Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/x_mvFapvY45izjo1GszflIpxHQk.roa
File: x_mvFapvY45izjo1GszflIpxHQk.roa (raw, json)
Hash identifier: NOTMtuZjTYHVkFo3w7K3W/+2UwjvS+G/Qw/maDQ5pNs=
Subject key identifier: C7:F9:AF:15:AA:6F:63:8E:62:CE:3A:35:1A:CC:DF:94:8A:71:1D:09
Certificate issuer: /CN=2e0a9333f93cca544fdabe2ea7a6738a54af759e
Certificate serial: 018BB5E61710EB46CEA0FD6A497CC03482D8
Authority key identifier: 2E:0A:93:33:F9:3C:CA:54:4F:DA:BE:2E:A7:A6:73:8A:54:AF:75:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LgqTM_k8ylRP2r4up6ZzilSvdZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/x_mvFapvY45izjo1GszflIpxHQk.roa
Signing time: Thu 09 Nov 2023 21:03:57 +0000
ROA not before: Thu 09 Nov 2023 21:03:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56582
IP address blocks: 185.23.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 Nov 2023 16:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b5:e6:17:10:eb:46:ce:a0:fd:6a:49:7c:c0:34:82:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0a9333f93cca544fdabe2ea7a6738a54af759e
Validity
Not Before: Nov 9 21:03:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7f9af15aa6f638e62ce3a351accdf948a711d09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c4:8b:b1:f6:05:09:d9:17:9c:6a:29:41:a2:
8f:d0:ca:8a:b1:08:31:de:ba:2a:1e:ce:02:d9:96:
21:ce:e1:4b:0a:59:e3:db:bf:a3:93:9a:a9:33:9d:
a8:a7:49:7d:d6:50:36:ee:74:6a:e3:d0:9d:f1:32:
e7:39:3f:04:5b:14:58:8d:ca:23:4d:f2:3a:8a:26:
ac:43:61:ad:8a:f3:9d:1f:b0:92:04:f5:90:eb:67:
7b:14:83:81:4b:94:5b:a4:65:ce:ec:7f:ee:27:76:
24:ed:ab:5b:f5:26:98:2d:8d:47:d5:d0:3b:21:27:
0f:d5:7c:76:6b:e0:66:56:e3:bb:98:ea:b2:a8:a0:
5e:6f:78:2f:b6:77:62:06:39:fd:5b:76:b1:ff:68:
a8:56:ff:52:65:5c:10:b2:0a:99:f6:1d:7e:78:50:
49:c7:7b:6d:d5:d1:28:c8:e0:e0:6a:99:1e:98:70:
8b:fa:57:e0:b6:9a:98:d3:e0:be:7d:62:32:05:d0:
9a:a4:bf:bb:13:83:bd:ba:91:04:58:0c:1d:d3:cd:
9c:d8:17:b0:e5:e5:15:36:1a:2b:ca:d7:e3:d3:29:
c1:8c:33:d4:b9:fe:bc:9d:8b:62:9e:8d:06:31:91:
22:26:d6:33:3a:a4:b0:23:af:7c:4e:25:6f:cb:35:
d4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:F9:AF:15:AA:6F:63:8E:62:CE:3A:35:1A:CC:DF:94:8A:71:1D:09
X509v3 Authority Key Identifier:
keyid:2E:0A:93:33:F9:3C:CA:54:4F:DA:BE:2E:A7:A6:73:8A:54:AF:75:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LgqTM_k8ylRP2r4up6ZzilSvdZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/x_mvFapvY45izjo1GszflIpxHQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LgqTM_k8ylRP2r4up6ZzilSvdZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.73.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:3b:39:19:e4:02:fb:0f:15:c0:16:e9:09:ca:10:04:c7:96:
