Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/JpGSuS9c1n_sXwaoaa1RGvQ0aYo.roa
File: JpGSuS9c1n_sXwaoaa1RGvQ0aYo.roa (raw, json)
Hash identifier: tOOkyzutC7XO1ahqRhI8rupr1PCEs5hBwz5DJ/jSMho=
Subject key identifier: 26:91:92:B9:2F:5C:D6:7F:EC:5F:06:A8:69:AD:51:1A:F4:34:69:8A
Certificate issuer: /CN=b4ec6c0a5ebec5817d91b91e79a6bc6132eb9d2c
Certificate serial: 01856E144FA5084FF80739E435CB8367C700
Authority key identifier: B4:EC:6C:0A:5E:BE:C5:81:7D:91:B9:1E:79:A6:BC:61:32:EB:9D:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOxsCl6-xYF9kbkeeaa8YTLrnSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/JpGSuS9c1n_sXwaoaa1RGvQ0aYo.roa
Signing time: Sun 01 Jan 2023 16:05:02 +0000
ROA not before: Sun 01 Jan 2023 16:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.77.2.0/24 maxlen: 24
185.77.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:4f:a5:08:4f:f8:07:39:e4:35:cb:83:67:c7:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4ec6c0a5ebec5817d91b91e79a6bc6132eb9d2c
Validity
Not Before: Jan 1 16:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=269192b92f5cd67fec5f06a869ad511af434698a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4f:2a:88:1e:8c:c2:85:79:18:3e:4e:ee:bc:
af:2b:1d:68:d4:1b:d7:21:e1:e1:41:de:b7:45:31:
dc:17:44:fc:48:66:b4:23:1e:2d:9c:57:4d:6a:63:
75:a6:69:62:6d:3a:f2:6e:bf:9f:62:68:39:1a:86:
fb:1d:5c:20:4c:bc:83:d6:d5:b6:f1:ed:df:be:49:
a1:84:0a:cd:4b:bc:6d:bb:36:93:26:58:7c:10:34:
90:20:cf:d5:92:23:0c:59:2c:ee:3e:66:d4:f8:d4:
66:a1:ef:48:8b:23:34:65:0e:24:79:8e:94:72:b2:
bf:06:97:ec:72:74:c5:a7:98:48:3c:0d:02:d3:e6:
42:0e:d7:07:2c:81:ca:3c:68:ca:7c:b0:44:43:0d:
77:4c:45:e4:35:7c:9e:08:82:c7:34:c6:2c:ed:42:
40:77:ae:bd:79:0f:41:a3:94:bf:57:3c:a4:9a:51:
96:35:45:e4:10:e2:c8:f5:af:fa:74:96:a1:b3:0b:
9f:b6:e7:95:7f:8e:02:5d:f0:7c:9e:86:5d:15:9e:
71:04:cc:7a:7b:b3:24:21:e8:7c:30:29:c9:ad:d4:
59:f3:9b:d3:9d:eb:3f:2f:8a:bb:7f:00:94:14:56:
4a:b2:c7:e8:0e:02:51:87:a6:5c:29:e4:8b:7e:14:
be:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:91:92:B9:2F:5C:D6:7F:EC:5F:06:A8:69:AD:51:1A:F4:34:69:8A
X509v3 Authority Key Identifier:
keyid:B4:EC:6C:0A:5E:BE:C5:81:7D:91:B9:1E:79:A6:BC:61:32:EB:9D:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOxsCl6-xYF9kbkeeaa8YTLrnSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/JpGSuS9c1n_sXwaoaa1RGvQ0aYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/tOxsCl6-xYF9kbkeeaa8YTLrnSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.1.0-185.77.2.255
Signature Algorithm: sha256WithRSAEncryption
