Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/el2NyuW3sNChL1oExUPuFbIzGdU.roa
File: el2NyuW3sNChL1oExUPuFbIzGdU.roa (raw, json)
Hash identifier: RmJ+zx/OCMzQN0KfM2WpUZRnckQTnahJdNow3cA+YxE=
Subject key identifier: 7A:5D:8D:CA:E5:B7:B0:D0:A1:2F:5A:04:C5:43:EE:15:B2:33:19:D5
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 0185DE640E3F23B64E413FECAF890DEBA269
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/el2NyuW3sNChL1oExUPuFbIzGdU.roa
Signing time: Mon 23 Jan 2023 11:29:37 +0000
ROA not before: Mon 23 Jan 2023 11:29:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 141.226.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:de:64:0e:3f:23:b6:4e:41:3f:ec:af:89:0d:eb:a2:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Jan 23 11:29:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a5d8dcae5b7b0d0a12f5a04c543ee15b23319d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:13:34:90:ef:65:56:12:e6:82:42:34:53:8f:
56:1a:df:b1:b9:d7:e0:e3:de:34:04:2d:57:23:a2:
c7:a6:48:06:41:d4:93:be:a8:72:18:a9:dc:18:ce:
b5:70:7f:69:ec:65:73:f6:8c:8a:04:9d:d0:36:f3:
7e:4c:02:a3:fc:fa:57:8e:7c:c8:af:66:f2:c7:4a:
84:5a:23:b6:7c:76:60:e6:d8:cc:bf:01:e5:0a:9e:
c8:4f:e7:6c:17:be:65:ec:d9:32:07:04:d8:81:6c:
5a:ff:d1:d6:61:aa:36:ea:44:42:1a:33:90:b8:4c:
4d:53:b8:51:12:c6:29:38:b7:cb:c1:d9:94:14:19:
c1:57:a8:3f:45:1d:06:18:57:fd:4f:07:59:e0:dc:
e7:1c:55:42:f4:d3:ee:c8:15:9e:03:5b:bf:74:8b:
b3:af:f1:ca:eb:ab:a9:6d:74:fb:1a:ce:0e:36:8f:
e8:b4:c0:c1:cd:60:14:a9:0d:1f:c9:4a:07:9a:3f:
ca:03:81:cb:e3:51:b0:9f:dc:4b:a3:fb:1d:6b:ab:
f5:f7:22:90:fd:6b:46:5c:9d:fe:b6:f0:0f:b7:b2:
7a:fc:97:60:77:40:23:41:d5:2d:ff:a5:8a:fa:e2:
02:ba:1b:f6:c8:60:a7:5b:a0:31:24:dc:8c:9b:c6:
c5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:5D:8D:CA:E5:B7:B0:D0:A1:2F:5A:04:C5:43:EE:15:B2:33:19:D5
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/el2NyuW3sNChL1oExUPuFbIzGdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.245.0/24
Signature Algorithm: sha256WithRSAEncryption
80:82:f4:c9:95:29:8e:b6:73:8a:a2:73:57:84:b6:ad:41:18:
74:08:50:ae:7b:47:ad:31:b5:4a:a2:66:77:0b:6e:1e:2f:2c:
5c:a6:a3:95:7f:1e:77:5e:3d:47:76:79:85:e8:53:20:4c:e0:
a8:30:ae:20:54:a0:6b:8e:2e:a5:c1:9a:4c:33:16:92:b3:3e:
a0:4e:c6:7f:76:ef:8b:14:45:bf:17:5e:02:87:02:92:4d:a7:
30:4c:b6:4f:23:dc:03:77:89:05:79:6a:14:a8:ed:5e:28:e1:
c6:08:c2:42:26:91:31:1e:e9:0c:7d:58:18:31:7f:a1:21:9e:
41:55:58:f4:37:19:cf:c3:54:b9:e4:be:b5:4d:15:d9:89:7b:
b2:00:f9:72:9d:bd:8b:59:b9:a9:67:c6:91:a6:b8:b9:58:71:
4c:6b:62:8e:3f:68:d9:5c:40:40:69:ba:62:a5:a1:2b:11:ee:
2a:62:a3:67:89:f7:ed:84:79:c6:59:b3:55:c9:f2:6d:64:bb:
4c:e3:ed:67:6d:e2:c2:91:bd:48:16:56:60:22:87:7e:af:73:
d0:fd:87:7a:e6:f9:c8:43:47:2f:02:01:65:8c:ff:46:a2:02:
ff:a5:3a:a0:1d:9c:1d:26:72:a5:73:eb:36:90:ef:86:f1:35:
85:12:47:02
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXeZA4/I7ZOQT/sr4kN66JpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZjliMTZhZGYyZmQzMTk4ODg1OTkyMmI0NDU3NDgxZGQ3
ZWVmNDAwHhcNMjMwMTIzMTEyOTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTVkOGRjYWU1YjdiMGQwYTEyZjVhMDRjNTQzZWUxNWIyMzMxOWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgxM0kO9lVhLmgkI0U49WGt+xudfg
4940BC1XI6LHpkgGQdSTvqhyGKncGM61cH9p7GVz9oyKBJ3QNvN+TAKj/PpXjnzI
r2byx0qEWiO2fHZg5tjMvwHlCp7IT+dsF75l7NkyBwTYgWxa/9HWYao26kRCGjOQ
uExNU7hREsYpOLfLwdmUFBnBV6g/RR0GGFf9TwdZ4NznHFVC9NPuyBWeA1u/dIuz
r/HK66upbXT7Gs4ONo/otMDBzWAUqQ0fyUoHmj/KA4HL41Gwn9xLo/sda6v19yKQ
/WtGXJ3+tvAPt7J6/Jdgd0AjQdUt/6WK+uICuhv2yGCnW6AxJNyMm8bFSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHpdjcrlt7DQoS9aBMVD7hWyMxnVMB8GA1UdIwQY
MBaAFHD5sWrfL9MZiIWZIrRFdIHdfu9AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUt
YmM2ZGI3MjQ4YWRkLzEvZWwyTnl1VzNzTkNoTDFvRXhVUHVGYkl6R2RVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUtYmM2ZGI3MjQ4YWRk
LzEvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjeL1MA0G
CSqGSIb3DQEBCwUAA4IBAQCAgvTJlSmOtnOKonNXhLatQRh0CFCue0etMbVKomZ3
C24eLyxcpqOVfx53Xj1HdnmF6FMgTOCoMK4gVKBrji6lwZpMMxaSsz6gTsZ/du+L
FEW/F14ChwKSTacwTLZPI9wDd4kFeWoUqO1eKOHGCMJCJpExHukMfVgYMX+hIZ5B
VVj0NxnPw1S55L61TRXZiXuyAPlynb2LWbmpZ8aRpri5WHFMa2KOP2jZXEBAabpi
paErEe4qYqNniffthHnGWbNVyfJtZLtM4+1nbeLCkb1IFlZgIod+r3PQ/Yd65vnI
Q0cvAgFljP9GogL/pTqgHZwdJnKlc+s2kO+G8TWFEkcC
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org