Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/oCoFa1fce9mTIgJfo_UmFk4rUm8.roa
File: oCoFa1fce9mTIgJfo_UmFk4rUm8.roa (raw, json)
Hash identifier: m93jwZznDGekKl5mYEZhMvzGHRMphV3QgFyQ4GfEaz8=
Subject key identifier: A0:2A:05:6B:57:DC:7B:D9:93:22:02:5F:A3:F5:26:16:4E:2B:52:6F
Certificate issuer: /CN=215a409d27b9a69346324004694da11beae02dbb
Certificate serial: 0187D8805A547A86F10CC6DBD875C3077BCE
Authority key identifier: 21:5A:40:9D:27:B9:A6:93:46:32:40:04:69:4D:A1:1B:EA:E0:2D:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVpAnSe5ppNGMkAEaU2hG-rgLbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/oCoFa1fce9mTIgJfo_UmFk4rUm8.roa
Signing time: Mon 01 May 2023 18:08:23 +0000
ROA not before: Mon 01 May 2023 18:08:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199557
IP address blocks: 185.134.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d8:80:5a:54:7a:86:f1:0c:c6:db:d8:75:c3:07:7b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215a409d27b9a69346324004694da11beae02dbb
Validity
Not Before: May 1 18:08:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a02a056b57dc7bd99322025fa3f526164e2b526f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f2:45:6b:b3:5f:aa:82:2f:dc:90:93:d9:94:
72:cf:70:6b:71:b2:1a:31:ea:18:30:f4:3f:cf:c1:
32:de:8d:00:bf:bf:d0:57:49:72:3b:a2:b5:4c:a9:
39:a9:8d:ae:4f:d3:fe:d3:5d:67:8a:44:8a:6e:c7:
6d:a3:b6:8e:1b:f1:33:50:eb:57:f7:f8:3b:b1:8c:
2a:43:1f:d1:3c:7c:f1:9f:0c:de:43:48:00:37:7b:
af:03:86:24:64:06:27:4d:0b:29:9b:52:df:12:86:
1f:3f:19:92:47:d1:19:7e:9d:a5:e8:a3:34:08:98:
c2:39:d5:69:79:83:2d:8b:77:8e:82:8e:05:f8:35:
cf:9e:73:a1:20:57:df:2a:11:9e:2d:37:8e:9a:d2:
5e:65:88:ec:38:63:dc:31:43:9b:fa:a0:ec:a2:48:
ab:18:41:74:bc:1f:ba:4a:1a:b7:c7:8c:c3:be:87:
09:60:43:a9:86:ae:c8:11:ce:3b:47:b1:b8:59:70:
74:19:79:fc:73:7b:1b:81:9d:70:98:66:19:24:f3:
f0:57:eb:4e:61:2c:ae:ad:1c:e0:6d:f6:d0:3d:8d:
b9:71:cd:64:de:83:87:ee:ad:5d:0e:2c:61:d0:2f:
83:6c:65:8f:77:12:da:74:f6:b3:6d:44:cd:59:88:
b3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2A:05:6B:57:DC:7B:D9:93:22:02:5F:A3:F5:26:16:4E:2B:52:6F
X509v3 Authority Key Identifier:
keyid:21:5A:40:9D:27:B9:A6:93:46:32:40:04:69:4D:A1:1B:EA:E0:2D:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVpAnSe5ppNGMkAEaU2hG-rgLbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/oCoFa1fce9mTIgJfo_UmFk4rUm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/IVpAnSe5ppNGMkAEaU2hG-rgLbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.176.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:f0:96:7e:58:b4:75:67:c5:d7:d5:a4:4d:e5:dd:b5:ce:d9:
