Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/1X43aItVmG__YFznv3KL8ofpPP0.roa
File: 1X43aItVmG__YFznv3KL8ofpPP0.roa (raw, json)
Hash identifier: /AFiBO+y7vwt5BmVD3B/3XG3OD9qYLEuPa51AbDPdt4=
Subject key identifier: D5:7E:37:68:8B:55:98:6F:FF:60:5C:E7:BF:72:8B:F2:87:E9:3C:FD
Certificate issuer: /CN=bd8f9c03e757f3db514ca38d15ada451fa2e9615
Certificate serial: 0186758E2D5857A5993DE0F97E225F463A03
Authority key identifier: BD:8F:9C:03:E7:57:F3:DB:51:4C:A3:8D:15:AD:A4:51:FA:2E:96:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vY-cA-dX89tRTKONFa2kUfoulhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/1X43aItVmG__YFznv3KL8ofpPP0.roa
Signing time: Tue 21 Feb 2023 19:58:17 +0000
ROA not before: Tue 21 Feb 2023 19:58:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.109.96.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:75:8e:2d:58:57:a5:99:3d:e0:f9:7e:22:5f:46:3a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd8f9c03e757f3db514ca38d15ada451fa2e9615
Validity
Not Before: Feb 21 19:58:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d57e37688b55986fff605ce7bf728bf287e93cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:68:4b:2d:2b:e1:b7:b8:66:21:f4:e2:a6:14:
a4:0c:4a:56:92:48:ac:34:ec:25:b2:a8:01:4b:1b:
24:8d:b5:7b:1c:f7:b7:eb:cb:a5:55:e6:e5:9c:b2:
35:59:ed:fb:d7:15:3b:0f:42:25:1f:1a:65:fb:d0:
6a:a3:ae:c6:79:59:44:b6:13:7f:ae:29:05:3b:5a:
19:1a:ac:74:25:75:2d:fd:2a:ba:88:24:8c:c2:1d:
c0:2c:5a:ea:01:e7:a9:8d:e3:8f:6b:9c:18:37:ca:
52:d3:7e:b1:22:84:c0:49:73:34:18:28:0a:3e:c4:
81:1a:dd:79:b2:fc:f1:a8:45:2f:ef:be:c6:9c:b2:
a7:af:aa:c6:7a:0f:fc:91:f5:67:3b:0a:a6:e9:7a:
f2:03:c6:93:80:d2:7a:6f:1d:26:4e:7b:53:aa:b5:
8a:f6:45:9e:bc:cc:ff:52:c9:3c:5a:16:a0:88:68:
79:ca:52:38:6d:c6:67:24:1c:c3:e6:f9:e7:57:bf:
b8:c6:70:74:a3:b9:4f:63:79:3b:1c:50:ac:ff:7a:
f2:6d:68:60:04:c7:13:55:8c:10:64:69:5c:8c:11:
42:e3:c4:de:f5:06:ed:5f:06:05:ad:1a:f1:a6:d3:
47:5c:25:e0:5b:59:43:66:e0:c7:65:81:ae:e4:15:
9a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:7E:37:68:8B:55:98:6F:FF:60:5C:E7:BF:72:8B:F2:87:E9:3C:FD
X509v3 Authority Key Identifier:
keyid:BD:8F:9C:03:E7:57:F3:DB:51:4C:A3:8D:15:AD:A4:51:FA:2E:96:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vY-cA-dX89tRTKONFa2kUfoulhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/1X43aItVmG__YFznv3KL8ofpPP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/vY-cA-dX89tRTKONFa2kUfoulhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.96.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:91:9b:fb:b0:64:7c:74:18:0d:03:cc:f5:70:e1:d6:f6:d0:
