Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/56f2e9-72aa-4a41-8946-182432a96dbd/1/0NYe1J09k5K-cy-NFe6DFhjs1Uc.roa
File: 0NYe1J09k5K-cy-NFe6DFhjs1Uc.roa (raw, json)
Hash identifier: UYF9+WswrjfXMLKyjgGtnZBShYZ5682X1o15Uw3BCuo=
Subject key identifier: D0:D6:1E:D4:9D:3D:93:92:BE:73:2F:8D:15:EE:83:16:18:EC:D5:47
Certificate issuer: /CN=daac15b782bc32747b538dec2a222416cd684825
Certificate serial: 01856F9DF0FD237DA1E1B3D582135FAFC2F0
Authority key identifier: DA:AC:15:B7:82:BC:32:74:7B:53:8D:EC:2A:22:24:16:CD:68:48:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qwVt4K8MnR7U43sKiIkFs1oSCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/56f2e9-72aa-4a41-8946-182432a96dbd/1/0NYe1J09k5K-cy-NFe6DFhjs1Uc.roa
Signing time: Sun 01 Jan 2023 23:14:59 +0000
ROA not before: Sun 01 Jan 2023 23:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201953
IP address blocks: 185.253.228.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:f0:fd:23:7d:a1:e1:b3:d5:82:13:5f:af:c2:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daac15b782bc32747b538dec2a222416cd684825
Validity
Not Before: Jan 1 23:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0d61ed49d3d9392be732f8d15ee831618ecd547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6b:19:ea:a7:d4:ac:80:0e:f0:61:be:c8:a7:
4b:eb:70:f8:93:73:0d:91:85:ec:cf:95:52:e5:ba:
35:7e:19:57:bd:da:0e:4c:b7:34:12:0b:d6:06:af:
fb:42:92:38:95:96:bd:5b:9e:5e:93:30:a1:d4:9d:
10:ea:90:36:0a:96:d5:d3:18:59:42:6e:d6:10:88:
9f:4a:34:c6:7a:b9:ff:c2:c8:68:63:9b:03:85:6e:
4f:9e:87:8b:d7:b4:39:e6:f5:cf:0c:56:08:9e:45:
44:ba:d9:96:3f:e4:47:10:77:93:d7:ec:9e:fd:ac:
c2:6e:d8:32:89:e8:c4:98:3c:7e:f7:22:11:f0:cd:
5a:85:4c:68:2e:3e:b5:7f:4e:ea:67:a1:fd:fa:63:
26:1f:17:26:9a:4c:7e:f3:6d:9a:bb:3d:7b:de:8d:
f2:cb:80:78:5d:f6:b5:19:9d:89:20:ec:a8:b7:72:
67:70:c7:bd:07:2e:86:77:88:a4:b0:81:5d:1f:5f:
be:4d:3e:b6:45:f5:47:8d:68:b3:98:ad:01:43:3a:
ae:44:01:ea:9f:48:73:03:68:7f:30:c5:60:0d:ac:
7d:d2:29:1b:ff:5d:43:57:93:ae:b9:f3:eb:fd:13:
a7:26:59:12:00:87:9b:20:f6:9e:9f:f2:80:77:c8:
fd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D6:1E:D4:9D:3D:93:92:BE:73:2F:8D:15:EE:83:16:18:EC:D5:47
X509v3 Authority Key Identifier:
keyid:DA:AC:15:B7:82:BC:32:74:7B:53:8D:EC:2A:22:24:16:CD:68:48:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qwVt4K8MnR7U43sKiIkFs1oSCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/56f2e9-72aa-4a41-8946-182432a96dbd/1/0NYe1J09k5K-cy-NFe6DFhjs1Uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/56f2e9-72aa-4a41-8946-182432a96dbd/1/2qwVt4K8MnR7U43sKiIkFs1oSCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.228.0/22
