Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1b7968-ca4d-45f4-b671-2e7f78489cd3/1/scn320MQgKNEoQCfJDWXsntZS5Y.roa
File: scn320MQgKNEoQCfJDWXsntZS5Y.roa (raw, json)
Hash identifier: HrKYr/cNQF9L/WHRvP8kGqTGlRpGGy4ChzsiSRTcomE=
Subject key identifier: B1:C9:F7:DB:43:10:80:A3:44:A1:00:9F:24:35:97:B2:7B:59:4B:96
Certificate issuer: /CN=7f178faf6401e2f3716e31764569df731df58f22
Certificate serial: 018572836D4A8410EBEE373B5A467A823ED3
Authority key identifier: 7F:17:8F:AF:64:01:E2:F3:71:6E:31:76:45:69:DF:73:1D:F5:8F:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fxePr2QB4vNxbjF2RWnfcx31jyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1b7968-ca4d-45f4-b671-2e7f78489cd3/1/scn320MQgKNEoQCfJDWXsntZS5Y.roa
Signing time: Mon 02 Jan 2023 12:44:53 +0000
ROA not before: Mon 02 Jan 2023 12:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206036
IP address blocks: 185.202.232.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:6d:4a:84:10:eb:ee:37:3b:5a:46:7a:82:3e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f178faf6401e2f3716e31764569df731df58f22
Validity
Not Before: Jan 2 12:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1c9f7db431080a344a1009f243597b27b594b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:16:8b:70:0b:b3:3e:eb:c3:97:b5:a8:dd:04:
95:87:f4:79:02:b3:8f:78:58:50:75:c6:aa:0d:92:
3c:73:ce:9e:82:41:ee:8a:a9:08:51:68:ed:33:86:
37:12:d8:42:91:a9:2b:9e:b7:06:3d:2b:d9:82:10:
a1:57:5c:01:26:c9:05:6a:a3:52:38:14:ac:97:4a:
7b:1d:28:70:17:dd:9e:f6:d2:25:bc:17:f3:e0:19:
ef:c5:13:ed:ee:58:d2:74:56:b7:0e:cc:07:5f:a9:
09:11:b2:85:b9:db:a3:af:62:2b:07:c7:a8:18:55:
ee:f7:ae:91:fe:ad:59:5e:9c:5b:d1:23:9f:a4:d9:
6f:ea:e8:f4:36:c9:5a:eb:63:5c:05:b0:85:ad:5f:
bd:41:a0:15:e3:d7:90:03:cd:56:80:6e:1e:71:02:
09:94:3b:c7:81:fa:b6:40:98:63:41:70:d7:8b:1d:
95:84:56:dc:8a:c8:31:9a:23:33:aa:c3:37:52:79:
7f:73:cb:55:4f:2d:c0:34:45:ba:22:a3:80:24:8f:
e1:54:d4:62:f6:8d:a1:83:7d:4d:0f:26:69:17:9e:
b1:ab:88:0d:01:b3:59:79:c5:8d:72:72:18:a6:59:
73:28:0c:0a:b6:39:4e:00:db:92:e5:24:db:2b:05:
21:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C9:F7:DB:43:10:80:A3:44:A1:00:9F:24:35:97:B2:7B:59:4B:96
X509v3 Authority Key Identifier:
keyid:7F:17:8F:AF:64:01:E2:F3:71:6E:31:76:45:69:DF:73:1D:F5:8F:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fxePr2QB4vNxbjF2RWnfcx31jyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1b7968-ca4d-45f4-b671-2e7f78489cd3/1/scn320MQgKNEoQCfJDWXsntZS5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1b7968-ca4d-45f4-b671-2e7f78489cd3/1/fxePr2QB4vNxbjF2RWnfcx31jyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.232.0/22
