Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/acee8e-7761-419f-b483-b30162e3ccc0/1/l04fC9QHdK93B4nuLIHnUGh8B6A.roa
File: l04fC9QHdK93B4nuLIHnUGh8B6A.roa (raw, json)
Hash identifier: vDUCt8xexxxsveiQmfd3nJ6Bh/GtenMUumyQXnwIJ9Y=
Subject key identifier: 97:4E:1F:0B:D4:07:74:AF:77:07:89:EE:2C:81:E7:50:68:7C:07:A0
Certificate issuer: /CN=d3540b518d75fbefd616bfd94cf05fd25ba488b6
Certificate serial: 01888C013FAFDF084DE6EA797F545899392D
Authority key identifier: D3:54:0B:51:8D:75:FB:EF:D6:16:BF:D9:4C:F0:5F:D2:5B:A4:88:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/01QLUY11--_WFr_ZTPBf0lukiLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/acee8e-7761-419f-b483-b30162e3ccc0/1/l04fC9QHdK93B4nuLIHnUGh8B6A.roa
Signing time: Mon 05 Jun 2023 14:41:12 +0000
ROA not before: Mon 05 Jun 2023 14:41:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205260
IP address blocks: 185.223.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8c:01:3f:af:df:08:4d:e6:ea:79:7f:54:58:99:39:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3540b518d75fbefd616bfd94cf05fd25ba488b6
Validity
Not Before: Jun 5 14:41:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=974e1f0bd40774af770789ee2c81e750687c07a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ee:d4:04:42:39:4b:9d:91:db:25:2e:b7:75:
6a:c8:a2:5e:ad:95:1a:85:f9:60:70:83:9e:7c:fc:
db:38:5c:29:73:ec:d6:c3:57:1f:f4:a4:79:bd:66:
21:0f:0e:e8:d4:18:88:68:f3:4e:b7:e8:d5:34:ed:
3c:de:9a:4d:18:29:18:b2:f9:04:04:3c:44:7e:0a:
2b:10:30:e7:0a:29:20:c8:74:66:c9:0b:61:9d:a7:
9a:88:00:4c:2a:c1:95:7c:6e:ff:97:72:bc:15:f9:
4c:18:3e:d6:10:02:ff:9b:f2:c4:09:8b:28:a7:e3:
ab:42:fa:f7:30:71:07:67:6d:5c:5e:f9:6c:3c:22:
a6:7c:ce:c0:84:fb:f2:22:e1:4e:20:e9:11:dd:83:
4e:4f:90:96:18:6f:32:1e:f9:6c:b2:de:73:b4:3c:
e8:19:16:ca:97:42:68:75:33:5d:e7:1e:a0:bb:4c:
de:3a:8e:69:3f:52:eb:f3:b2:90:2d:77:e3:86:c5:
3a:b6:e0:49:83:14:f0:42:a7:30:40:6f:7d:a5:1b:
a8:58:4e:22:6e:b7:16:4d:bd:65:a6:f3:30:d5:1a:
f5:88:4b:03:5d:0b:8f:e6:a1:c4:47:b2:90:3c:9e:
98:ba:25:a3:28:9f:4e:f7:36:4d:77:b0:02:5e:5e:
0d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:4E:1F:0B:D4:07:74:AF:77:07:89:EE:2C:81:E7:50:68:7C:07:A0
X509v3 Authority Key Identifier:
keyid:D3:54:0B:51:8D:75:FB:EF:D6:16:BF:D9:4C:F0:5F:D2:5B:A4:88:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/01QLUY11--_WFr_ZTPBf0lukiLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/acee8e-7761-419f-b483-b30162e3ccc0/1/l04fC9QHdK93B4nuLIHnUGh8B6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/acee8e-7761-419f-b483-b30162e3ccc0/1/01QLUY11--_WFr_ZTPBf0lukiLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.199.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:19:b6:cb:02:b8:80:52:fc:b1:04:0a:73:28:bc:98:85:c7:
