Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/1VMqg2yRb0QpwRZPiKkx0K6h7TA.roa
File: 1VMqg2yRb0QpwRZPiKkx0K6h7TA.roa (raw, json)
Hash identifier: 7z1Ro96Cy49QipDErg6jxRNahgeyDbV+cWmsdkMoSVs=
Subject key identifier: D5:53:2A:83:6C:91:6F:44:29:C1:16:4F:88:A9:31:D0:AE:A1:ED:30
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018A1C9C9D181CA0B7926F5642B5CD37076E
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/1VMqg2yRb0QpwRZPiKkx0K6h7TA.roa
Signing time: Tue 22 Aug 2023 09:39:00 +0000
ROA not before: Tue 22 Aug 2023 09:39:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13335
IP address blocks: 89.149.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:9c:9d:18:1c:a0:b7:92:6f:56:42:b5:cd:37:07:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Aug 22 09:39:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5532a836c916f4429c1164f88a931d0aea1ed30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:06:a5:2f:e5:71:b0:ff:d3:95:8c:0d:9b:12:
4c:21:b4:23:cb:02:af:b8:38:93:44:3b:f3:7f:0a:
ae:9f:fe:01:55:2f:78:6d:87:ec:8f:49:b5:ee:21:
3f:0c:09:8f:92:4e:e1:bd:b9:37:95:67:f3:07:b2:
66:ef:75:80:d6:46:1f:90:ee:27:e2:17:93:78:c5:
71:25:6f:65:6f:67:bf:93:d1:40:db:69:7d:64:dc:
d4:3b:3d:ea:89:8e:09:15:31:24:9d:ee:d0:ff:55:
52:9c:b8:66:7f:0d:37:b0:35:a0:f8:01:25:b3:80:
48:5f:03:32:7d:52:5c:29:29:72:fd:e9:17:d5:14:
17:07:9d:b7:b0:ee:69:fa:97:e1:03:3e:48:1b:df:
dc:23:23:c5:1b:27:30:f1:8a:e8:97:32:cc:71:92:
38:19:c8:c2:8a:94:4d:f9:81:55:c1:0e:17:2b:11:
ae:a6:c3:f8:ea:a1:b8:69:fa:24:25:14:66:ff:66:
1b:bc:3f:cf:94:45:79:31:8e:70:01:e0:bc:aa:8a:
90:4e:a6:91:39:fd:a7:74:84:ad:d0:dc:40:aa:e1:
33:bd:4f:08:b1:c5:ff:c5:2f:8a:4a:2d:b4:b8:d7:
72:af:ef:e2:96:0a:f3:8a:24:0f:db:2c:75:11:2a:
2e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:53:2A:83:6C:91:6F:44:29:C1:16:4F:88:A9:31:D0:AE:A1:ED:30
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/1VMqg2yRb0QpwRZPiKkx0K6h7TA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.149.148.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:cf:bf:5c:4d:d8:72:17:a7:3c:7c:03:b2:71:7c:85:d9:a8:
03:43:e5:a3:16:53:95:d9:ea:6c:4d:77:e2:0b:89:66:8f:4a:
45:86:a0:27:bf:e2:8b:5c:cf:bb:9b:44:e6:30:8a:1f:32:a8:
e3:47:29:99:9d:7c:89:c6:e6:18:9d:17:a1:97:24:d2:f5:6a:
c1:6f:b9:a9:3a:43:28:e2:67:fa:a2:3e:4c:9d:ea:36:e7:6c:
91:60:ab:03:2c:43:90:7c:34:4f:57:6c:29:9a:e1:2c:f0:80:
93:64:4f:b1:d2:4d:ff:b8:bb:d9:7a:4a:6b:82:d8:d1:0e:f6:
80:dd:32:70:7d:04:81:b4:0a:a5:82:b4:52:36:18:46:ad:81:
b2:2e:2f:05:32:a0:df:0a:65:ed:b6:00:59:41:a0:16:70:86:
a3:1b:e8:f7:3b:07:01:79:fa:57:f2:e5:23:4f:ba:60:51:de:
d2:cd:2a:31:f7:18:5a:f8:32:c3:5b:dc:c1:29:f6:a5:32:76:
26:b5:a1:e0:ac:a8:fa:6c:a4:4f:cd:14:3c:50:4c:d3:c0:e4:
2c:73:6c:25:ae:4c:1f:78:dd:7b:91:db:ea:da:6d:24:ed:ec:
1d:9f:82:5c:06:d8:c8:89:f4:a9:53:32:e7:39:aa:0a:2a:df:
a7:c3:c1:02
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYocnJ0YHKC3km9WQrXNNwduMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3OWRiZmRmNGMyMGJkYWU4ZDYxMTg1NjZlY2U3NjQ0NGU0
NmQxNzEwHhcNMjMwODIyMDkzOTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTUzMmE4MzZjOTE2ZjQ0MjljMTE2NGY4OGE5MzFkMGFlYTFlZDMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkgalL+VxsP/TlYwNmxJMIbQjywKv
uDiTRDvzfwqun/4BVS94bYfsj0m17iE/DAmPkk7hvbk3lWfzB7Jm73WA1kYfkO4n
4heTeMVxJW9lb2e/k9FA22l9ZNzUOz3qiY4JFTEkne7Q/1VSnLhmfw03sDWg+AEl
s4BIXwMyfVJcKSly/ekX1RQXB523sO5p+pfhAz5IG9/cIyPFGycw8YrolzLMcZI4
GcjCipRN+YFVwQ4XKxGupsP46qG4afokJRRm/2YbvD/PlEV5MY5wAeC8qoqQTqaR
Of2ndISt0NxAquEzvU8IscX/xS+KSi20uNdyr+/ilgrziiQP2yx1ESoumQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNVTKoNskW9EKcEWT4ipMdCuoe0wMB8GA1UdIwQY
MBaAFCedv99MIL2ujWEYVm7OdkRORtFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEt
MGNmMTA5M2Q0NTQ4LzEvMVZNcWcyeVJiMFFwd1JaUGlLa3gwSzZoN1RBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEtMGNmMTA5M2Q0NTQ4
LzEvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWZWUMA0G
CSqGSIb3DQEBCwUAA4IBAQDhz79cTdhyF6c8fAOycXyF2agDQ+WjFlOV2epsTXfi
C4lmj0pFhqAnv+KLXM+7m0TmMIofMqjjRymZnXyJxuYYnRehlyTS9WrBb7mpOkMo
4mf6oj5Mneo252yRYKsDLEOQfDRPV2wpmuEs8ICTZE+x0k3/uLvZekprgtjRDvaA
3TJwfQSBtAqlgrRSNhhGrYGyLi8FMqDfCmXttgBZQaAWcIajG+j3OwcBefpX8uUj
T7pgUd7SzSox9xha+DLDW9zBKfalMnYmtaHgrKj6bKRPzRQ8UEzTwOQsc2wlrkwf
eN17kdvq2m0k7ewdn4JcBtjIifSpUzLnOaoKKt+nw8EC
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:38 2024 by rpki-client on console-ams.rpki-client.org