Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/cf5758-aff7-4d88-b7dc-772918fff544/1/3iIt7xr-T-19K_N7whN5nXttn9A.roa
File: 3iIt7xr-T-19K_N7whN5nXttn9A.roa (raw, json)
Hash identifier: yb5rxWqfA+TJVRuNPPH8MWrFJ+uCw9ZE34p1b1HTosU=
Subject key identifier: DE:22:2D:EF:1A:FE:4F:ED:7D:2B:F3:7B:C2:13:79:9D:7B:6D:9F:D0
Certificate issuer: /CN=9585c19915455835457413ef222a7d375b29901d
Certificate serial: 018573038C3C49F9BCA421DF62BE11BBB65B
Authority key identifier: 95:85:C1:99:15:45:58:35:45:74:13:EF:22:2A:7D:37:5B:29:90:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYXBmRVFWDVFdBPvIip9N1spkB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/cf5758-aff7-4d88-b7dc-772918fff544/1/3iIt7xr-T-19K_N7whN5nXttn9A.roa
Signing time: Mon 02 Jan 2023 15:04:50 +0000
ROA not before: Mon 02 Jan 2023 15:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 185.82.48.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:03:8c:3c:49:f9:bc:a4:21:df:62:be:11:bb:b6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9585c19915455835457413ef222a7d375b29901d
Validity
Not Before: Jan 2 15:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de222def1afe4fed7d2bf37bc213799d7b6d9fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fd:81:39:0f:bc:97:75:49:e4:27:9a:42:17:
98:20:22:7b:b9:d0:fd:d2:6c:22:cc:05:a9:83:c9:
4d:21:ef:80:00:1a:e1:fe:8b:42:3a:1e:2b:0c:3b:
4a:ae:d3:af:a7:fc:6d:b7:cb:bb:a8:47:53:7f:d8:
b8:9d:a2:33:f8:45:4f:ad:5d:e1:1b:4b:40:35:42:
c8:54:53:53:2d:91:24:b1:5c:aa:c6:2e:81:1e:73:
0e:1c:50:52:e5:48:40:42:f2:c7:cd:8a:bf:99:d4:
c1:8f:e4:54:48:c3:61:b8:45:73:5c:35:7f:2c:cc:
f0:30:d0:2f:65:5f:cd:65:21:36:d1:6e:9f:85:a3:
25:6d:f2:d1:76:15:6b:b1:a1:da:f3:fe:59:cf:1a:
5f:c9:8f:b6:4c:82:cc:94:e2:09:54:11:ab:3b:cd:
c2:83:b7:55:40:b4:8b:51:d6:67:e1:f6:c2:72:ba:
56:4e:23:65:13:2d:e9:16:46:dd:87:df:80:ef:cf:
81:02:ea:ca:41:18:7a:2b:05:16:b2:52:92:75:71:
8c:1c:54:fb:a7:a2:7e:b3:5e:90:c1:5c:05:1e:a7:
1f:5e:96:65:2e:02:ad:e4:dc:4f:90:c3:5d:7b:2d:
5a:f2:3e:ab:3c:9d:02:be:09:25:72:15:a6:35:51:
37:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:22:2D:EF:1A:FE:4F:ED:7D:2B:F3:7B:C2:13:79:9D:7B:6D:9F:D0
X509v3 Authority Key Identifier:
keyid:95:85:C1:99:15:45:58:35:45:74:13:EF:22:2A:7D:37:5B:29:90:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYXBmRVFWDVFdBPvIip9N1spkB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cf5758-aff7-4d88-b7dc-772918fff544/1/3iIt7xr-T-19K_N7whN5nXttn9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cf5758-aff7-4d88-b7dc-772918fff544/1/lYXBmRVFWDVFdBPvIip9N1spkB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.48.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:eb:17:ad:ec:2d:19:e6:37:ed:58:c3:19:32:ee:f1:c0:98:
05:5d:1e:1a:27:70:7a:18:f7:b0:cc:aa:a8:55:cf:56:f7:51:
61:26:0f:75:5f:c4:d5:f5:ac:69:92:03:69:b1:64:75:28:fd:
e6:bc:d3:98:00:ff:e7:8d:ef:9a:d8:35:8a:da:f0:15:69:93:
ae:31:4e:5f:7e:1f:ba:5b:64:84:77:3e:a9:92:a1:fc:4f:42:
81:49:48:57:4d:2e:29:f9:35:ac:83:78:23:46:fe:6b:41:f6:
15:b5:d6:8f:5e:b4:94:fa:2d:81:c4:53:ef:73:43:e6:07:46:
0a:c0:cd:bb:db:c3:39:bf:aa:10:26:82:92:87:db:50:76:06:
96:da:e2:31:8a:9e:4a:07:cf:05:dd:53:4e:ad:f2:f9:99:83:
b8:f0:6c:7a:dd:d0:d7:af:bc:1d:36:0d:20:73:b5:65:3a:19:
ca:2a:05:a8:bf:4b:fb:f1:44:63:98:ad:81:69:86:88:79:8d:
5c:4e:35:69:d9:0a:ae:5f:41:9e:f0:4e:7e:47:a7:34:e1:e0:
c9:95:0d:2a:3d:42:3b:ce:23:e8:46:59:97:d5:4c:c4:8b:29:
8c:01:54:fe:43:13:cd:25:79:7a:33:ce:0b:dc:66:72:33:6f:
e2:99:d7:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzA4w8Sfm8pCHfYr4Ru7ZbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ODVjMTk5MTU0NTU4MzU0NTc0MTNlZjIyMmE3ZDM3NWIy
OTkwMWQwHhcNMjMwMTAyMTUwNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTIyMmRlZjFhZmU0ZmVkN2QyYmYzN2JjMjEzNzk5ZDdiNmQ5ZmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuf2BOQ+8l3VJ5CeaQheYICJ7udD9
0mwizAWpg8lNIe+AABrh/otCOh4rDDtKrtOvp/xtt8u7qEdTf9i4naIz+EVPrV3h
G0tANULIVFNTLZEksVyqxi6BHnMOHFBS5UhAQvLHzYq/mdTBj+RUSMNhuEVzXDV/
LMzwMNAvZV/NZSE20W6fhaMlbfLRdhVrsaHa8/5ZzxpfyY+2TILMlOIJVBGrO83C
g7dVQLSLUdZn4fbCcrpWTiNlEy3pFkbdh9+A78+BAurKQRh6KwUWslKSdXGMHFT7
p6J+s16QwVwFHqcfXpZlLgKt5NxPkMNdey1a8j6rPJ0CvgklchWmNVE3wQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN4iLe8a/k/tfSvze8ITeZ17bZ/QMB8GA1UdIwQY
MBaAFJWFwZkVRVg1RXQT7yIqfTdbKZAdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFlYQm1SVkZXRFZGZEJQdklpcDlOMXNwa0IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9jZjU3NTgtYWZmNy00ZDg4LWI3ZGMt
NzcyOTE4ZmZmNTQ0LzEvM2lJdDd4ci1ULTE5S19ON3doTjVuWHR0bjlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9jZjU3NTgtYWZmNy00ZDg4LWI3ZGMtNzcyOTE4ZmZmNTQ0
LzEvbFlYQm1SVkZXRFZGZEJQdklpcDlOMXNwa0IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVIwMA0G
CSqGSIb3DQEBCwUAA4IBAQB/6xet7C0Z5jftWMMZMu7xwJgFXR4aJ3B6GPewzKqo
Vc9W91FhJg91X8TV9axpkgNpsWR1KP3mvNOYAP/nje+a2DWK2vAVaZOuMU5ffh+6
W2SEdz6pkqH8T0KBSUhXTS4p+TWsg3gjRv5rQfYVtdaPXrSU+i2BxFPvc0PmB0YK
wM2728M5v6oQJoKSh9tQdgaW2uIxip5KB88F3VNOrfL5mYO48Gx63dDXr7wdNg0g
c7VlOhnKKgWov0v78URjmK2BaYaIeY1cTjVp2QquX0Ge8E5+R6c04eDJlQ0qPUI7
ziPoRlmX1UzEiymMAVT+QxPNJXl6M84L3GZyM2/imdco
-----END CERTIFICATE-----
Generated at Mon Jan 1 09:29:59 2024 by rpki-client on console-ams.rpki-client.org