37:8f:18:8d:cd:aa:17:77:39:d2:24:d8:97:5a:92:c9:1e:15:
69:84:70:f3:c8:a4:2f:5c:fb:cc:33:cc:67:05:74:fa:a9:15:
78:19:5d:ad:fb:cd:41:b4:b1:57:c6:e0:74:42:ac:97:aa:49:
cb:89:75:ba:7f:26:85:ae:47:f7:36:c5:0a:84:e8:7c:3b:7e:
ea:c8:ee:f1:c6:62:af:7f:51:57:5e:11:8c:0a:8b:3b:ca:59:
3a:02:c9:72:26:67:7a:83:df:51:88:82:5e:d8:2f:15:7c:27:
cc:1e:ff:a0:a4:cc:a2:58:fd:f3:5e:85:64:6f:58:e7:97:25:
ee:68:af:b0:e9:e8:ca:13:a2:ec:03:0e:17:c7:45:39:d4:36:
70:58:8b:60:ce:56:01:4a:0d:6b:0c:f7:36:5e:96:dd:34:67:
0f:df:04:12:4d:30:5f:09:db:df:42:c2:77:cd:46:c6:b4:60:
74:7b:d1:7b:e6:c1:31:a6:0b:91:6b:39:70:31:4a:45:b2:0e:
3d:64:53:10:46:fb:99:ff:cd:7d:48:3f:86:8d:23:7a:9d:28:
42:96:89:07:c6:79:54:6c:e7:46:a1:73:b7:48:18:f3:0e:9c:
d2:84:aa:6d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfYgFpUeobxDMbb2HXDB3vOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxNWE0MDlkMjdiOWE2OTM0NjMyNDAwNDY5NGRhMTFiZWFl
MDJkYmIwHhcNMjMwNTAxMTgwODIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDJhMDU2YjU3ZGM3YmQ5OTMyMjAyNWZhM2Y1MjYxNjRlMmI1MjZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfJFa7NfqoIv3JCT2ZRyz3BrcbIa
MeoYMPQ/z8Ey3o0Av7/QV0lyO6K1TKk5qY2uT9P+011nikSKbsdto7aOG/EzUOtX
9/g7sYwqQx/RPHzxnwzeQ0gAN3uvA4YkZAYnTQspm1LfEoYfPxmSR9EZfp2l6KM0
CJjCOdVpeYMti3eOgo4F+DXPnnOhIFffKhGeLTeOmtJeZYjsOGPcMUOb+qDsokir
GEF0vB+6Shq3x4zDvocJYEOphq7IEc47R7G4WXB0GXn8c3sbgZ1wmGYZJPPwV+tO
YSyurRzgbfbQPY25cc1k3oOH7q1dDixh0C+DbGWPdxLadPazbUTNWYizqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKAqBWtX3HvZkyICX6P1JhZOK1JvMB8GA1UdIwQY
MBaAFCFaQJ0nuaaTRjJABGlNoRvq4C27MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVZwQW5TZTVwcE5HTWtBRWFVMmhHLXJnTGJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9mMGM5ZTMtMWM0MC00ZjMzLTk1Y2Ut
OThkMmZlZTBmODdhLzEvb0NvRmExZmNlOW1USWdKZm9fVW1GazRyVW04LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9mMGM5ZTMtMWM0MC00ZjMzLTk1Y2UtOThkMmZlZTBmODdh
LzEvSVZwQW5TZTVwcE5HTWtBRWFVMmhHLXJnTGJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYawMA0G
CSqGSIb3DQEBCwUAA4IBAQC78JZ+WLR1Z8XX1aRN5d21ztk3jxiNzaoXdznSJNiX
WpLJHhVphHDzyKQvXPvMM8xnBXT6qRV4GV2t+81BtLFXxuB0QqyXqknLiXW6fyaF
rkf3NsUKhOh8O37qyO7xxmKvf1FXXhGMCos7ylk6AslyJmd6g99RiIJe2C8VfCfM
Hv+gpMyiWP3zXoVkb1jnlyXuaK+w6ejKE6LsAw4Xx0U51DZwWItgzlYBSg1rDPc2
XpbdNGcP3wQSTTBfCdvfQsJ3zUbGtGB0e9F75sExpguRazlwMUpFsg49ZFMQRvuZ
/819SD+GjSN6nShClokHxnlUbOdGoXO3SBjzDpzShKpt
-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:09 2024 by rpki-client on console-fra.rpki-client.org