Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/7I4WqPI_epDk1Ont7MBCuQPiLRY.roa
File: 7I4WqPI_epDk1Ont7MBCuQPiLRY.roa (raw, json)
Hash identifier: 4QHMf4+SpEN6RrZ9uzAe0sar8P7AAsHVYTnXzc6zx8s=
Subject key identifier: EC:8E:16:A8:F2:3F:7A:90:E4:D4:E9:ED:EC:C0:42:B9:03:E2:2D:16
Certificate issuer: /CN=4d88eb730ab1a501ea36ea3482d764544e141111
Certificate serial: 018C69648DE5EB067B8386ADCF1AC9A3E294
Authority key identifier: 4D:88:EB:73:0A:B1:A5:01:EA:36:EA:34:82:D7:64:54:4E:14:11:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TYjrcwqxpQHqNuo0gtdkVE4UERE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/7I4WqPI_epDk1Ont7MBCuQPiLRY.roa
Signing time: Thu 14 Dec 2023 17:34:06 +0000
ROA not before: Thu 14 Dec 2023 17:34:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62563
IP address blocks: 185.225.236.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:69:64:8d:e5:eb:06:7b:83:86:ad:cf:1a:c9:a3:e2:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d88eb730ab1a501ea36ea3482d764544e141111
Validity
Not Before: Dec 14 17:34:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec8e16a8f23f7a90e4d4e9edecc042b903e22d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d5:a6:79:fd:b9:31:3f:84:5a:a7:5b:99:06:
f9:d9:40:7c:0c:ce:7e:32:cd:f7:24:26:d1:b4:bd:
6d:06:35:ca:3c:20:39:f3:7b:21:83:e3:5c:67:86:
56:d7:22:34:2a:1d:ad:4e:69:12:2f:92:fa:1e:fe:
23:82:44:18:31:8e:26:e2:cc:02:07:2c:7e:f6:5f:
95:7f:99:e2:7b:11:9f:91:31:49:6e:e2:a8:66:41:
9d:3b:43:83:0c:fe:c6:fd:c5:17:55:36:88:3a:07:
ac:16:84:1c:6a:52:ad:bc:33:c6:21:dd:0e:9d:12:
7f:63:55:06:01:d7:49:96:c2:20:c3:f0:bc:e3:ce:
8a:7b:75:8f:81:45:db:4e:fc:de:b2:40:46:99:b3:
52:ac:40:fa:e3:25:6c:10:3e:12:a4:cf:70:7f:8a:
4e:49:9a:69:df:8c:b1:2b:bd:91:26:81:e4:72:f0:
cf:b1:86:39:81:26:77:b5:a6:29:03:de:2c:60:e6:
95:b7:75:0c:5c:b7:ed:a4:ca:05:91:97:56:87:48:
dc:3d:35:83:da:8b:f0:d2:52:5c:64:51:1b:30:28:
a9:00:c8:e1:c0:a0:f9:00:e5:d2:8d:79:9e:68:eb:
31:88:fc:b4:d7:f9:5f:f4:e4:f7:01:9c:8c:b9:de:
99:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:8E:16:A8:F2:3F:7A:90:E4:D4:E9:ED:EC:C0:42:B9:03:E2:2D:16
X509v3 Authority Key Identifier:
keyid:4D:88:EB:73:0A:B1:A5:01:EA:36:EA:34:82:D7:64:54:4E:14:11:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TYjrcwqxpQHqNuo0gtdkVE4UERE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/7I4WqPI_epDk1Ont7MBCuQPiLRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/TYjrcwqxpQHqNuo0gtdkVE4UERE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.236.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:29:ea:8d:f7:a8:8a:2e:a4:b2:a5:ff:ab:70:cc:8a:0a:9c:
