Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/SHa7H5MiLB99ESrSJf94tMHE_qM.roa
File: SHa7H5MiLB99ESrSJf94tMHE_qM.roa (raw, json)
Hash identifier: 0woAFSjz5mEmNmC4aMEvBS+Vh9OXeyJuawT4SPa8jwQ=
Subject key identifier: 48:76:BB:1F:93:22:2C:1F:7D:11:2A:D2:25:FF:78:B4:C1:C4:FE:A3
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 01856E5416C711F1138EF7E8C74D7F44278A
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/SHa7H5MiLB99ESrSJf94tMHE_qM.roa
Signing time: Sun 01 Jan 2023 17:14:42 +0000
ROA not before: Sun 01 Jan 2023 17:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.18.123.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:16:c7:11:f1:13:8e:f7:e8:c7:4d:7f:44:27:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Jan 1 17:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4876bb1f93222c1f7d112ad225ff78b4c1c4fea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:83:ea:cb:cf:dd:5a:40:54:be:be:c8:e5:c8:
d0:a8:5b:de:5e:f2:3a:57:3c:4c:3d:06:e9:07:40:
48:31:97:b2:df:61:eb:a5:7a:c1:b0:20:25:8f:0e:
e5:d4:e9:fb:1f:22:2a:11:d6:85:bf:6f:4a:a0:d3:
fe:25:b7:79:78:f4:0c:70:3e:82:7d:ad:6b:4a:e2:
4a:de:c0:5d:6a:83:ac:4c:ed:84:84:24:52:e1:7f:
6f:de:f7:33:a4:1e:62:33:d7:ea:ef:5b:a6:76:37:
b9:7e:d7:d4:40:19:3e:1b:e9:84:ed:3a:90:1d:34:
75:42:44:e3:e3:48:09:23:d5:88:a3:48:4e:4d:0d:
da:ae:fa:5f:9a:6e:f3:cd:fb:1d:4a:ac:1e:ac:23:
0a:98:2a:46:91:7c:34:2f:72:1b:5f:a9:92:f9:d6:
9f:02:b0:59:13:d0:3f:24:ba:b8:97:e2:9d:ba:68:
02:08:85:61:07:99:08:c0:ed:b8:0e:01:4c:25:5f:
35:8a:4d:f5:e0:7d:0a:dd:5a:f6:10:dc:0a:ff:23:
cb:b3:c8:32:0c:48:d0:fc:1d:e3:48:6b:93:be:6c:
b2:c3:04:9a:0d:8a:4c:3e:86:03:b3:80:ea:38:d2:
c5:a9:78:92:33:f7:77:9f:31:ac:31:ec:3f:05:21:
cc:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:76:BB:1F:93:22:2C:1F:7D:11:2A:D2:25:FF:78:B4:C1:C4:FE:A3
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/SHa7H5MiLB99ESrSJf94tMHE_qM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.123.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:bd:42:90:dd:2a:d4:d0:79:b4:dc:fe:c9:ee:d2:e7:d3:34:
20:35:5a:19:b4:3c:b4:ab:ae:da:8d:dc:f0:37:1c:a5:bb:5e:
69:ac:56:5d:06:94:49:0c:77:7a:1d:ee:63:87:ef:f2:69:5d:
83:1e:d7:91:45:19:bb:e5:ac:73:f0:ca:64:66:3e:ca:b7:93:
b5:ba:2e:17:3c:02:c6:f7:78:8b:21:ce:85:59:75:1b:c5:0c:
1a:7d:2a:b8:a9:ec:41:42:47:3a:61:5a:ae:30:23:13:7c:b6:
e4:ad:07:88:52:8a:a8:61:ec:51:de:87:dc:a7:34:ff:1d:b5:
89:0c:08:5a:65:31:6e:58:fa:e3:41:a3:11:e2:bb:dc:7d:f2:
92:6c:73:35:be:ac:39:c1:49:2b:d9:74:68:1a:09:e8:3f:0d:
30:5a:9c:dc:c4:57:ca:19:90:a4:0c:61:1d:a6:53:e2:1a:63:
08:1f:2c:3f:90:16:17:d3:20:dc:d2:22:bb:fb:66:2c:c7:df:
5d:a9:5f:85:ca:66:e7:a5:69:dc:8b:27:22:f7:b8:49:08:45:
82:d8:11:f0:1f:18:b8:b4:39:48:f7:88:f9:79:fe:af:34:76:
c0:d3:8f:a8:0c:e8:7f:5c:5c:3e:64:f0:c4:d1:d9:1f:29:77:
9b:ed:7d:4a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuVBbHEfETjvfox01/RCeKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjM2MzOWQxODk5ZTY5OWJmNTE3NzQxOGVlMzgxNDg5ZWRm
ZjQzODAwHhcNMjMwMTAxMTcxNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ODc2YmIxZjkzMjIyYzFmN2QxMTJhZDIyNWZmNzhiNGMxYzRmZWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh4Pqy8/dWkBUvr7I5cjQqFveXvI6
VzxMPQbpB0BIMZey32HrpXrBsCAljw7l1On7HyIqEdaFv29KoNP+Jbd5ePQMcD6C
fa1rSuJK3sBdaoOsTO2EhCRS4X9v3vczpB5iM9fq71umdje5ftfUQBk+G+mE7TqQ
HTR1QkTj40gJI9WIo0hOTQ3arvpfmm7zzfsdSqwerCMKmCpGkXw0L3IbX6mS+daf
ArBZE9A/JLq4l+KdumgCCIVhB5kIwO24DgFMJV81ik314H0K3Vr2ENwK/yPLs8gy
DEjQ/B3jSGuTvmyywwSaDYpMPoYDs4DqONLFqXiSM/d3nzGsMew/BSHM0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEh2ux+TIiwffREq0iX/eLTBxP6jMB8GA1UdIwQY
MBaAFHw8OdGJnmmb9Rd0GO44FInt/0OAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkR3NTBZbWVhWnYxRjNRWTdqZ1VpZTNfUTRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9jODAwYzktNTFiNS00NTg5LTkyNjAt
MDYzZmNkZDNhMDU3LzEvU0hhN0g1TWlMQjk5RVNyU0pmOTR0TUhFX3FNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9jODAwYzktNTFiNS00NTg5LTkyNjAtMDYzZmNkZDNhMDU3
LzEvZkR3NTBZbWVhWnYxRjNRWTdqZ1VpZTNfUTRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRJ7MA0G
CSqGSIb3DQEBCwUAA4IBAQCevUKQ3SrU0Hm03P7J7tLn0zQgNVoZtDy0q67ajdzw
Nxylu15prFZdBpRJDHd6He5jh+/yaV2DHteRRRm75axz8MpkZj7Kt5O1ui4XPALG
93iLIc6FWXUbxQwafSq4qexBQkc6YVquMCMTfLbkrQeIUoqoYexR3ofcpzT/HbWJ
DAhaZTFuWPrjQaMR4rvcffKSbHM1vqw5wUkr2XRoGgnoPw0wWpzcxFfKGZCkDGEd
plPiGmMIHyw/kBYX0yDc0iK7+2Ysx99dqV+FymbnpWnciyci97hJCEWC2BHwHxi4
tDlI94j5ef6vNHbA04+oDOh/XFw+ZPDE0dkfKXeb7X1K
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:18 2023 by rpki-client on console-ams.rpki-client.org