Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/pPbopH2XNOgtDMCmrMBVosinoNo.roa
File: pPbopH2XNOgtDMCmrMBVosinoNo.roa (raw, json)
Hash identifier: hxnu9rcsXEHb6187TAp0sGBkMtdFgaKjGU+VN3K0eX0=
Subject key identifier: A4:F6:E8:A4:7D:97:34:E8:2D:0C:C0:A6:AC:C0:55:A2:C8:A7:A0:DA
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C4175627A3215A6F90BF6FC02DB653F
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/pPbopH2XNOgtDMCmrMBVosinoNo.roa
Signing time: Sun 01 Jan 2023 07:35:07 +0000
ROA not before: Sun 01 Jan 2023 07:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212000
IP address blocks: 185.244.28.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:75:62:7a:32:15:a6:f9:0b:f6:fc:02:db:65:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4f6e8a47d9734e82d0cc0a6acc055a2c8a7a0da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c9:ed:06:07:d8:68:34:30:4f:77:d4:d8:c7:
47:e5:57:e5:d3:cb:16:86:b5:a5:49:76:91:8a:11:
52:12:8d:42:17:d3:87:fe:65:60:2f:ce:58:c0:11:
f7:90:34:5b:5d:1b:76:d3:f2:f9:91:1f:4d:93:e5:
5d:29:eb:51:47:cb:88:b6:91:06:d8:e6:93:6f:16:
37:8b:fc:5a:74:81:74:80:01:b0:c2:df:32:0f:56:
e1:4e:44:8f:2b:b5:53:eb:15:15:90:c4:67:1a:08:
c1:37:95:1c:54:fe:90:14:8c:f2:47:64:42:f5:22:
11:ee:9b:2d:98:8c:a6:f1:0e:ad:45:a8:aa:8a:de:
e8:60:0b:35:34:c5:2a:ee:71:7f:90:33:6b:9c:ca:
df:46:07:e6:02:ed:c2:c4:28:cc:79:a6:13:16:78:
80:ea:e4:93:35:73:57:59:58:aa:5c:53:0d:6e:6e:
d8:5a:ea:7a:21:91:3e:94:d5:36:50:78:a1:db:b1:
46:5a:94:3d:74:ef:ea:7a:3f:58:e4:b0:76:39:31:
35:60:2c:16:69:31:46:9e:a9:d7:26:ff:8b:be:67:
5c:57:32:99:d3:6c:cb:5e:c0:ad:12:11:e5:96:72:
9c:2c:10:ed:ab:90:2b:8d:a0:6f:a9:75:76:71:1f:
79:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F6:E8:A4:7D:97:34:E8:2D:0C:C0:A6:AC:C0:55:A2:C8:A7:A0:DA
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/pPbopH2XNOgtDMCmrMBVosinoNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.28.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:26:9b:61:b2:7d:da:2a:84:eb:26:be:5b:5e:50:05:92:e5:
b8:fc:cb:db:59:12:f2:47:4d:98:27:30:49:8d:79:f0:d1:40:
e4:85:96:94:89:e8:37:07:80:69:f0:f3:80:1b:a6:dc:c4:64:
58:fd:00:e8:9e:50:3e:50:47:d3:d8:0e:a3:e9:f4:8b:f0:42:
d2:4e:b7:6c:a1:78:72:32:b4:e7:52:16:56:e6:0f:73:a7:81:
fd:03:e5:55:b7:56:d1:8b:58:35:49:95:93:1d:6e:8a:45:43:
3a:a5:7f:bb:da:34:d9:5c:06:f8:30:d0:23:d8:ba:67:aa:1c:
ae:87:50:a5:bf:88:56:8c:5e:96:4f:2d:8e:d5:e7:76:95:06:
f8:95:59:8c:4b:94:64:73:f9:35:2e:88:11:e2:f8:0e:0a:c3:
42:7b:52:5d:00:53:ca:19:2b:e7:93:80:14:2c:84:43:e7:3a:
78:d8:6d:09:1f:ad:52:f1:95:db:61:67:c9:46:50:9d:64:49:
8d:e9:dc:f0:ca:6e:bc:8d:ce:9b:9e:d2:6a:18:b8:74:a7:53:
42:ab:08:2e:1c:54:67:f9:d1:15:86:6f:c7:c2:0d:5a:07:1c:
df:a9:27:c6:bf:3b:84:f6:2c:09:2b:20:b9:40:09:81:8d:7e:
3d:ac:2e:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsQXViejIVpvkL9vwC22U/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjMwMTAxMDczNTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNGY2ZThhNDdkOTczNGU4MmQwY2MwYTZhY2MwNTVhMmM4YTdhMGRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsntBgfYaDQwT3fU2MdH5Vfl08sW
hrWlSXaRihFSEo1CF9OH/mVgL85YwBH3kDRbXRt20/L5kR9Nk+VdKetRR8uItpEG
2OaTbxY3i/xadIF0gAGwwt8yD1bhTkSPK7VT6xUVkMRnGgjBN5UcVP6QFIzyR2RC
9SIR7pstmIym8Q6tRaiqit7oYAs1NMUq7nF/kDNrnMrfRgfmAu3CxCjMeaYTFniA
6uSTNXNXWViqXFMNbm7YWup6IZE+lNU2UHih27FGWpQ9dO/qej9Y5LB2OTE1YCwW
aTFGnqnXJv+LvmdcVzKZ02zLXsCtEhHllnKcLBDtq5ArjaBvqXV2cR95PwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKT26KR9lzToLQzApqzAVaLIp6DaMB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvcFBib3BIMlhOT2d0RE1DbXJNQlZvc2lub05vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufQcMA0G
CSqGSIb3DQEBCwUAA4IBAQALJpthsn3aKoTrJr5bXlAFkuW4/MvbWRLyR02YJzBJ
jXnw0UDkhZaUieg3B4Bp8POAG6bcxGRY/QDonlA+UEfT2A6j6fSL8ELSTrdsoXhy
MrTnUhZW5g9zp4H9A+VVt1bRi1g1SZWTHW6KRUM6pX+72jTZXAb4MNAj2Lpnqhyu
h1Clv4hWjF6WTy2O1ed2lQb4lVmMS5Rkc/k1LogR4vgOCsNCe1JdAFPKGSvnk4AU
LIRD5zp42G0JH61S8ZXbYWfJRlCdZEmN6dzwym68jc6bntJqGLh0p1NCqwguHFRn
+dEVhm/Hwg1aBxzfqSfGvzuE9iwJKyC5QAmBjX49rC6T
-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:20 2024 by rpki-client on console-fra.rpki-client.org