Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/v34STCaqhlUuxp0htRF4KWWNJMs.roa
File: v34STCaqhlUuxp0htRF4KWWNJMs.roa (raw, json)
Hash identifier: XIbm6NR6XBoqkrn02OvILkMSimzzlnYHsROZriRjiss=
Subject key identifier: BF:7E:12:4C:26:AA:86:55:2E:C6:9D:21:B5:11:78:29:65:8D:24:CB
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 0185955791743A3AC22F3E8D2C96A754838E
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/v34STCaqhlUuxp0htRF4KWWNJMs.roa
Signing time: Mon 09 Jan 2023 07:03:42 +0000
ROA not before: Mon 09 Jan 2023 07:03:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 185.101.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:57:91:74:3a:3a:c2:2f:3e:8d:2c:96:a7:54:83:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Jan 9 07:03:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf7e124c26aa86552ec69d21b5117829658d24cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:57:7b:86:52:5d:35:48:0e:9b:d2:ac:97:ca:
ac:4d:2f:e8:7f:c5:c2:f8:f9:52:54:c1:86:bb:75:
4a:57:1a:2c:21:88:67:5e:dc:a5:08:c5:80:6f:81:
ca:05:46:c6:89:3a:c7:8b:fa:bb:6a:5d:4c:e9:22:
2a:e8:54:4f:9c:ce:1e:ee:77:f6:22:64:6c:8e:2d:
1d:05:ce:9a:a7:eb:e2:88:65:81:f1:4f:c4:5d:66:
65:56:30:76:5e:a9:c9:59:dd:40:01:68:03:cb:97:
79:d7:9e:63:d7:50:0e:e6:3e:2f:17:61:ff:22:dd:
a9:32:28:44:74:ae:09:33:c7:e7:50:0d:47:c0:71:
df:07:f3:d4:dd:3a:dd:5b:6d:2c:94:bd:65:65:66:
c5:2b:4c:d5:44:4c:d2:5a:f1:bc:55:2f:38:b3:64:
31:4c:ca:08:01:09:af:3a:d1:b4:be:00:d8:0a:66:
09:e9:ee:d6:05:e7:6f:db:1f:8c:3c:7e:3b:9d:b8:
4e:b2:91:48:10:b5:4c:6f:90:93:af:e1:64:45:57:
64:df:c7:8f:0b:da:c0:70:45:99:ff:f5:af:4f:c7:
be:37:00:9e:1c:1c:76:27:ba:44:9d:83:df:2e:9f:
07:02:cf:b2:97:d6:b0:12:40:07:7a:cd:66:ef:01:
3a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7E:12:4C:26:AA:86:55:2E:C6:9D:21:B5:11:78:29:65:8D:24:CB
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/v34STCaqhlUuxp0htRF4KWWNJMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.171.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:c7:ce:7c:b7:6b:18:ea:74:2d:04:81:b9:07:24:77:16:59:
8f:c7:e0:47:7b:58:63:b8:bd:b4:84:79:a8:34:53:de:b4:b5:
56:c3:8f:3e:38:1a:d3:48:b8:91:ea:6d:49:cf:a6:3b:49:c0:
bf:14:d5:ab:d7:84:99:bc:c0:99:aa:81:38:d9:a6:6d:08:a2:
af:42:5f:18:4c:25:b3:57:69:12:86:d1:44:86:c1:52:0d:82:
12:83:a2:86:94:c6:2c:c0:e4:a1:f2:60:d4:36:b4:6b:4c:66:
bc:99:cb:de:ac:85:7f:e5:14:77:39:12:ba:fe:42:52:70:f6:
7c:06:af:31:5b:43:3b:99:f4:43:e8:d2:4c:8b:5c:bd:5f:a9:
67:69:ab:8f:98:66:be:a7:2e:3d:da:95:22:10:04:98:fe:82:
59:5a:a4:18:81:e6:98:d6:6e:7c:bb:81:9f:42:15:44:5a:46:
7b:dd:e9:39:08:04:24:69:f5:a7:05:17:46:01:f2:51:26:ec:
04:0d:12:80:d4:42:16:d9:47:75:a4:87:98:f3:c6:5d:73:44:
24:9d:e3:a2:80:22:ba:eb:43:11:81:8f:64:b9:41:6c:cc:41:
d3:86:d1:67:95:05:0c:fb:cb:af:34:1f:18:99:6c:31:b2:83:
26:0b:24:1f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWVV5F0OjrCLz6NLJanVIOOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0MWZkYzdhMmYxMWE1NzY2ZDNhZDdiZGY2MjVjZTVlMTE5
YThmZGYwHhcNMjMwMTA5MDcwMzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjdlMTI0YzI2YWE4NjU1MmVjNjlkMjFiNTExNzgyOTY1OGQyNGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAold7hlJdNUgOm9Ksl8qsTS/of8XC
+PlSVMGGu3VKVxosIYhnXtylCMWAb4HKBUbGiTrHi/q7al1M6SIq6FRPnM4e7nf2
ImRsji0dBc6ap+viiGWB8U/EXWZlVjB2XqnJWd1AAWgDy5d5155j11AO5j4vF2H/
It2pMihEdK4JM8fnUA1HwHHfB/PU3TrdW20slL1lZWbFK0zVREzSWvG8VS84s2Qx
TMoIAQmvOtG0vgDYCmYJ6e7WBedv2x+MPH47nbhOspFIELVMb5CTr+FkRVdk38eP
C9rAcEWZ//WvT8e+NwCeHBx2J7pEnYPfLp8HAs+yl9awEkAHes1m7wE6fQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL9+EkwmqoZVLsadIbUReClljSTLMB8GA1UdIwQY
MBaAFFQf3HovEaV2bTrXvfYlzl4Rmo/fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkJfY2VpOFJwWFp0T3RlOTlpWE9YaEdhajk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC84ZmFkNjctYmI2Yi00NzczLWI4MWUt
YzkwMGE4OWYyMGYxLzEvdjM0U1RDYXFobFV1eHAwaHRSRjRLV1dOSk1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC84ZmFkNjctYmI2Yi00NzczLWI4MWUtYzkwMGE4OWYyMGYx
LzEvVkJfY2VpOFJwWFp0T3RlOTlpWE9YaEdhajk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWWrMA0G
CSqGSIb3DQEBCwUAA4IBAQCkx858t2sY6nQtBIG5ByR3FlmPx+BHe1hjuL20hHmo
NFPetLVWw48+OBrTSLiR6m1Jz6Y7ScC/FNWr14SZvMCZqoE42aZtCKKvQl8YTCWz
V2kShtFEhsFSDYISg6KGlMYswOSh8mDUNrRrTGa8mcverIV/5RR3ORK6/kJScPZ8
Bq8xW0M7mfRD6NJMi1y9X6lnaauPmGa+py492pUiEASY/oJZWqQYgeaY1m58u4Gf
QhVEWkZ73ek5CAQkafWnBRdGAfJRJuwEDRKA1EIW2Ud1pIeY88Zdc0QkneOigCK6
60MRgY9kuUFszEHThtFnlQUM+8uvNB8YmWwxsoMmCyQf
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:57 2023 by rpki-client on console-fra.rpki-client.org