54:bb:47:84:d9:12:81:3b:a0:32:9a:db:7a:d7:ec:4c:ca:b1:
54:d8:77:04:ab:4a:d7:df:cc:13:2a:ac:a5:76:7c:5d:aa:5d:
61:a5:e1:c6:98:c4:f2:6e:60:ec:50:b6:f9:c1:e9:f2:91:93:
bc:cc:26:a5:85:3a:7c:83:e9:40:9a:ec:0e:0d:66:00:ae:20:
d7:4e:e8:c6:be:29:78:94:4c:bb:93:40:0c:b1:b0:0d:ec:a9:
2b:ad:2c:51:8c:ff:51:69:36:91:0a:fa:dc:b1:be:1d:0a:28:
4c:2e:1b:9d:6f:16:ea:2d:f1:af:7c:d2:5f:bd:e5:0b:e5:23:
98:7a:38:0c:c9:50:08:68:40:14:7a:3e:8d:18:9b:5d:2f:ec:
3d:12:cb:24:8b:78:e3:d2:78:a2:5d:1b:6b:f5:77:d1:bb:a6:
bc:31:cb:19:1e:8f:f0:80:89:3f:12:df:56:b3:67:67:c0:63:
df:3b:23:01:da:77:65:83:78:3f:2b:88:2f:0e:87:4a:86:14:
f1:f5:24:b3:de:43:40:5a:ff:61:ef:2c:0b:99:3e:ff:76:9f:
14:30:29:84:7b:d7:3c:94:af:ff:2e:5c:12:75:c7:54:69:10:
97:2c:95:6b:60:e0:f1:e6:9d:92:30:23:1c:b9:c2:cd:9a:7c:
d9:b3:37:d4
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVuFE+lCE/4BznkNcuDZ8cAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZWM2YzBhNWViZWM1ODE3ZDkxYjkxZTc5YTZiYzYxMzJl
YjlkMmMwHhcNMjMwMTAxMTYwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjkxOTJiOTJmNWNkNjdmZWM1ZjA2YTg2OWFkNTExYWY0MzQ2OThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqk8qiB6MwoV5GD5O7ryvKx1o1BvX
IeHhQd63RTHcF0T8SGa0Ix4tnFdNamN1pmlibTrybr+fYmg5Gob7HVwgTLyD1tW2
8e3fvkmhhArNS7xtuzaTJlh8EDSQIM/VkiMMWSzuPmbU+NRmoe9IiyM0ZQ4keY6U
crK/BpfscnTFp5hIPA0C0+ZCDtcHLIHKPGjKfLBEQw13TEXkNXyeCILHNMYs7UJA
d669eQ9Bo5S/VzykmlGWNUXkEOLI9a/6dJahswuftueVf44CXfB8noZdFZ5xBMx6
e7MkIeh8MCnJrdRZ85vTnes/L4q7fwCUFFZKssfoDgJRh6ZcKeSLfhS+rQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFCaRkrkvXNZ/7F8GqGmtURr0NGmKMB8GA1UdIwQY
MBaAFLTsbApevsWBfZG5HnmmvGEy650sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdE94c0NsNi14WUY5a2JrZWVhYThZVExyblN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8yMDk3NGQtNjQwMy00MTA3LWE3NWIt
MTNmYjdhNTEzMGNhLzEvSnBHU3VTOWMxbl9zWHdhb2FhMVJHdlEwYVlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8yMDk3NGQtNjQwMy00MTA3LWE3NWItMTNmYjdhNTEzMGNh
LzEvdE94c0NsNi14WUY5a2JrZWVhYThZVExyblN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC5TQED
BAC5TQIwDQYJKoZIhvcNAQELBQADggEBAFS7R4TZEoE7oDKa23rX7EzKsVTYdwSr
StffzBMqrKV2fF2qXWGl4caYxPJuYOxQtvnB6fKRk7zMJqWFOnyD6UCa7A4NZgCu
INdO6Ma+KXiUTLuTQAyxsA3sqSutLFGM/1FpNpEK+tyxvh0KKEwuG51vFuot8a98
0l+95QvlI5h6OAzJUAhoQBR6Po0Ym10v7D0SyySLeOPSeKJdG2v1d9G7prwxyxke
j/CAiT8S31azZ2fAY987IwHad2WDeD8riC8Oh0qGFPH1JLPeQ0Ba/2HvLAuZPv92
nxQwKYR71zyUr/8uXBJ1x1RpEJcslWtg4PHmnZIwIxy5ws2afNmzN9Q=
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:44 2024 by rpki-client on console-ams.rpki-client.org