Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/CHXGcaODps5RUhaxGzLFSRPirdk.roa
File: CHXGcaODps5RUhaxGzLFSRPirdk.roa (raw, json)
Hash identifier: 48fOAq7HeXdNAusQXx6s31shGoJF5QIr55t31b297jY=
Subject key identifier: 08:75:C6:71:A3:83:A6:CE:51:52:16:B1:1B:32:C5:49:13:E2:AD:D9
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018659E1C1964EF4525C2777AE489DDD042E
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/CHXGcaODps5RUhaxGzLFSRPirdk.roa
Signing time: Thu 16 Feb 2023 11:00:12 +0000
ROA not before: Thu 16 Feb 2023 11:00:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7411
IP address blocks: 185.96.36.0/24 maxlen: 24
185.110.131.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:59:e1:c1:96:4e:f4:52:5c:27:77:ae:48:9d:dd:04:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 16 11:00:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0875c671a383a6ce515216b11b32c54913e2add9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:83:35:64:e5:a4:43:d2:4c:88:51:73:0b:3a:
49:62:12:38:b7:8e:30:2a:70:5f:4e:5c:af:84:88:
da:00:20:8e:04:94:72:ef:a3:01:f4:d3:34:d7:52:
37:bc:4b:c5:1c:1c:be:88:07:39:81:b5:f3:94:6c:
b8:2f:2a:33:37:0d:2a:20:78:04:fb:2b:f6:26:b2:
e9:6b:46:71:9b:67:d0:9e:96:a7:ab:2f:5f:14:6a:
47:1b:24:9a:80:5a:f7:1f:23:15:38:3b:f1:32:26:
00:a6:bc:5e:39:d2:02:87:8e:fe:57:60:cd:42:db:
ec:ba:37:7e:a0:9e:81:c5:1b:4a:92:84:ab:6f:31:
60:46:9d:15:89:a5:ad:ba:92:2a:c0:35:35:52:d0:
04:14:c1:1c:ed:d9:e1:69:d2:bf:27:de:94:b5:d1:
58:97:c1:5c:e9:39:dc:a5:cc:60:97:2c:2a:fa:39:
2c:e7:04:3e:84:fd:64:34:2f:59:90:85:e9:17:73:
5d:48:24:0a:5a:a2:9a:c6:1f:91:bc:af:56:f7:a5:
2f:77:b3:18:35:98:c9:f2:86:ab:c1:79:d8:36:c7:
6f:d8:45:34:14:f0:f9:ef:83:9f:c7:da:5f:33:46:
8a:9b:23:d7:22:38:5e:07:82:8d:f9:29:6b:2a:9b:
4b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:75:C6:71:A3:83:A6:CE:51:52:16:B1:1B:32:C5:49:13:E2:AD:D9
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/CHXGcaODps5RUhaxGzLFSRPirdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.36.0/24
185.110.131.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:f2:59:7b:5d:68:3a:cc:b5:ad:e8:ce:a1:67:7d:71:2f:1f:
81:73:37:54:51:df:13:1c:9c:29:b9:f5:07:4d:01:80:38:10:
19:41:a4:3f:c3:8c:96:4c:22:ff:5f:8f:71:d8:dd:0e:5e:35:
7e:e5:f2:74:90:17:8a:f0:08:20:4c:bf:64:0b:81:b4:bc:7a:
84:d6:77:23:08:c2:50:9d:da:6a:5d:2b:39:af:32:ba:86:5e:
9d:2b:6a:0b:48:bb:20:89:33:75:d2:ca:24:ea:09:10:40:08:
b8:72:d1:78:4b:30:64:db:04:8c:60:f3:2f:0c:c0:70:af:ed:
da:94:79:7e:28:7a:de:c8:d4:c5:de:93:1e:5e:43:7f:38:5d:
c2:88:dc:64:0d:ab:d7:a6:1c:52:94:d9:0a:0e:d9:6e:82:5d:
f3:2d:ac:cb:d2:78:fb:7b:57:1e:e6:98:4b:a9:d7:fd:95:07:
32:1d:72:f5:07:66:a7:9e:5a:9c:53:0d:d7:46:50:7d:2b:90:
35:fd:0a:51:dc:db:58:e3:67:a2:96:ac:c2:a1:16:21:9e:dc:
8a:eb:8b:74:1d:29:20:46:63:df:4f:09:b3:ec:11:a2:3f:72:
e2:68:c0:4b:bc:0e:4d:8b:8b:d5:57:64:52:b0:95:08:61:de:
22:69:7b:42
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYZZ4cGWTvRSXCd3rkid3QQuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjMwMjE2MTEwMDEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODc1YzY3MWEzODNhNmNlNTE1MjE2YjExYjMyYzU0OTEzZTJhZGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj4M1ZOWkQ9JMiFFzCzpJYhI4t44w
KnBfTlyvhIjaACCOBJRy76MB9NM011I3vEvFHBy+iAc5gbXzlGy4LyozNw0qIHgE
+yv2JrLpa0Zxm2fQnpanqy9fFGpHGySagFr3HyMVODvxMiYAprxeOdICh47+V2DN
Qtvsujd+oJ6BxRtKkoSrbzFgRp0ViaWtupIqwDU1UtAEFMEc7dnhadK/J96UtdFY
l8Fc6Tncpcxglywq+jks5wQ+hP1kNC9ZkIXpF3NdSCQKWqKaxh+RvK9W96Uvd7MY
NZjJ8oarwXnYNsdv2EU0FPD574Ofx9pfM0aKmyPXIjheB4KN+SlrKptLWwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAh1xnGjg6bOUVIWsRsyxUkT4q3ZMB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvQ0hYR2NhT0RwczVSVWhheEd6TEZTUlBpcmRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuWAkAwQA
uW6DMA0GCSqGSIb3DQEBCwUAA4IBAQAb8ll7XWg6zLWt6M6hZ31xLx+BczdUUd8T
HJwpufUHTQGAOBAZQaQ/w4yWTCL/X49x2N0OXjV+5fJ0kBeK8AggTL9kC4G0vHqE
1ncjCMJQndpqXSs5rzK6hl6dK2oLSLsgiTN10sok6gkQQAi4ctF4SzBk2wSMYPMv
DMBwr+3alHl+KHreyNTF3pMeXkN/OF3CiNxkDavXphxSlNkKDtlugl3zLazL0nj7
e1ce5phLqdf9lQcyHXL1B2annlqcUw3XRlB9K5A1/QpR3NtY42eilqzCoRYhntyK
64t0HSkgRmPfTwmz7BGiP3LiaMBLvA5Ni4vVV2RSsJUIYd4iaXtC
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:17 2023 by rpki-client on console-fra.rpki-client.org