Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/lxuFZb2L3PrWQgLGJCf3wKj9PDQ.roa
File: lxuFZb2L3PrWQgLGJCf3wKj9PDQ.roa (raw, json)
Hash identifier: H2GYtKTly0SlUYKAtdQC8d8EHlkSgN/SArekEWT9xoQ=
Subject key identifier: 97:1B:85:65:BD:8B:DC:FA:D6:42:02:C6:24:27:F7:C0:A8:FD:3C:34
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 018572BA663F0DEDD156D05956782A05C007
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/lxuFZb2L3PrWQgLGJCf3wKj9PDQ.roa
Signing time: Mon 02 Jan 2023 13:44:56 +0000
ROA not before: Mon 02 Jan 2023 13:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211832
IP address blocks: 185.189.155.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:66:3f:0d:ed:d1:56:d0:59:56:78:2a:05:c0:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jan 2 13:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=971b8565bd8bdcfad64202c62427f7c0a8fd3c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:91:0e:31:bb:9d:98:0b:ef:5b:5c:f2:01:e8:
62:21:26:e7:87:63:cb:27:8e:ab:e9:46:80:86:0e:
c3:13:8c:1e:60:2a:2a:5b:9b:63:2b:f6:83:1f:cb:
e1:a1:35:fe:7c:07:c0:7b:62:90:4c:2e:b1:dd:2d:
3f:ac:62:97:5d:a1:38:d4:ee:0a:ea:53:45:ba:07:
ea:4f:b3:e8:08:9a:96:c7:71:65:39:24:e5:e3:3e:
09:74:13:35:bd:d5:d4:39:50:b9:bc:f3:78:57:5d:
a5:6a:c6:1d:bc:a4:99:5e:2c:24:6d:2d:6f:8e:1a:
c5:5b:33:0c:f4:12:69:8f:08:4a:7b:d6:08:ab:2e:
dc:7f:7d:93:02:9c:94:fc:f2:13:e8:2e:bf:68:e5:
87:cd:4d:fe:61:e2:3e:74:b1:cc:ef:c6:3a:f7:ee:
f9:14:f4:00:6e:c6:47:42:a3:4d:0a:04:d2:d1:73:
de:9c:bd:4d:56:a5:09:8b:96:92:16:80:1e:76:5e:
0a:70:73:d0:87:50:19:ab:9a:43:69:d6:97:4a:50:
17:31:0c:fe:dd:1f:9c:ee:52:33:38:df:e9:1a:82:
cd:de:07:88:42:b2:4f:31:5d:4c:bd:9c:d4:e1:fc:
ff:4b:42:ca:ef:a0:bd:6d:29:7c:c7:37:3b:da:f2:
dc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1B:85:65:BD:8B:DC:FA:D6:42:02:C6:24:27:F7:C0:A8:FD:3C:34
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/lxuFZb2L3PrWQgLGJCf3wKj9PDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.155.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:52:b0:e0:64:7b:05:db:94:ed:76:13:80:ae:0b:d7:5f:b8:
a1:39:23:7c:4f:ae:a7:22:5a:60:16:fe:66:38:f6:76:c7:fe:
53:7f:0d:15:52:64:7a:3c:99:55:69:b4:bc:69:fa:bb:d5:06:
a6:53:8f:0e:a8:e9:f4:84:06:cf:1b:b2:00:aa:42:3e:29:b1:
27:3d:6c:2a:02:f2:6d:e9:2d:b1:14:2b:be:83:c9:08:36:d2:
06:de:2b:5a:2b:36:16:a3:0d:4c:44:7d:d7:54:83:65:4f:3d:
de:1a:26:58:6c:f6:fb:80:21:e4:ab:05:09:d6:d2:cd:51:7c:
59:4d:36:c0:e3:f6:84:8b:f0:73:81:b6:d5:3c:5e:d9:1c:f2:
f5:3c:56:80:69:cc:1f:c7:18:69:38:a9:c8:65:dd:ce:95:74:
e3:61:5b:9b:45:b7:82:d8:aa:ee:47:54:e1:7d:8d:d0:27:a5:
44:3e:8b:6d:36:dc:ba:33:01:7e:dc:05:06:d2:24:27:2e:04:
9c:a7:23:6e:d7:5b:56:da:6f:c5:2b:ce:eb:f1:d2:64:54:20:
72:48:ae:da:95:59:47:ce:d3:8d:1b:49:b6:03:68:4c:9a:14:
2d:60:98:e6:41:ad:9c:f0:8d:ca:31:13:fc:44:fc:e2:b6:7a:
d0:65:d2:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyumY/De3RVtBZVngqBcAHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwZGQ4MWE4MzNkOWIwNDNjN2ZmZDYzNWE1OTg3ZjUzNjk3
MTE4MGQwHhcNMjMwMTAyMTM0NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NzFiODU2NWJkOGJkY2ZhZDY0MjAyYzYyNDI3ZjdjMGE4ZmQzYzM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5EOMbudmAvvW1zyAehiISbnh2PL
J46r6UaAhg7DE4weYCoqW5tjK/aDH8vhoTX+fAfAe2KQTC6x3S0/rGKXXaE41O4K
6lNFugfqT7PoCJqWx3FlOSTl4z4JdBM1vdXUOVC5vPN4V12lasYdvKSZXiwkbS1v
jhrFWzMM9BJpjwhKe9YIqy7cf32TApyU/PIT6C6/aOWHzU3+YeI+dLHM78Y69+75
FPQAbsZHQqNNCgTS0XPenL1NVqUJi5aSFoAedl4KcHPQh1AZq5pDadaXSlAXMQz+
3R+c7lIzON/pGoLN3geIQrJPMV1MvZzU4fz/S0LK76C9bSl8xzc72vLcCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJcbhWW9i9z61kICxiQn98Co/Tw0MB8GA1UdIwQY
MBaAFPDdgagz2bBDx//WNaWYf1NpcRgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUt
MDQ2ODA0MjQ4NmRjLzEvbHh1RlpiMkwzUHJXUWdMR0pDZjN3S2o5UERRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUtMDQ2ODA0MjQ4NmRj
LzEvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAub2bMA0G
CSqGSIb3DQEBCwUAA4IBAQBKUrDgZHsF25TtdhOArgvXX7ihOSN8T66nIlpgFv5m
OPZ2x/5Tfw0VUmR6PJlVabS8afq71QamU48OqOn0hAbPG7IAqkI+KbEnPWwqAvJt
6S2xFCu+g8kINtIG3itaKzYWow1MRH3XVINlTz3eGiZYbPb7gCHkqwUJ1tLNUXxZ
TTbA4/aEi/BzgbbVPF7ZHPL1PFaAacwfxxhpOKnIZd3OlXTjYVubRbeC2KruR1Th
fY3QJ6VEPottNty6MwF+3AUG0iQnLgScpyNu11tW2m/FK87r8dJkVCBySK7alVlH
ztONG0m2A2hMmhQtYJjmQa2c8I3KMRP8RPzitnrQZdL+
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:46 2024 by rpki-client on console-fra.rpki-client.org