Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/rDhHfQrChXL907kj8CGowBmAFUE.roa
File: rDhHfQrChXL907kj8CGowBmAFUE.roa (raw, json)
Hash identifier: 2OYtH/JeRc9SBR3aSFa0JKBBFcdnSXhAIBfFrhOASHs=
Subject key identifier: AC:38:47:7D:0A:C2:85:72:FD:D3:B9:23:F0:21:A8:C0:19:80:15:41
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018571D7E2E55096FAEBE67A3BC0FFE18D08
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/rDhHfQrChXL907kj8CGowBmAFUE.roa
Signing time: Mon 02 Jan 2023 09:37:31 +0000
ROA not before: Mon 02 Jan 2023 09:37:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211557
IP address blocks: 188.255.200.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:e2:e5:50:96:fa:eb:e6:7a:3b:c0:ff:e1:8d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 09:37:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac38477d0ac28572fdd3b923f021a8c019801541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b9:be:8a:9f:d4:56:ec:4c:25:90:a6:90:34:
4b:fa:92:43:db:c2:50:a6:e3:36:c3:29:96:88:e6:
c3:88:71:4b:17:5a:a5:2e:6a:91:af:8b:ee:ae:39:
e5:70:74:e2:55:94:32:b5:82:e5:a0:3a:c0:aa:ca:
24:bf:6c:1b:5f:20:90:2c:a7:7b:80:ff:dc:51:3b:
ab:e8:7f:96:30:6b:9c:1a:cb:94:74:1d:b7:49:12:
b1:c8:29:13:26:82:59:46:af:c1:58:22:d5:a7:f0:
57:5a:e5:05:06:4e:5b:3b:f1:3d:d0:07:6a:f0:cf:
d1:f5:2d:69:dc:48:71:3d:86:84:42:6a:b3:d9:5b:
63:28:50:a7:75:3b:52:12:d6:7f:22:3d:75:a3:ef:
2a:8f:b4:09:52:d0:b1:5a:00:54:e6:fa:45:9e:e0:
64:36:f6:04:a5:0b:34:6b:20:fb:04:b1:75:1a:3a:
3e:cf:bc:2e:e1:87:a8:b6:a8:e7:75:66:30:4a:13:
bd:3b:a0:60:53:9d:50:a4:f8:f4:de:5e:3a:10:94:
25:d0:cb:ff:a9:e6:40:bb:29:39:2b:26:19:34:38:
ae:84:a0:49:15:d5:77:5f:e9:03:52:78:1e:af:e8:
14:b3:e1:6c:d5:72:4d:4f:42:e8:88:c9:10:60:15:
ef:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:38:47:7D:0A:C2:85:72:FD:D3:B9:23:F0:21:A8:C0:19:80:15:41
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/rDhHfQrChXL907kj8CGowBmAFUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.200.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:26:c1:aa:e2:36:43:9a:25:19:e7:16:73:a8:9b:bb:71:75:
7f:e3:d3:a6:53:d1:f7:c1:ac:ef:d6:84:c7:29:71:01:cd:74:
ea:d5:b6:4e:a1:ca:e6:40:52:dd:78:79:fb:b1:86:22:2e:a1:
e8:c4:37:ae:da:ae:12:da:89:de:f4:6e:cc:f7:80:65:73:7f:
f2:50:49:39:bc:85:c5:cb:43:29:ca:3b:54:0e:5f:ad:14:fa:
62:64:1b:e5:ee:c5:bf:72:ca:86:1e:af:42:5e:2d:a8:22:bc:
4e:bd:c7:59:04:cc:93:2c:e2:6b:9f:39:f2:f7:2a:f1:e0:67:
5f:c2:ac:d5:f2:6d:64:1d:b7:ba:12:d1:9f:12:55:63:c4:bb:
30:b2:fa:59:a5:d5:df:81:b1:44:47:bc:06:7c:e8:2f:da:b4:
59:f9:74:1e:b2:a9:65:10:24:40:39:c0:9a:a8:bc:87:3c:2b:
0a:5d:a0:31:b4:64:c7:7c:6e:ed:03:9c:34:91:a4:bf:76:f1:
ad:b4:73:8e:64:92:d0:21:9e:72:80:90:13:47:a8:2c:8c:5d:
9b:94:c5:98:e4:97:16:93:1b:34:0a:ee:f6:0d:9d:0a:ab:97:
e1:f1:66:53:c7:8c:52:6e:45:6a:c4:24:1b:f6:6a:85:90:8f:
6a:c8:b6:15
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx1+LlUJb66+Z6O8D/4Y0IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjMwMTAyMDkzNzMxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzM4NDc3ZDBhYzI4NTcyZmRkM2I5MjNmMDIxYThjMDE5ODAxNTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7m+ip/UVuxMJZCmkDRL+pJD28JQ
puM2wymWiObDiHFLF1qlLmqRr4vurjnlcHTiVZQytYLloDrAqsokv2wbXyCQLKd7
gP/cUTur6H+WMGucGsuUdB23SRKxyCkTJoJZRq/BWCLVp/BXWuUFBk5bO/E90Adq
8M/R9S1p3EhxPYaEQmqz2VtjKFCndTtSEtZ/Ij11o+8qj7QJUtCxWgBU5vpFnuBk
NvYEpQs0ayD7BLF1Gjo+z7wu4YeotqjndWYwShO9O6BgU51QpPj03l46EJQl0Mv/
qeZAuyk5KyYZNDiuhKBJFdV3X+kDUnger+gUs+Fs1XJNT0LoiMkQYBXvAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKw4R30KwoVy/dO5I/AhqMAZgBVBMB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvckRoSGZRckNoWEw5MDdrajhDR293Qm1BRlVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvP/IMA0G
CSqGSIb3DQEBCwUAA4IBAQBrJsGq4jZDmiUZ5xZzqJu7cXV/49OmU9H3wazv1oTH
KXEBzXTq1bZOocrmQFLdeHn7sYYiLqHoxDeu2q4S2one9G7M94Blc3/yUEk5vIXF
y0MpyjtUDl+tFPpiZBvl7sW/csqGHq9CXi2oIrxOvcdZBMyTLOJrnzny9yrx4Gdf
wqzV8m1kHbe6EtGfElVjxLswsvpZpdXfgbFER7wGfOgv2rRZ+XQesqllECRAOcCa
qLyHPCsKXaAxtGTHfG7tA5w0kaS/dvGttHOOZJLQIZ5ygJATR6gsjF2blMWY5JcW
kxs0Cu72DZ0Kq5fh8WZTx4xSbkVqxCQb9mqFkI9qyLYV
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:20 2023 by rpki-client on console-ams.rpki-client.org