3b:8c:f2:f6:41:b6:5a:e0:2e:b5:dc:b8:54:12:6e:43:36:d5:
e8:c1:fb:ac:7b:38:2b:47:bd:82:49:1e:f3:f7:d7:ca:9f:70:
f3:36:f8:84:a1:3e:68:47:22:a0:d6:33:8a:02:9d:f4:35:bf:
ea:84:84:0f:35:ad:fc:76:41:45:3b:1f:c7:2e:e3:8f:cd:b8:
cc:f6:f5:4c:8e:8a:f5:76:d3:90:72:e8:02:8a:70:75:91:b3:
55:39:73:f8:d0:82:9d:24:a5:c6:dc:44:48:7b:4f:0e:74:7f:
c1:7a:e6:43:3b:cc:ab:22:53:78:16:56:e9:55:6c:ca:51:34:
4e:ce:d7:89:d5:fd:14:f4:b4:67:c1:ba:d3:2a:3c:75:74:2a:
56:44:fb:11:a7:18:49:84:52:9a:22:bd:8e:28:e4:67:7c:e0:
53:88:7f:34:d6:5a:a1:12:e3:e6:18:98:6e:1d:83:3b:7d:98:
07:b5:49:7e:4e:25:58:66:97:02:b3:2f:e6:f8:a7:5d:53:c6:
df:9c:43:24:dc:dd:fa:a2:47:66:81:20:1c:75:5f:87:67:6b:
db:d8:bb:ed:ac:ff:83:1d:1a:36:32:8e:f5:50:77:af:a1:bb:
72:79:4f:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZ1ji1YV6WZPeD5fiJfRjoDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkOGY5YzAzZTc1N2YzZGI1MTRjYTM4ZDE1YWRhNDUxZmEy
ZTk2MTUwHhcNMjMwMjIxMTk1ODE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTdlMzc2ODhiNTU5ODZmZmY2MDVjZTdiZjcyOGJmMjg3ZTkzY2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmhLLSvht7hmIfTiphSkDEpWkkis
NOwlsqgBSxskjbV7HPe368ulVeblnLI1We371xU7D0IlHxpl+9Bqo67GeVlEthN/
rikFO1oZGqx0JXUt/Sq6iCSMwh3ALFrqAeepjeOPa5wYN8pS036xIoTASXM0GCgK
PsSBGt15svzxqEUv777GnLKnr6rGeg/8kfVnOwqm6XryA8aTgNJ6bx0mTntTqrWK
9kWevMz/Usk8WhagiGh5ylI4bcZnJBzD5vnnV7+4xnB0o7lPY3k7HFCs/3rybWhg
BMcTVYwQZGlcjBFC48Te9QbtXwYFrRrxptNHXCXgW1lDZuDHZYGu5BWaLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNV+N2iLVZhv/2Bc579yi/KH6Tz9MB8GA1UdIwQY
MBaAFL2PnAPnV/PbUUyjjRWtpFH6LpYVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlktY0EtZFg4OXRSVEtPTkZhMmtVZm91bGhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9iODNlNDctYmMwNC00OTJkLTlhMDct
ZWNkZDgxNzQwMDdhLzEvMVg0M2FJdFZtR19fWUZ6bnYzS0w4b2ZwUFAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9iODNlNDctYmMwNC00OTJkLTlhMDctZWNkZDgxNzQwMDdh
LzEvdlktY0EtZFg4OXRSVEtPTkZhMmtVZm91bGhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuW1gMA0G
CSqGSIb3DQEBCwUAA4IBAQB/kZv7sGR8dBgNA8z1cOHW9tA7jPL2QbZa4C613LhU
Em5DNtXowfusezgrR72CSR7z99fKn3DzNviEoT5oRyKg1jOKAp30Nb/qhIQPNa38
dkFFOx/HLuOPzbjM9vVMjor1dtOQcugCinB1kbNVOXP40IKdJKXG3ERIe08OdH/B
euZDO8yrIlN4FlbpVWzKUTROzteJ1f0U9LRnwbrTKjx1dCpWRPsRpxhJhFKaIr2O
KORnfOBTiH801lqhEuPmGJhuHYM7fZgHtUl+TiVYZpcCsy/m+KddU8bfnEMk3N36
okdmgSAcdV+HZ2vb2LvtrP+DHRo2Mo71UHevobtyeU9q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:18 2024 by rpki-client on console-fra.rpki-client.org