Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/kVVq34Q1XDUZWRUIP0jI1R7ilKw.roa
File: kVVq34Q1XDUZWRUIP0jI1R7ilKw.roa (raw, json)
Hash identifier: KZRqbFAH6cWFqi8FTG/mkdOLjbYKisj8Ii/Hv37Vx3c=
Subject key identifier: 91:55:6A:DF:84:35:5C:35:19:59:15:08:3F:48:C8:D5:1E:E2:94:AC
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 0185700292961F6BCB3B32E0FDC70AD9395B
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/kVVq34Q1XDUZWRUIP0jI1R7ilKw.roa
Signing time: Mon 02 Jan 2023 01:04:54 +0000
ROA not before: Mon 02 Jan 2023 01:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 185.81.183.0/24 maxlen: 24
185.81.182.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:92:96:1f:6b:cb:3b:32:e0:fd:c7:0a:d9:39:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Jan 2 01:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91556adf84355c35195915083f48c8d51ee294ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d0:f3:fd:d0:1f:cf:9c:de:9e:b5:c4:a7:f3:
93:65:d1:62:1e:f3:de:3c:44:04:0b:df:e9:a9:e9:
53:d4:41:8a:f9:ca:bc:2b:11:73:88:ed:9c:e3:92:
88:e9:0e:c4:fb:89:f2:8e:3a:1a:01:0e:75:fd:03:
db:7a:18:21:3b:b8:31:1d:d3:41:f7:d2:74:93:bb:
5a:46:74:1e:5b:59:04:6c:b0:19:0b:34:37:27:52:
fb:6f:dd:c5:28:21:79:05:67:30:85:26:51:df:27:
e6:71:dd:99:b3:c9:7d:28:2c:ce:cd:fa:95:ba:0f:
1a:a0:e6:bb:6b:50:4e:6e:cf:a7:5c:9f:c9:f8:e1:
98:5c:9a:8b:50:2c:1e:27:7e:71:87:6e:fc:a6:71:
c2:98:85:c5:f0:5e:24:cb:8f:aa:f5:b3:a5:9e:60:
07:78:3f:d1:16:17:b7:81:31:17:4d:c9:7f:22:51:
98:40:02:72:03:d6:c4:1f:12:b8:21:15:6b:ed:38:
28:4e:06:e3:1f:7f:5e:a9:9c:0d:dd:d8:9d:17:d3:
7a:11:b1:48:39:66:df:5e:2b:c6:9f:af:a7:fa:7e:
68:94:83:73:b8:9b:02:41:f6:a3:63:11:a3:68:9d:
68:d0:18:3b:3d:83:11:87:06:1e:c5:a1:2a:1a:25:
3a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:55:6A:DF:84:35:5C:35:19:59:15:08:3F:48:C8:D5:1E:E2:94:AC
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/kVVq34Q1XDUZWRUIP0jI1R7ilKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.182.0/23
Signature Algorithm: sha256WithRSAEncryption
29:d3:bc:31:a4:17:27:f8:77:3f:30:90:c6:e6:69:d8:16:8a:
cf:be:c8:9f:68:50:f6:d3:3e:e2:0e:cd:43:46:8b:91:0f:55:
b7:ab:8d:20:a5:fa:32:74:76:9c:2a:5b:92:05:82:62:34:c8:
5e:38:93:73:ce:97:e1:11:1f:a2:eb:ce:2b:6a:83:0b:87:38:
8e:04:a3:0a:2c:5a:f5:a8:bc:e7:b8:05:ad:44:83:46:28:ba:
29:38:96:a7:13:be:38:b3:69:1f:1b:7f:f0:0d:3b:d4:86:51:
42:27:23:4e:9e:39:da:ae:df:4c:f1:53:c1:84:74:34:f6:db:
42:99:38:5d:de:c1:a0:9c:4c:70:ad:cc:c3:6d:5d:f7:ac:b9:
1f:9e:80:2b:b4:fa:a0:17:96:d2:d4:49:71:1c:10:08:37:cb:
99:60:80:d0:27:23:2e:93:26:2d:2d:41:f8:f6:be:7f:c9:1c:
6a:5c:84:4c:3d:ec:3c:25:6d:27:ea:31:67:18:f2:84:0d:e4:
71:0a:a6:6e:a1:86:a0:f7:b5:49:f1:ac:aa:e5:45:57:49:7d:
7e:ec:b4:08:b9:52:e5:17:5c:aa:b4:77:37:9d:f6:bf:48:72:
38:3e:c4:29:dc:bd:c0:41:62:99:b7:35:46:18:23:48:a7:22:
01:1d:7d:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwApKWH2vLOzLg/ccK2TlbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1
YmE2ODEwHhcNMjMwMTAyMDEwNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTU1NmFkZjg0MzU1YzM1MTk1OTE1MDgzZjQ4YzhkNTFlZTI5NGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntDz/dAfz5zenrXEp/OTZdFiHvPe
PEQEC9/pqelT1EGK+cq8KxFziO2c45KI6Q7E+4nyjjoaAQ51/QPbehghO7gxHdNB
99J0k7taRnQeW1kEbLAZCzQ3J1L7b93FKCF5BWcwhSZR3yfmcd2Zs8l9KCzOzfqV
ug8aoOa7a1BObs+nXJ/J+OGYXJqLUCweJ35xh278pnHCmIXF8F4ky4+q9bOlnmAH
eD/RFhe3gTEXTcl/IlGYQAJyA9bEHxK4IRVr7TgoTgbjH39eqZwN3didF9N6EbFI
OWbfXivGn6+n+n5olINzuJsCQfajYxGjaJ1o0Bg7PYMRhwYexaEqGiU6BQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJFVat+ENVw1GVkVCD9IyNUe4pSsMB8GA1UdIwQY
MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt
YTg3NzNkZTc2OGY3LzEva1ZWcTM0UTFYRFVaV1JVSVAwakkxUjdpbEt3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3
LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuVG2MA0G
CSqGSIb3DQEBCwUAA4IBAQAp07wxpBcn+Hc/MJDG5mnYForPvsifaFD20z7iDs1D
RouRD1W3q40gpfoydHacKluSBYJiNMheOJNzzpfhER+i684raoMLhziOBKMKLFr1
qLznuAWtRINGKLopOJanE744s2kfG3/wDTvUhlFCJyNOnjnart9M8VPBhHQ09ttC
mThd3sGgnExwrczDbV33rLkfnoArtPqgF5bS1ElxHBAIN8uZYIDQJyMukyYtLUH4
9r5/yRxqXIRMPew8JW0n6jFnGPKEDeRxCqZuoYag97VJ8ayq5UVXSX1+7LQIuVLl
F1yqtHc3nfa/SHI4PsQp3L3AQWKZtzVGGCNIpyIBHX06
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:19 2023 by rpki-client on console-fra.rpki-client.org