Signature Algorithm: sha256WithRSAEncryption
65:63:c1:62:25:4c:00:04:82:61:6a:54:15:7e:6b:79:f7:14:
71:3f:0e:1a:4c:94:87:9a:43:03:07:1f:40:32:02:47:e8:ab:
46:c8:4f:a1:0c:e4:2f:f5:8d:6c:57:67:ad:0e:8c:b0:44:d8:
4f:84:9b:61:cf:02:2c:95:78:69:14:e0:23:78:5b:9f:88:c7:
3a:24:e9:ec:3f:6d:3d:52:fc:09:ad:0b:a6:0d:c4:d9:d4:c8:
a3:03:3b:cf:1f:c9:dc:34:2b:5a:a6:2c:f8:44:59:0b:8b:08:
5a:1c:ed:f6:46:b6:10:ae:f5:28:cd:cb:be:78:31:28:7e:7d:
55:11:15:d8:ef:f4:da:a0:f7:10:c9:05:91:44:c7:ab:05:dd:
73:a9:58:8a:ff:5d:fb:bc:b7:da:f7:c2:29:a1:4e:c8:f7:0c:
31:73:40:7f:d7:cd:85:59:df:47:d8:46:a1:d7:f0:a7:c4:55:
e9:a9:e4:fc:3c:f3:e6:e2:09:14:04:bc:31:00:c5:9d:7a:06:
12:6b:13:e2:53:83:4c:a0:33:6f:45:d7:06:bf:f6:fb:96:96:
e4:e5:a1:15:3f:3a:3b:a4:aa:ab:0a:96:d3:6b:5b:69:55:3f:
aa:20:dc:06:83:30:2f:bb:76:ed:65:31:d2:40:60:c8:cd:ac:
90:00:42:00
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvnfD9I32h4bPVghNfr8LwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYWMxNWI3ODJiYzMyNzQ3YjUzOGRlYzJhMjIyNDE2Y2Q2
ODQ4MjUwHhcNMjMwMTAxMjMxNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGQ2MWVkNDlkM2Q5MzkyYmU3MzJmOGQxNWVlODMxNjE4ZWNkNTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi2sZ6qfUrIAO8GG+yKdL63D4k3MN
kYXsz5VS5bo1fhlXvdoOTLc0EgvWBq/7QpI4lZa9W55ekzCh1J0Q6pA2CpbV0xhZ
Qm7WEIifSjTGern/wshoY5sDhW5PnoeL17Q55vXPDFYInkVEutmWP+RHEHeT1+ye
/azCbtgyiejEmDx+9yIR8M1ahUxoLj61f07qZ6H9+mMmHxcmmkx+822auz173o3y
y4B4Xfa1GZ2JIOyot3JncMe9By6Gd4iksIFdH1++TT62RfVHjWizmK0BQzquRAHq
n0hzA2h/MMVgDax90ikb/11DV5OuufPr/ROnJlkSAIebIPaen/KAd8j92wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNDWHtSdPZOSvnMvjRXugxYY7NVHMB8GA1UdIwQY
MBaAFNqsFbeCvDJ0e1ON7CoiJBbNaEglMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnF3VnQ0SzhNblI3VTQzc0tpSWtGczFvU0NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81NmYyZTktNzJhYS00YTQxLTg5NDYt
MTgyNDMyYTk2ZGJkLzEvME5ZZTFKMDlrNUstY3ktTkZlNkRGaGpzMVVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi81NmYyZTktNzJhYS00YTQxLTg5NDYtMTgyNDMyYTk2ZGJk
LzEvMnF3VnQ0SzhNblI3VTQzc0tpSWtGczFvU0NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuf3kMA0G
CSqGSIb3DQEBCwUAA4IBAQBlY8FiJUwABIJhalQVfmt59xRxPw4aTJSHmkMDBx9A
MgJH6KtGyE+hDOQv9Y1sV2etDoywRNhPhJthzwIslXhpFOAjeFufiMc6JOnsP209
UvwJrQumDcTZ1MijAzvPH8ncNCtapiz4RFkLiwhaHO32RrYQrvUozcu+eDEofn1V
ERXY7/TaoPcQyQWRRMerBd1zqViK/137vLfa98IpoU7I9wwxc0B/182FWd9H2Eah
1/CnxFXpqeT8PPPm4gkUBLwxAMWdegYSaxPiU4NMoDNvRdcGv/b7lpbk5aEVPzo7
pKqrCpbTa1tpVT+qINwGgzAvu3btZTHSQGDIzayQAEIA
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:36 2024 by rpki-client on console-fra.rpki-client.org