Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c566c7-3cac-45a9-82a1-04b09057522f/1/bGcaCYh0cxh4kpkbdexpMsZFNBg.roa
File: bGcaCYh0cxh4kpkbdexpMsZFNBg.roa (raw, json)
Hash identifier: UyHWtBjrq3Zj0U8nn5yu2uJTh35dkU1mZkPr6hxzfvk=
Subject key identifier: 6C:67:1A:09:88:74:73:18:78:92:99:1B:75:EC:69:32:C6:45:34:18
Certificate issuer: /CN=a0af3d8551fbdd3b62f4ffdfd59cad4161e4471e
Certificate serial: 018A83A4CCAA08B8E2C8B357A474FB86FD0B
Authority key identifier: A0:AF:3D:85:51:FB:DD:3B:62:F4:FF:DF:D5:9C:AD:41:61:E4:47:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oK89hVH73Tti9P_f1ZytQWHkRx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c566c7-3cac-45a9-82a1-04b09057522f/1/bGcaCYh0cxh4kpkbdexpMsZFNBg.roa
Signing time: Mon 11 Sep 2023 09:48:50 +0000
ROA not before: Mon 11 Sep 2023 09:48:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203252
IP address blocks: 185.80.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:a4:cc:aa:08:b8:e2:c8:b3:57:a4:74:fb:86:fd:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0af3d8551fbdd3b62f4ffdfd59cad4161e4471e
Validity
Not Before: Sep 11 09:48:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c671a09887473187892991b75ec6932c6453418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c8:83:ca:8b:16:01:16:3c:7f:21:4f:f9:10:
4d:ac:13:3a:9e:bf:8d:6e:17:8e:a8:8f:49:a3:17:
55:55:c2:0e:94:40:cb:c9:00:ea:5e:e4:4f:0b:1b:
f2:a1:b3:45:e8:13:a0:52:67:ce:97:ad:66:6f:2c:
16:54:a5:02:73:08:d7:b4:a1:a7:3d:c6:23:43:e8:
d7:bf:f2:a0:5f:48:82:19:ad:c1:01:04:ec:53:5d:
e5:33:ee:ae:a6:c9:39:18:af:5b:af:50:88:7b:77:
18:39:03:9b:2e:fc:c6:e3:ff:73:de:7e:26:86:81:
10:9a:21:e0:da:ed:0f:91:03:48:f4:ca:a6:74:d9:
d5:e8:4a:33:7b:a4:a4:07:cf:62:80:28:15:86:ef:
9f:5c:14:28:34:2a:0f:53:ef:a5:4d:a2:e8:dd:0c:
89:e6:9c:f8:ab:12:46:f1:27:c7:67:cf:b4:fa:6c:
12:2d:12:4a:53:66:b6:34:22:8f:60:4a:da:a8:f0:
d1:61:f3:a0:4b:a9:49:8b:91:2e:4f:5d:7a:1e:dd:
f2:ee:a7:da:80:15:9e:ba:38:75:0b:6b:c9:00:e1:
d6:f0:dd:88:a1:e2:4a:34:0b:60:fb:dd:84:f5:22:
29:b2:a4:77:57:c5:67:07:0c:49:43:44:cd:7b:0f:
0b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:67:1A:09:88:74:73:18:78:92:99:1B:75:EC:69:32:C6:45:34:18
X509v3 Authority Key Identifier:
keyid:A0:AF:3D:85:51:FB:DD:3B:62:F4:FF:DF:D5:9C:AD:41:61:E4:47:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oK89hVH73Tti9P_f1ZytQWHkRx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c566c7-3cac-45a9-82a1-04b09057522f/1/bGcaCYh0cxh4kpkbdexpMsZFNBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c566c7-3cac-45a9-82a1-04b09057522f/1/oK89hVH73Tti9P_f1ZytQWHkRx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.91.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:5c:70:05:42:74:ff:83:90:1a:d2:30:92:5f:0e:9f:53:e1:
