Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/ij0w2w6S1Mv__rNvfojJ44poLIQ.roa
File: ij0w2w6S1Mv__rNvfojJ44poLIQ.roa (raw, json)
Hash identifier: 0DdNksgtu6DSnfEQImIehNMe6zsQHtG1IQDjtlElvtU=
Subject key identifier: 8A:3D:30:DB:0E:92:D4:CB:FF:FE:B3:6F:7E:88:C9:E3:8A:68:2C:84
Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Certificate serial: 01856D789978CBE612F30B21494391783347
Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/ij0w2w6S1Mv__rNvfojJ44poLIQ.roa
Signing time: Sun 01 Jan 2023 13:14:58 +0000
ROA not before: Sun 01 Jan 2023 13:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41015
IP address blocks: 185.90.84.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:99:78:cb:e6:12:f3:0b:21:49:43:91:78:33:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Validity
Not Before: Jan 1 13:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a3d30db0e92d4cbfffeb36f7e88c9e38a682c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c5:cd:62:5f:1b:62:0b:c5:f6:e0:6c:07:d5:
b6:28:ea:b7:ff:9a:92:25:ba:aa:a1:70:4f:13:53:
e1:bf:71:59:b2:2e:25:ae:ed:3d:cc:3a:b6:dd:d5:
c3:1b:1b:b2:e9:6e:e5:17:0d:8d:a4:c9:a0:1e:f3:
eb:c1:0b:86:1d:7d:d1:d1:94:b5:98:60:d6:98:2a:
94:4b:eb:13:df:ef:f9:a7:fb:f4:2c:4a:f3:9c:e4:
89:46:06:78:04:df:ad:16:ad:00:c5:81:cd:2c:63:
58:45:3b:a6:d3:b1:b6:eb:4a:eb:4f:58:ac:26:31:
76:fd:5f:0a:42:b8:85:b8:82:65:35:5f:b4:32:a7:
54:5f:e2:9e:f3:ef:02:5b:2e:45:b0:02:37:2e:56:
bb:73:78:d0:6c:ae:2c:07:d7:f7:0a:70:57:f5:1c:
37:d9:6b:1d:d5:22:47:b0:79:70:73:5c:83:1e:25:
28:23:6c:c0:8d:78:64:0a:a2:b9:15:16:fb:af:3a:
e1:b4:4b:7a:71:00:53:1e:3b:6d:f5:b9:ef:b1:d4:
87:cf:8e:76:2c:7c:26:ed:c8:36:a2:92:51:14:5c:
3a:ba:b4:a7:d8:28:18:b5:27:cd:c1:c8:dd:ce:78:
b8:63:19:54:0b:40:b3:bc:19:5b:3c:b5:e8:f0:72:
cf:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:3D:30:DB:0E:92:D4:CB:FF:FE:B3:6F:7E:88:C9:E3:8A:68:2C:84
X509v3 Authority Key Identifier:
keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/ij0w2w6S1Mv__rNvfojJ44poLIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.84.0/22
Signature Algorithm: sha256WithRSAEncryption
70:ab:02:d4:83:4a:bd:22:fb:47:2f:76:59:e1:8e:2e:0f:a5:
6b:15:ab:ac:58:51:45:eb:61:a3:b9:42:7e:1b:e1:4a:72:3e:
39:88:8b:69:1d:4a:48:b9:d7:70:7b:8c:fa:9f:3c:c5:ac:e8:
2b:2c:a9:72:a9:27:63:da:e9:38:bc:9a:38:34:26:9a:4e:19:
ec:ef:28:72:e4:21:f7:2a:2c:a2:08:84:17:a8:6c:db:76:98:
3f:d3:41:14:48:40:f4:ae:87:e1:dd:51:83:04:3d:a9:dc:89:
07:b4:a2:de:ba:cb:59:b1:c9:4e:8c:f7:37:f6:4b:f1:42:7d:
a1:67:42:5f:76:86:43:b3:58:76:04:59:df:89:19:0b:e6:83:
7a:4f:da:55:ee:70:20:0a:1f:a7:1b:86:d1:2f:70:3b:2f:10:
05:c4:41:41:94:7a:fa:fd:01:ed:a7:7f:8f:55:05:ad:50:0b:
55:62:e4:5d:93:6b:7a:36:5a:ea:00:d0:bf:b4:06:f1:e6:c2:
a6:c0:b0:7a:84:fd:6c:e6:b0:69:61:f8:cd:48:29:e3:ec:05:
68:55:2f:6c:4d:0e:b1:a0:4c:f9:f8:86:e6:a6:a3:86:d4:cd:
0b:10:a1:aa:81:b3:0d:52:87:0c:98:70:3e:60:f2:4f:fb:98:
ff:6b:ec:71
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVteJl4y+YS8wshSUOReDNHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZDJjMjVkMDUzNGE0MDI3YzY5NTU2MmE4Y2U0ZjAwMWNk
NTM5NmYwHhcNMjMwMTAxMTMxNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTNkMzBkYjBlOTJkNGNiZmZmZWIzNmY3ZTg4YzllMzhhNjgyYzg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8XNYl8bYgvF9uBsB9W2KOq3/5qS
JbqqoXBPE1Phv3FZsi4lru09zDq23dXDGxuy6W7lFw2NpMmgHvPrwQuGHX3R0ZS1
mGDWmCqUS+sT3+/5p/v0LErznOSJRgZ4BN+tFq0AxYHNLGNYRTum07G260rrT1is
JjF2/V8KQriFuIJlNV+0MqdUX+Ke8+8CWy5FsAI3Lla7c3jQbK4sB9f3CnBX9Rw3
2Wsd1SJHsHlwc1yDHiUoI2zAjXhkCqK5FRb7rzrhtEt6cQBTHjtt9bnvsdSHz452
LHwm7cg2opJRFFw6urSn2CgYtSfNwcjdzni4YxlUC0CzvBlbPLXo8HLP/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIo9MNsOktTL//6zb36IyeOKaCyEMB8GA1UdIwQY
MBaAFGjSwl0FNKQCfGlVYqjOTwAc1TlvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEt
MTQ3OTdlYWM1MjJlLzEvaWowdzJ3NlMxTXZfX3JOdmZvako0NHBvTElRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEtMTQ3OTdlYWM1MjJl
LzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVpUMA0G
CSqGSIb3DQEBCwUAA4IBAQBwqwLUg0q9IvtHL3ZZ4Y4uD6VrFausWFFF62GjuUJ+
G+FKcj45iItpHUpIuddwe4z6nzzFrOgrLKlyqSdj2uk4vJo4NCaaThns7yhy5CH3
KiyiCIQXqGzbdpg/00EUSED0rofh3VGDBD2p3IkHtKLeustZsclOjPc39kvxQn2h
Z0JfdoZDs1h2BFnfiRkL5oN6T9pV7nAgCh+nG4bRL3A7LxAFxEFBlHr6/QHtp3+P
VQWtUAtVYuRdk2t6NlrqANC/tAbx5sKmwLB6hP1s5rBpYfjNSCnj7AVoVS9sTQ6x
oEz5+IbmpqOG1M0LEKGqgbMNUocMmHA+YPJP+5j/a+xx
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:16 2024 by rpki-client on console-fra.rpki-client.org