Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/niW6tI8nnHRaXyzRbis8_xpKV9U.roa
File: niW6tI8nnHRaXyzRbis8_xpKV9U.roa (raw, json)
Hash identifier: II4uikSsW9jpd8WI+EPPhlDdHCnpKZjbbDEZ2iTCQqg=
Subject key identifier: 9E:25:BA:B4:8F:27:9C:74:5A:5F:2C:D1:6E:2B:3C:FF:1A:4A:57:D5
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 018570399CF59213ABEB89893FBC9458A68B
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/niW6tI8nnHRaXyzRbis8_xpKV9U.roa
Signing time: Mon 02 Jan 2023 02:05:02 +0000
ROA not before: Mon 02 Jan 2023 02:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 195.180.152.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:9c:f5:92:13:ab:eb:89:89:3f:bc:94:58:a6:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 2 02:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e25bab48f279c745a5f2cd16e2b3cff1a4a57d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:81:c8:43:10:8d:87:6c:79:97:0e:21:19:ab:
da:01:8a:29:5d:d2:59:1b:af:13:d3:8e:6e:92:f6:
aa:e4:7e:a1:fc:b4:0d:21:19:c3:ee:59:3c:dc:9c:
18:37:dc:fc:f7:92:46:a0:e6:bd:fd:96:1d:cd:60:
eb:80:86:e4:d7:fc:43:0f:41:ca:ec:af:77:58:62:
33:9f:0d:c1:4a:e2:79:22:4b:62:37:2c:a0:74:2c:
8f:69:1f:8c:4a:08:e8:4b:db:01:1f:27:26:d1:92:
bf:1d:14:33:65:a1:a0:7b:d8:e8:97:68:4e:af:1d:
5d:a0:0c:bd:4b:b9:ae:72:e8:cf:23:fa:fe:98:05:
d7:12:86:4d:18:ab:82:f5:47:e1:bf:0e:0d:be:18:
94:ed:34:ca:73:02:3f:7d:2d:00:d3:3d:44:ec:5a:
87:7f:7e:18:c3:79:a8:ab:d3:a1:3e:1b:cf:33:93:
cb:f5:31:90:18:45:b6:73:ca:1c:80:c9:c5:93:0d:
d9:18:e9:16:60:ef:b8:01:43:dd:30:0c:e5:6f:19:
4c:85:0e:6d:71:62:4a:68:95:cf:48:a2:20:5a:de:
54:1b:88:82:b2:d4:41:a3:e3:e6:26:4a:bb:46:ce:
6c:ef:7c:7e:ad:52:da:d0:d6:96:d7:ca:48:bd:49:
19:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:25:BA:B4:8F:27:9C:74:5A:5F:2C:D1:6E:2B:3C:FF:1A:4A:57:D5
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/niW6tI8nnHRaXyzRbis8_xpKV9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.152.0/22
Signature Algorithm: sha256WithRSAEncryption
05:aa:6c:20:6e:a2:76:f9:56:60:f5:7c:a6:24:c8:d5:8a:a6:
75:81:f1:78:51:2e:a4:29:b6:75:24:c4:87:2f:99:b6:12:24:
e6:ef:ee:b5:40:5a:5c:ea:cb:dc:5a:a1:d8:6c:b3:25:2d:b1:
93:69:17:f9:6f:b0:f8:cb:b0:47:62:f5:c7:d3:c5:fa:79:0e:
1a:d4:c7:5d:bf:8c:00:87:60:09:f9:b5:e1:f2:6d:89:68:e5:
77:69:e3:20:83:73:64:15:0a:f8:ff:fb:58:02:40:60:a2:78:
d7:c3:3b:1f:85:c5:9e:18:c2:92:69:8f:95:c9:43:42:38:23:
7a:da:b5:40:89:a1:4a:b4:4e:f2:f1:82:6f:e9:dc:3d:dd:db:
66:7e:d4:03:92:a2:3f:ca:84:2a:4f:08:d5:b0:8e:00:ea:43:
e3:b0:b8:ea:61:16:7d:5a:6e:aa:d6:8b:fc:12:4b:c4:3d:48:
47:9c:4e:0c:3c:2a:de:1a:1b:08:ec:dd:13:53:cc:ea:e1:4d:
63:d7:ff:16:ac:49:af:c5:39:af:0d:42:bf:d3:92:ce:0d:76:
c2:26:51:0c:10:cf:96:d0:23:ac:e8:df:d1:95:e8:e9:a0:a7:
bb:a7:e8:35:f3:dd:97:c4:b4:fd:2d:87:02:ab:94:fb:55:1a:
46:1c:8f:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwOZz1khOr64mJP7yUWKaLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NDcwMTc1NjRjNzExYmNiZDU3NjgwYTBkZmQwMGYyYTVk
MDk5ZGIwHhcNMjMwMTAyMDIwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZTI1YmFiNDhmMjc5Yzc0NWE1ZjJjZDE2ZTJiM2NmZjFhNGE1N2Q1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6oHIQxCNh2x5lw4hGavaAYopXdJZ
G68T045ukvaq5H6h/LQNIRnD7lk83JwYN9z895JGoOa9/ZYdzWDrgIbk1/xDD0HK
7K93WGIznw3BSuJ5IktiNyygdCyPaR+MSgjoS9sBHycm0ZK/HRQzZaGge9jol2hO
rx1doAy9S7mucujPI/r+mAXXEoZNGKuC9Ufhvw4NvhiU7TTKcwI/fS0A0z1E7FqH
f34Yw3moq9OhPhvPM5PL9TGQGEW2c8ocgMnFkw3ZGOkWYO+4AUPdMAzlbxlMhQ5t
cWJKaJXPSKIgWt5UG4iCstRBo+PmJkq7Rs5s73x+rVLa0NaW18pIvUkZyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ4lurSPJ5x0Wl8s0W4rPP8aSlfVMB8GA1UdIwQY
MBaAFNdHAXVkxxG8vVdoCg39APKl0JnbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjIt
NGYwZThjZTExYTdkLzEvbmlXNnRJOG5uSFJhWHl6UmJpczhfeHBLVjlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjItNGYwZThjZTExYTdk
LzEvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw7SYMA0G
CSqGSIb3DQEBCwUAA4IBAQAFqmwgbqJ2+VZg9XymJMjViqZ1gfF4US6kKbZ1JMSH
L5m2EiTm7+61QFpc6svcWqHYbLMlLbGTaRf5b7D4y7BHYvXH08X6eQ4a1Mddv4wA
h2AJ+bXh8m2JaOV3aeMgg3NkFQr4//tYAkBgonjXwzsfhcWeGMKSaY+VyUNCOCN6
2rVAiaFKtE7y8YJv6dw93dtmftQDkqI/yoQqTwjVsI4A6kPjsLjqYRZ9Wm6q1ov8
EkvEPUhHnE4MPCreGhsI7N0TU8zq4U1j1/8WrEmvxTmvDUK/05LODXbCJlEMEM+W
0COs6N/RlejpoKe7p+g1892XxLT9LYcCq5T7VRpGHI+p
-----END CERTIFICATE-----
Generated at Thu Nov 2 10:55:09 2023 by rpki-client on console-fra.rpki-client.org