Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/iSrS8St9v8VSEORLJME8szk2X28.roa
File: iSrS8St9v8VSEORLJME8szk2X28.roa (raw, json)
Hash identifier: oaS1ZQ69D91DWQEX8b8FcBUnITNKCF/E4d0E4gfUPG0=
Subject key identifier: 89:2A:D2:F1:2B:7D:BF:C5:52:10:E4:4B:24:C1:3C:B3:39:36:5F:6F
Certificate issuer: /CN=8e303cc2af838789652771c345e07df3e80d544f
Certificate serial: 01856FC27BB019A5EBBD93F5E667AA0A06BF
Authority key identifier: 8E:30:3C:C2:AF:83:87:89:65:27:71:C3:45:E0:7D:F3:E8:0D:54:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjA8wq-Dh4llJ3HDReB98-gNVE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/iSrS8St9v8VSEORLJME8szk2X28.roa
Signing time: Sun 01 Jan 2023 23:54:54 +0000
ROA not before: Sun 01 Jan 2023 23:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201311
IP address blocks: 185.78.248.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:7b:b0:19:a5:eb:bd:93:f5:e6:67:aa:0a:06:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e303cc2af838789652771c345e07df3e80d544f
Validity
Not Before: Jan 1 23:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=892ad2f12b7dbfc55210e44b24c13cb339365f6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:24:22:79:0a:28:d8:58:e1:fb:c8:43:3e:e5:
d8:75:ab:52:a5:a6:a6:30:2b:49:93:d2:29:31:df:
1f:be:13:67:c3:9c:fd:5c:62:04:02:09:0e:92:88:
7b:56:f3:83:fc:73:55:89:5d:7c:ef:ed:57:a1:fa:
91:22:2f:14:22:cc:a4:0d:5a:f4:79:1d:2e:66:e1:
bd:ca:56:61:9e:ab:df:18:bb:14:81:8b:da:e4:1e:
9a:d9:44:55:bf:5c:88:c7:d8:04:91:09:20:42:6f:
43:63:ba:83:8c:ef:e5:83:e4:02:40:cf:cb:01:94:
62:aa:4d:b4:08:dd:c8:4d:93:29:b4:ed:42:a5:ba:
46:1f:f6:68:a4:20:e4:1b:9e:3d:f0:ce:80:48:aa:
40:a6:5f:21:45:48:72:80:fa:68:81:5b:8c:aa:e9:
29:2c:33:e4:bf:7d:be:40:51:12:9b:88:2e:4a:24:
e9:17:e2:f8:73:53:8d:b0:d8:6f:df:40:e0:61:9e:
b6:c1:5a:e9:95:29:29:4b:b9:f5:e0:59:f0:a0:51:
62:6a:42:72:01:c7:d0:29:46:2f:11:4e:a8:4c:90:
9d:93:ae:99:9d:95:6d:c3:12:16:53:f6:b4:6a:3c:
14:76:c3:b6:7b:58:c6:70:75:fe:a4:e4:2f:31:67:
4f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:2A:D2:F1:2B:7D:BF:C5:52:10:E4:4B:24:C1:3C:B3:39:36:5F:6F
X509v3 Authority Key Identifier:
keyid:8E:30:3C:C2:AF:83:87:89:65:27:71:C3:45:E0:7D:F3:E8:0D:54:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjA8wq-Dh4llJ3HDReB98-gNVE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/iSrS8St9v8VSEORLJME8szk2X28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/jjA8wq-Dh4llJ3HDReB98-gNVE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.248.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:91:48:a9:25:62:12:2b:98:b0:4a:05:f3:f2:0b:91:1f:6a:
8a:de:6a:b0:72:64:66:4e:0e:1a:26:cc:18:21:b1:cf:54:f5:
8e:68:b3:5b:fb:a4:db:1f:de:fe:4e:dd:18:0b:ff:78:c2:be:
58:57:72:27:dd:2a:29:dc:6c:41:8c:80:a1:8b:1e:28:04:0d:
8c:be:c2:d1:f0:54:2b:94:d6:ab:4f:2a:f3:6b:18:5c:d2:11:
eb:37:de:fa:0a:f7:e3:00:62:41:27:6f:0d:44:7f:46:75:23:
ff:60:57:46:4f:1e:d8:d0:55:b0:7f:15:f3:cc:82:c9:fa:8f:
a5:ee:1f:c5:d9:fb:cc:14:1d:c5:13:b2:8b:5b:bb:31:20:8f:
3e:64:c4:ca:18:3a:51:6a:65:18:f6:b1:b5:b1:2d:d7:b7:65:
4e:0e:1b:b4:49:2c:54:e6:01:5b:ac:f9:b8:43:98:f4:c5:3f:
21:64:69:bd:8a:be:fe:85:0f:4e:f1:e5:9f:96:ef:87:e9:ab:
62:83:98:68:90:d8:3c:bf:b9:99:de:e9:d6:74:85:99:cc:d2:
91:1b:a6:98:8d:8c:1b:9a:17:c1:e5:03:91:43:5c:e3:c1:b3:
8c:06:82:d0:2d:99:3a:c1:9f:7c:07:00:57:4d:4a:d7:0f:26:
48:2c:0d:9a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvwnuwGaXrvZP15meqCga/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMzAzY2MyYWY4Mzg3ODk2NTI3NzFjMzQ1ZTA3ZGYzZTgw
ZDU0NGYwHhcNMjMwMTAxMjM1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTJhZDJmMTJiN2RiZmM1NTIxMGU0NGIyNGMxM2NiMzM5MzY1ZjZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSQieQoo2Fjh+8hDPuXYdatSpaam
MCtJk9IpMd8fvhNnw5z9XGIEAgkOkoh7VvOD/HNViV187+1XofqRIi8UIsykDVr0
eR0uZuG9ylZhnqvfGLsUgYva5B6a2URVv1yIx9gEkQkgQm9DY7qDjO/lg+QCQM/L
AZRiqk20CN3ITZMptO1CpbpGH/ZopCDkG5498M6ASKpApl8hRUhygPpogVuMqukp
LDPkv32+QFESm4guSiTpF+L4c1ONsNhv30DgYZ62wVrplSkpS7n14FnwoFFiakJy
AcfQKUYvEU6oTJCdk66ZnZVtwxIWU/a0ajwUdsO2e1jGcHX+pOQvMWdPpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIkq0vErfb/FUhDkSyTBPLM5Nl9vMB8GA1UdIwQY
MBaAFI4wPMKvg4eJZSdxw0XgffPoDVRPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvampBOHdxLURoNGxsSjNIRFJlQjk4LWdOVkU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy85ZDFhNGItNTA5YS00OTEzLWI5Mzct
ZDBhZGIxMWRlZDM0LzEvaVNyUzhTdDl2OFZTRU9STEpNRThzemsyWDI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy85ZDFhNGItNTA5YS00OTEzLWI5MzctZDBhZGIxMWRlZDM0
LzEvampBOHdxLURoNGxsSjNIRFJlQjk4LWdOVkU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuU74MA0G
CSqGSIb3DQEBCwUAA4IBAQDIkUipJWISK5iwSgXz8guRH2qK3mqwcmRmTg4aJswY
IbHPVPWOaLNb+6TbH97+Tt0YC/94wr5YV3In3Sop3GxBjIChix4oBA2MvsLR8FQr
lNarTyrzaxhc0hHrN976CvfjAGJBJ28NRH9GdSP/YFdGTx7Y0FWwfxXzzILJ+o+l
7h/F2fvMFB3FE7KLW7sxII8+ZMTKGDpRamUY9rG1sS3Xt2VODhu0SSxU5gFbrPm4
Q5j0xT8hZGm9ir7+hQ9O8eWflu+H6atig5hokNg8v7mZ3unWdIWZzNKRG6aYjYwb
mhfB5QORQ1zjwbOMBoLQLZk6wZ98BwBXTUrXDyZILA2a
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:30 2024 by rpki-client on console-ams.rpki-client.org