Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/CleSdNH88mOsVCLRUGi-fvk_E34.roa
File: CleSdNH88mOsVCLRUGi-fvk_E34.roa (raw, json)
Hash identifier: niX5fbhqq5v11GoTSkv1N4ucfO422kwvR8a/hz4vX2c=
Subject key identifier: 0A:57:92:74:D1:FC:F2:63:AC:54:22:D1:50:68:BE:7E:F9:3F:13:7E
Certificate issuer: /CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Certificate serial: 018581BE796DA23D55276362999EF5E48CBC
Authority key identifier: A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/CleSdNH88mOsVCLRUGi-fvk_E34.roa
Signing time: Thu 05 Jan 2023 11:43:41 +0000
ROA not before: Thu 05 Jan 2023 11:43:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5413
IP address blocks: 185.99.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:81:be:79:6d:a2:3d:55:27:63:62:99:9e:f5:e4:8c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Validity
Not Before: Jan 5 11:43:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a579274d1fcf263ac5422d15068be7ef93f137e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:70:37:dc:b1:fb:05:60:ce:77:11:e8:67:b8:
44:94:77:c6:1d:1f:3c:44:4e:00:48:ec:77:7d:46:
68:dc:c4:46:c1:9d:2f:d2:69:80:15:54:2f:49:54:
f5:83:9f:23:be:17:2c:07:66:ce:a4:c9:bf:9e:d7:
24:01:22:f1:57:0c:9e:6b:f8:5a:bc:85:62:e8:c8:
ac:54:d9:95:82:e6:45:f9:be:2f:09:2a:22:0e:fd:
9a:5e:66:3c:91:46:cb:e3:1d:e5:dd:86:c4:5b:02:
c9:40:db:5c:3f:b6:00:39:ca:30:83:58:93:4a:cb:
8c:47:76:8b:c7:13:6a:c7:02:72:a7:7f:c4:a5:ff:
13:b2:b0:cc:0d:30:47:84:66:9e:ea:4c:7f:b8:4c:
7c:12:ea:c8:c6:18:a1:b8:49:a1:9f:8f:4a:d8:32:
ac:56:49:b9:6b:5b:a3:9e:f1:33:c6:45:49:78:1c:
2e:aa:62:d3:97:1a:f3:c9:79:ae:dc:b5:b8:42:3e:
91:b8:7e:14:ba:4e:2e:e4:d0:3b:d0:44:76:46:4b:
ff:65:59:66:a0:86:f7:48:60:e0:ff:91:01:f0:14:
8a:51:3a:ca:66:8d:34:7a:aa:6c:2d:a9:d9:9c:41:
b3:4f:37:2c:0f:dc:c7:97:a7:10:87:f4:8d:1d:b1:
bc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:57:92:74:D1:FC:F2:63:AC:54:22:D1:50:68:BE:7E:F9:3F:13:7E
X509v3 Authority Key Identifier:
keyid:A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/CleSdNH88mOsVCLRUGi-fvk_E34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/pvh89KFbnngiRVs6qK8LXtOimfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.255.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:93:dd:5e:73:a9:c0:a1:d3:1b:ae:6f:ad:ab:ea:37:96:dd:
ff:be:8e:ab:cc:40:9f:5d:05:5f:28:39:3c:b7:9e:bf:e9:b7:
67:b5:5e:29:b0:72:c5:40:71:68:95:19:0c:a2:91:d5:9a:dd:
87:69:d1:57:d7:92:80:34:c4:d8:9e:cd:40:38:de:72:6d:b4:
84:15:72:ac:72:00:22:44:3f:f6:8a:c4:9a:12:f1:e1:58:73:
a9:86:19:43:02:85:da:9e:6f:64:c8:97:9b:3d:bf:c7:33:39:
d3:98:34:16:a5:50:ef:d8:ce:b0:65:50:25:f5:1d:26:6b:96:
8e:f0:f5:7f:50:73:a5:c9:45:be:ec:c9:95:15:31:eb:a8:50:
19:2d:b7:8c:6f:53:15:eb:14:90:36:89:14:83:ca:cc:2a:48:
9f:c9:10:27:a3:ea:b2:45:e8:f2:d4:dd:6d:06:36:aa:60:3a:
4b:e6:d6:af:93:94:6a:1b:d5:ed:c3:3b:43:e1:0d:d9:5d:97:
9c:09:a2:08:f7:f3:72:f1:2a:7c:20:87:91:d5:5a:29:e6:0c:
c9:06:82:97:a0:ed:9d:ef:83:90:8a:fe:20:e4:ae:c0:76:48:
2f:cc:4c:de:e0:e8:dc:a7:68:63:3d:1c:b4:ee:24:3e:1f:09:
0f:46:6a:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWBvnltoj1VJ2NimZ715Iy8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2Zjg3Y2Y0YTE1YjllNzgyMjQ1NWIzYWE4YWYwYjVlZDNh
Mjk5ZjcwHhcNMjMwMTA1MTE0MzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTU3OTI3NGQxZmNmMjYzYWM1NDIyZDE1MDY4YmU3ZWY5M2YxMzdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi3A33LH7BWDOdxHoZ7hElHfGHR88
RE4ASOx3fUZo3MRGwZ0v0mmAFVQvSVT1g58jvhcsB2bOpMm/ntckASLxVwyea/ha
vIVi6MisVNmVguZF+b4vCSoiDv2aXmY8kUbL4x3l3YbEWwLJQNtcP7YAOcowg1iT
SsuMR3aLxxNqxwJyp3/Epf8TsrDMDTBHhGae6kx/uEx8EurIxhihuEmhn49K2DKs
Vkm5a1ujnvEzxkVJeBwuqmLTlxrzyXmu3LW4Qj6RuH4Uuk4u5NA70ER2Rkv/ZVlm
oIb3SGDg/5EB8BSKUTrKZo00eqpsLanZnEGzTzcsD9zHl6cQh/SNHbG8+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFApXknTR/PJjrFQi0VBovn75PxN+MB8GA1UdIwQY
MBaAFKb4fPShW554IkVbOqivC17Topn3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHZoODlLRmJubmdpUlZzNnFLOExYdE9pbWZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8yODliMWQtMDhkZC00ZDUzLWIxMmQt
N2Q0MDI4YTFiZjU5LzEvQ2xlU2ROSDg4bU9zVkNMUlVHaS1mdmtfRTM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My8yODliMWQtMDhkZC00ZDUzLWIxMmQtN2Q0MDI4YTFiZjU5
LzEvcHZoODlLRmJubmdpUlZzNnFLOExYdE9pbWZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWP/MA0G
CSqGSIb3DQEBCwUAA4IBAQA9k91ec6nAodMbrm+tq+o3lt3/vo6rzECfXQVfKDk8
t56/6bdntV4psHLFQHFolRkMopHVmt2HadFX15KANMTYns1AON5ybbSEFXKscgAi
RD/2isSaEvHhWHOphhlDAoXanm9kyJebPb/HMznTmDQWpVDv2M6wZVAl9R0ma5aO
8PV/UHOlyUW+7MmVFTHrqFAZLbeMb1MV6xSQNokUg8rMKkifyRAno+qyRejy1N1t
BjaqYDpL5tavk5RqG9XtwztD4Q3ZXZecCaII9/Ny8Sp8IIeR1Vop5gzJBoKXoO2d
74OQiv4g5K7AdkgvzEze4Ojcp2hjPRy07iQ+HwkPRmq5
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:02 2024 by rpki-client on console-ams.rpki-client.org