Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/A0sa599QUvm_WnQ4-2NJrhntDsw.roa
File: A0sa599QUvm_WnQ4-2NJrhntDsw.roa (raw, json)
Hash identifier: 9lcxsKSbaozH93XpFGTJX4xSgHNtWye4rGzuwc+N2DU=
Subject key identifier: 03:4B:1A:E7:DF:50:52:F9:BF:5A:74:38:FB:63:49:AE:19:ED:0E:CC
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 0185729ED7A735A31D8336F49A3FD5FCC4C7
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/A0sa599QUvm_WnQ4-2NJrhntDsw.roa
Signing time: Mon 02 Jan 2023 13:14:50 +0000
ROA not before: Mon 02 Jan 2023 13:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204958
IP address blocks: 185.96.168.0/23 maxlen: 24
185.96.168.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:d7:a7:35:a3:1d:83:36:f4:9a:3f:d5:fc:c4:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Jan 2 13:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=034b1ae7df5052f9bf5a7438fb6349ae19ed0ecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2c:c8:35:6d:08:29:58:2e:8c:35:ca:c6:53:
bc:d7:71:15:98:7a:07:64:65:51:3f:55:5c:61:e4:
48:6c:7b:70:3b:b2:f7:e1:b0:7f:c6:25:86:83:3c:
66:d7:16:f3:8b:23:11:8f:1c:0d:c6:a2:57:06:52:
72:ec:97:de:bc:dc:13:e9:f8:72:24:fb:f0:43:ba:
6f:af:08:f8:b0:32:0b:2c:a3:82:75:d0:cc:87:40:
33:a8:02:e3:15:b7:44:23:1e:d7:d9:ce:3c:5b:88:
3a:6c:69:55:9c:94:e6:5b:bf:0a:40:8e:63:02:a1:
98:32:e8:53:55:b3:68:c4:bb:2f:9e:76:3f:f3:82:
d1:69:20:60:e5:a0:46:fa:c0:dd:55:62:f5:e4:ea:
39:95:b1:d2:5c:4d:04:3f:16:75:54:f9:74:bf:a9:
13:0e:3f:27:ca:f6:dc:82:25:9d:cc:b1:cb:45:7a:
38:fd:7e:9c:79:f6:12:9a:96:a4:b9:34:8f:45:9c:
b4:ce:59:d6:c6:90:fb:8e:9f:43:a2:e7:43:bb:e1:
e2:87:87:33:8d:88:fa:66:a3:54:27:93:4e:3d:92:
80:19:9c:20:3a:83:9c:5e:87:9e:55:4b:e2:10:c1:
7f:82:e1:3b:92:7d:98:ca:14:d6:89:32:6d:35:be:
b8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:4B:1A:E7:DF:50:52:F9:BF:5A:74:38:FB:63:49:AE:19:ED:0E:CC
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/A0sa599QUvm_WnQ4-2NJrhntDsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.168.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:ad:71:e7:f9:62:ac:50:2b:e2:61:ad:13:c9:f1:e4:bb:7b:
61:56:bd:88:cb:7c:76:aa:71:2a:1a:35:f7:90:a2:b9:2e:c0:
e8:e9:e5:46:a7:97:60:a6:f4:e6:0b:d4:74:f8:90:a1:01:83:
42:0f:90:59:8f:94:7b:d1:b3:8e:da:f4:64:00:f4:8d:9c:67:
0f:f6:a3:db:c7:2f:f6:47:f5:41:8e:84:7a:dd:fb:a1:b6:48:
36:1c:12:5c:32:55:6a:c7:39:a9:50:85:f4:6a:3b:4a:8f:66:
7c:c9:6c:90:35:24:61:b0:86:34:74:02:06:5c:aa:6c:bf:de:
0a:47:8e:de:ac:2e:e1:19:a7:91:2f:3b:f0:60:ac:e6:80:b5:
2f:c0:24:9a:ca:f6:7f:9c:f0:e7:0b:83:f0:76:ee:72:d6:de:
4e:03:f9:cf:e6:15:05:44:c3:45:c7:70:d6:83:39:95:48:ab:
fa:f4:c3:e3:68:c7:7a:dc:ee:1d:50:0a:d5:0a:c5:de:28:1f:
67:ea:ac:87:92:55:e2:81:de:f1:f5:28:29:fe:69:2f:9a:3c:
19:3f:f5:9a:a4:41:9b:7d:9c:c8:2e:ff:14:27:ea:71:cd:df:
3f:58:e8:71:07:9b:6b:05:2c:68:5d:d9:73:8b:59:49:c0:af:
63:eb:90:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyntenNaMdgzb0mj/V/MTHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1MDE4MTVjNmY5OGYzYTJiNjE4NGFmZWJmMThlYTM0MWJl
ODgyZWEwHhcNMjMwMTAyMTMxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzRiMWFlN2RmNTA1MmY5YmY1YTc0MzhmYjYzNDlhZTE5ZWQwZWNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsizINW0IKVgujDXKxlO813EVmHoH
ZGVRP1VcYeRIbHtwO7L34bB/xiWGgzxm1xbziyMRjxwNxqJXBlJy7JfevNwT6fhy
JPvwQ7pvrwj4sDILLKOCddDMh0AzqALjFbdEIx7X2c48W4g6bGlVnJTmW78KQI5j
AqGYMuhTVbNoxLsvnnY/84LRaSBg5aBG+sDdVWL15Oo5lbHSXE0EPxZ1VPl0v6kT
Dj8nyvbcgiWdzLHLRXo4/X6cefYSmpakuTSPRZy0zlnWxpD7jp9DoudDu+Hih4cz
jYj6ZqNUJ5NOPZKAGZwgOoOcXoeeVUviEMF/guE7kn2YyhTWiTJtNb644wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFANLGuffUFL5v1p0OPtjSa4Z7Q7MMB8GA1UdIwQY
MBaAFOUBgVxvmPOithhK/r8Y6jQb6ILqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVFHQlhHLVk4NksyR0VyLXZ4anFOQnZvZ3VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy81YjAyMjItZWQ2NC00ZjU1LWI0NWIt
MDA1OWY3MzdlZjA1LzEvQTBzYTU5OVFVdm1fV25RNC0yTkpyaG50RHN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy81YjAyMjItZWQ2NC00ZjU1LWI0NWItMDA1OWY3MzdlZjA1
LzEvNVFHQlhHLVk4NksyR0VyLXZ4anFOQnZvZ3VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuWCoMA0G
CSqGSIb3DQEBCwUAA4IBAQAcrXHn+WKsUCviYa0TyfHku3thVr2Iy3x2qnEqGjX3
kKK5LsDo6eVGp5dgpvTmC9R0+JChAYNCD5BZj5R70bOO2vRkAPSNnGcP9qPbxy/2
R/VBjoR63fuhtkg2HBJcMlVqxzmpUIX0ajtKj2Z8yWyQNSRhsIY0dAIGXKpsv94K
R47erC7hGaeRLzvwYKzmgLUvwCSayvZ/nPDnC4Pwdu5y1t5OA/nP5hUFRMNFx3DW
gzmVSKv69MPjaMd63O4dUArVCsXeKB9n6qyHklXigd7x9Sgp/mkvmjwZP/WapEGb
fZzILv8UJ+pxzd8/WOhxB5trBSxoXdlzi1lJwK9j65DM
-----END CERTIFICATE-----
Generated at Wed Nov 8 02:34:27 2023 by rpki-client on console-ams.rpki-client.org