Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/64b8dd-9bcb-475e-bf8f-d87fb767d8bd/1/0YoaqWtlRRhgdcQvoWAnruSBZLU.roa
File: 0YoaqWtlRRhgdcQvoWAnruSBZLU.roa (raw, json)
Hash identifier: hEaBMgZBenM9D60mvSXLCqXnyTUzh+8QAXeifWJG6M0=
Subject key identifier: D1:8A:1A:A9:6B:65:45:18:60:75:C4:2F:A1:60:27:AE:E4:81:64:B5
Certificate issuer: /CN=d8c18b5ad3a25f118a83bb2ffbbe795d6643663c
Certificate serial: 01857230FE916EA451CBE13DBF7A47AEED25
Authority key identifier: D8:C1:8B:5A:D3:A2:5F:11:8A:83:BB:2F:FB:BE:79:5D:66:43:66:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MGLWtOiXxGKg7sv-755XWZDZjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/64b8dd-9bcb-475e-bf8f-d87fb767d8bd/1/0YoaqWtlRRhgdcQvoWAnruSBZLU.roa
Signing time: Mon 02 Jan 2023 11:14:51 +0000
ROA not before: Mon 02 Jan 2023 11:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205145
IP address blocks: 185.237.220.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:fe:91:6e:a4:51:cb:e1:3d:bf:7a:47:ae:ed:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c18b5ad3a25f118a83bb2ffbbe795d6643663c
Validity
Not Before: Jan 2 11:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d18a1aa96b6545186075c42fa16027aee48164b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b8:2f:d3:98:a1:66:a0:36:bf:f3:ef:ad:37:
d0:4f:3f:c0:9c:ad:87:4a:de:db:fc:42:06:bc:af:
d1:25:81:76:d2:8c:d3:e7:d1:e4:1e:d0:70:3f:9c:
8e:bc:5d:1f:da:46:9d:88:0e:d7:1f:b6:90:b1:52:
ac:c4:bb:f4:bc:a2:5f:4c:2d:dd:d0:e2:8b:20:a2:
56:96:1b:3c:cb:c7:34:37:ab:37:64:a7:c3:f7:bd:
68:d2:9f:b7:02:01:58:70:4c:e1:f0:3e:38:2e:77:
56:ec:4a:b4:89:c2:5e:e1:a9:98:18:4d:ba:6f:19:
05:ef:b9:ea:5a:c4:d2:e4:81:f1:6c:3e:39:fb:b2:
13:14:2c:a6:a1:c3:01:19:4d:38:38:51:f5:9e:04:
80:d8:ac:c9:7c:8f:18:ff:7b:50:b4:b5:46:2b:24:
5f:bd:88:0f:e7:d1:06:ac:3e:6d:a4:2b:95:6b:23:
fd:7a:ea:d2:de:90:81:40:c9:50:25:aa:9b:f8:e2:
45:52:29:7f:49:83:c9:0d:95:e6:df:ae:58:db:4e:
96:88:f9:fb:cd:b9:8e:a4:a0:d8:91:b8:81:56:19:
52:07:bf:ec:bb:27:43:1b:8b:9a:ab:af:e7:f7:60:
39:c7:34:6a:a9:f3:ef:8c:5b:06:61:01:b2:95:e3:
c2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:8A:1A:A9:6B:65:45:18:60:75:C4:2F:A1:60:27:AE:E4:81:64:B5
X509v3 Authority Key Identifier:
keyid:D8:C1:8B:5A:D3:A2:5F:11:8A:83:BB:2F:FB:BE:79:5D:66:43:66:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MGLWtOiXxGKg7sv-755XWZDZjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/64b8dd-9bcb-475e-bf8f-d87fb767d8bd/1/0YoaqWtlRRhgdcQvoWAnruSBZLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/64b8dd-9bcb-475e-bf8f-d87fb767d8bd/1/2MGLWtOiXxGKg7sv-755XWZDZjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.220.0/22
