Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/q2dd6fcjFI8RAiDeXVKrhg4G8ZQ.roa
File: q2dd6fcjFI8RAiDeXVKrhg4G8ZQ.roa (raw, json)
Hash identifier: s6ngrA7K2M0LHmwD4A+0PTqGmYZRgcnKfhQ0GEBRots=
Subject key identifier: AB:67:5D:E9:F7:23:14:8F:11:02:20:DE:5D:52:AB:86:0E:06:F1:94
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018756C4FB5EB18B9A78FF2955AA96BEA779
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/q2dd6fcjFI8RAiDeXVKrhg4G8ZQ.roa
Signing time: Thu 06 Apr 2023 13:32:42 +0000
ROA not before: Thu 06 Apr 2023 13:32:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 81.161.236.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:c4:fb:5e:b1:8b:9a:78:ff:29:55:aa:96:be:a7:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 6 13:32:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab675de9f723148f110220de5d52ab860e06f194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3b:05:64:57:a4:f4:9d:f2:b7:df:01:59:55:
63:17:bb:05:60:2a:0c:67:f9:f0:eb:0f:c8:bb:bd:
30:cc:d8:14:5f:a0:ae:34:9c:66:fb:3d:ed:d7:80:
07:32:cd:98:d5:ea:48:64:b0:b7:c7:13:18:81:ce:
6f:39:04:33:22:4c:ef:d1:41:c7:8e:10:b1:ec:95:
cb:da:c8:09:bb:23:91:69:44:b0:d1:30:80:d6:db:
d4:0a:77:97:38:a6:7c:52:c7:f7:7b:c0:36:fd:79:
57:94:1a:51:c6:23:0a:05:1b:e7:77:d0:18:8c:fb:
43:07:86:f3:47:b1:10:a3:93:0e:14:b2:81:67:f5:
15:fc:0d:bf:45:c8:99:72:20:55:cd:fd:c5:3d:de:
05:25:52:cb:f9:99:c7:21:f7:be:ec:ea:dd:13:af:
da:05:38:69:19:3c:de:05:0c:e3:a1:94:f2:8b:e3:
a1:6d:7d:f5:04:ca:20:15:1c:fe:66:27:c7:07:e2:
2d:92:c2:2d:b3:8e:50:e7:bb:1c:1b:07:fc:fa:c1:
c1:41:bd:23:03:be:ba:eb:c3:f4:7e:1e:f7:f3:09:
10:0d:d6:dc:88:c2:39:7c:36:0e:98:6b:57:98:85:
a3:81:00:74:2b:62:50:f4:bb:b3:69:17:87:af:f9:
fd:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:67:5D:E9:F7:23:14:8F:11:02:20:DE:5D:52:AB:86:0E:06:F1:94
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/q2dd6fcjFI8RAiDeXVKrhg4G8ZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.161.236.0/24
Signature Algorithm: sha256WithRSAEncryption
83:47:8d:88:f9:e1:47:d9:95:9f:4f:47:74:d1:c8:0f:4c:1a:
e2:68:17:44:e2:8c:75:11:a8:77:77:6d:a5:86:50:df:4d:4c:
17:0a:fe:95:6d:90:62:80:7d:35:9d:46:58:e9:bf:80:d4:c6:
0e:b1:ad:e6:37:d3:a1:c7:f8:2a:f7:52:42:93:1e:a0:3d:19:
a6:35:31:ed:d7:3c:1d:f1:06:7c:17:ed:f8:d8:16:5c:9e:bd:
46:86:b8:71:02:e9:c5:a6:c8:81:c7:f3:0b:6c:ee:22:bc:1a:
80:42:44:66:cb:fd:49:48:b6:40:6e:79:a3:0c:07:10:d4:7e:
81:be:8e:31:8a:67:5b:33:68:d8:64:b8:86:c2:7d:1e:eb:ef:
01:be:33:66:8f:03:69:c4:32:cc:aa:b4:4c:77:4f:33:15:48:
0a:60:05:28:d6:45:fa:c0:22:33:d4:4e:8c:4f:c7:d8:58:16:
55:ba:f4:ec:2c:e9:71:4b:ad:42:3d:fc:d7:58:d0:d5:40:4e:
07:31:3b:66:f9:0f:92:c4:c0:f5:25:03:00:ac:07:8f:8e:a0:
3d:84:32:eb:7c:18:50:e7:c2:df:08:79:8f:01:8f:04:49:5b:
f7:75:e6:04:ed:e6:f3:58:b3:c7:2c:05:9d:bd:e4:a4:13:ca:
b2:b7:a7:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdWxPtesYuaeP8pVaqWvqd5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMwNDA2MTMzMjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjY3NWRlOWY3MjMxNDhmMTEwMjIwZGU1ZDUyYWI4NjBlMDZmMTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzsFZFek9J3yt98BWVVjF7sFYCoM
Z/nw6w/Iu70wzNgUX6CuNJxm+z3t14AHMs2Y1epIZLC3xxMYgc5vOQQzIkzv0UHH
jhCx7JXL2sgJuyORaUSw0TCA1tvUCneXOKZ8Usf3e8A2/XlXlBpRxiMKBRvnd9AY
jPtDB4bzR7EQo5MOFLKBZ/UV/A2/RciZciBVzf3FPd4FJVLL+ZnHIfe+7OrdE6/a
BThpGTzeBQzjoZTyi+OhbX31BMogFRz+ZifHB+ItksIts45Q57scGwf8+sHBQb0j
A76668P0fh738wkQDdbciMI5fDYOmGtXmIWjgQB0K2JQ9LuzaReHr/n95QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKtnXen3IxSPEQIg3l1Sq4YOBvGUMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvcTJkZDZmY2pGSThSQWlEZVhWS3JoZzRHOFpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUaHsMA0G
CSqGSIb3DQEBCwUAA4IBAQCDR42I+eFH2ZWfT0d00cgPTBriaBdE4ox1Eah3d22l
hlDfTUwXCv6VbZBigH01nUZY6b+A1MYOsa3mN9Ohx/gq91JCkx6gPRmmNTHt1zwd
8QZ8F+342BZcnr1GhrhxAunFpsiBx/MLbO4ivBqAQkRmy/1JSLZAbnmjDAcQ1H6B
vo4ximdbM2jYZLiGwn0e6+8BvjNmjwNpxDLMqrRMd08zFUgKYAUo1kX6wCIz1E6M
T8fYWBZVuvTsLOlxS61CPfzXWNDVQE4HMTtm+Q+SxMD1JQMArAePjqA9hDLrfBhQ
58LfCHmPAY8ESVv3deYE7ebzWLPHLAWdveSkE8qyt6fY
-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:13 2024 by rpki-client on console-ams.rpki-client.org