Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bcb87f-2c17-4207-962b-98072936c518/1/RZOSKny7jafXEJUGTgX01KhqCJY.roa
File: RZOSKny7jafXEJUGTgX01KhqCJY.roa (raw, json)
Hash identifier: 8poRxjFtq8/VbGZ5raZyjTZZNiu6wIM3yjB9OCuIISo=
Subject key identifier: 45:93:92:2A:7C:BB:8D:A7:D7:10:95:06:4E:05:F4:D4:A8:6A:08:96
Certificate issuer: /CN=300b2f46ba570a1677bfd584c72822ad9d9fe5b0
Certificate serial: 0185708C998687BB762DBBD06923AA8A7EA6
Authority key identifier: 30:0B:2F:46:BA:57:0A:16:77:BF:D5:84:C7:28:22:AD:9D:9F:E5:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAsvRrpXChZ3v9WExygirZ2f5bA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bcb87f-2c17-4207-962b-98072936c518/1/RZOSKny7jafXEJUGTgX01KhqCJY.roa
Signing time: Mon 02 Jan 2023 03:35:40 +0000
ROA not before: Mon 02 Jan 2023 03:35:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51269
IP address blocks: 185.140.44.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:99:86:87:bb:76:2d:bb:d0:69:23:aa:8a:7e:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=300b2f46ba570a1677bfd584c72822ad9d9fe5b0
Validity
Not Before: Jan 2 03:35:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4593922a7cbb8da7d71095064e05f4d4a86a0896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ce:90:cb:4c:f9:53:79:9c:8c:3c:35:09:1e:
9c:7e:61:b1:5f:86:2f:57:b1:ac:96:0c:b0:04:52:
15:17:6a:f5:cd:99:5d:99:54:b1:88:cb:65:36:8d:
4a:65:7b:1c:df:44:4a:4e:90:08:d2:6b:59:c2:76:
01:61:a1:ea:2e:63:e3:b0:90:95:4b:2b:4f:0a:45:
4b:77:c8:33:8e:38:fe:c8:1d:85:8f:98:6f:cf:5a:
46:d1:2a:f3:75:54:77:05:86:4d:b5:8b:0d:51:ea:
57:b1:6a:d4:f6:68:7e:c2:3e:80:10:f0:9d:ee:0e:
4a:0d:63:b0:ab:3b:c1:2c:72:10:4b:95:78:70:5b:
35:8d:c8:7b:31:d6:f6:f9:ce:55:84:f3:a8:c6:7a:
54:78:91:ef:aa:68:00:70:c0:27:fb:7c:e9:80:4f:
6a:c4:11:e5:e8:7a:2c:18:7c:97:f9:c2:e8:31:27:
00:f0:84:98:a4:dd:28:8d:ab:75:58:35:01:44:66:
e1:ad:23:12:c8:67:27:eb:a9:32:dd:89:b4:ed:02:
9f:8f:15:b9:c3:22:b4:1f:99:b0:25:8b:3e:0b:18:
bd:ed:bc:30:82:49:90:db:a5:4b:cd:39:8d:5a:ac:
aa:25:0d:42:56:2a:8d:d6:24:03:64:88:72:f3:0e:
da:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:93:92:2A:7C:BB:8D:A7:D7:10:95:06:4E:05:F4:D4:A8:6A:08:96
X509v3 Authority Key Identifier:
keyid:30:0B:2F:46:BA:57:0A:16:77:BF:D5:84:C7:28:22:AD:9D:9F:E5:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAsvRrpXChZ3v9WExygirZ2f5bA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bcb87f-2c17-4207-962b-98072936c518/1/RZOSKny7jafXEJUGTgX01KhqCJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bcb87f-2c17-4207-962b-98072936c518/1/MAsvRrpXChZ3v9WExygirZ2f5bA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.44.0/22
