Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/K-6JiTNYR6vDqnRKaPBXnWwqw7g.roa
File: K-6JiTNYR6vDqnRKaPBXnWwqw7g.roa (raw, json)
Hash identifier: /tcuFMgFtwi9/Qy2cAi6oM/PgGTNc4p+brG5lZiqUxo=
Subject key identifier: 2B:EE:89:89:33:58:47:AB:C3:AA:74:4A:68:F0:57:9D:6C:2A:C3:B8
Certificate issuer: /CN=52ecb0e85d0b7feea4a82ac9448d47c3ec0af053
Certificate serial: 01856BAEA6A16D9067E2B0C8C5CCFA806918
Authority key identifier: 52:EC:B0:E8:5D:0B:7F:EE:A4:A8:2A:C9:44:8D:47:C3:EC:0A:F0:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/K-6JiTNYR6vDqnRKaPBXnWwqw7g.roa
Signing time: Sun 01 Jan 2023 04:54:45 +0000
ROA not before: Sun 01 Jan 2023 04:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200418
IP address blocks: 185.107.228.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:a6:a1:6d:90:67:e2:b0:c8:c5:cc:fa:80:69:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52ecb0e85d0b7feea4a82ac9448d47c3ec0af053
Validity
Not Before: Jan 1 04:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bee8989335847abc3aa744a68f0579d6c2ac3b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:57:f3:84:f4:b7:40:85:c7:44:c6:c8:32:0f:
b2:a4:f1:7c:4a:af:39:05:64:fb:b4:1d:b2:11:1d:
45:2d:76:ee:c5:73:60:d2:41:14:fb:78:8c:69:67:
00:8b:39:71:90:47:41:2c:e7:3a:83:6c:c5:f9:fc:
bb:14:d9:bf:4e:56:f2:d6:62:ea:f2:59:81:8a:11:
f1:46:e0:2d:73:01:d2:43:33:c6:f3:5a:58:f4:75:
fa:c9:a6:ae:00:fd:75:d2:50:eb:38:80:3f:16:bb:
be:78:0a:a9:6c:43:40:d3:4f:22:bd:07:c0:b9:33:
df:ca:8c:42:e5:d1:ba:8e:6d:82:e6:a3:d2:e7:2c:
e1:5a:71:60:3a:a1:59:c8:28:43:49:bf:e4:54:12:
10:41:ad:f3:bd:62:c8:e8:a7:79:c2:8b:4b:11:03:
c8:8b:8d:20:b2:13:2f:c7:61:24:59:ec:1e:db:07:
dd:c2:3b:a8:23:a2:06:be:37:82:e9:ed:c7:3c:40:
7d:7d:c3:43:1f:b2:d0:24:bf:5c:df:a7:c9:5f:ba:
92:39:4b:77:c5:f2:e0:3f:be:db:6d:32:a9:3b:3c:
72:af:0c:b5:c2:0a:76:36:04:53:b4:e3:19:51:02:
95:cd:87:e9:d5:b4:22:b1:27:16:79:2f:a7:7b:29:
80:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:EE:89:89:33:58:47:AB:C3:AA:74:4A:68:F0:57:9D:6C:2A:C3:B8
X509v3 Authority Key Identifier:
keyid:52:EC:B0:E8:5D:0B:7F:EE:A4:A8:2A:C9:44:8D:47:C3:EC:0A:F0:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/K-6JiTNYR6vDqnRKaPBXnWwqw7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.228.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:84:b8:55:c9:0b:99:f7:fa:2b:ae:e0:4a:9c:3b:f8:35:a9:
60:2c:f0:d8:09:f8:8f:47:70:35:a6:54:6c:90:d6:09:27:6c:
