Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/wVbqSiLafzm2cVjepycyxv_nIqM.roa
File: wVbqSiLafzm2cVjepycyxv_nIqM.roa (raw, json)
Hash identifier: hOJDoTg14b/wXXGOubv5+0jLEqp+U/uQMYJxoUz/0X8=
Subject key identifier: C1:56:EA:4A:22:DA:7F:39:B6:71:58:DE:A7:27:32:C6:FF:E7:22:A3
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 01857169E0147BAC5C06BCF13F0C0631DB15
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/wVbqSiLafzm2cVjepycyxv_nIqM.roa
Signing time: Mon 02 Jan 2023 07:37:22 +0000
ROA not before: Mon 02 Jan 2023 07:37:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1103
IP address blocks: 156.83.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:e0:14:7b:ac:5c:06:bc:f1:3f:0c:06:31:db:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Jan 2 07:37:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c156ea4a22da7f39b67158dea72732c6ffe722a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:31:fb:61:a1:60:32:b1:3d:de:19:b7:08:7a:
8f:3d:3a:a2:cb:9d:3f:30:c3:c7:ef:54:8b:23:d6:
78:d2:84:2f:1b:ef:62:22:13:91:85:8b:16:60:33:
c9:cd:ac:a4:e2:e0:d9:46:96:d1:19:5f:a7:24:e1:
d0:25:0d:09:99:0e:b4:90:2f:ec:97:8d:7f:20:8d:
39:3d:b9:ad:e3:56:b1:71:9e:b4:ca:16:2f:ab:61:
e8:29:96:7f:07:60:57:33:c7:93:cb:42:2f:b1:43:
13:35:25:48:e4:f2:a2:7e:a6:fc:77:ce:33:a8:58:
32:b7:be:89:bd:b6:3e:6a:05:6a:76:6d:70:f7:62:
6e:c4:aa:d1:66:ac:50:44:65:0f:44:26:03:e8:51:
02:9a:be:a9:93:05:e9:20:55:1e:2d:59:c4:0e:6e:
4c:14:b5:57:85:87:c4:85:ed:54:a9:08:6d:fd:36:
ab:93:e3:8b:31:10:ac:34:c9:bd:86:28:4d:a2:77:
c3:61:e7:7e:96:4c:fb:c4:52:86:67:01:45:f7:9f:
ad:d2:55:aa:8a:58:c5:03:29:f6:45:32:e2:ef:26:
51:af:e6:8c:ba:71:5a:16:43:be:cc:57:7c:10:16:
e8:e9:5e:c3:a3:80:e9:43:24:f0:18:2f:0a:d4:fc:
33:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:56:EA:4A:22:DA:7F:39:B6:71:58:DE:A7:27:32:C6:FF:E7:22:A3
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/wVbqSiLafzm2cVjepycyxv_nIqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.83.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a1:d8:fc:a5:de:db:62:bc:7f:7c:2e:88:34:c8:0a:9f:5e:fb:
04:2a:be:06:9d:13:4b:b4:9e:38:e2:31:b4:c0:02:92:fe:ec:
a0:bb:a5:e2:dc:93:1a:be:ea:ee:ec:81:57:82:9f:51:e5:14:
74:fd:78:4f:ea:93:a7:61:24:8f:39:e5:8b:9a:ee:c1:4e:23:
cb:c1:f4:e8:88:39:f1:be:37:ae:d6:7c:b8:c2:52:98:ac:c5:
a7:e5:11:a3:71:f8:a0:0e:f3:28:46:d8:b6:02:5f:f7:dd:98:
32:8c:f0:e8:c4:4e:e9:14:82:72:2f:d4:5a:46:3a:cf:44:19:
15:0e:e4:47:6d:f2:72:53:83:68:c6:3c:3b:85:0d:10:2b:62:
a2:44:63:e2:49:98:cc:31:13:54:e3:4d:a5:fb:6d:d2:1b:58:
0c:bf:2e:9c:12:fc:e4:a1:8f:e2:ad:eb:b8:f9:97:ce:3d:a6:
ff:95:0a:cd:ac:a0:cd:f9:67:1e:dc:2c:e1:f7:9b:7a:a9:5f:
95:62:fe:e4:f2:81:e0:5d:65:3d:ed:9d:5e:33:e2:15:24:3d:
fb:6d:87:8c:5f:37:6f:9b:e8:b8:91:57:3c:a6:02:3d:a1:10:
18:c6:cf:2c:ab:9c:71:6d:20:a2:c8:6c:d6:f1:8b:1d:be:82:
d8:e8:65:a4
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVxaeAUe6xcBrzxPwwGMdsVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZjFjODcyNGNiYmQwMzRiYWI3YTBkYWRmMGFiNGI5OWZm
NjZmZmYwHhcNMjMwMTAyMDczNzIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMTU2ZWE0YTIyZGE3ZjM5YjY3MTU4ZGVhNzI3MzJjNmZmZTcyMmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgzH7YaFgMrE93hm3CHqPPTqiy50/
MMPH71SLI9Z40oQvG+9iIhORhYsWYDPJzayk4uDZRpbRGV+nJOHQJQ0JmQ60kC/s
l41/II05Pbmt41axcZ60yhYvq2HoKZZ/B2BXM8eTy0IvsUMTNSVI5PKifqb8d84z
qFgyt76JvbY+agVqdm1w92JuxKrRZqxQRGUPRCYD6FECmr6pkwXpIFUeLVnEDm5M
FLVXhYfEhe1UqQht/Tark+OLMRCsNMm9hihNonfDYed+lkz7xFKGZwFF95+t0lWq
iljFAyn2RTLi7yZRr+aMunFaFkO+zFd8EBbo6V7Do4DpQyTwGC8K1PwzXQIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFMFW6koi2n85tnFY3qcnMsb/5yKjMB8GA1UdIwQY
MBaAFG3xyHJMu9A0ureg2t8KtLmf9m//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAt
ZjkyNGQ2ZjZhNTk1LzEvd1ZicVNpTGFmem0yY1ZqZXB5Y3l4dl9uSXFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAtZjkyNGQ2ZjZhNTk1
LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAnFMwDQYJ
KoZIhvcNAQELBQADggEBAKHY/KXe22K8f3wuiDTICp9e+wQqvgadE0u0njjiMbTA
ApL+7KC7peLckxq+6u7sgVeCn1HlFHT9eE/qk6dhJI855Yua7sFOI8vB9OiIOfG+
N67WfLjCUpisxaflEaNx+KAO8yhG2LYCX/fdmDKM8OjETukUgnIv1FpGOs9EGRUO
5Edt8nJTg2jGPDuFDRArYqJEY+JJmMwxE1TjTaX7bdIbWAy/LpwS/OShj+Kt67j5
l849pv+VCs2soM35Zx7cLOH3m3qpX5Vi/uTygeBdZT3tnV4z4hUkPftth4xfN2+b
6LiRVzymAj2hEBjGzyyrnHFtIKLIbNbxix2+gtjoZaQ=
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:26:57 2024 by rpki-client on console-fra.rpki-client.org