Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/T926IKNAgUhA2GKqaNM37C74unE.roa
File: T926IKNAgUhA2GKqaNM37C74unE.roa (raw, json)
Hash identifier: nlCBVXI+TjJ/plU33u12UmOFgaLjbnnr5AxvWNRyTpw=
Subject key identifier: 4F:DD:BA:20:A3:40:81:48:40:D8:62:AA:68:D3:37:EC:2E:F8:BA:71
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018894A528DC2D2259B61DCA64BCE4A3B472
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/T926IKNAgUhA2GKqaNM37C74unE.roa
Signing time: Wed 07 Jun 2023 06:57:11 +0000
ROA not before: Wed 07 Jun 2023 06:57:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13213
IP address blocks: 85.203.22.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:a5:28:dc:2d:22:59:b6:1d:ca:64:bc:e4:a3:b4:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jun 7 06:57:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4fddba20a340814840d862aa68d337ec2ef8ba71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b9:b4:b7:53:42:47:a6:50:28:ab:a3:eb:ac:
8b:52:ee:ea:87:6d:f0:81:b9:aa:12:49:f7:d4:43:
96:99:a7:55:6e:c1:55:f3:67:8b:b2:5e:24:98:cd:
f6:94:4c:86:bb:50:1d:aa:d6:0c:31:7b:51:6b:1d:
4f:96:69:0b:43:43:18:63:f2:b1:9e:d4:fc:b9:60:
c9:5c:c1:31:d6:53:b3:c1:d3:a4:19:dd:df:71:8b:
c5:ce:c1:62:69:e3:4b:93:f6:8d:1c:0b:11:1f:f3:
85:99:61:1e:d7:f0:55:ee:af:c1:eb:36:cc:4c:16:
92:06:3d:5e:a3:1e:1c:a0:02:fb:f0:1d:81:61:2f:
3e:59:6d:9a:a8:0e:43:b4:31:26:31:85:c7:be:59:
3d:b2:b0:ac:5e:be:25:e8:c3:8f:74:8a:aa:40:3c:
2e:bc:28:f1:85:e3:da:2a:35:04:d9:82:ea:2e:0f:
22:44:29:2a:94:0c:b2:d6:a3:0d:08:03:83:ae:2e:
29:90:9f:50:75:f7:cd:d5:8b:b2:6a:b5:e9:f6:6f:
6c:15:a2:2d:62:0d:0f:f7:89:14:fb:a2:5f:93:89:
46:fe:41:cb:20:03:a5:fa:4d:bb:cb:5c:cb:66:fe:
47:03:f0:61:f0:71:a7:54:60:8b:35:94:97:1f:a3:
de:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:DD:BA:20:A3:40:81:48:40:D8:62:AA:68:D3:37:EC:2E:F8:BA:71
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/T926IKNAgUhA2GKqaNM37C74unE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.22.0/24
Signature Algorithm: sha256WithRSAEncryption
28:1e:bc:9f:72:10:f8:fd:ed:ed:c8:0a:6f:b6:f3:66:9b:d3:
14:16:4c:a4:9a:a6:a1:95:bc:ae:d1:5b:08:72:e8:15:38:68:
86:e6:3c:49:25:77:16:1b:bc:29:e2:0d:da:bf:4a:89:83:5e:
bf:0e:a0:b3:f4:dc:bf:89:99:3e:c1:0b:2b:27:32:71:49:2b:
62:45:6e:2a:6e:70:67:01:9f:5f:d9:2a:42:e0:78:a2:e0:f3:
17:f5:00:38:f7:49:b1:32:0d:dc:a0:73:80:11:21:dd:74:35:
35:36:31:9c:a9:d1:fc:44:af:1e:bc:26:c6:09:aa:16:2b:c1:
fe:0d:4a:2c:62:f1:09:61:cd:45:ff:49:c1:87:5a:23:de:40:
c1:7b:1b:d6:b1:2e:cd:66:e4:b8:18:cf:6b:a5:7e:ec:87:1a:
02:dd:c5:6d:6d:a0:95:79:a8:e1:ff:4a:37:d9:29:36:c5:b3:
3b:42:c4:bd:f7:e5:62:9d:d1:6b:ba:ab:de:35:bd:27:d5:26:
9a:e2:b8:60:ee:7c:b1:c9:70:e3:36:60:61:65:36:17:2a:d0:
4d:e9:25:78:d0:4f:52:23:de:7d:80:a0:12:89:93:fd:9b:cd:
9f:8b:79:30:4d:c0:1b:c5:01:c7:61:ee:04:63:b6:ce:5c:6d:
17:a9:a7:ad
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYiUpSjcLSJZth3KZLzko7RyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NWJkZjZlZWMwODM3MGFlMWY2N2U4M2Y5OWI1YWMxZmUy
Njg3MmMwHhcNMjMwNjA3MDY1NzExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZmRkYmEyMGEzNDA4MTQ4NDBkODYyYWE2OGQzMzdlYzJlZjhiYTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkrm0t1NCR6ZQKKuj66yLUu7qh23w
gbmqEkn31EOWmadVbsFV82eLsl4kmM32lEyGu1AdqtYMMXtRax1PlmkLQ0MYY/Kx
ntT8uWDJXMEx1lOzwdOkGd3fcYvFzsFiaeNLk/aNHAsRH/OFmWEe1/BV7q/B6zbM
TBaSBj1eox4coAL78B2BYS8+WW2aqA5DtDEmMYXHvlk9srCsXr4l6MOPdIqqQDwu
vCjxhePaKjUE2YLqLg8iRCkqlAyy1qMNCAODri4pkJ9QdffN1YuyarXp9m9sFaIt
Yg0P94kU+6Jfk4lG/kHLIAOl+k27y1zLZv5HA/Bh8HGnVGCLNZSXH6PeVwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE/duiCjQIFIQNhiqmjTN+wu+LpxMB8GA1UdIwQY
MBaAFNRb327sCDcK4fZ+g/mbWsH+JocsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUZ2ZmJ1d0lOd3JoOW42RC1adGF3ZjRtaHl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9lMmRmZmYtOGJhOC00YmNmLWFjMzEt
OTg0NjM4NTllY2MxLzEvVDkyNklLTkFnVWhBMkdLcWFOTTM3Qzc0dW5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9lMmRmZmYtOGJhOC00YmNmLWFjMzEtOTg0NjM4NTllY2Mx
LzEvMUZ2ZmJ1d0lOd3JoOW42RC1adGF3ZjRtaHl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVcsWMA0G
CSqGSIb3DQEBCwUAA4IBAQAoHryfchD4/e3tyApvtvNmm9MUFkykmqahlbyu0VsI
cugVOGiG5jxJJXcWG7wp4g3av0qJg16/DqCz9Ny/iZk+wQsrJzJxSStiRW4qbnBn
AZ9f2SpC4Hii4PMX9QA490mxMg3coHOAESHddDU1NjGcqdH8RK8evCbGCaoWK8H+
DUosYvEJYc1F/0nBh1oj3kDBexvWsS7NZuS4GM9rpX7shxoC3cVtbaCVeajh/0o3
2Sk2xbM7QsS99+VindFruqveNb0n1Saa4rhg7nyxyXDjNmBhZTYXKtBN6SV40E9S
I959gKASiZP9m82fi3kwTcAbxQHHYe4EY7bOXG0Xqaet
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org