Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/jTvrc8n1FmSWVdVMj9D0c_0ywg0.roa
File: jTvrc8n1FmSWVdVMj9D0c_0ywg0.roa (raw, json)
Hash identifier: ipy/nSxIssd6JWnkNvwRq0joMxr2zfALB42lw2CqG+s=
Subject key identifier: 8D:3B:EB:73:C9:F5:16:64:96:55:D5:4C:8F:D0:F4:73:FD:32:C2:0D
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185739001F8AD9AABE5659A1FBFE6E1200A
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/jTvrc8n1FmSWVdVMj9D0c_0ywg0.roa
Signing time: Mon 02 Jan 2023 17:38:15 +0000
ROA not before: Mon 02 Jan 2023 17:38:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207837
IP address blocks: 185.227.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 Mar 2023 20:43:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:90:01:f8:ad:9a:ab:e5:65:9a:1f:bf:e6:e1:20:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d3beb73c9f516649655d54c8fd0f473fd32c20d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f6:1a:4a:5a:b5:4f:fb:f9:fe:dd:e6:c7:49:
e6:17:61:54:2c:00:87:9f:8e:d2:32:ec:10:33:b7:
c7:82:67:b9:93:df:1c:0a:e7:df:92:af:32:37:cb:
b6:5e:28:28:ac:a3:73:5c:90:dc:6f:82:72:b5:c5:
2c:a9:13:01:a0:3b:42:be:ec:4f:8a:cb:7e:1d:2b:
b9:5e:d0:78:3a:c2:96:a1:9b:47:e3:a0:3d:34:80:
35:c2:68:0e:fe:a2:d7:97:d1:64:d9:d0:09:8c:81:
3b:fc:1c:67:a2:f1:c0:5e:b9:ab:46:46:51:f2:d8:
84:03:f2:ac:1e:fe:eb:9b:87:71:c1:3c:03:ea:16:
af:a4:01:84:b0:46:99:30:58:89:4e:e4:c4:72:01:
67:4c:dc:f7:4f:aa:6a:8a:7c:c7:a7:00:eb:cc:63:
31:66:4c:2a:87:6d:2a:6b:a0:8e:76:b3:5f:31:10:
1e:e5:57:94:12:15:8e:20:55:bb:7b:49:27:27:39:
5e:28:c1:24:aa:42:c9:e9:f0:12:2d:7c:31:fb:fb:
63:dd:9d:9d:fb:93:8f:13:0c:7f:a8:6d:b1:23:ee:
78:98:bf:46:49:fe:e9:49:e8:f8:d9:35:0f:79:c4:
a8:1c:e1:5a:62:c4:a2:85:07:8e:58:f8:17:10:33:
33:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:3B:EB:73:C9:F5:16:64:96:55:D5:4C:8F:D0:F4:73:FD:32:C2:0D
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/jTvrc8n1FmSWVdVMj9D0c_0ywg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.71.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:c0:b6:b7:80:6b:d8:d5:b1:ab:28:24:a9:c9:60:97:16:e5:
3d:f3:8c:8a:be:76:51:6b:2b:ee:0f:c8:20:4d:dd:43:ef:23:
e2:f1:ed:1e:f5:d7:c1:39:69:9a:e2:02:3e:66:71:6b:89:5b:
4d:c4:22:a4:8f:3d:81:ca:8c:42:4e:7e:fe:bf:3c:c6:31:f7:
7c:69:8c:4a:93:a0:eb:54:79:04:69:7d:b6:b7:9e:34:42:6a:
91:4f:ff:a9:9f:93:6f:d4:ca:a1:2f:da:d1:b8:28:02:5a:f8:
28:33:c4:bf:21:32:59:73:68:e3:c2:01:1e:07:fa:1d:c6:f4:
6c:a5:40:27:fd:8e:29:07:78:eb:7f:1b:27:53:50:94:2b:9e:
6a:6d:79:a1:a2:69:89:61:11:e5:ab:50:11:4b:03:a2:ac:f4:
9c:30:13:03:b2:a2:3e:13:25:bb:02:36:bb:b8:e4:49:e9:f5:
e5:aa:00:8e:8e:13:35:ab:ce:6a:94:60:83:0a:b3:27:20:41:
04:38:49:97:e3:2f:d0:c2:60:5b:13:05:10:aa:c7:0f:e8:c3:
b9:dc:1e:09:58:c5:b8:f6:14:59:cb:1c:16:1c:79:fa:0f:41:
dd:ff:9e:c4:ab:82:ad:69:df:7d:ae:72:e8:22:60:07:70:16:
91:5e:d2:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzkAH4rZqr5WWaH7/m4SAKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjMwMTAyMTczODE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDNiZWI3M2M5ZjUxNjY0OTY1NWQ1NGM4ZmQwZjQ3M2ZkMzJjMjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPYaSlq1T/v5/t3mx0nmF2FULACH
n47SMuwQM7fHgme5k98cCuffkq8yN8u2XigorKNzXJDcb4JytcUsqRMBoDtCvuxP
ist+HSu5XtB4OsKWoZtH46A9NIA1wmgO/qLXl9Fk2dAJjIE7/BxnovHAXrmrRkZR
8tiEA/KsHv7rm4dxwTwD6havpAGEsEaZMFiJTuTEcgFnTNz3T6pqinzHpwDrzGMx
Zkwqh20qa6COdrNfMRAe5VeUEhWOIFW7e0knJzleKMEkqkLJ6fASLXwx+/tj3Z2d
+5OPEwx/qG2xI+54mL9GSf7pSej42TUPecSoHOFaYsSihQeOWPgXEDMzOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI0763PJ9RZkllXVTI/Q9HP9MsINMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvalR2cmM4bjFGbVNXVmRWTWo5RDBjXzB5d2cwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueNHMA0G
CSqGSIb3DQEBCwUAA4IBAQCawLa3gGvY1bGrKCSpyWCXFuU984yKvnZRayvuD8gg
Td1D7yPi8e0e9dfBOWma4gI+ZnFriVtNxCKkjz2ByoxCTn7+vzzGMfd8aYxKk6Dr
VHkEaX22t540QmqRT/+pn5Nv1MqhL9rRuCgCWvgoM8S/ITJZc2jjwgEeB/odxvRs
pUAn/Y4pB3jrfxsnU1CUK55qbXmhommJYRHlq1ARSwOirPScMBMDsqI+EyW7Aja7
uORJ6fXlqgCOjhM1q85qlGCDCrMnIEEEOEmX4y/QwmBbEwUQqscP6MO53B4JWMW4
9hRZyxwWHHn6D0Hd/57Eq4Ktad99rnLoImAHcBaRXtIs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org