Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/WkoUZzC0v675-DjTbsaF4v7HXa4.roa
File: WkoUZzC0v675-DjTbsaF4v7HXa4.roa (raw, json)
Hash identifier: is7yiAkc+da9blEL0oDrUQx8qcLZY5Z4/JFLeuYuyrA=
Subject key identifier: 5A:4A:14:67:30:B4:BF:AE:F9:F8:38:D3:6E:C6:85:E2:FE:C7:5D:AE
Certificate issuer: /CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Certificate serial: 0185724C532A603DB7BF84520881161C0E50
Authority key identifier: 0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/WkoUZzC0v675-DjTbsaF4v7HXa4.roa
Signing time: Mon 02 Jan 2023 11:44:42 +0000
ROA not before: Mon 02 Jan 2023 11:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25540
IP address blocks: 185.247.32.0/24 maxlen: 24
185.247.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:53:2a:60:3d:b7:bf:84:52:08:81:16:1c:0e:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Validity
Not Before: Jan 2 11:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a4a146730b4bfaef9f838d36ec685e2fec75dae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4f:34:a0:91:76:9c:65:4a:09:a2:89:f5:be:
c1:95:07:12:38:40:b9:3d:1b:46:6d:3c:07:b2:58:
f9:0e:87:fe:31:51:a3:fc:5f:b3:bd:21:94:45:16:
e3:35:70:77:93:1f:95:f2:89:82:b2:df:4a:aa:c7:
b9:43:67:6d:30:1f:c6:9f:29:3b:52:0e:a6:2a:92:
04:73:b7:98:47:a4:08:3f:d3:42:f3:51:2e:51:55:
dc:61:12:c7:57:82:28:b6:be:9b:91:e4:a3:f0:dc:
6f:34:96:51:44:4d:ec:55:4d:07:86:56:5e:c8:8c:
22:fe:f7:55:a1:e2:63:a4:cc:f5:af:83:38:8d:c8:
7b:82:4e:92:c1:65:cf:16:a2:0c:37:70:0a:ac:96:
45:17:3a:2c:23:76:a3:12:df:c3:52:e5:aa:15:dd:
45:95:eb:d1:05:9d:c0:2a:81:70:5e:61:67:f2:18:
e6:86:31:e7:e4:5d:67:b6:9a:f2:1b:b6:e4:4c:ba:
68:84:6d:37:98:5c:43:d6:ac:69:64:07:4d:56:6f:
70:2c:9e:cf:9e:db:4d:09:c3:fe:a1:9a:ef:3d:0e:
60:9b:f8:e1:63:27:2f:c8:4c:1f:64:d2:15:7d:d6:
54:b4:b9:50:4c:78:57:19:a3:d9:f9:14:ec:63:a0:
ba:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:4A:14:67:30:B4:BF:AE:F9:F8:38:D3:6E:C6:85:E2:FE:C7:5D:AE
X509v3 Authority Key Identifier:
keyid:0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/WkoUZzC0v675-DjTbsaF4v7HXa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.32.0/23
Signature Algorithm: sha256WithRSAEncryption
84:9d:c1:9a:fe:bd:3e:1a:ac:6a:11:11:4a:97:f2:fb:30:93:
dd:d4:30:6a:f1:3c:5e:c6:08:34:7e:c0:10:4d:a6:c1:90:fa:
93:34:d0:b6:01:62:67:4f:99:50:3a:cb:87:cf:a4:31:da:f8:
c8:e3:5a:21:6e:8a:33:a7:e7:b0:70:42:a4:1f:c6:e4:44:d0:
0f:0a:ce:b7:9b:38:d0:0d:5f:4c:b1:6d:df:77:c9:39:de:ed:
69:c4:a8:ca:45:07:fe:f0:91:d7:58:b2:e5:2a:1b:2c:f3:18:
b2:17:8f:8a:39:9d:10:3c:2f:43:88:c8:94:2f:80:43:65:2d:
b0:7d:9c:a8:d8:56:77:74:4f:1b:42:27:85:4d:f4:40:49:98:
58:69:e8:1f:5a:6b:3e:d9:1f:0c:a7:26:33:b3:20:cf:7f:c2:
53:5a:d3:b1:de:8a:bd:a9:89:83:95:61:21:37:81:b5:d3:dd:
13:a6:b4:a3:c8:ca:de:d1:14:9a:56:3c:8e:b4:26:0f:f0:c9:
4c:b8:8a:96:9b:5b:31:d3:a1:31:60:67:d1:8a:a8:02:4d:1f:
c2:8b:3b:2d:50:59:75:62:8a:e4:af:47:b7:ab:c6:54:b8:99:
ed:6f:f6:6b:fa:64:68:dc:0f:b7:df:68:2c:a7:b2:5e:c0:44:
b2:67:1f:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyTFMqYD23v4RSCIEWHA5QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmM2YxMzMyY2ZmMDViMjJhM2E2NmE2ZDRjMzQ4ZmJjMDFk
ZTExNWMwHhcNMjMwMTAyMTE0NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTRhMTQ2NzMwYjRiZmFlZjlmODM4ZDM2ZWM2ODVlMmZlYzc1ZGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApE80oJF2nGVKCaKJ9b7BlQcSOEC5
PRtGbTwHslj5Dof+MVGj/F+zvSGURRbjNXB3kx+V8omCst9Kqse5Q2dtMB/Gnyk7
Ug6mKpIEc7eYR6QIP9NC81EuUVXcYRLHV4Iotr6bkeSj8NxvNJZRRE3sVU0HhlZe
yIwi/vdVoeJjpMz1r4M4jch7gk6SwWXPFqIMN3AKrJZFFzosI3ajEt/DUuWqFd1F
levRBZ3AKoFwXmFn8hjmhjHn5F1ntpryG7bkTLpohG03mFxD1qxpZAdNVm9wLJ7P
nttNCcP+oZrvPQ5gm/jhYycvyEwfZNIVfdZUtLlQTHhXGaPZ+RTsY6C6cwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFpKFGcwtL+u+fg4027GheL+x12uMB8GA1UdIwQY
MBaAFA8/EzLP8Fsio6ZqbUw0j7wB3hFcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHo4VE1zX3dXeUtqcG1wdFREU1B2QUhlRVZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi81MjNiOTUtM2RkYy00ODE4LTkyNjUt
ZGFhZjI5MjExOTQ5LzEvV2tvVVp6QzB2Njc1LURqVGJzYUY0djdIWGE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi81MjNiOTUtM2RkYy00ODE4LTkyNjUtZGFhZjI5MjExOTQ5
LzEvRHo4VE1zX3dXeUtqcG1wdFREU1B2QUhlRVZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBufcgMA0G
CSqGSIb3DQEBCwUAA4IBAQCEncGa/r0+GqxqERFKl/L7MJPd1DBq8Txexgg0fsAQ
TabBkPqTNNC2AWJnT5lQOsuHz6Qx2vjI41ohboozp+ewcEKkH8bkRNAPCs63mzjQ
DV9MsW3fd8k53u1pxKjKRQf+8JHXWLLlKhss8xiyF4+KOZ0QPC9DiMiUL4BDZS2w
fZyo2FZ3dE8bQieFTfRASZhYaegfWms+2R8MpyYzsyDPf8JTWtOx3oq9qYmDlWEh
N4G1090TprSjyMre0RSaVjyOtCYP8MlMuIqWm1sx06ExYGfRiqgCTR/CizstUFl1
Yorkr0e3q8ZUuJntb/Zr+mRo3A+332gsp7JewESyZx+b
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:26 2024 by rpki-client on console-ams.rpki-client.org