Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/6e1961-3da6-47c1-9b6d-dbb64a6835ad/1/SbHOO67vU85-lXtw4hftvIqnpf4.roa
File: SbHOO67vU85-lXtw4hftvIqnpf4.roa (raw, json)
Hash identifier: INKAmw02+cIaGYDJY8DhtEX1O+GUVlAVZiUKwz2AqGc=
Subject key identifier: 49:B1:CE:3B:AE:EF:53:CE:7E:95:7B:70:E2:17:ED:BC:8A:A7:A5:FE
Certificate issuer: /CN=18b889f0ddbb52801e2d2e7a2ebe1167cad34c06
Certificate serial: 0185720C64F11892D0C8B85A302221FE7442
Authority key identifier: 18:B8:89:F0:DD:BB:52:80:1E:2D:2E:7A:2E:BE:11:67:CA:D3:4C:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GLiJ8N27UoAeLS56Lr4RZ8rTTAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/6e1961-3da6-47c1-9b6d-dbb64a6835ad/1/SbHOO67vU85-lXtw4hftvIqnpf4.roa
Signing time: Mon 02 Jan 2023 10:34:52 +0000
ROA not before: Mon 02 Jan 2023 10:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 176.113.47.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:64:f1:18:92:d0:c8:b8:5a:30:22:21:fe:74:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18b889f0ddbb52801e2d2e7a2ebe1167cad34c06
Validity
Not Before: Jan 2 10:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49b1ce3baeef53ce7e957b70e217edbc8aa7a5fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:66:8d:e7:3f:42:4d:b5:85:6f:e2:92:ca:b3:
e3:6d:3c:69:c2:53:c1:ba:da:b1:7c:55:4b:b4:e8:
d3:74:ae:78:5a:85:0e:75:0c:29:7d:ca:ef:17:0f:
a7:d5:14:fd:76:91:89:0c:45:1e:be:0a:30:07:29:
44:6a:c5:2b:49:dd:41:c2:dc:fa:bc:aa:a4:c7:bc:
0e:d0:db:d8:4b:50:46:d4:ec:6e:4d:49:c0:5c:89:
88:c8:b2:19:4d:aa:bd:fd:47:8e:10:5d:f0:20:ae:
8d:70:de:8d:01:f8:30:04:4a:39:8b:01:45:28:a5:
6e:e0:94:47:73:90:a7:2c:2f:cd:aa:04:4d:c1:a2:
4b:e8:55:b5:da:bc:c5:0e:30:74:b1:21:87:59:24:
b8:ee:4d:4c:9e:36:48:b2:02:38:d5:22:6b:44:d9:
80:2f:54:84:33:f4:34:05:18:d6:95:6b:4c:46:d7:
ae:9c:77:bf:db:d7:59:64:bf:8b:70:07:7b:99:63:
ad:aa:67:b9:14:b9:21:5e:f5:9f:66:7b:89:d2:f6:
7f:6e:2c:9a:b0:8c:8b:6c:ed:f6:bf:87:86:eb:d2:
18:51:0e:5b:ce:87:f8:69:96:91:aa:8f:17:5c:b0:
a3:34:3a:6e:c5:d5:a5:2b:d4:9e:4f:31:90:9e:66:
18:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B1:CE:3B:AE:EF:53:CE:7E:95:7B:70:E2:17:ED:BC:8A:A7:A5:FE
X509v3 Authority Key Identifier:
keyid:18:B8:89:F0:DD:BB:52:80:1E:2D:2E:7A:2E:BE:11:67:CA:D3:4C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GLiJ8N27UoAeLS56Lr4RZ8rTTAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/6e1961-3da6-47c1-9b6d-dbb64a6835ad/1/SbHOO67vU85-lXtw4hftvIqnpf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/6e1961-3da6-47c1-9b6d-dbb64a6835ad/1/GLiJ8N27UoAeLS56Lr4RZ8rTTAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.47.0/24