Signature Algorithm: sha256WithRSAEncryption
29:90:0b:bb:ce:e6:ec:d7:0a:b9:a0:00:8a:3e:09:d3:98:91:
b3:5f:17:8d:3c:37:83:26:37:49:d0:b6:76:72:e9:6e:78:2c:
70:db:c7:58:49:82:76:fb:8f:63:07:8a:ed:78:10:b7:bd:72:
6f:8f:d4:7c:c8:0d:08:4d:cf:a6:a1:14:ce:58:c9:63:27:b8:
69:c3:67:af:89:da:5f:71:50:32:33:d5:20:0a:cf:cd:c7:fa:
f6:0c:25:d2:41:59:88:7f:bd:64:e1:72:75:89:1d:26:a4:9e:
ab:20:bd:e6:15:ac:4a:3b:62:e2:00:c2:26:5c:c3:91:d0:36:
00:19:d6:ea:50:e1:f8:ef:a9:0a:bf:7d:bc:97:07:23:f0:06:
b4:38:87:93:4c:b7:94:31:af:6c:cf:35:45:20:aa:dc:ee:11:
83:1b:32:cb:84:8a:a9:f2:1f:21:e1:2e:5d:b8:7b:6f:a2:04:
1e:f2:0e:68:66:6b:82:78:bd:05:38:84:fb:02:24:19:ed:fd:
7e:6c:c8:b3:eb:ff:99:f3:27:05:c9:15:84:94:9b:da:09:81:
d1:32:d9:46:04:67:c1:5e:bf:44:a8:c8:b7:09:06:6b:1d:47:
94:4e:bb:1a:ca:e7:66:aa:0b:cd:7c:92:b9:94:e5:1a:98:08:
2b:01:69:c6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwjJmGh7t2LbvQaSOqin6mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwMGIyZjQ2YmE1NzBhMTY3N2JmZDU4NGM3MjgyMmFkOWQ5
ZmU1YjAwHhcNMjMwMTAyMDMzNTQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTkzOTIyYTdjYmI4ZGE3ZDcxMDk1MDY0ZTA1ZjRkNGE4NmEwODk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl86Qy0z5U3mcjDw1CR6cfmGxX4Yv
V7GslgywBFIVF2r1zZldmVSxiMtlNo1KZXsc30RKTpAI0mtZwnYBYaHqLmPjsJCV
SytPCkVLd8gzjjj+yB2Fj5hvz1pG0SrzdVR3BYZNtYsNUepXsWrU9mh+wj6AEPCd
7g5KDWOwqzvBLHIQS5V4cFs1jch7Mdb2+c5VhPOoxnpUeJHvqmgAcMAn+3zpgE9q
xBHl6HosGHyX+cLoMScA8ISYpN0ojat1WDUBRGbhrSMSyGcn66ky3Ym07QKfjxW5
wyK0H5mwJYs+Cxi97bwwgkmQ26VLzTmNWqyqJQ1CViqN1iQDZIhy8w7aPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEWTkip8u42n1xCVBk4F9NSoagiWMB8GA1UdIwQY
MBaAFDALL0a6VwoWd7/VhMcoIq2dn+WwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUFzdlJycFhDaFozdjlXRXh5Z2lyWjJmNWJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9iY2I4N2YtMmMxNy00MjA3LTk2MmIt
OTgwNzI5MzZjNTE4LzEvUlpPU0tueTdqYWZYRUpVR1RnWDAxS2hxQ0pZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9iY2I4N2YtMmMxNy00MjA3LTk2MmItOTgwNzI5MzZjNTE4
LzEvTUFzdlJycFhDaFozdjlXRXh5Z2lyWjJmNWJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYwsMA0G
CSqGSIb3DQEBCwUAA4IBAQApkAu7zubs1wq5oACKPgnTmJGzXxeNPDeDJjdJ0LZ2
culueCxw28dYSYJ2+49jB4rteBC3vXJvj9R8yA0ITc+moRTOWMljJ7hpw2evidpf
cVAyM9UgCs/Nx/r2DCXSQVmIf71k4XJ1iR0mpJ6rIL3mFaxKO2LiAMImXMOR0DYA
GdbqUOH476kKv328lwcj8Aa0OIeTTLeUMa9szzVFIKrc7hGDGzLLhIqp8h8h4S5d
uHtvogQe8g5oZmuCeL0FOIT7AiQZ7f1+bMiz6/+Z8ycFyRWElJvaCYHRMtlGBGfB
Xr9EqMi3CQZrHUeUTrsayudmqgvNfJK5lOUamAgrAWnG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:54 2024 by rpki-client on console-fra.rpki-client.org