Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/dRRnDK7ncS9XRiRSheUBYnOqDtc.roa
File: dRRnDK7ncS9XRiRSheUBYnOqDtc.roa (raw, json)
Hash identifier: CzlUrgmm9q6d1weKf4/ro7mn7k2hnKNXzh6e+s3KB6o=
Subject key identifier: 75:14:67:0C:AE:E7:71:2F:57:46:24:52:85:E5:01:62:73:AA:0E:D7
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01856E8B2B66680A5964276AEC75D5FC89F7
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/dRRnDK7ncS9XRiRSheUBYnOqDtc.roa
Signing time: Sun 01 Jan 2023 18:14:52 +0000
ROA not before: Sun 01 Jan 2023 18:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396881
IP address blocks: 185.255.113.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:2b:66:68:0a:59:64:27:6a:ec:75:d5:fc:89:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 18:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7514670caee7712f5746245285e5016273aa0ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2e:81:cf:cd:89:d7:9a:79:da:fa:d7:58:15:
f6:cb:f8:92:1c:45:99:a2:15:80:c0:fa:a8:48:8c:
65:ab:10:df:76:55:fa:df:90:50:2a:9e:75:39:ce:
bc:6d:42:16:87:b6:0b:98:aa:2d:19:1d:5b:87:5a:
02:6a:8c:a2:8f:03:df:33:1d:f3:cf:92:0c:10:f6:
61:06:07:ce:7d:e5:45:c8:7d:d7:10:61:4b:9f:dc:
c3:b1:2f:0b:8b:8a:1a:b7:e0:15:ca:99:ee:3b:97:
c6:8b:98:a3:e2:9c:be:10:15:c0:ba:f3:91:2d:46:
dd:29:4c:b1:52:2b:a4:3f:8d:a1:5c:f2:c1:d6:8d:
83:e6:9a:2a:34:d7:bb:e0:d7:d9:e3:ba:7f:15:c7:
84:cb:fc:45:d5:a7:ff:28:f7:70:f6:57:1e:26:82:
14:1e:2f:db:47:f0:44:16:dc:95:80:71:9f:79:8f:
8a:47:af:34:34:2e:09:bb:19:cb:c0:5f:d3:f0:e4:
80:c8:ca:18:21:9c:9a:7e:8b:ec:ec:30:ac:07:57:
74:bb:80:6e:65:95:31:62:17:91:48:d8:0e:5f:93:
d9:97:2f:3b:29:5b:ac:7f:58:1f:f1:88:1d:7b:0d:
19:eb:d8:df:32:4f:d7:ad:a0:58:fa:e1:bf:e0:d6:
08:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:14:67:0C:AE:E7:71:2F:57:46:24:52:85:E5:01:62:73:AA:0E:D7
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/dRRnDK7ncS9XRiRSheUBYnOqDtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.113.0/24
Signature Algorithm: sha256WithRSAEncryption
68:3d:18:39:a3:7b:ee:8d:7c:b5:2d:30:22:a7:c4:dd:77:08:
e1:54:96:64:36:51:28:e3:ab:8f:4c:e7:ef:00:12:ce:4f:df:
d3:55:8d:da:90:cb:c4:c2:ba:97:f8:3c:51:9a:01:87:63:be:
76:56:c8:6c:b1:29:b4:f3:9a:ba:f3:9c:ea:eb:25:21:d0:f8:
6e:cc:24:73:78:ea:43:3b:c2:97:2c:c0:ce:57:a3:1b:40:e0:
32:25:ec:93:6f:5d:c7:ad:e2:e4:d8:f4:ae:ad:c4:69:8b:fe:
9a:b0:5d:24:71:23:d2:a8:0b:30:ed:0b:e2:d7:76:9f:70:8b:
42:94:00:76:ae:91:e9:e4:22:83:96:87:24:a9:49:6f:91:8d:
8d:f1:91:7e:6f:c4:83:3e:21:44:d9:7b:43:d7:6c:b5:d1:10:
9c:90:1a:fc:0b:9a:88:47:c2:95:66:17:25:13:4b:01:61:ff:
ff:22:56:d8:e0:46:48:b0:bb:0f:a7:89:9d:64:24:0f:f3:65:
5f:6a:15:1f:1c:1b:18:cb:6a:d1:63:06:81:62:79:aa:be:28:
6d:0b:b3:9f:03:ab:25:84:56:a0:13:9f:5d:8c:e0:ad:11:fa:
0d:66:86:1c:f7:d0:d4:a3:36:3a:34:10:5f:ee:76:a3:0a:a7:
a1:1c:9c:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuiytmaApZZCdq7HXV/In3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmOGFlYTJmMDI1ZjQ5NWJlYWNlZTdjZTVhODgyMDUxOWRk
YTEzNzAwHhcNMjMwMTAxMTgxNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTE0NjcwY2FlZTc3MTJmNTc0NjI0NTI4NWU1MDE2MjczYWEwZWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtC6Bz82J15p52vrXWBX2y/iSHEWZ
ohWAwPqoSIxlqxDfdlX635BQKp51Oc68bUIWh7YLmKotGR1bh1oCaoyijwPfMx3z
z5IMEPZhBgfOfeVFyH3XEGFLn9zDsS8Li4oat+AVypnuO5fGi5ij4py+EBXAuvOR
LUbdKUyxUiukP42hXPLB1o2D5poqNNe74NfZ47p/FceEy/xF1af/KPdw9lceJoIU
Hi/bR/BEFtyVgHGfeY+KR680NC4JuxnLwF/T8OSAyMoYIZyafovs7DCsB1d0u4Bu
ZZUxYheRSNgOX5PZly87KVusf1gf8Ygdew0Z69jfMk/XraBY+uG/4NYIaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHUUZwyu53EvV0YkUoXlAWJzqg7XMB8GA1UdIwQY
MBaAFE+K6i8CX0lb6s7nzlqIIFGd2hNwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUt
NjA4MDk1MmYwZTA0LzEvZFJSbkRLN25jUzlYUmlSU2hlVUJZbk9xRHRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUtNjA4MDk1MmYwZTA0
LzEvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf9xMA0G
CSqGSIb3DQEBCwUAA4IBAQBoPRg5o3vujXy1LTAip8TddwjhVJZkNlEo46uPTOfv
ABLOT9/TVY3akMvEwrqX+DxRmgGHY752VshssSm085q685zq6yUh0PhuzCRzeOpD
O8KXLMDOV6MbQOAyJeyTb13HreLk2PSurcRpi/6asF0kcSPSqAsw7Qvi13afcItC
lAB2rpHp5CKDlockqUlvkY2N8ZF+b8SDPiFE2XtD12y10RCckBr8C5qIR8KVZhcl
E0sBYf//IlbY4EZIsLsPp4mdZCQP82VfahUfHBsYy2rRYwaBYnmqvihtC7OfA6sl
hFagE59djOCtEfoNZoYc99DUozY6NBBf7najCqehHJxI
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org