14:6f:68:2e:7d:52:74:53:ce:57:1c:1e:16:68:cc:48:aa:e5:
50:8b:a2:01:52:9e:ea:a6:07:f4:08:80:32:cc:06:ac:af:8a:
ae:6a:bf:18:4d:26:a5:9a:6b:e4:3d:7c:70:67:71:8c:56:01:
aa:11:1b:34:1e:20:da:ba:a5:35:ea:9e:3a:0a:0a:91:40:62:
a2:4a:17:e1:32:38:1d:57:47:d7:9a:10:09:9d:6f:00:18:21:
48:cc:70:80:2b:0a:95:cf:92:36:2a:87:73:e0:d0:de:2c:df:
80:cf:60:87:63:ec:a1:33:a4:c5:8b:cd:13:2e:17:b0:06:cd:
f4:9f:18:19:4a:e8:c6:d2:e9:4a:6b:ab:18:4f:72:81:0f:1e:
28:3e:17:4d:99:df:39:69:d5:35:ff:76:fd:ec:c0:13:f9:5b:
96:72:20:22:e0:fc:7c:8f:f3:2b:0f:46:66:75:b8:a3:40:f2:
64:ed:07:ac:65:87:66:bd:ea:ea:d6:fb:45:07:46:75:e5:78:
51:83:51:0e:19:7c:bc:36:cc:f7:26:0b:5f:a7:47:88:f8:88:
6a:8d:ef:e9:6e:4e:4f:e5:37:7e:65:09:b8:0c:52:4f:e2:d4:
df:98:9e:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYiMAT+v3whN5up5f1RYmTktMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNTQwYjUxOGQ3NWZiZWZkNjE2YmZkOTRjZjA1ZmQyNWJh
NDg4YjYwHhcNMjMwNjA1MTQ0MTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NzRlMWYwYmQ0MDc3NGFmNzcwNzg5ZWUyYzgxZTc1MDY4N2MwN2EwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjO7UBEI5S52R2yUut3VqyKJerZUa
hflgcIOefPzbOFwpc+zWw1cf9KR5vWYhDw7o1BiIaPNOt+jVNO083ppNGCkYsvkE
BDxEfgorEDDnCikgyHRmyQthnaeaiABMKsGVfG7/l3K8FflMGD7WEAL/m/LECYso
p+OrQvr3MHEHZ21cXvlsPCKmfM7AhPvyIuFOIOkR3YNOT5CWGG8yHvlsst5ztDzo
GRbKl0JodTNd5x6gu0zeOo5pP1Lr87KQLXfjhsU6tuBJgxTwQqcwQG99pRuoWE4i
brcWTb1lpvMw1Rr1iEsDXQuP5qHER7KQPJ6YuiWjKJ9O9zZNd7ACXl4NlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJdOHwvUB3SvdweJ7iyB51BofAegMB8GA1UdIwQY
MBaAFNNUC1GNdfvv1ha/2UzwX9JbpIi2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDFRTFVZMTEtLV9XRnJfWlRQQmYwbHVraUxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9hY2VlOGUtNzc2MS00MTlmLWI0ODMt
YjMwMTYyZTNjY2MwLzEvbDA0ZkM5UUhkSzkzQjRudUxJSG5VR2g4QjZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9hY2VlOGUtNzc2MS00MTlmLWI0ODMtYjMwMTYyZTNjY2Mw
LzEvMDFRTFVZMTEtLV9XRnJfWlRQQmYwbHVraUxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud/HMA0G
CSqGSIb3DQEBCwUAA4IBAQBeGbbLAriAUvyxBApzKLyYhccUb2gufVJ0U85XHB4W
aMxIquVQi6IBUp7qpgf0CIAyzAasr4quar8YTSalmmvkPXxwZ3GMVgGqERs0HiDa
uqU16p46CgqRQGKiShfhMjgdV0fXmhAJnW8AGCFIzHCAKwqVz5I2Kodz4NDeLN+A
z2CHY+yhM6TFi80TLhewBs30nxgZSujG0ulKa6sYT3KBDx4oPhdNmd85adU1/3b9
7MAT+VuWciAi4Px8j/MrD0ZmdbijQPJk7QesZYdmverq1vtFB0Z15XhRg1EOGXy8
Nsz3Jgtfp0eI+Ihqje/pbk5P5Td+ZQm4DFJP4tTfmJ7j
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:17 2023 by rpki-client on console-ams.rpki-client.org