Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/fR4Oo9VV-hH5DezObS-Xu3gXpdg.roa
File: fR4Oo9VV-hH5DezObS-Xu3gXpdg.roa (raw, json)
Hash identifier: sykbKTFTjPUHd+G/pKKQeno4D7WrUI1FYdhjOjs4FXM=
Subject key identifier: 7D:1E:0E:A3:D5:55:FA:11:F9:0D:EC:CE:6D:2F:97:BB:78:17:A5:D8
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018572CC944A0FF30FD94ADE5165B28328A6
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/fR4Oo9VV-hH5DezObS-Xu3gXpdg.roa
Signing time: Mon 02 Jan 2023 14:04:48 +0000
ROA not before: Mon 02 Jan 2023 14:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 85.203.52.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:94:4a:0f:f3:0f:d9:4a:de:51:65:b2:83:28:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 2 14:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d1e0ea3d555fa11f90decce6d2f97bb7817a5d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:40:e8:35:7e:69:72:46:fe:fb:ea:ff:89:58:
6a:d7:e0:d7:85:af:c6:e0:87:60:f0:c1:bf:b8:42:
63:a3:42:ee:44:d0:58:87:8f:d2:12:b0:88:06:7c:
96:bb:8f:95:40:10:45:6b:3f:cc:41:c0:72:89:b7:
60:1f:ab:30:fe:9b:fb:39:c6:3b:b9:cc:54:2c:ef:
71:9e:58:43:52:5c:f0:17:29:42:9b:c0:8b:c6:28:
ac:bf:d6:9b:fc:86:3c:a0:4d:0c:1d:57:b5:6f:96:
92:99:c7:6a:7d:08:eb:a5:d7:48:cb:8b:d5:c6:2f:
b4:87:42:ac:8f:4d:6d:c4:94:c9:97:74:34:f1:c1:
e2:e2:d0:42:87:61:54:e5:d8:3f:ad:a8:1c:cf:a0:
d0:d6:68:ef:b9:c7:91:09:36:9f:3d:b5:af:27:50:
f4:af:fa:ed:1f:2c:6d:9d:3c:83:b4:91:c2:99:e0:
51:33:50:a5:42:8f:5d:ab:ec:21:6f:d6:7f:e0:7d:
fc:61:e0:42:22:6c:b3:4d:66:ac:41:02:4b:43:31:
bd:e8:6f:8c:c0:8c:d1:ad:e3:f3:c8:1f:98:61:72:
c2:b4:b5:8b:40:23:81:ff:18:96:a3:92:66:3e:53:
30:47:99:81:57:e8:0d:ed:3c:c9:3f:e3:fc:f7:53:
be:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:1E:0E:A3:D5:55:FA:11:F9:0D:EC:CE:6D:2F:97:BB:78:17:A5:D8
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/fR4Oo9VV-hH5DezObS-Xu3gXpdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.52.0/24
Signature Algorithm: sha256WithRSAEncryption
22:57:5f:37:54:46:20:6a:1c:4f:e5:c1:3c:ca:54:55:8a:47:
ad:00:a2:39:ef:44:c3:20:a5:4c:32:e9:65:5d:a9:18:33:41:
82:55:6e:d2:71:08:bb:d0:5f:c2:1d:1a:5a:6f:72:0f:6c:ee:
69:fe:d9:ba:e2:85:41:ba:aa:cc:33:62:44:24:6c:99:49:d2:
70:ab:35:2b:e2:51:c6:23:d8:0a:f3:e7:99:44:13:67:f0:9a:
ca:b7:dc:f7:4d:5d:0c:02:d0:fe:a8:b3:10:ca:bd:01:5c:0a:
d6:e8:83:28:52:09:e5:a7:71:9e:37:37:ae:81:fe:39:ce:0d:
54:1a:09:a2:9e:f7:d7:da:d7:37:c3:10:b3:7d:40:6b:68:4e:
66:1b:ed:87:1a:ee:a2:13:0f:6d:59:14:1e:04:59:86:75:b5:
2b:77:1f:d8:5a:34:f7:5b:3d:26:c3:e0:fd:88:7d:8a:55:6b:
14:98:d5:95:86:61:db:fa:84:fa:56:17:1b:1e:8b:3f:6e:ae:
33:ff:f1:61:49:b7:62:c0:04:fe:d4:9b:1c:4e:b3:ba:91:d6:
17:8f:12:59:6a:36:81:96:0e:aa:4e:4d:13:ca:9a:3b:be:ac:
55:77:57:3d:56:76:2f:d8:0f:8e:d3:03:db:1f:76:c1:eb:9b:
b1:1f:69:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyzJRKD/MP2UreUWWygyimMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NWJkZjZlZWMwODM3MGFlMWY2N2U4M2Y5OWI1YWMxZmUy
Njg3MmMwHhcNMjMwMTAyMTQwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDFlMGVhM2Q1NTVmYTExZjkwZGVjY2U2ZDJmOTdiYjc4MTdhNWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlkDoNX5pckb+++r/iVhq1+DXha/G
4Idg8MG/uEJjo0LuRNBYh4/SErCIBnyWu4+VQBBFaz/MQcByibdgH6sw/pv7OcY7
ucxULO9xnlhDUlzwFylCm8CLxiisv9ab/IY8oE0MHVe1b5aSmcdqfQjrpddIy4vV
xi+0h0Ksj01txJTJl3Q08cHi4tBCh2FU5dg/ragcz6DQ1mjvuceRCTafPbWvJ1D0
r/rtHyxtnTyDtJHCmeBRM1ClQo9dq+whb9Z/4H38YeBCImyzTWasQQJLQzG96G+M
wIzRrePzyB+YYXLCtLWLQCOB/xiWo5JmPlMwR5mBV+gN7TzJP+P891O+pQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH0eDqPVVfoR+Q3szm0vl7t4F6XYMB8GA1UdIwQY
MBaAFNRb327sCDcK4fZ+g/mbWsH+JocsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUZ2ZmJ1d0lOd3JoOW42RC1adGF3ZjRtaHl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9lMmRmZmYtOGJhOC00YmNmLWFjMzEt
OTg0NjM4NTllY2MxLzEvZlI0T285VlYtaEg1RGV6T2JTLVh1M2dYcGRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9lMmRmZmYtOGJhOC00YmNmLWFjMzEtOTg0NjM4NTllY2Mx
LzEvMUZ2ZmJ1d0lOd3JoOW42RC1adGF3ZjRtaHl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVcs0MA0G
CSqGSIb3DQEBCwUAA4IBAQAiV183VEYgahxP5cE8ylRViketAKI570TDIKVMMull
XakYM0GCVW7ScQi70F/CHRpab3IPbO5p/tm64oVBuqrMM2JEJGyZSdJwqzUr4lHG
I9gK8+eZRBNn8JrKt9z3TV0MAtD+qLMQyr0BXArW6IMoUgnlp3GeNzeugf45zg1U
GgminvfX2tc3wxCzfUBraE5mG+2HGu6iEw9tWRQeBFmGdbUrdx/YWjT3Wz0mw+D9
iH2KVWsUmNWVhmHb+oT6VhcbHos/bq4z//FhSbdiwAT+1JscTrO6kdYXjxJZajaB
lg6qTk0Typo7vqxVd1c9VnYv2A+O0wPbH3bB65uxH2mz
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:50 2023 by rpki-client on console-ams.rpki-client.org