Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/dcbba6-19e0-45cd-b44d-3d33d374d01f/1/jCH-ijHQ0aCIc9KRJWUZfU34gjk.roa
File: jCH-ijHQ0aCIc9KRJWUZfU34gjk.roa (raw, json)
Hash identifier: UlA9piBnU/+eQVX7g7/5HKFdIOPXR0sug7Yp5LyD3y0=
Subject key identifier: 8C:21:FE:8A:31:D0:D1:A0:88:73:D2:91:25:65:19:7D:4D:F8:82:39
Certificate issuer: /CN=898df4e11514becc472a757e036b38087d0165ed
Certificate serial: 01857102FCE62B03AAF883B049F5D553EB4C
Authority key identifier: 89:8D:F4:E1:15:14:BE:CC:47:2A:75:7E:03:6B:38:08:7D:01:65:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iY304RUUvsxHKnV-A2s4CH0BZe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/dcbba6-19e0-45cd-b44d-3d33d374d01f/1/jCH-ijHQ0aCIc9KRJWUZfU34gjk.roa
Signing time: Mon 02 Jan 2023 05:44:59 +0000
ROA not before: Mon 02 Jan 2023 05:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56911
IP address blocks: 185.47.136.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:fc:e6:2b:03:aa:f8:83:b0:49:f5:d5:53:eb:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=898df4e11514becc472a757e036b38087d0165ed
Validity
Not Before: Jan 2 05:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c21fe8a31d0d1a08873d2912565197d4df88239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:77:48:68:09:54:62:5e:0b:6d:ba:36:89:6b:
9c:2a:60:38:04:67:c7:97:d5:2a:7e:fc:21:8d:95:
51:2d:65:ee:41:1e:fb:90:c4:ea:67:ba:bb:22:41:
36:ce:c5:f9:77:4b:3f:aa:c5:ed:3c:6a:43:51:b6:
34:fc:e4:8a:11:fb:89:78:ca:f2:2b:96:2d:99:ee:
bb:bd:9f:64:99:88:d3:62:30:08:67:bc:be:3f:9e:
21:7a:9b:a0:d9:37:da:01:58:46:ec:e9:5a:cb:63:
11:f0:a8:01:b8:38:26:92:54:a5:f7:a9:b7:4c:7b:
37:15:7c:27:a8:25:fe:d8:5c:2f:b4:4a:b4:c7:65:
a8:7f:1c:b5:a2:58:94:e5:f6:1f:2b:f7:9d:9c:64:
7c:75:b7:f6:d0:32:05:41:88:a3:59:7c:1d:7f:42:
b8:83:e2:7a:fa:6a:38:fc:07:24:d7:d5:b0:64:71:
ff:e5:c4:0e:2b:5e:d0:8f:38:21:f6:c6:23:00:ef:
81:eb:e4:f0:3e:9a:f3:69:b3:07:2e:c6:4e:08:0f:
10:65:b6:ea:7d:f4:bc:b0:93:00:82:a8:99:25:df:
2d:b9:0b:7d:b8:f9:93:fb:88:80:3e:0e:f4:f5:49:
22:3c:c0:85:76:d3:fc:ee:e5:98:1e:21:d0:5e:7a:
17:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:21:FE:8A:31:D0:D1:A0:88:73:D2:91:25:65:19:7D:4D:F8:82:39
X509v3 Authority Key Identifier:
keyid:89:8D:F4:E1:15:14:BE:CC:47:2A:75:7E:03:6B:38:08:7D:01:65:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iY304RUUvsxHKnV-A2s4CH0BZe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dcbba6-19e0-45cd-b44d-3d33d374d01f/1/jCH-ijHQ0aCIc9KRJWUZfU34gjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dcbba6-19e0-45cd-b44d-3d33d374d01f/1/iY304RUUvsxHKnV-A2s4CH0BZe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.136.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:56:9d:38:8d:48:9d:5b:35:8d:5f:bd:a6:f2:67:36:58:9c:
04:38:4e:96:d5:d4:f9:93:57:ad:17:6c:a4:20:5d:f2:7b:2e:
d7:bf:a2:52:b7:2c:ad:98:ea:55:78:63:50:04:da:07:48:86:
d2:14:8d:94:78:bb:f7:58:e5:ec:8b:48:02:98:d1:82:8e:57:
03:33:9b:9e:ce:59:2a:2a:3c:64:ff:97:70:4e:ed:51:31:26:
3c:f7:3b:d0:f8:85:a9:c8:10:0d:7e:16:d1:1d:e6:5a:8f:2c:
c4:58:18:c3:d4:3d:1a:fc:fc:67:45:5d:19:c5:9b:ed:20:16:
5e:b1:9b:c4:a7:bd:6c:b0:c6:06:a4:ef:63:8f:59:1a:78:cf:
f2:44:f4:e4:47:16:1a:3d:f5:5a:ba:1d:25:87:81:be:ba:42:
3d:7d:f1:67:e5:4a:ba:6a:58:66:ac:ca:e2:c7:d5:a7:53:97:
0c:93:1c:3c:26:b5:c0:ae:40:0b:d5:0d:6b:06:eb:21:68:07:
58:5c:78:e8:d4:dd:0e:60:04:d5:d7:29:6a:a3:ae:b9:a1:42:
e1:02:f1:94:0b:94:7c:6a:7b:5d:95:ba:2a:11:33:4c:79:fe:
73:11:1a:40:46:60:2e:e1:40:26:61:2d:db:9b:06:f2:0d:57:
ab:4d:be:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxAvzmKwOq+IOwSfXVU+tMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5OGRmNGUxMTUxNGJlY2M0NzJhNzU3ZTAzNmIzODA4N2Qw
MTY1ZWQwHhcNMjMwMTAyMDU0NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YzIxZmU4YTMxZDBkMWEwODg3M2QyOTEyNTY1MTk3ZDRkZjg4MjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHdIaAlUYl4Lbbo2iWucKmA4BGfH
l9UqfvwhjZVRLWXuQR77kMTqZ7q7IkE2zsX5d0s/qsXtPGpDUbY0/OSKEfuJeMry
K5Ytme67vZ9kmYjTYjAIZ7y+P54hepug2TfaAVhG7Olay2MR8KgBuDgmklSl96m3
THs3FXwnqCX+2FwvtEq0x2Wofxy1oliU5fYfK/ednGR8dbf20DIFQYijWXwdf0K4
g+J6+mo4/Ack19WwZHH/5cQOK17Qjzgh9sYjAO+B6+TwPprzabMHLsZOCA8QZbbq
ffS8sJMAgqiZJd8tuQt9uPmT+4iAPg709UkiPMCFdtP87uWYHiHQXnoXawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIwh/oox0NGgiHPSkSVlGX1N+II5MB8GA1UdIwQY
MBaAFImN9OEVFL7MRyp1fgNrOAh9AWXtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVkzMDRSVVV2c3hIS25WLUEyczRDSDBCWmUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9kY2JiYTYtMTllMC00NWNkLWI0NGQt
M2QzM2QzNzRkMDFmLzEvakNILWlqSFEwYUNJYzlLUkpXVVpmVTM0Z2prLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9kY2JiYTYtMTllMC00NWNkLWI0NGQtM2QzM2QzNzRkMDFm
LzEvaVkzMDRSVVV2c3hIS25WLUEyczRDSDBCWmUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuS+IMA0G
CSqGSIb3DQEBCwUAA4IBAQBLVp04jUidWzWNX72m8mc2WJwEOE6W1dT5k1etF2yk
IF3yey7Xv6JStyytmOpVeGNQBNoHSIbSFI2UeLv3WOXsi0gCmNGCjlcDM5uezlkq
Kjxk/5dwTu1RMSY89zvQ+IWpyBANfhbRHeZajyzEWBjD1D0a/PxnRV0ZxZvtIBZe
sZvEp71ssMYGpO9jj1kaeM/yRPTkRxYaPfVauh0lh4G+ukI9ffFn5Uq6alhmrMri
x9WnU5cMkxw8JrXArkAL1Q1rBushaAdYXHjo1N0OYATV1ylqo665oULhAvGUC5R8
antdlboqETNMef5zERpARmAu4UAmYS3bmwbyDVerTb44
-----END CERTIFICATE-----
Generated at Fri Nov 10 10:32:08 2023 by rpki-client on console-ams.rpki-client.org