3b:79:6a:4a:af:c5:03:88:53:48:66:0e:96:81:fc:b6:1d:7d:
55:21:b3:79:20:be:08:cd:6a:e8:02:83:45:55:a7:b4:8d:3e:
96:c2:f2:bc:f1:bc:8e:f2:69:09:fe:ba:a1:c0:af:49:82:8f:
78:ed:4c:c7:b5:8b:c3:57:55:f7:b9:be:8c:30:17:32:22:6a:
59:35:74:8b:a3:9c:8b:67:b0:f8:21:d6:47:d1:c8:c4:c8:04:
2b:7d:60:0b:b3:dd:c7:17:eb:30:72:82:fe:be:08:b9:85:a0:
59:59:00:c1:29:b6:1b:33:00:92:e3:57:16:34:6f:80:26:55:
d6:1b:67:5e:57:13:40:20:17:cd:fd:af:be:bb:4a:f8:8a:38:
66:3a:75:83:0c:1f:5f:a5:9d:e4:e7:54:6b:2b:fb:64:a6:99:
8b:29:8f:72:7a:e1:94:cb:aa:7a:c9:65:eb:2e:61:50:a5:bf:
6c:0f:cc:5f:ea:e1:22:3e:69:d8:bc:53:b8:f6:78:d5:1a:16:
ac:e9:32:bb:c0:7b:ee:c8:34:32:ca:c7:45:66:c6:1f:61:39:
71:d1:3d:e2:e5:37:a9:7d:6d:68:bf:f1:fd:1d:c8:3d:0f:d5:
88:6c:87:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqDpMyqCLjiyLNXpHT7hv0LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYWYzZDg1NTFmYmRkM2I2MmY0ZmZkZmQ1OWNhZDQxNjFl
NDQ3MWUwHhcNMjMwOTExMDk0ODUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzY3MWEwOTg4NzQ3MzE4Nzg5Mjk5MWI3NWVjNjkzMmM2NDUzNDE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxciDyosWARY8fyFP+RBNrBM6nr+N
bheOqI9JoxdVVcIOlEDLyQDqXuRPCxvyobNF6BOgUmfOl61mbywWVKUCcwjXtKGn
PcYjQ+jXv/KgX0iCGa3BAQTsU13lM+6upsk5GK9br1CIe3cYOQObLvzG4/9z3n4m
hoEQmiHg2u0PkQNI9MqmdNnV6Eoze6SkB89igCgVhu+fXBQoNCoPU++lTaLo3QyJ
5pz4qxJG8SfHZ8+0+mwSLRJKU2a2NCKPYEraqPDRYfOgS6lJi5EuT116Ht3y7qfa
gBWeujh1C2vJAOHW8N2IoeJKNAtg+92E9SIpsqR3V8VnBwxJQ0TNew8LVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGxnGgmIdHMYeJKZG3XsaTLGRTQYMB8GA1UdIwQY
MBaAFKCvPYVR+907YvT/39WcrUFh5EceMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0s4OWhWSDczVHRpOVBfZjFaeXRRV0hrUng0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC9jNTY2YzctM2NhYy00NWE5LTgyYTEt
MDRiMDkwNTc1MjJmLzEvYkdjYUNZaDBjeGg0a3BrYmRleHBNc1pGTkJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC9jNTY2YzctM2NhYy00NWE5LTgyYTEtMDRiMDkwNTc1MjJm
LzEvb0s4OWhWSDczVHRpOVBfZjFaeXRRV0hrUng0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVBbMA0G
CSqGSIb3DQEBCwUAA4IBAQBKXHAFQnT/g5Aa0jCSXw6fU+E7eWpKr8UDiFNIZg6W
gfy2HX1VIbN5IL4IzWroAoNFVae0jT6WwvK88byO8mkJ/rqhwK9Jgo947UzHtYvD
V1X3ub6MMBcyImpZNXSLo5yLZ7D4IdZH0cjEyAQrfWALs93HF+swcoL+vgi5haBZ
WQDBKbYbMwCS41cWNG+AJlXWG2deVxNAIBfN/a++u0r4ijhmOnWDDB9fpZ3k51Rr
K/tkppmLKY9yeuGUy6p6yWXrLmFQpb9sD8xf6uEiPmnYvFO49njVGhas6TK7wHvu
yDQyysdFZsYfYTlx0T3i5TepfW1ov/H9Hcg9D9WIbIcW
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:41 2024 by rpki-client on console-fra.rpki-client.org