Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/vfMqqaG48dGaB_l9m8urFJDOj7M.roa
File: vfMqqaG48dGaB_l9m8urFJDOj7M.roa (raw, json)
Hash identifier: WJ1MuyHLDW39jBLSPhc/4j+pe7OwpYMnKVTxW/jDwCg=
Subject key identifier: BD:F3:2A:A9:A1:B8:F1:D1:9A:07:F9:7D:9B:CB:AB:14:90:CE:8F:B3
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 0188C5CFB699BCF0BE5FE512D281FAD21855
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/vfMqqaG48dGaB_l9m8urFJDOj7M.roa
Signing time: Fri 16 Jun 2023 20:05:04 +0000
ROA not before: Fri 16 Jun 2023 20:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5089
IP address blocks: 185.255.114.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c5:cf:b6:99:bc:f0:be:5f:e5:12:d2:81:fa:d2:18:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jun 16 20:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdf32aa9a1b8f1d19a07f97d9bcbab1490ce8fb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3f:9b:c1:06:fb:1d:5e:32:35:e0:b5:3a:99:
b2:ed:d8:05:ac:9d:1c:93:f5:bc:95:37:1a:af:ce:
4b:fd:e1:0e:07:70:4e:d1:8c:f8:84:ef:72:d1:e8:
54:39:53:54:af:c3:d9:d3:3e:c4:ef:50:f5:32:83:
14:c7:c4:48:7f:11:43:54:17:e9:d8:e0:60:29:02:
b5:24:ce:9f:1e:66:57:d5:97:bb:bc:dd:97:ba:ba:
68:17:66:36:3c:eb:56:44:e9:b3:c7:c5:09:de:5d:
6d:5f:3f:3a:69:80:b7:ac:2b:bf:cd:54:fc:e4:63:
e4:91:ac:47:b6:47:87:87:d7:ec:88:ab:b2:4e:ce:
b6:3d:da:56:a4:cd:c5:c0:7c:d6:8f:46:d9:0f:e2:
52:4b:30:e2:c5:84:b3:51:54:b8:c2:56:d1:99:ae:
78:b4:e1:cd:e1:d6:98:ef:42:99:ce:d7:1a:fc:4e:
6f:b6:75:7d:16:52:18:97:5a:05:91:04:7e:ae:d1:
99:ed:91:6c:0b:41:1e:14:4f:f5:78:d1:46:8d:02:
ae:34:4c:98:e5:95:45:ea:a1:5c:ee:89:39:da:b3:
fa:b9:3a:ea:50:cd:df:92:df:c2:53:35:c1:e1:7c:
1e:ca:91:09:c0:ee:8d:c6:b4:80:43:20:82:17:2d:
25:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F3:2A:A9:A1:B8:F1:D1:9A:07:F9:7D:9B:CB:AB:14:90:CE:8F:B3
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/vfMqqaG48dGaB_l9m8urFJDOj7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.114.0/24
Signature Algorithm: sha256WithRSAEncryption
39:7d:f1:c9:57:79:bd:c4:9a:5a:dc:d2:00:d6:01:cc:84:ee:
4c:a5:a5:4d:e3:cc:3c:99:09:44:f0:81:20:3d:a1:6e:8a:72:
25:ab:0a:5f:ee:a1:0f:ff:1d:0c:35:cb:7f:f4:d9:69:a7:7d:
cd:ed:b8:a9:33:3d:36:bd:1a:c1:f1:72:8e:ac:55:20:43:0b:
30:38:78:94:ba:70:99:d2:b8:c7:74:1a:3f:4f:d8:7a:0a:ee:
71:01:d3:f5:ef:72:3a:da:18:f1:28:0e:43:f3:2e:ba:24:df:
28:2c:92:4d:00:1a:1a:78:7f:6e:2a:09:64:d0:57:93:dd:10:
73:67:60:8c:5e:7c:6e:f9:1a:c9:2a:a2:b4:c3:3d:9f:72:37:
7c:af:8b:28:11:b1:98:b8:31:7a:a7:10:c1:be:0d:50:1f:32:
28:c3:b6:c7:fd:91:d0:26:82:b4:32:1c:30:b5:69:c8:1d:28:
8e:8e:f6:7e:84:f1:b7:30:86:8c:6e:a4:57:12:18:20:b4:4e:
73:dc:5b:e5:23:0b:04:32:d0:0e:5d:03:cc:08:52:83:0c:60:
e5:7a:e1:04:10:46:86:d1:63:46:3b:73:21:be:24:00:a1:c0:
63:93:20:2b:a8:eb:2f:da:29:5a:bf:dc:3f:61:7b:b8:be:01:
23:79:fd:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjFz7aZvPC+X+US0oH60hhVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmOGFlYTJmMDI1ZjQ5NWJlYWNlZTdjZTVhODgyMDUxOWRk
YTEzNzAwHhcNMjMwNjE2MjAwNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZGYzMmFhOWExYjhmMWQxOWEwN2Y5N2Q5YmNiYWIxNDkwY2U4ZmIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmD+bwQb7HV4yNeC1Opmy7dgFrJ0c
k/W8lTcar85L/eEOB3BO0Yz4hO9y0ehUOVNUr8PZ0z7E71D1MoMUx8RIfxFDVBfp
2OBgKQK1JM6fHmZX1Ze7vN2XurpoF2Y2POtWROmzx8UJ3l1tXz86aYC3rCu/zVT8
5GPkkaxHtkeHh9fsiKuyTs62PdpWpM3FwHzWj0bZD+JSSzDixYSzUVS4wlbRma54
tOHN4daY70KZztca/E5vtnV9FlIYl1oFkQR+rtGZ7ZFsC0EeFE/1eNFGjQKuNEyY
5ZVF6qFc7ok52rP6uTrqUM3fkt/CUzXB4XweypEJwO6NxrSAQyCCFy0lrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL3zKqmhuPHRmgf5fZvLqxSQzo+zMB8GA1UdIwQY
MBaAFE+K6i8CX0lb6s7nzlqIIFGd2hNwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUt
NjA4MDk1MmYwZTA0LzEvdmZNcXFhRzQ4ZEdhQl9sOW04dXJGSkRPajdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUtNjA4MDk1MmYwZTA0
LzEvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf9yMA0G
CSqGSIb3DQEBCwUAA4IBAQA5ffHJV3m9xJpa3NIA1gHMhO5MpaVN48w8mQlE8IEg
PaFuinIlqwpf7qEP/x0MNct/9Nlpp33N7bipMz02vRrB8XKOrFUgQwswOHiUunCZ
0rjHdBo/T9h6Cu5xAdP173I62hjxKA5D8y66JN8oLJJNABoaeH9uKglk0FeT3RBz
Z2CMXnxu+RrJKqK0wz2fcjd8r4soEbGYuDF6pxDBvg1QHzIow7bH/ZHQJoK0Mhww
tWnIHSiOjvZ+hPG3MIaMbqRXEhggtE5z3FvlIwsEMtAOXQPMCFKDDGDleuEEEEaG
0WNGO3MhviQAocBjkyArqOsv2ilav9w/YXu4vgEjef29
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org