Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/cV53D-rwVSDNb5kanaEbRwzFOfE.roa
File: cV53D-rwVSDNb5kanaEbRwzFOfE.roa (raw, json)
Hash identifier: HVzxcTDwmBvDw6OVi53wryjA5Ovd+HR2hlRFuNdMHFI=
Subject key identifier: 71:5E:77:0F:EA:F0:55:20:CD:6F:99:1A:9D:A1:1B:47:0C:C5:39:F1
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01883421C85A784FFDC50616F2A5F7D317C3
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/cV53D-rwVSDNb5kanaEbRwzFOfE.roa
Signing time: Fri 19 May 2023 13:10:09 +0000
ROA not before: Fri 19 May 2023 13:10:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 185.220.236.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:34:21:c8:5a:78:4f:fd:c5:06:16:f2:a5:f7:d3:17:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 19 13:10:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=715e770feaf05520cd6f991a9da11b470cc539f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1a:0d:49:8d:7d:31:7d:18:29:36:54:81:6f:
94:20:e8:e3:27:7f:d3:f5:0d:84:8a:16:31:cf:87:
33:3a:5e:6a:1c:cd:00:43:f0:46:19:88:12:72:35:
e3:a9:23:61:cc:ea:22:bb:b6:e4:a7:b5:88:92:1f:
81:f9:3d:ab:2f:54:87:71:5d:13:15:58:94:62:21:
5a:e0:2e:f2:9e:82:b1:6b:5e:2e:8c:df:8b:16:47:
67:4d:03:ce:a9:e2:ca:ae:e0:07:98:a3:69:f2:79:
25:e3:f3:65:5b:47:3e:1e:b0:2e:20:01:26:3e:ef:
6b:17:06:27:16:17:fd:a3:90:d7:4e:25:96:dd:de:
92:7d:6f:06:32:00:19:59:89:93:62:9a:04:be:1c:
ac:00:00:fc:7c:14:f6:a2:50:69:02:2b:ac:37:70:
35:d4:0a:f2:e6:73:5f:c2:6d:85:80:06:19:bb:36:
e0:19:e8:a5:9c:85:d0:2c:0c:db:3b:43:54:2f:22:
b8:3f:d3:8b:c7:eb:00:24:ae:12:6b:4d:18:2b:f8:
c1:4f:64:6e:e2:9a:07:02:02:45:7f:08:d9:ef:92:
33:41:9c:31:22:a6:1a:42:d0:de:3a:20:a4:92:64:
1b:bf:99:61:76:68:f0:d2:82:a0:50:92:2d:a8:fc:
7d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:5E:77:0F:EA:F0:55:20:CD:6F:99:1A:9D:A1:1B:47:0C:C5:39:F1
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/cV53D-rwVSDNb5kanaEbRwzFOfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.236.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:84:21:3f:d7:77:a5:9e:85:0f:4b:2f:a6:d7:89:75:de:05:
b7:99:a7:41:50:85:f0:c8:0d:18:c6:e3:c8:f5:20:9b:11:50:
b9:73:9d:96:48:5d:96:89:1f:87:a0:cf:e8:68:f3:d2:31:8d:
06:59:0c:d3:f1:eb:86:b8:b2:ca:5c:95:78:fa:73:58:20:5f:
1f:e0:c1:12:76:d9:53:98:19:99:a8:2e:57:4c:31:44:1f:48:
ad:4b:69:fe:81:18:b1:95:16:77:7f:fa:c3:9a:a1:fe:7b:12:
51:65:71:5f:13:c4:d5:b4:80:60:b6:75:70:78:8f:a5:c1:be:
5f:33:1b:3b:3a:37:83:f5:8a:03:f8:19:9e:0c:52:d2:14:d7:
05:6e:7f:dc:df:29:73:de:5e:1b:29:a3:2f:91:3e:3d:7f:fc:
3c:d4:e0:3e:4c:52:f6:6a:92:43:cf:98:8a:a5:66:e6:4e:08:
50:a1:78:59:a1:bd:51:c3:83:4d:c5:4a:7b:90:48:42:17:11:
ae:b5:36:60:e1:47:7d:90:ea:67:a1:9e:a2:f4:3e:4a:cb:e9:
30:a1:8f:34:54:a3:40:01:c3:af:bf:89:8c:bb:14:40:44:05:
cb:9e:2a:c9:fd:f4:83:31:9f:c1:10:06:0d:a2:d7:3f:a1:ae:
75:cc:48:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYg0IchaeE/9xQYW8qX30xfDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2
NWE0NzgwHhcNMjMwNTE5MTMxMDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTVlNzcwZmVhZjA1NTIwY2Q2Zjk5MWE5ZGExMWI0NzBjYzUzOWYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhoNSY19MX0YKTZUgW+UIOjjJ3/T
9Q2EihYxz4czOl5qHM0AQ/BGGYgScjXjqSNhzOoiu7bkp7WIkh+B+T2rL1SHcV0T
FViUYiFa4C7ynoKxa14ujN+LFkdnTQPOqeLKruAHmKNp8nkl4/NlW0c+HrAuIAEm
Pu9rFwYnFhf9o5DXTiWW3d6SfW8GMgAZWYmTYpoEvhysAAD8fBT2olBpAiusN3A1
1Ary5nNfwm2FgAYZuzbgGeilnIXQLAzbO0NULyK4P9OLx+sAJK4Sa00YK/jBT2Ru
4poHAgJFfwjZ75IzQZwxIqYaQtDeOiCkkmQbv5lhdmjw0oKgUJItqPx9fwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHFedw/q8FUgzW+ZGp2hG0cMxTnxMB8GA1UdIwQY
MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt
ZmUwNjU5MTc2YTU2LzEvY1Y1M0QtcndWU0ROYjVrYW5hRWJSd3pGT2ZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2
LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCudzsMA0G
CSqGSIb3DQEBCwUAA4IBAQAKhCE/13elnoUPSy+m14l13gW3madBUIXwyA0YxuPI
9SCbEVC5c52WSF2WiR+HoM/oaPPSMY0GWQzT8euGuLLKXJV4+nNYIF8f4MESdtlT
mBmZqC5XTDFEH0itS2n+gRixlRZ3f/rDmqH+exJRZXFfE8TVtIBgtnVweI+lwb5f
Mxs7OjeD9YoD+BmeDFLSFNcFbn/c3ylz3l4bKaMvkT49f/w81OA+TFL2apJDz5iK
pWbmTghQoXhZob1Rw4NNxUp7kEhCFxGutTZg4Ud9kOpnoZ6i9D5Ky+kwoY80VKNA
AcOvv4mMuxRARAXLnirJ/fSDMZ/BEAYNotc/oa51zEg0
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org