Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/czkwcEVrIg-RHt5W4E7GbZMHirY.roa
File: czkwcEVrIg-RHt5W4E7GbZMHirY.roa (raw, json)
Hash identifier: xChM311ilcKnxJuw5JR7lKNzo3skr2GsBSdbzmEP5ug=
Subject key identifier: 73:39:30:70:45:6B:22:0F:91:1E:DE:56:E0:4E:C6:6D:93:07:8A:B6
Certificate issuer: /CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Certificate serial: 01856BD3888E01F02CE822AE991B8071724B
Authority key identifier: ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/czkwcEVrIg-RHt5W4E7GbZMHirY.roa
Signing time: Sun 01 Jan 2023 05:35:03 +0000
ROA not before: Sun 01 Jan 2023 05:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57782
IP address blocks: 185.202.104.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:88:8e:01:f0:2c:e8:22:ae:99:1b:80:71:72:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Validity
Not Before: Jan 1 05:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73393070456b220f911ede56e04ec66d93078ab6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:dc:a1:10:2c:5c:50:8b:18:bb:30:af:02:6d:
4b:78:14:29:41:f6:e9:e8:86:03:e7:ae:de:3f:d3:
88:62:96:7c:34:85:89:18:3c:df:49:b0:c4:45:6d:
df:3c:19:7e:cf:b0:f4:cb:86:c3:99:11:1a:c9:e3:
c0:11:c6:de:e3:8b:57:73:1b:0c:d3:60:a0:d0:d2:
d4:54:62:7a:5b:be:27:e5:23:a7:7d:7f:9d:65:8d:
3b:74:a7:ce:ba:d0:06:1d:77:cb:6e:43:63:20:05:
51:8f:09:15:ec:f8:c8:31:83:d3:ef:0c:ad:02:c3:
db:29:2e:05:2d:da:03:f8:d6:de:e4:88:0c:4a:c3:
0a:b8:91:a3:c5:b7:54:20:c1:11:f6:c6:2b:51:34:
77:b5:f7:e4:2d:39:03:5a:9b:10:90:8b:07:3d:cc:
33:5f:fc:e4:b1:58:37:27:9d:ac:33:c0:17:6f:00:
57:de:c9:a8:64:ad:fc:e3:14:bd:71:a3:7b:71:5d:
5e:ad:bb:10:b2:c8:42:33:4c:fa:5c:75:63:36:ee:
c6:d8:43:5a:de:83:03:d9:77:67:13:f3:34:17:a3:
5f:5f:8c:f6:9e:06:d6:34:81:7a:9c:b9:67:14:a0:
74:55:83:da:4e:a7:9f:ad:8c:ce:d6:64:61:36:31:
17:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:39:30:70:45:6B:22:0F:91:1E:DE:56:E0:4E:C6:6D:93:07:8A:B6
X509v3 Authority Key Identifier:
keyid:ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/czkwcEVrIg-RHt5W4E7GbZMHirY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/7XfmuSWzt6eruSiF1V1zPcX6YtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.104.0/24
Signature Algorithm: sha256WithRSAEncryption
09:53:5b:e7:e1:b0:44:91:84:a9:3c:97:b8:a4:2e:be:b3:7a:
3b:98:f6:f9:fb:9e:87:4f:65:a1:38:bb:d1:08:09:2c:e7:1b:
b9:05:e7:3a:9a:5c:2b:e0:fc:c6:da:9d:33:bf:08:e0:cc:c1:
6a:84:40:5b:d3:ce:be:17:83:1b:41:5f:37:74:1e:6e:31:cd:
99:a1:bf:7e:81:8f:6d:00:09:55:bc:9b:52:c8:6b:f8:3d:10:
be:24:fe:5e:a5:18:98:7b:b6:a8:3a:68:5c:d8:14:6a:5b:90:
9d:2a:12:3a:39:45:a5:d2:cf:3b:24:dc:3f:3d:fc:63:e4:dd:
96:5f:4e:f7:92:c0:dd:04:dd:3f:88:f3:4e:0a:bf:d7:16:2d:
2d:c4:a9:07:a5:c5:f6:65:52:51:bf:99:c0:20:a0:60:95:e2:
f3:00:69:a1:a6:c0:16:70:13:41:c5:cf:2a:a3:94:01:ca:53:
82:da:8d:5e:65:91:8f:fa:93:07:1f:ca:df:f5:d7:c7:bd:bf:
9a:97:84:52:af:ed:03:a4:21:1f:be:90:57:9a:4f:13:54:f2:
32:92:1d:8c:d5:83:41:7f:2a:a4:98:58:19:d6:09:f8:48:63:
36:e3:39:ce:85:75:0c:04:38:9d:70:c8:cd:71:c5:cb:10:ab:
a3:e3:4b:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr04iOAfAs6CKumRuAcXJLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkNzdlNmI5MjViM2I3YTdhYmI5Mjg4NWQ1NWQ3MzNkYzVm
YTYyZDIwHhcNMjMwMTAxMDUzNTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzM5MzA3MDQ1NmIyMjBmOTExZWRlNTZlMDRlYzY2ZDkzMDc4YWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgtyhECxcUIsYuzCvAm1LeBQpQfbp
6IYD567eP9OIYpZ8NIWJGDzfSbDERW3fPBl+z7D0y4bDmREayePAEcbe44tXcxsM
02Cg0NLUVGJ6W74n5SOnfX+dZY07dKfOutAGHXfLbkNjIAVRjwkV7PjIMYPT7wyt
AsPbKS4FLdoD+Nbe5IgMSsMKuJGjxbdUIMER9sYrUTR3tffkLTkDWpsQkIsHPcwz
X/zksVg3J52sM8AXbwBX3smoZK384xS9caN7cV1erbsQsshCM0z6XHVjNu7G2ENa
3oMD2XdnE/M0F6NfX4z2ngbWNIF6nLlnFKB0VYPaTqefrYzO1mRhNjEXhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHM5MHBFayIPkR7eVuBOxm2TB4q2MB8GA1UdIwQY
MBaAFO135rkls7enq7kohdVdcz3F+mLSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1hmbXVTV3p0NmVydVNpRjFWMXpQY1g2WXRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9kODM3NzctNWJhOC00ZjFlLTg1MWMt
OTI4MTlkZThhMDM2LzEvY3prd2NFVnJJZy1SSHQ1VzRFN0diWk1IaXJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9kODM3NzctNWJhOC00ZjFlLTg1MWMtOTI4MTlkZThhMDM2
LzEvN1hmbXVTV3p0NmVydVNpRjFWMXpQY1g2WXRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucpoMA0G
CSqGSIb3DQEBCwUAA4IBAQAJU1vn4bBEkYSpPJe4pC6+s3o7mPb5+56HT2WhOLvR
CAks5xu5Bec6mlwr4PzG2p0zvwjgzMFqhEBb086+F4MbQV83dB5uMc2Zob9+gY9t
AAlVvJtSyGv4PRC+JP5epRiYe7aoOmhc2BRqW5CdKhI6OUWl0s87JNw/Pfxj5N2W
X073ksDdBN0/iPNOCr/XFi0txKkHpcX2ZVJRv5nAIKBgleLzAGmhpsAWcBNBxc8q
o5QBylOC2o1eZZGP+pMHH8rf9dfHvb+al4RSr+0DpCEfvpBXmk8TVPIykh2M1YNB
fyqkmFgZ1gn4SGM24znOhXUMBDidcMjNccXLEKuj40sW
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:32 2023 by rpki-client on console-ams.rpki-client.org