Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/gZIgQu5JxoM3Gqfc-o89UQsKcWo.roa
File: gZIgQu5JxoM3Gqfc-o89UQsKcWo.roa (raw, json)
Hash identifier: 1N7er3uGeBtXC0H1kGxfEo9VPUyXMhXMF4HSZtdrkKs=
Subject key identifier: 81:92:20:42:EE:49:C6:83:37:1A:A7:DC:FA:8F:3D:51:0B:0A:71:6A
Certificate issuer: /CN=d730a29941efbc7a7927f029481e2c725a1a6711
Certificate serial: 01856D818F2CFF2C6E54BCA046B8831E7D73
Authority key identifier: D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/gZIgQu5JxoM3Gqfc-o89UQsKcWo.roa
Signing time: Sun 01 Jan 2023 13:24:45 +0000
ROA not before: Sun 01 Jan 2023 13:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200069
IP address blocks: 185.250.236.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:8f:2c:ff:2c:6e:54:bc:a0:46:b8:83:1e:7d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d730a29941efbc7a7927f029481e2c725a1a6711
Validity
Not Before: Jan 1 13:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81922042ee49c683371aa7dcfa8f3d510b0a716a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d7:52:21:e9:4b:63:d4:95:26:c8:e7:16:4f:
c7:a0:c5:a9:50:72:3a:88:55:69:a3:93:1f:d1:24:
da:f3:ac:67:94:9e:08:ba:eb:da:92:3a:59:57:30:
11:0c:74:a8:bc:63:c0:24:d6:cd:63:e0:28:4d:c8:
fa:f9:65:74:93:81:33:3a:ef:8d:59:ce:ff:79:55:
1f:c3:09:3a:15:af:20:68:3e:66:6e:21:fe:8a:e5:
6a:68:ab:2f:cd:6b:95:a1:80:35:f9:b3:90:59:46:
9f:12:60:db:84:17:56:84:69:2f:6e:db:ef:91:20:
90:9b:1b:68:c9:db:ac:4d:39:51:56:5a:8c:2c:ef:
f4:84:98:aa:0a:cf:63:04:b5:cd:55:5f:08:78:2e:
20:2d:74:5f:fe:3c:79:77:3e:dc:9d:64:17:db:f6:
30:62:46:74:33:94:eb:a4:50:5a:3b:a4:b7:be:d2:
9c:3f:14:8c:4f:06:03:08:88:64:90:1d:62:ad:21:
95:bf:53:6e:7b:2a:c3:07:85:db:a3:35:9d:5b:b9:
fa:14:01:44:03:bc:cf:cd:14:5c:52:29:7c:30:9c:
53:10:c8:8e:da:04:bc:e2:3d:d8:2a:3b:4a:47:08:
61:fa:2f:9c:a8:55:c4:0e:4a:be:26:18:5d:10:a5:
87:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:92:20:42:EE:49:C6:83:37:1A:A7:DC:FA:8F:3D:51:0B:0A:71:6A
X509v3 Authority Key Identifier:
keyid:D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/gZIgQu5JxoM3Gqfc-o89UQsKcWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.236.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:27:ef:b0:48:94:e3:39:69:45:b3:a5:a1:96:01:61:67:30:
62:0c:e5:94:cf:c1:c1:f5:f6:3c:84:a7:fd:a9:85:45:82:81:
37:c2:df:9b:19:4b:72:c0:74:31:3f:8c:ff:d6:95:8d:95:ef:
12:2e:f3:5d:ec:e9:a2:42:24:71:dd:82:4d:b9:c3:d6:90:7d:
0b:2c:0a:cc:17:46:0f:73:b1:59:7e:de:55:4f:5f:67:68:7f:
d7:2c:1f:8a:0a:e2:87:14:88:ac:f4:4e:e8:ea:b5:1f:e1:58:
71:59:f5:0d:33:36:8e:3a:47:d1:1e:02:8d:ce:a3:ef:28:7a:
a9:f1:09:d1:18:3c:d3:f5:0f:0f:66:1e:a6:15:ee:91:af:15:
d7:2c:6b:ef:ec:cf:e7:3b:38:b5:ad:2b:f3:12:33:96:a1:96:
09:9a:54:0a:c3:d6:40:6a:91:1e:8d:33:53:1f:ac:66:83:ff:
33:15:33:74:57:1b:a3:b6:bd:51:69:40:bf:2d:71:73:f1:34:
b4:6c:18:b4:bf:3e:21:0a:05:7b:c7:9d:bb:7a:e6:75:41:e3:
92:4c:25:20:09:5c:cf:32:eb:5f:a3:40:d4:45:ff:9e:4a:aa:
40:8f:14:8f:26:d3:00:dc:18:a0:68:58:e8:8c:ed:49:9b:ee:
c8:1d:30:9d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtgY8s/yxuVLygRriDHn1zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3MzBhMjk5NDFlZmJjN2E3OTI3ZjAyOTQ4MWUyYzcyNWEx
YTY3MTEwHhcNMjMwMTAxMTMyNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTkyMjA0MmVlNDljNjgzMzcxYWE3ZGNmYThmM2Q1MTBiMGE3MTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArddSIelLY9SVJsjnFk/HoMWpUHI6
iFVpo5Mf0STa86xnlJ4IuuvakjpZVzARDHSovGPAJNbNY+AoTcj6+WV0k4EzOu+N
Wc7/eVUfwwk6Fa8gaD5mbiH+iuVqaKsvzWuVoYA1+bOQWUafEmDbhBdWhGkvbtvv
kSCQmxtoydusTTlRVlqMLO/0hJiqCs9jBLXNVV8IeC4gLXRf/jx5dz7cnWQX2/Yw
YkZ0M5TrpFBaO6S3vtKcPxSMTwYDCIhkkB1irSGVv1NueyrDB4XbozWdW7n6FAFE
A7zPzRRcUil8MJxTEMiO2gS84j3YKjtKRwhh+i+cqFXEDkq+JhhdEKWHKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIGSIELuScaDNxqn3PqPPVELCnFqMB8GA1UdIwQY
MBaAFNcwoplB77x6eSfwKUgeLHJaGmcRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi82NGM1YTktYjM3OS00OTk5LWFmN2Et
M2MwZmExOGM1OGNiLzEvZ1pJZ1F1NUp4b00zR3FmYy1vODlVUXNLY1dvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi82NGM1YTktYjM3OS00OTk5LWFmN2EtM2MwZmExOGM1OGNi
LzEvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufrsMA0G
CSqGSIb3DQEBCwUAA4IBAQDQJ++wSJTjOWlFs6WhlgFhZzBiDOWUz8HB9fY8hKf9
qYVFgoE3wt+bGUtywHQxP4z/1pWNle8SLvNd7OmiQiRx3YJNucPWkH0LLArMF0YP
c7FZft5VT19naH/XLB+KCuKHFIis9E7o6rUf4VhxWfUNMzaOOkfRHgKNzqPvKHqp
8QnRGDzT9Q8PZh6mFe6RrxXXLGvv7M/nOzi1rSvzEjOWoZYJmlQKw9ZAapEejTNT
H6xmg/8zFTN0Vxujtr1RaUC/LXFz8TS0bBi0vz4hCgV7x527euZ1QeOSTCUgCVzP
Mutfo0DURf+eSqpAjxSPJtMA3BigaFjojO1Jm+7IHTCd
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:21 2024 by rpki-client on console-fra.rpki-client.org