Signature Algorithm: sha256WithRSAEncryption
68:ef:17:ae:b4:5e:22:84:e2:e9:b5:47:8c:2d:f1:c7:e1:b9:
cd:7d:73:60:d3:23:76:74:74:05:bb:b0:7d:05:55:ff:d8:2e:
34:2b:b6:f6:e2:a8:5b:62:62:f1:c0:4f:e5:0b:d8:51:77:56:
c7:67:df:ac:40:50:e3:6c:cd:fc:a4:37:cb:da:6d:97:cd:e5:
d5:2d:55:cf:4b:ec:cb:43:4a:e1:8b:ab:1a:1f:f2:b9:11:dd:
b0:6b:f4:47:1a:43:1e:6f:3d:2d:dc:ad:3e:40:ec:a5:4e:96:
e3:08:dc:22:28:c0:71:a9:06:f2:b7:38:b1:5c:af:bb:f9:30:
e9:e0:09:3f:be:00:c9:61:bf:44:8c:d3:7e:e2:6d:c6:33:ce:
0a:25:ac:70:09:2a:cf:b0:91:ef:ff:5f:29:05:dd:2d:9b:77:
0d:6e:0f:f9:2b:07:56:23:cd:a6:84:05:2a:a6:b0:64:bd:be:
18:07:4c:8c:e8:c9:b9:77:8a:1d:f4:f3:35:19:61:3b:ba:52:
01:9e:31:10:d9:41:1e:a8:e9:5d:6b:bc:3b:58:c6:19:d8:b8:
8f:d1:e2:7b:14:de:f9:93:d5:1c:44:5b:ed:d4:c5:b2:c7:26:
d1:ea:18:04:a0:36:91:c2:b6:64:93:88:f2:a2:ec:98:7b:35:
df:fe:cc:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyMP6RbqRRy+E9v3pHru0lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YzE4YjVhZDNhMjVmMTE4YTgzYmIyZmZiYmU3OTVkNjY0
MzY2M2MwHhcNMjMwMTAyMTExNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMThhMWFhOTZiNjU0NTE4NjA3NWM0MmZhMTYwMjdhZWU0ODE2NGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkrgv05ihZqA2v/PvrTfQTz/AnK2H
St7b/EIGvK/RJYF20ozT59HkHtBwP5yOvF0f2kadiA7XH7aQsVKsxLv0vKJfTC3d
0OKLIKJWlhs8y8c0N6s3ZKfD971o0p+3AgFYcEzh8D44LndW7Eq0icJe4amYGE26
bxkF77nqWsTS5IHxbD45+7ITFCymocMBGU04OFH1ngSA2KzJfI8Y/3tQtLVGKyRf
vYgP59EGrD5tpCuVayP9eurS3pCBQMlQJaqb+OJFUil/SYPJDZXm365Y206WiPn7
zbmOpKDYkbiBVhlSB7/suydDG4uaq6/n92A5xzRqqfPvjFsGYQGylePCgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNGKGqlrZUUYYHXEL6FgJ67kgWS1MB8GA1UdIwQY
MBaAFNjBi1rTol8RioO7L/u+eV1mQ2Y8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk1HTFd0T2lYeEdLZzdzdi03NTVYV1pEWmp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy82NGI4ZGQtOWJjYi00NzVlLWJmOGYt
ZDg3ZmI3NjdkOGJkLzEvMFlvYXFXdGxSUmhnZGNRdm9XQW5ydVNCWkxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy82NGI4ZGQtOWJjYi00NzVlLWJmOGYtZDg3ZmI3NjdkOGJk
LzEvMk1HTFd0T2lYeEdLZzdzdi03NTVYV1pEWmp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCue3cMA0G
CSqGSIb3DQEBCwUAA4IBAQBo7xeutF4ihOLptUeMLfHH4bnNfXNg0yN2dHQFu7B9
BVX/2C40K7b24qhbYmLxwE/lC9hRd1bHZ9+sQFDjbM38pDfL2m2XzeXVLVXPS+zL
Q0rhi6saH/K5Ed2wa/RHGkMebz0t3K0+QOylTpbjCNwiKMBxqQbytzixXK+7+TDp
4Ak/vgDJYb9EjNN+4m3GM84KJaxwCSrPsJHv/18pBd0tm3cNbg/5KwdWI82mhAUq
prBkvb4YB0yM6Mm5d4od9PM1GWE7ulIBnjEQ2UEeqOlda7w7WMYZ2LiP0eJ7FN75
k9UcRFvt1MWyxybR6hgEoDaRwrZkk4jyouyYezXf/syD
-----END CERTIFICATE-----
Generated at Mon Oct 16 18:44:51 2023 by rpki-client on console-fra.rpki-client.org