Signature Algorithm: sha256WithRSAEncryption
65:26:36:3f:74:35:37:08:3d:b9:6d:0e:7f:e0:2a:27:67:43:
a0:28:3f:50:c9:be:0a:8f:40:43:de:a2:57:16:5d:3e:0e:7b:
d5:7a:8e:45:6c:41:b8:75:58:1e:9e:4a:fe:de:9d:4d:8c:ee:
2d:52:30:0f:c8:4f:ae:66:9a:56:6a:23:b3:4c:b4:d4:09:a1:
d8:d3:01:ee:08:a6:a0:d5:9a:43:e9:3a:0a:a6:c9:bb:17:18:
b1:fa:3f:46:55:35:39:51:68:80:d4:d8:e7:ce:e9:07:12:3d:
16:e6:84:d9:bd:58:c3:3b:79:eb:be:e3:a2:bd:dd:91:ea:b8:
dd:2e:2e:b2:c8:b1:ca:27:38:60:a0:3e:43:eb:6d:53:74:1f:
26:e9:52:3f:6a:08:05:c2:e8:18:82:7c:75:2f:f8:d1:87:53:
5c:91:b0:a2:f3:f7:cc:d5:a5:7f:9c:06:0b:33:d7:6a:fd:72:
02:f5:5d:e4:19:2d:12:83:bf:81:30:32:71:37:98:26:83:58:
06:7b:07:d8:f8:1b:03:53:ea:ad:12:2d:f5:59:f7:0e:0f:26:
3a:31:ae:77:61:e9:99:b0:19:bd:45:4b:e0:29:f4:a4:92:14:
2f:13:b3:14:5e:ae:ee:e0:d2:b9:d7:f1:e4:7a:9e:ae:fb:4e:
47:7a:a4:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyg21KhBDr7jc7WkZ6gj7TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmMTc4ZmFmNjQwMWUyZjM3MTZlMzE3NjQ1NjlkZjczMWRm
NThmMjIwHhcNMjMwMTAyMTI0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMWM5ZjdkYjQzMTA4MGEzNDRhMTAwOWYyNDM1OTdiMjdiNTk0Yjk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihaLcAuzPuvDl7Wo3QSVh/R5ArOP
eFhQdcaqDZI8c86egkHuiqkIUWjtM4Y3EthCkakrnrcGPSvZghChV1wBJskFaqNS
OBSsl0p7HShwF92e9tIlvBfz4BnvxRPt7ljSdFa3DswHX6kJEbKFudujr2IrB8eo
GFXu966R/q1ZXpxb0SOfpNlv6uj0Nsla62NcBbCFrV+9QaAV49eQA81WgG4ecQIJ
lDvHgfq2QJhjQXDXix2VhFbcisgxmiMzqsM3Unl/c8tVTy3ANEW6IqOAJI/hVNRi
9o2hg31NDyZpF56xq4gNAbNZecWNcnIYpllzKAwKtjlOANuS5STbKwUhtQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLHJ99tDEICjRKEAnyQ1l7J7WUuWMB8GA1UdIwQY
MBaAFH8Xj69kAeLzcW4xdkVp33Md9Y8iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnhlUHIyUUI0dk54YmpGMlJXbmZjeDMxanlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8xYjc5NjgtY2E0ZC00NWY0LWI2NzEt
MmU3Zjc4NDg5Y2QzLzEvc2NuMzIwTVFnS05Fb1FDZkpEV1hzbnRaUzVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8xYjc5NjgtY2E0ZC00NWY0LWI2NzEtMmU3Zjc4NDg5Y2Qz
LzEvZnhlUHIyUUI0dk54YmpGMlJXbmZjeDMxanlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucroMA0G
CSqGSIb3DQEBCwUAA4IBAQBlJjY/dDU3CD25bQ5/4ConZ0OgKD9Qyb4Kj0BD3qJX
Fl0+DnvVeo5FbEG4dVgenkr+3p1NjO4tUjAPyE+uZppWaiOzTLTUCaHY0wHuCKag
1ZpD6ToKpsm7Fxix+j9GVTU5UWiA1NjnzukHEj0W5oTZvVjDO3nrvuOivd2R6rjd
Li6yyLHKJzhgoD5D621TdB8m6VI/aggFwugYgnx1L/jRh1NckbCi8/fM1aV/nAYL
M9dq/XIC9V3kGS0Sg7+BMDJxN5gmg1gGewfY+BsDU+qtEi31WfcODyY6Ma53YemZ
sBm9RUvgKfSkkhQvE7MUXq7u4NK51/Hkep6u+05HeqSf
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:53:57 2024 by rpki-client on console-ams.rpki-client.org