Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/xIVq331lr_ChpP_hel6ZhAmwO-g.roa
File: xIVq331lr_ChpP_hel6ZhAmwO-g.roa (raw, json)
Hash identifier: SA/WP/aVZjujce5jD8HXiPjPHfjpjZagSWNPXKF9vhw=
Subject key identifier: C4:85:6A:DF:7D:65:AF:F0:A1:A4:FF:E1:7A:5E:99:84:09:B0:3B:E8
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0187BA5F52EA90548BF845B7632CA46F0BE8
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/xIVq331lr_ChpP_hel6ZhAmwO-g.roa
Signing time: Tue 25 Apr 2023 21:43:41 +0000
ROA not before: Tue 25 Apr 2023 21:43:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8103
IP address blocks: 185.242.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ba:5f:52:ea:90:54:8b:f8:45:b7:63:2c:a4:6f:0b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Apr 25 21:43:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4856adf7d65aff0a1a4ffe17a5e998409b03be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:20:a9:d6:96:1c:8d:e3:2e:0d:72:77:96:09:
5c:6f:ab:43:9b:a0:ac:34:fb:d1:3a:4a:bd:6e:0f:
5d:a7:05:bb:5d:be:21:cd:85:bb:3b:00:9b:f1:b3:
db:57:f8:3a:48:44:e6:0d:70:d7:2d:73:ab:e1:b6:
c2:13:78:3c:76:9e:02:14:22:59:f4:62:1f:aa:2e:
bf:59:55:35:c9:43:2a:66:0f:8d:4a:7f:82:3d:2a:
29:ab:36:8a:74:be:90:64:77:27:65:e8:f9:5f:47:
20:67:41:56:a0:5e:69:7c:5a:39:97:a6:79:d5:68:
89:b5:ff:1c:73:de:25:93:24:c4:e8:c6:d1:d5:86:
e8:27:e5:43:2c:19:d3:16:8f:d8:ae:e0:40:7e:c8:
db:47:46:05:45:62:9c:f6:9d:bb:e9:14:a4:85:6a:
5c:17:87:af:b4:a9:bc:7c:ad:9c:a9:6f:93:44:90:
e8:99:b6:ac:a9:50:c4:20:36:bb:79:1e:2a:fd:65:
a9:d8:60:5d:f8:94:78:7f:cc:cd:ba:89:1e:94:b1:
dc:bb:44:5e:ef:6d:8a:81:89:71:16:cb:a8:7e:4a:
0f:d2:34:22:ef:3d:ab:01:46:4b:62:aa:63:40:b8:
db:52:93:3f:65:3b:f9:0f:1a:ba:9b:3b:c5:47:95:
30:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:85:6A:DF:7D:65:AF:F0:A1:A4:FF:E1:7A:5E:99:84:09:B0:3B:E8
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/xIVq331lr_ChpP_hel6ZhAmwO-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.225.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:6b:a7:0a:52:27:60:94:ba:ad:54:35:d7:67:e6:49:14:93:
7a:b0:88:05:c4:c0:b7:18:23:2a:c4:61:a0:33:54:5b:d7:17:
9c:c3:d7:da:3f:de:15:e5:47:6d:b9:fe:51:e2:52:04:d4:c5:
f8:d9:24:6f:4a:c7:f1:ca:e4:d1:21:67:28:2c:aa:10:c7:b2:
1d:31:0a:0c:17:ad:0a:55:ec:ca:d5:4a:84:2f:af:51:b9:b5:
9c:82:cb:32:46:ea:df:71:5d:a6:28:98:27:27:f3:12:d5:c7:
99:a5:b9:86:43:27:dd:3a:c5:24:ae:16:e0:4b:1e:fc:4c:35:
16:51:f5:e4:da:48:57:4c:33:b3:2b:1a:87:ed:65:c2:15:65:
c6:38:93:02:50:f4:c7:19:dc:d7:56:97:f0:7a:6c:0f:9c:9e:
79:e2:72:8f:bf:63:d9:75:7c:7c:b9:a5:ef:ad:43:be:4a:66:
f3:c9:7a:2a:4a:0e:32:36:10:6d:35:e2:b8:e5:f4:92:4a:ca:
16:16:8d:69:2f:f8:a9:c5:0e:e7:83:13:48:2e:e3:54:ac:78:
5b:52:bb:7c:3b:38:50:15:af:84:f0:59:d4:4c:eb:27:b0:c2:
4a:13:5e:1d:2e:85:d4:f1:91:43:e6:43:ce:18:2e:05:b9:5d:
3b:ac:ce:e9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYe6X1LqkFSL+EW3YyykbwvoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjMwNDI1MjE0MzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDg1NmFkZjdkNjVhZmYwYTFhNGZmZTE3YTVlOTk4NDA5YjAzYmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhSCp1pYcjeMuDXJ3lglcb6tDm6Cs
NPvROkq9bg9dpwW7Xb4hzYW7OwCb8bPbV/g6SETmDXDXLXOr4bbCE3g8dp4CFCJZ
9GIfqi6/WVU1yUMqZg+NSn+CPSopqzaKdL6QZHcnZej5X0cgZ0FWoF5pfFo5l6Z5
1WiJtf8cc94lkyTE6MbR1YboJ+VDLBnTFo/YruBAfsjbR0YFRWKc9p276RSkhWpc
F4evtKm8fK2cqW+TRJDombasqVDEIDa7eR4q/WWp2GBd+JR4f8zNuokelLHcu0Re
722KgYlxFsuofkoP0jQi7z2rAUZLYqpjQLjbUpM/ZTv5Dxq6mzvFR5UwJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMSFat99Za/woaT/4XpemYQJsDvoMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEveElWcTMzMWxyX0NocFBfaGVsNlpoQW13Ty1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufLhMA0G
CSqGSIb3DQEBCwUAA4IBAQB/a6cKUidglLqtVDXXZ+ZJFJN6sIgFxMC3GCMqxGGg
M1Rb1xecw9faP94V5Udtuf5R4lIE1MX42SRvSsfxyuTRIWcoLKoQx7IdMQoMF60K
VezK1UqEL69RubWcgssyRurfcV2mKJgnJ/MS1ceZpbmGQyfdOsUkrhbgSx78TDUW
UfXk2khXTDOzKxqH7WXCFWXGOJMCUPTHGdzXVpfwemwPnJ554nKPv2PZdXx8uaXv
rUO+SmbzyXoqSg4yNhBtNeK45fSSSsoWFo1pL/ipxQ7ngxNILuNUrHhbUrt8OzhQ
Fa+E8FnUTOsnsMJKE14dLoXU8ZFD5kPOGC4FuV07rM7p
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:27 2023 by rpki-client on console-ams.rpki-client.org