0b:2a:bf:44:9d:8c:05:f8:9f:db:e7:ae:95:75:f0:0b:25:05:
fe:dd:56:92:c4:40:c8:49:d9:39:ed:5c:2f:24:a2:50:50:3e:
a9:6b:72:2b:b7:f8:0a:5d:69:40:ae:5e:71:97:15:1c:77:b2:
75:c2:a0:35:22:ef:54:dd:d5:2d:ba:b9:f1:cd:a1:d1:20:00:
61:bd:b3:cc:e9:33:38:15:5d:e3:13:6b:c9:df:99:81:80:c7:
2d:79:50:82:e3:33:14:46:f2:cf:12:6f:57:bb:3d:e0:d4:b6:
cc:76:7e:0e:d4:5b:73:11:e3:04:98:8b:56:a7:d0:f8:23:fb:
90:0a:d1:24:e9:c4:a5:8d:ef:ee:ab:dc:24:83:3c:c7:ea:a4:
89:c2:99:d3:2c:d2:c1:30:1f:db:d3:a1:25:9f:ab:bc:d9:a6:
26:55:58:35:9c:a9:09:05:06:37:17:3f:de:6d:6b:95:46:67:
2d:ba:f6:bd:ef:4c:2f:f5:91:1e:d3:c5:5e:92:9c:e2:cc:a5:
03:90:59:48:a5:d1:51:7c:36:c8:4f:f3:31:df:43:84:56:22:
1b:e1:f8:6a:a6:e5:70:56:91:bf:ab:f0:0f:26:8e:f9:26:99:
ad:da:52:e8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxpZI3l6wZ7g4atzxrJo+KUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkODhlYjczMGFiMWE1MDFlYTM2ZWEzNDgyZDc2NDU0NGUx
NDExMTEwHhcNMjMxMjE0MTczNDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzhlMTZhOGYyM2Y3YTkwZTRkNGU5ZWRlY2MwNDJiOTAzZTIyZDE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhtWmef25MT+EWqdbmQb52UB8DM5+
Ms33JCbRtL1tBjXKPCA583shg+NcZ4ZW1yI0Kh2tTmkSL5L6Hv4jgkQYMY4m4swC
Byx+9l+Vf5niexGfkTFJbuKoZkGdO0ODDP7G/cUXVTaIOgesFoQcalKtvDPGId0O
nRJ/Y1UGAddJlsIgw/C8486Ke3WPgUXbTvzeskBGmbNSrED64yVsED4SpM9wf4pO
SZpp34yxK72RJoHkcvDPsYY5gSZ3taYpA94sYOaVt3UMXLftpMoFkZdWh0jcPTWD
2ovw0lJcZFEbMCipAMjhwKD5AOXSjXmeaOsxiPy01/lf9OT3AZyMud6ZSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOyOFqjyP3qQ5NTp7ezAQrkD4i0WMB8GA1UdIwQY
MBaAFE2I63MKsaUB6jbqNILXZFROFBERMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFlqcmN3cXhwUUhxTnVvMGd0ZGtWRTRVRVJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9jNDkzZWUtZjY2ZS00MjA4LWEzMWQt
NzI2ZjgzZDIzODkyLzEvN0k0V3FQSV9lcERrMU9udDdNQkN1UVBpTFJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS9jNDkzZWUtZjY2ZS00MjA4LWEzMWQtNzI2ZjgzZDIzODky
LzEvVFlqcmN3cXhwUUhxTnVvMGd0ZGtWRTRVRVJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueHsMA0G
CSqGSIb3DQEBCwUAA4IBAQAdKeqN96iKLqSypf+rcMyKCpwLKr9EnYwF+J/b566V
dfALJQX+3VaSxEDISdk57VwvJKJQUD6pa3Irt/gKXWlArl5xlxUcd7J1wqA1Iu9U
3dUturnxzaHRIABhvbPM6TM4FV3jE2vJ35mBgMcteVCC4zMURvLPEm9Xuz3g1LbM
dn4O1FtzEeMEmItWp9D4I/uQCtEk6cSlje/uq9wkgzzH6qSJwpnTLNLBMB/b06El
n6u82aYmVVg1nKkJBQY3Fz/ebWuVRmctuva970wv9ZEe08VekpzizKUDkFlIpdFR
fDbIT/Mx30OEViIb4fhqpuVwVpG/q/APJo75Jpmt2lLo
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:01 2024 by rpki-client on console-fra.rpki-client.org