43:27:d8:33:2c:32:89:7a:0f:a9:51:55:7a:a5:99:03:af:65:
20:b7:ed:06:ad:5a:b7:80:19:ba:72:77:56:66:d1:a4:a1:4c:
b7:30:e1:4e:7f:28:52:8f:1e:92:70:31:ac:8f:00:05:ff:ff:
cb:1a:07:a5:79:72:1c:28:b7:14:9f:13:23:a4:d8:3b:dd:8f:
dc:34:16:a8:4d:4e:de:7f:a9:84:9b:f4:55:f4:e5:02:71:f3:
f6:46:b8:14:8d:b5:83:23:0c:58:1c:77:76:1f:88:db:a1:11:
70:04:27:e1:79:7c:ef:fe:4d:bf:59:fe:9b:03:b5:e7:e4:ad:
fe:82:cb:c9:44:70:63:d7:84:91:dc:5e:9c:b5:53:53:93:21:
93:c2:0f:6e:ca:7d:68:fd:49:91:db:65:73:85:c2:80:16:8e:
bf:21:68:07:f3:7a:f9:d1:82:86:d1:6a:5b:f7:e9:7b:23:6b:
b2:03:b7:3f:a1:b0:54:57:ac:f6:c7:19:45:dc:2d:8c:a7:f0:
6b:23:a6:fc:6f:eb:74:26:3f:e9:e0:82:77:26:63:40:88:52:
54:d4:6f:9d:c9:25:b3:cb:bf:c8:de:4d:65:56:35:56:39:3c:
32:b0:19:25
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYu15hcQ60bOoP1qSXzANILYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlMGE5MzMzZjkzY2NhNTQ0ZmRhYmUyZWE3YTY3MzhhNTRh
Zjc1OWUwHhcNMjMxMTA5MjEwMzU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjN2Y5YWYxNWFhNmY2MzhlNjJjZTNhMzUxYWNjZGY5NDhhNzExZDA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8SLsfYFCdkXnGopQaKP0MqKsQgx
3roqHs4C2ZYhzuFLClnj27+jk5qpM52op0l91lA27nRq49Cd8TLnOT8EWxRYjcoj
TfI6iiasQ2GtivOdH7CSBPWQ62d7FIOBS5RbpGXO7H/uJ3Yk7atb9SaYLY1H1dA7
IScP1Xx2a+BmVuO7mOqyqKBeb3gvtndiBjn9W3ax/2ioVv9SZVwQsgqZ9h1+eFBJ
x3tt1dEoyODgapkemHCL+lfgtpqY0+C+fWIyBdCapL+7E4O9upEEWAwd082c2Bew
5eUVNhorytfj0ynBjDPUuf68nYtino0GMZEiJtYzOqSwI698TiVvyzXUmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMf5rxWqb2OOYs46NRrM35SKcR0JMB8GA1UdIwQY
MBaAFC4KkzP5PMpUT9q+Lqemc4pUr3WeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGdxVE1fazh5bFJQMnI0dXA2WnppbFN2ZFo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9hNGQwOWYtMjlkZi00NGVhLWE3YjEt
MGEwYWFlYWVlNGYxLzEveF9tdkZhcHZZNDVpempvMUdzemZsSXB4SFFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9hNGQwOWYtMjlkZi00NGVhLWE3YjEtMGEwYWFlYWVlNGYx
LzEvTGdxVE1fazh5bFJQMnI0dXA2WnppbFN2ZFo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRdJMA0G
CSqGSIb3DQEBCwUAA4IBAQC/OzkZ5AL7DxXAFukJyhAEx5ZDJ9gzLDKJeg+pUVV6
pZkDr2Ugt+0GrVq3gBm6cndWZtGkoUy3MOFOfyhSjx6ScDGsjwAF///LGgeleXIc
KLcUnxMjpNg73Y/cNBaoTU7ef6mEm/RV9OUCcfP2RrgUjbWDIwxYHHd2H4jboRFw
BCfheXzv/k2/Wf6bA7Xn5K3+gsvJRHBj14SR3F6ctVNTkyGTwg9uyn1o/UmR22Vz
hcKAFo6/IWgH83r50YKG0Wpb9+l7I2uyA7c/obBUV6z2xxlF3C2Mp/BrI6b8b+t0
Jj/p4IJ3JmNAiFJU1G+dySWzy7/I3k1lVjVWOTwysBkl
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:35 2024 by rpki-client on console-ams.rpki-client.org