Signature Algorithm: sha256WithRSAEncryption
73:be:c6:93:d7:d4:77:9d:5f:a9:4e:dc:61:1e:88:6f:b3:8b:
50:bc:85:78:b8:04:cd:c3:c6:e2:ca:94:18:98:b7:d9:ff:2f:
02:05:7e:43:70:24:2d:58:f7:00:49:30:12:2f:aa:65:df:b0:
1d:60:c4:03:d1:ed:e4:b0:3e:98:f9:ea:b7:ab:55:6e:f6:60:
40:ce:6d:e1:bb:e7:75:55:f8:7c:be:02:6a:3a:de:48:48:0d:
ea:c5:5b:29:30:02:60:ee:be:94:6e:1f:dc:fa:31:01:7e:f6:
3d:ed:f0:f9:0c:69:e0:a1:34:31:d5:25:37:46:83:b0:fb:78:
9e:91:b5:77:18:d9:40:52:ad:5f:83:67:bd:db:69:64:10:46:
e5:bd:59:ca:2a:f2:6c:94:7a:6d:19:f5:ab:38:ff:c9:50:94:
87:6c:97:21:32:39:09:81:1c:72:b2:f7:79:43:14:89:6a:ef:
39:df:f4:5a:66:a0:b8:76:3d:17:67:0a:ce:eb:8e:99:30:a7:
10:5d:69:54:ed:bd:be:56:d0:e3:13:31:fb:87:53:bc:ed:2c:
07:fd:a3:9d:0e:e5:45:95:b0:3f:2b:1d:81:18:ad:be:40:02:
21:18:19:6d:27:3a:d9:a7:a3:3a:58:2b:2e:1e:ec:12:59:3a:
8b:6a:8a:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyDGTxGJLQyLhaMCIh/nRCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4Yjg4OWYwZGRiYjUyODAxZTJkMmU3YTJlYmUxMTY3Y2Fk
MzRjMDYwHhcNMjMwMTAyMTAzNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWIxY2UzYmFlZWY1M2NlN2U5NTdiNzBlMjE3ZWRiYzhhYTdhNWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2aN5z9CTbWFb+KSyrPjbTxpwlPB
utqxfFVLtOjTdK54WoUOdQwpfcrvFw+n1RT9dpGJDEUevgowBylEasUrSd1Bwtz6
vKqkx7wO0NvYS1BG1OxuTUnAXImIyLIZTaq9/UeOEF3wIK6NcN6NAfgwBEo5iwFF
KKVu4JRHc5CnLC/NqgRNwaJL6FW12rzFDjB0sSGHWSS47k1MnjZIsgI41SJrRNmA
L1SEM/Q0BRjWlWtMRteunHe/29dZZL+LcAd7mWOtqme5FLkhXvWfZnuJ0vZ/biya
sIyLbO32v4eG69IYUQ5bzof4aZaRqo8XXLCjNDpuxdWlK9SeTzGQnmYYdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEmxzjuu71POfpV7cOIX7byKp6X+MB8GA1UdIwQY
MBaAFBi4ifDdu1KAHi0uei6+EWfK00wGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0xpSjhOMjdVb0FlTFM1NkxyNFJaOHJUVEFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC82ZTE5NjEtM2RhNi00N2MxLTliNmQt
ZGJiNjRhNjgzNWFkLzEvU2JIT082N3ZVODUtbFh0dzRoZnR2SXFucGY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC82ZTE5NjEtM2RhNi00N2MxLTliNmQtZGJiNjRhNjgzNWFk
LzEvR0xpSjhOMjdVb0FlTFM1NkxyNFJaOHJUVEFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHEvMA0G
CSqGSIb3DQEBCwUAA4IBAQBzvsaT19R3nV+pTtxhHohvs4tQvIV4uATNw8biypQY
mLfZ/y8CBX5DcCQtWPcASTASL6pl37AdYMQD0e3ksD6Y+eq3q1Vu9mBAzm3hu+d1
Vfh8vgJqOt5ISA3qxVspMAJg7r6Ubh/c+jEBfvY97fD5DGngoTQx1SU3RoOw+3ie
kbV3GNlAUq1fg2e922lkEEblvVnKKvJslHptGfWrOP/JUJSHbJchMjkJgRxysvd5
QxSJau853/RaZqC4dj0XZwrO646ZMKcQXWlU7b2+VtDjEzH7h1O87SwH/aOdDuVF
lbA/Kx2BGK2+QAIhGBltJzrZp6M6WCsuHuwSWTqLaop2
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:37 2024 by rpki-client on console-ams.rpki-client.org