRySvIiGaOIWpvRf8T5dOG1LXxuQ4FwjPjjEFMW5dg+b8nrkV
cqynpoFMSAT6NpiEI1QPpNQyA9UJl78xKbOF+Tq1YsvZzh2GLFhYTeluI1FcHpop
NcdYh/UPA3gZ6XWDDZQPr8J02fAUQygntHWlHqoLJxHyuG13WnzSi3nSvY5/yGS3
sEZMMmh6RRHVBLOGH+kpVgoryhXLENaRAJIsjLe6v9KEECb4vuK5kB210MaLMozs
w75ibwxeCU6A45c2UoCKhTzbmzXomfOv9QQNk4eBiFWUOKHF3mW2wSxyCwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFOzS8zXe1QB6Rfy1BnM23VdaPPQXMB8GA1UdIwQY
MBaAFPw1h3zAOL/9uXuz1uoharUrOgWCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0RXSGZNQTR2XzI1ZTdQVzZpRnF0U3M2QllJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9lODA3MmEtNjAxNy00ZWQ1LWJlZTMt
OGU2NWIzNDdmMjE4LzEvN05Mek5kN1ZBSHBGX0xVR2N6YmRWMW84OUJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9lODA3MmEtNjAxNy00ZWQ1LWJlZTMtOGU2NWIzNDdmMjE4
LzEvX0RXSGZNQTR2XzI1ZTdQVzZpRnF0U3M2QllJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuSo4MA0E
AgACMAcDBQMqBI5AMA0GCSqGSIb3DQEBCwUAA4IBAQCeyzIwTWOBccsctGga/8Vz
KnIdzFpls7kgB4AmcJJotChJ2qewnGkq3At5vdHQ29FmGoLOJl5mO+5hVgGf4F84
Er4gAQa12VXEtzd+YlXD5v+3XJyreXsPDqA/6R6oSeHL949aLPb5I2k+5g9sSGDV
c+NU4/tSQIDDsMMoiV0XKYPpi8YLYEX6Tv2B3f1KL2yFfKcsRxlSV7WzLdBDPiwe
y8yfpg/JlxvDpm38VE8QpwTcXxyf1sMZZOJyNyYFKL2uPOSeSE8Lvs7cRufVTI7L
7uZVaFDqDVEOknWcV23bnmbvGGK0Hf0kCkEN5jFisVFGL7vWKSsmazGh9+fg868D
Generated at Tue Aug 20 10:01:35 2024 by rpki-client on console-ams.rpki-client.org