Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/_VAanLQm1M550Oy0ozSmQwPMsrc.roa
File: _VAanLQm1M550Oy0ozSmQwPMsrc.roa (raw, json)
Hash identifier: zII9DUIXabOE4t1urFRGUSSPAQQe7Lr4d3R9anirYZ8=
Subject key identifier: FD:50:1A:9C:B4:26:D4:CE:79:D0:EC:B4:A3:34:A6:43:03:CC:B2:B7
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01889B7F3C24E7CCA2F23D655056E34BD264
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/_VAanLQm1M550Oy0ozSmQwPMsrc.roa
Signing time: Thu 08 Jun 2023 14:53:06 +0000
ROA not before: Thu 08 Jun 2023 14:53:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50225
IP address blocks: 2.56.108.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9b:7f:3c:24:e7:cc:a2:f2:3d:65:50:56:e3:4b:d2:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jun 8 14:53:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd501a9cb426d4ce79d0ecb4a334a64303ccb2b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e6:54:06:09:d6:60:21:ef:21:12:36:f3:41:
1f:f4:01:64:31:50:7e:de:ed:a2:a3:e2:a5:e6:a5:
e6:73:c6:ee:2e:6f:c6:3f:96:04:e3:c9:1b:e4:0d:
3e:0c:e4:8f:8b:98:7d:27:2d:af:0f:e1:5e:8b:53:
4c:77:24:bd:03:27:6a:9d:88:c2:3d:6c:2b:c4:13:
ad:ae:e2:46:b6:a5:73:92:83:6d:34:f3:ed:35:14:
1b:9e:60:fd:e2:a2:92:8d:b3:5a:1c:73:c3:0f:9e:
11:88:6f:66:82:43:f7:07:9c:e5:94:2a:de:da:41:
2a:db:e4:0c:ee:86:bc:1c:76:94:c5:ca:c0:f7:42:
32:64:9b:ed:b8:49:93:50:3e:0f:bf:28:fb:a2:5a:
b8:c9:61:94:58:9b:b4:02:4e:71:f2:bc:aa:06:ea:
f1:23:4a:01:af:48:f2:5a:b6:82:0f:1c:ea:55:50:
c2:c1:d3:2a:d5:e8:5d:1e:2d:ef:50:a4:4f:46:a8:
c3:11:7a:ba:e9:8d:c3:3e:4e:c9:3e:e1:f6:cf:96:
3e:76:78:9d:61:c2:3f:86:84:34:db:f9:01:35:bc:
58:20:ff:83:34:59:ac:85:3c:9d:5f:69:66:1b:d5:
cf:02:92:d7:22:9d:fc:1d:09:c4:9b:0e:bd:79:bf:
5b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:50:1A:9C:B4:26:D4:CE:79:D0:EC:B4:A3:34:A6:43:03:CC:B2:B7
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/_VAanLQm1M550Oy0ozSmQwPMsrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:52:91:0e:cb:ad:b0:3e:af:e6:cb:cb:dd:57:fc:ae:fe:49:
05:27:b1:2b:05:22:de:59:7d:89:4f:3a:aa:8f:e6:f2:fa:d4:
22:65:95:db:81:91:83:f8:ff:ef:44:41:fa:40:0f:3c:18:b8:
86:9b:25:6c:2b:c6:88:41:64:0d:9c:80:e6:f2:8e:80:9b:a3:
1f:6d:bb:52:c0:91:a4:43:dc:0a:60:34:64:82:5b:89:1f:fd:
f4:12:7d:c3:2f:0f:87:7e:dd:e2:f1:69:fb:94:31:85:fe:d4:
36:0d:26:1a:22:56:72:fa:fc:6c:d6:39:07:ab:5c:f2:51:f3:
c8:ac:b5:30:99:6e:0d:b0:17:b6:b7:4a:b3:7b:fd:c8:00:7d:
4f:a7:3e:d9:a3:77:29:b6:d7:ac:b5:72:9b:c8:04:7f:9a:13:
a3:5b:1b:1e:e8:12:7d:08:e7:38:a7:d8:e4:3f:9c:73:f2:9f:
5d:9b:15:bc:2d:32:df:19:2a:ad:59:d0:ea:1e:19:9d:84:17:
c4:fb:df:53:18:a4:26:e6:8f:7a:77:48:d6:a5:35:d0:9f:9c:
e1:6f:96:30:d4:05:b0:8f:e1:6e:bd:43:17:53:8c:e2:cc:4c:
9d:1a:53:8a:88:4d:54:a5:01:73:28:97:90:b9:bf:10:52:f9:
66:c9:ef:7d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYibfzwk58yi8j1lUFbjS9JkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjMwNjA4MTQ1MzA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDUwMWE5Y2I0MjZkNGNlNzlkMGVjYjRhMzM0YTY0MzAzY2NiMmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+ZUBgnWYCHvIRI280Ef9AFkMVB+
3u2io+Kl5qXmc8buLm/GP5YE48kb5A0+DOSPi5h9Jy2vD+Fei1NMdyS9AydqnYjC
PWwrxBOtruJGtqVzkoNtNPPtNRQbnmD94qKSjbNaHHPDD54RiG9mgkP3B5zllCre
2kEq2+QM7oa8HHaUxcrA90IyZJvtuEmTUD4Pvyj7olq4yWGUWJu0Ak5x8ryqBurx
I0oBr0jyWraCDxzqVVDCwdMq1ehdHi3vUKRPRqjDEXq66Y3DPk7JPuH2z5Y+dnid
YcI/hoQ02/kBNbxYIP+DNFmshTydX2lmG9XPApLXIp38HQnEmw69eb9bdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP1QGpy0JtTOedDstKM0pkMDzLK3MB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvX1ZBYW5MUW0xTTU1ME95MG96U21Rd1BNc3JjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCAjhsMA0G
CSqGSIb3DQEBCwUAA4IBAQCkUpEOy62wPq/my8vdV/yu/kkFJ7ErBSLeWX2JTzqq
j+by+tQiZZXbgZGD+P/vREH6QA88GLiGmyVsK8aIQWQNnIDm8o6Am6MfbbtSwJGk
Q9wKYDRkgluJH/30En3DLw+Hft3i8Wn7lDGF/tQ2DSYaIlZy+vxs1jkHq1zyUfPI
rLUwmW4NsBe2t0qze/3IAH1Ppz7Zo3cpttestXKbyAR/mhOjWxse6BJ9COc4p9jk
P5xz8p9dmxW8LTLfGSqtWdDqHhmdhBfE+99TGKQm5o96d0jWpTXQn5zhb5Yw1AWw
j+FuvUMXU4zizEydGlOKiE1UpQFzKJeQub8QUvlmye99
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org