Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/672af8-3348-4213-b47c-0618c9a8cac4/1/vnRKkhow8mpjWG3d6hYCz83hUiw.roa
File: vnRKkhow8mpjWG3d6hYCz83hUiw.roa (raw, json)
Hash identifier: 5v2eOiXxay9AkMeO50WU6Vs6skCWKzRiU2B4JBHPeeA=
Subject key identifier: BE:74:4A:92:1A:30:F2:6A:63:58:6D:DD:EA:16:02:CF:CD:E1:52:2C
Certificate issuer: /CN=8a08c28be15516290b9da5135e58f55fbb80ffb4
Certificate serial: 0185720C3B80A982650086FF3AFFC2041F85
Authority key identifier: 8A:08:C2:8B:E1:55:16:29:0B:9D:A5:13:5E:58:F5:5F:BB:80:FF:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/igjCi-FVFikLnaUTXlj1X7uA_7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/672af8-3348-4213-b47c-0618c9a8cac4/1/vnRKkhow8mpjWG3d6hYCz83hUiw.roa
Signing time: Mon 02 Jan 2023 10:34:42 +0000
ROA not before: Mon 02 Jan 2023 10:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21449
IP address blocks: 160.53.75.0/24 maxlen: 24
160.53.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:3b:80:a9:82:65:00:86:ff:3a:ff:c2:04:1f:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a08c28be15516290b9da5135e58f55fbb80ffb4
Validity
Not Before: Jan 2 10:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be744a921a30f26a63586dddea1602cfcde1522c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:25:0d:46:23:00:1b:a6:54:44:df:21:2b:8f:
87:73:5d:84:8b:57:8b:ae:ca:77:9b:1c:13:25:ae:
51:b6:0b:93:c8:de:54:ab:b7:d6:64:7a:25:39:9e:
1a:89:14:f8:7f:da:f7:72:c0:e5:63:65:23:e9:a9:
1a:dd:eb:89:73:a9:ac:45:28:99:58:ca:16:59:25:
eb:22:4f:84:9e:57:c7:08:51:f1:4f:10:56:23:d6:
ab:6e:66:00:f5:fc:9b:ae:bd:17:e9:8e:e2:5b:b1:
e8:d6:62:e6:e8:54:73:49:b3:09:c2:04:e8:06:93:
d4:31:74:76:db:fe:99:fe:50:a7:64:63:f7:86:ad:
17:51:01:9b:6c:f1:5c:8f:cf:1d:17:52:15:fb:b8:
76:5a:82:c2:a8:be:1c:d7:ed:20:26:74:f8:99:71:
72:67:65:d0:a4:73:a5:4a:0a:95:b0:a6:53:03:69:
64:d5:55:b4:29:d9:68:f9:50:fd:66:20:b6:ab:82:
22:7d:4f:a3:9d:c7:20:fc:57:ff:61:a3:2c:eb:bd:
63:df:9a:75:e7:b4:2a:90:7b:a9:4b:fd:02:ec:76:
dd:c9:b0:c3:3c:5e:8e:0b:a1:27:db:a9:c0:bf:31:
e1:99:96:df:33:32:68:c1:c2:9b:ba:e7:a0:d9:5c:
4d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:74:4A:92:1A:30:F2:6A:63:58:6D:DD:EA:16:02:CF:CD:E1:52:2C
X509v3 Authority Key Identifier:
keyid:8A:08:C2:8B:E1:55:16:29:0B:9D:A5:13:5E:58:F5:5F:BB:80:FF:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/igjCi-FVFikLnaUTXlj1X7uA_7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/672af8-3348-4213-b47c-0618c9a8cac4/1/vnRKkhow8mpjWG3d6hYCz83hUiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/672af8-3348-4213-b47c-0618c9a8cac4/1/igjCi-FVFikLnaUTXlj1X7uA_7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.53.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9e:96:8d:b8:59:5c:4b:5a:49:81:8b:bd:1e:f2:40:a2:ca:94:
0f:58:9b:8d:5e:69:d3:4e:0b:70:d2:c9:ac:ef:95:09:87:6b:
f3:da:7d:f8:93:03:d2:66:91:e0:d9:ea:7f:0f:88:c5:34:62:
1e:57:bf:93:89:21:9f:ca:e5:c9:e0:38:0b:40:b7:d9:c0:4f:
de:5d:ce:99:6c:c5:58:3b:ae:8c:47:ef:6d:04:7c:db:88:f8:
e7:be:cb:aa:32:0b:bc:c9:55:8d:c6:26:bb:88:02:d9:b3:bd:
4c:d8:8e:bc:71:2e:cf:c6:5c:94:41:4e:10:8f:9f:45:61:31:
ba:32:bb:f8:9a:56:5b:2a:df:9a:f2:66:de:28:50:16:01:cc:
7a:e8:fb:dd:87:ba:e7:62:98:2d:2d:a9:a4:4e:fe:4a:08:d1:
d4:16:de:61:94:e5:5d:60:b7:45:b6:1b:d7:d7:23:36:5e:04:
47:d7:79:14:5c:55:17:2a:f7:a0:f5:83:14:21:9b:ca:6d:9e:
d2:9d:5f:f7:5a:01:67:9f:db:41:33:65:c8:96:04:c4:85:40:
c0:50:a9:ef:05:71:4b:1d:73:a0:b8:a1:a2:a5:f5:7e:83:30:
41:06:44:09:4e:3b:a5:70:cd:f6:04:05:69:db:26:37:83:4f:
93:f5:52:06
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVyDDuAqYJlAIb/Ov/CBB+FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhMDhjMjhiZTE1NTE2MjkwYjlkYTUxMzVlNThmNTVmYmI4
MGZmYjQwHhcNMjMwMTAyMTAzNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTc0NGE5MjFhMzBmMjZhNjM1ODZkZGRlYTE2MDJjZmNkZTE1MjJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjyUNRiMAG6ZURN8hK4+Hc12Ei1eL
rsp3mxwTJa5RtguTyN5Uq7fWZHolOZ4aiRT4f9r3csDlY2Uj6aka3euJc6msRSiZ
WMoWWSXrIk+EnlfHCFHxTxBWI9arbmYA9fybrr0X6Y7iW7Ho1mLm6FRzSbMJwgTo
BpPUMXR22/6Z/lCnZGP3hq0XUQGbbPFcj88dF1IV+7h2WoLCqL4c1+0gJnT4mXFy
Z2XQpHOlSgqVsKZTA2lk1VW0Kdlo+VD9ZiC2q4IifU+jnccg/Ff/YaMs671j35p1
57QqkHupS/0C7HbdybDDPF6OC6En26nAvzHhmZbfMzJowcKbuueg2VxNdwIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFL50SpIaMPJqY1ht3eoWAs/N4VIsMB8GA1UdIwQY
MBaAFIoIwovhVRYpC52lE15Y9V+7gP+0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWdqQ2ktRlZGaWtMbmFVVFhsajFYN3VBXzdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS82NzJhZjgtMzM0OC00MjEzLWI0N2Mt
MDYxOGM5YThjYWM0LzEvdm5SS2tob3c4bXBqV0czZDZoWUN6ODNoVWl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS82NzJhZjgtMzM0OC00MjEzLWI0N2MtMDYxOGM5YThjYWM0
LzEvaWdqQ2ktRlZGaWtMbmFVVFhsajFYN3VBXzdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAoDUwDQYJ
KoZIhvcNAQELBQADggEBAJ6WjbhZXEtaSYGLvR7yQKLKlA9Ym41eadNOC3DSyazv
lQmHa/PaffiTA9JmkeDZ6n8PiMU0Yh5Xv5OJIZ/K5cngOAtAt9nAT95dzplsxVg7
roxH720EfNuI+Oe+y6oyC7zJVY3GJruIAtmzvUzYjrxxLs/GXJRBThCPn0VhMboy
u/iaVlsq35ryZt4oUBYBzHro+92HuudimC0tqaRO/koI0dQW3mGU5V1gt0W2G9fX
IzZeBEfXeRRcVRcq96D1gxQhm8ptntKdX/daAWef20EzZciWBMSFQMBQqe8FcUsd
c6C4oaKl9X6DMEEGRAlOO6VwzfYEBWnbJjeDT5P1UgY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:03 2024 by rpki-client on console-fra.rpki-client.org