Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/d9qIPDsgSfBDYQJJ13sgzggS1Qc.roa
File: d9qIPDsgSfBDYQJJ13sgzggS1Qc.roa (raw, json)
Hash identifier: LI1MU/i3OIiD5CkgVyDUTbe7PwvOuVWThX2TNYzx4FM=
Subject key identifier: 77:DA:88:3C:3B:20:49:F0:43:61:02:49:D7:7B:20:CE:08:12:D5:07
Certificate issuer: /CN=05b3017c1693b945b5eda091ec93f85c1be1df36
Certificate serial: 018571FA37B30E05023495FA6163353A43E1
Authority key identifier: 05:B3:01:7C:16:93:B9:45:B5:ED:A0:91:EC:93:F8:5C:1B:E1:DF:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbMBfBaTuUW17aCR7JP4XBvh3zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/d9qIPDsgSfBDYQJJ13sgzggS1Qc.roa
Signing time: Mon 02 Jan 2023 10:15:01 +0000
ROA not before: Mon 02 Jan 2023 10:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197297
IP address blocks: 185.163.112.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:37:b3:0e:05:02:34:95:fa:61:63:35:3a:43:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b3017c1693b945b5eda091ec93f85c1be1df36
Validity
Not Before: Jan 2 10:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77da883c3b2049f043610249d77b20ce0812d507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:c0:00:90:f0:b1:c4:88:35:48:b3:1c:bf:d1:
e6:e8:21:55:3c:3b:ba:38:5b:19:53:e4:d6:45:9b:
25:52:5c:0c:59:2d:12:a1:00:9b:96:ea:3c:6a:76:
a7:55:6d:be:49:ae:d8:bb:36:33:b0:eb:30:b1:9a:
59:a1:97:1d:c7:4d:aa:d8:e3:53:35:cb:b4:ee:f2:
cb:e9:a1:d2:51:aa:a8:60:e4:2c:8c:1e:e6:6e:f6:
7f:08:5b:14:2f:15:d6:10:07:64:d8:57:d9:81:2b:
6c:a2:26:18:cb:b4:69:0f:c7:5b:e7:5f:2e:a3:6b:
ad:ac:5c:58:16:29:d2:01:41:41:4c:f3:79:75:b6:
48:b6:06:a7:68:fb:c6:df:9d:b3:23:10:a7:2a:2a:
51:a0:73:48:0f:30:a0:84:24:a0:a4:d5:0e:49:4e:
62:ab:86:45:b9:1f:96:a2:26:ec:1f:20:a5:7e:d2:
29:01:3f:72:99:ab:8d:e2:54:24:22:17:f6:f1:6a:
ec:1b:17:e7:be:36:1b:eb:c7:67:6f:b7:8b:55:af:
58:ed:96:8f:d3:a9:69:1c:16:4b:fc:f4:69:d6:bd:
00:91:90:f8:78:52:a2:5c:a6:7c:14:f3:68:1e:46:
2f:3a:8c:d6:d6:71:98:b0:b7:d8:ab:49:a6:94:19:
b0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DA:88:3C:3B:20:49:F0:43:61:02:49:D7:7B:20:CE:08:12:D5:07
X509v3 Authority Key Identifier:
keyid:05:B3:01:7C:16:93:B9:45:B5:ED:A0:91:EC:93:F8:5C:1B:E1:DF:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbMBfBaTuUW17aCR7JP4XBvh3zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/d9qIPDsgSfBDYQJJ13sgzggS1Qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/BbMBfBaTuUW17aCR7JP4XBvh3zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.112.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:d0:56:2c:71:83:4b:ac:9d:d9:3e:da:8e:e3:b1:48:5d:7b:
80:e1:e2:6e:5f:fb:60:24:64:66:e3:91:35:74:bc:fc:31:4a:
79:fb:31:95:6a:44:9e:ca:5a:d5:b6:a7:be:0a:16:0d:0f:86:
c9:e8:5e:0c:e5:80:41:d4:f9:04:d4:a2:48:9a:27:65:2e:ff:
96:f0:83:34:dc:01:64:cf:a3:52:3c:54:1e:bc:93:fc:af:53:
1e:6d:35:b4:2c:69:0a:da:80:b2:b9:f5:78:d8:6e:a7:73:7a:
45:8d:36:15:77:18:3e:b6:44:07:bc:da:6f:07:63:e8:4d:75:
38:da:d1:35:d9:db:ff:46:4b:e5:86:f6:3a:8f:30:f9:71:fc:
e5:b8:27:31:c5:96:f5:66:e7:1d:0b:c2:70:6c:d4:2f:16:67:
00:39:a3:2e:93:cb:ec:06:62:f2:32:d8:fa:92:1c:c6:3c:be:
46:5e:29:4b:7c:d8:4a:26:5e:3f:d6:2d:b4:75:d0:95:2e:c1:
45:23:4d:65:5d:97:90:35:9b:1e:55:4c:1c:d2:e0:65:23:96:
0a:54:23:31:4f:d7:ce:76:dd:6c:9c:c3:a2:47:ca:ea:89:8b:
4b:9e:dd:8b:f3:1b:d3:e3:ca:a7:4e:ca:27:b2:8d:d9:8d:70:
64:86:50:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx+jezDgUCNJX6YWM1OkPhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YjMwMTdjMTY5M2I5NDViNWVkYTA5MWVjOTNmODVjMWJl
MWRmMzYwHhcNMjMwMTAyMTAxNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2RhODgzYzNiMjA0OWYwNDM2MTAyNDlkNzdiMjBjZTA4MTJkNTA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+MAAkPCxxIg1SLMcv9Hm6CFVPDu6
OFsZU+TWRZslUlwMWS0SoQCbluo8ananVW2+Sa7YuzYzsOswsZpZoZcdx02q2ONT
Ncu07vLL6aHSUaqoYOQsjB7mbvZ/CFsULxXWEAdk2FfZgStsoiYYy7RpD8db518u
o2utrFxYFinSAUFBTPN5dbZItganaPvG352zIxCnKipRoHNIDzCghCSgpNUOSU5i
q4ZFuR+WoibsHyClftIpAT9ymauN4lQkIhf28WrsGxfnvjYb68dnb7eLVa9Y7ZaP
06lpHBZL/PRp1r0AkZD4eFKiXKZ8FPNoHkYvOozW1nGYsLfYq0mmlBmwQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHfaiDw7IEnwQ2ECSdd7IM4IEtUHMB8GA1UdIwQY
MBaAFAWzAXwWk7lFte2gkeyT+Fwb4d82MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmJNQmZCYVR1VVcxN2FDUjdKUDRYQnZoM3pZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC81Zjc1YWQtODNhNi00OTg0LTg2ZmQt
YWEyNzdlMzg5ZmRjLzEvZDlxSVBEc2dTZkJEWVFKSjEzc2d6Z2dTMVFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC81Zjc1YWQtODNhNi00OTg0LTg2ZmQtYWEyNzdlMzg5ZmRj
LzEvQmJNQmZCYVR1VVcxN2FDUjdKUDRYQnZoM3pZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaNwMA0G
CSqGSIb3DQEBCwUAA4IBAQDA0FYscYNLrJ3ZPtqO47FIXXuA4eJuX/tgJGRm45E1
dLz8MUp5+zGVakSeylrVtqe+ChYND4bJ6F4M5YBB1PkE1KJImidlLv+W8IM03AFk
z6NSPFQevJP8r1MebTW0LGkK2oCyufV42G6nc3pFjTYVdxg+tkQHvNpvB2PoTXU4
2tE12dv/RkvlhvY6jzD5cfzluCcxxZb1ZucdC8JwbNQvFmcAOaMuk8vsBmLyMtj6
khzGPL5GXilLfNhKJl4/1i20ddCVLsFFI01lXZeQNZseVUwc0uBlI5YKVCMxT9fO
dt1snMOiR8rqiYtLnt2L8xvT48qnTsonso3ZjXBkhlB5
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:37 2024 by rpki-client on console-fra.rpki-client.org