e3:0a:38:7f:64:4b:56:3e:ad:fe:d6:3c:00:89:87:54:fa:cc:
78:58:75:1a:82:3f:a6:ac:de:23:8e:ad:b1:23:8b:41:87:b5:
f6:86:90:ae:30:a5:dd:99:03:1e:3c:9b:d5:fb:76:a9:b1:45:
3f:f4:16:84:45:d0:0a:83:70:9b:e7:1a:5c:1e:d0:ab:73:ae:
f0:52:c0:3a:fa:09:65:ba:9e:f8:1c:5f:0a:9d:b6:47:c2:06:
39:71:ed:59:59:2b:ae:47:68:4f:84:d5:63:cc:62:7c:fd:a8:
c3:2e:43:fe:70:b6:6a:62:3c:b6:1e:e2:f0:40:0c:20:58:da:
f6:3d:88:ba:10:b0:52:00:ab:01:67:75:ff:4c:8c:5b:af:77:
d0:96:19:7b:47:bf:c6:89:4c:7a:33:5d:d7:f6:c1:9f:b1:1a:
bb:44:8e:12:12:32:d5:1c:27:2a:26:66:4a:cf:7b:76:62:59:
6a:f2:43:cd:88:4f:de:38:bd:48:9d:01:fc:a7:f1:ee:61:d9:
1a:4b:9c:5f:ba:21:5d:93:e9:f4:c5:d9:5b:14:7a:4f:6a:c3:
8d:0d:53:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrrqahbZBn4rDIxcz6gGkYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyZWNiMGU4NWQwYjdmZWVhNGE4MmFjOTQ0OGQ0N2MzZWMw
YWYwNTMwHhcNMjMwMTAxMDQ1NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYmVlODk4OTMzNTg0N2FiYzNhYTc0NGE2OGYwNTc5ZDZjMmFjM2I4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFfzhPS3QIXHRMbIMg+ypPF8Sq85
BWT7tB2yER1FLXbuxXNg0kEU+3iMaWcAizlxkEdBLOc6g2zF+fy7FNm/Tlby1mLq
8lmBihHxRuAtcwHSQzPG81pY9HX6yaauAP110lDrOIA/Fru+eAqpbENA008ivQfA
uTPfyoxC5dG6jm2C5qPS5yzhWnFgOqFZyChDSb/kVBIQQa3zvWLI6Kd5wotLEQPI
i40gshMvx2EkWewe2wfdwjuoI6IGvjeC6e3HPEB9fcNDH7LQJL9c36fJX7qSOUt3
xfLgP77bbTKpOzxyrwy1wgp2NgRTtOMZUQKVzYfp1bQisScWeS+neymAnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCvuiYkzWEerw6p0SmjwV51sKsO4MB8GA1UdIwQY
MBaAFFLssOhdC3/upKgqyUSNR8PsCvBTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXV5dzZGMExmLTZrcUNySlJJMUh3LXdLOEZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9kYjNlNTYtZTgzMi00OTFkLWI1MzAt
Y2E0ZjY2YjA5MDY4LzEvSy02SmlUTllSNnZEcW5SS2FQQlhuV3dxdzdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9kYjNlNTYtZTgzMi00OTFkLWI1MzAtY2E0ZjY2YjA5MDY4
LzEvVXV5dzZGMExmLTZrcUNySlJJMUh3LXdLOEZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuWvkMA0G
CSqGSIb3DQEBCwUAA4IBAQCOhLhVyQuZ9/orruBKnDv4NalgLPDYCfiPR3A1plRs
kNYJJ2zjCjh/ZEtWPq3+1jwAiYdU+sx4WHUagj+mrN4jjq2xI4tBh7X2hpCuMKXd
mQMePJvV+3apsUU/9BaERdAKg3Cb5xpcHtCrc67wUsA6+gllup74HF8KnbZHwgY5
ce1ZWSuuR2hPhNVjzGJ8/ajDLkP+cLZqYjy2HuLwQAwgWNr2PYi6ELBSAKsBZ3X/
TIxbr3fQlhl7R7/GiUx6M13X9sGfsRq7RI4SEjLVHCcqJmZKz3t2Yllq8kPNiE/e
OL1InQH8p/HuYdkaS5xfuiFdk+n0xdlbFHpPasONDVNz
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:48 2024 by rpki-client on console-fra.rpki-client.org