Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/82o_gqv3nMoilrDUhtwGhcMOtio.roa
File: 82o_gqv3nMoilrDUhtwGhcMOtio.roa (raw, json)
Hash identifier: iGql7ecsgxdYPYBOEsJE0RrNZ4FZ9ZVmPUHSGPY8siY=
Subject key identifier: F3:6A:3F:82:AB:F7:9C:CA:22:96:B0:D4:86:DC:06:85:C3:0E:B6:2A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01856F66EF7591133994B8439A6DACF0942F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/82o_gqv3nMoilrDUhtwGhcMOtio.roa
Signing time: Sun 01 Jan 2023 22:14:55 +0000
ROA not before: Sun 01 Jan 2023 22:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 195.58.53.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:ef:75:91:13:39:94:b8:43:9a:6d:ac:f0:94:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 22:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f36a3f82abf79cca2296b0d486dc0685c30eb62a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:89:b2:c0:4d:79:2d:31:ee:72:c1:6a:b4:ff:
3a:ee:05:f2:5a:dd:94:64:43:92:a0:d2:e5:b8:d0:
e8:eb:ff:16:5b:05:51:b7:84:2f:f5:43:39:95:2c:
89:54:56:a3:40:c3:e3:2b:29:36:79:39:5f:74:35:
79:6d:ea:f1:b7:34:e1:bc:dd:f8:b9:45:cc:67:2a:
8f:56:5e:ba:4b:30:7c:1c:74:34:52:6c:68:8c:60:
f3:36:f8:0d:81:46:c5:53:68:26:42:72:f1:1e:45:
27:d8:4b:a1:e3:8d:7b:63:86:d4:db:96:4a:09:06:
cb:ab:b4:68:08:02:6f:2e:f9:4f:bd:23:37:7c:10:
14:e1:9c:94:fa:85:8b:7e:bf:bb:53:99:7c:d7:64:
4b:be:c0:30:c2:51:a6:5b:a2:f4:92:07:82:9c:bb:
29:2f:b8:dc:b0:ba:cf:7d:7d:2a:13:c0:0d:32:35:
01:87:92:42:fd:1c:f2:b7:b4:96:58:a0:5d:76:fc:
e4:33:4f:da:be:b8:2e:5f:ee:30:b6:d2:ae:c1:aa:
4c:1f:6f:c9:73:97:b6:8d:5a:3b:4f:a4:d2:e6:84:
58:69:ae:da:2a:51:cd:ad:3b:bd:a7:b2:5b:8c:04:
1a:64:a6:78:b5:e7:31:0a:68:1d:3b:3f:88:50:5b:
98:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:6A:3F:82:AB:F7:9C:CA:22:96:B0:D4:86:DC:06:85:C3:0E:B6:2A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/82o_gqv3nMoilrDUhtwGhcMOtio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.58.53.0/24
Signature Algorithm: sha256WithRSAEncryption
70:83:af:0c:f4:c3:a8:76:b0:91:a4:77:96:3b:d5:be:8e:e4:
c7:6f:96:a3:5c:a8:d8:95:cf:43:f0:ce:ad:15:33:70:1e:15:
29:94:03:5d:fa:57:16:55:79:ca:73:0f:88:4d:f3:aa:c3:c4:
44:3f:a2:3d:0f:ba:94:55:83:26:54:0a:20:7c:94:80:fd:c9:
6b:f7:88:9a:f1:2f:89:5c:b1:18:b8:ea:fd:38:55:4d:05:07:
d3:6c:5f:51:ec:5b:bf:f7:6e:fc:4c:fd:60:a6:8b:87:4b:37:
53:d2:6f:3f:bf:1d:90:9a:22:87:ca:96:cf:48:7e:15:79:e0:
fd:93:c1:93:8a:6d:f1:36:ef:99:00:3b:bf:fb:0c:43:56:26:
df:3c:7f:c5:37:6b:df:9e:0f:cd:cc:5e:f5:d6:1b:c0:c7:87:
e5:95:0d:77:4f:3c:e4:7b:65:c3:6a:a0:a6:1a:74:8e:39:05:
ce:c3:40:9e:f4:53:12:97:b1:84:d7:1d:29:17:8d:b5:9e:e7:
96:21:9b:ff:9e:89:5e:b2:02:18:ff:9a:5c:a4:cc:5a:39:04:
87:90:93:25:47:1d:f7:d7:dd:89:ab:27:30:30:3e:94:d1:39:
33:cd:b1:f4:6d:5a:61:e8:2c:ef:09:06:ad:9b:a2:d3:46:43:
49:a1:bd:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvZu91kRM5lLhDmm2s8JQvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMTAxMjIxNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzZhM2Y4MmFiZjc5Y2NhMjI5NmIwZDQ4NmRjMDY4NWMzMGViNjJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYmywE15LTHucsFqtP867gXyWt2U
ZEOSoNLluNDo6/8WWwVRt4Qv9UM5lSyJVFajQMPjKyk2eTlfdDV5berxtzThvN34
uUXMZyqPVl66SzB8HHQ0UmxojGDzNvgNgUbFU2gmQnLxHkUn2Euh4417Y4bU25ZK
CQbLq7RoCAJvLvlPvSM3fBAU4ZyU+oWLfr+7U5l812RLvsAwwlGmW6L0kgeCnLsp
L7jcsLrPfX0qE8ANMjUBh5JC/Rzyt7SWWKBddvzkM0/avrguX+4wttKuwapMH2/J
c5e2jVo7T6TS5oRYaa7aKlHNrTu9p7JbjAQaZKZ4tecxCmgdOz+IUFuY4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPNqP4Kr95zKIpaw1IbcBoXDDrYqMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvODJvX2dxdjNuTW9pbHJEVWh0d0doY01PdGlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwzo1MA0G
CSqGSIb3DQEBCwUAA4IBAQBwg68M9MOodrCRpHeWO9W+juTHb5ajXKjYlc9D8M6t
FTNwHhUplANd+lcWVXnKcw+ITfOqw8REP6I9D7qUVYMmVAogfJSA/clr94ia8S+J
XLEYuOr9OFVNBQfTbF9R7Fu/9278TP1gpouHSzdT0m8/vx2QmiKHypbPSH4VeeD9
k8GTim3xNu+ZADu/+wxDVibfPH/FN2vfng/NzF711hvAx4fllQ13Tzzke2XDaqCm
GnSOOQXOw0Ce9FMSl7GE1x0pF421nueWIZv/nolesgIY/5pcpMxaOQSHkJMlRx33
192JqycwMD6U0TkzzbH0bVph6CzvCQatm6LTRkNJob3w
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:51 2023 by rpki-client on console-ams.rpki-client.org