Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/7Iu6Br6NUWfbfqYJ0bGgYSD71Ok.roa
File: 7Iu6Br6NUWfbfqYJ0bGgYSD71Ok.roa (raw, json)
Hash identifier: nLtIeM9UlVA75606u5fSd93t224IuRN5OZvIk0ascK0=
Subject key identifier: EC:8B:BA:06:BE:8D:51:67:DB:7E:A6:09:D1:B1:A0:61:20:FB:D4:E9
Certificate issuer: /CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Certificate serial: 01857042A96BC3A26C917D2818C3235CB7E0
Authority key identifier: A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/7Iu6Br6NUWfbfqYJ0bGgYSD71Ok.roa
Signing time: Mon 02 Jan 2023 02:14:54 +0000
ROA not before: Mon 02 Jan 2023 02:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42675
IP address blocks: 194.32.147.0/24 maxlen: 24
194.32.146.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:a9:6b:c3:a2:6c:91:7d:28:18:c3:23:5c:b7:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Validity
Not Before: Jan 2 02:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec8bba06be8d5167db7ea609d1b1a06120fbd4e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e5:36:96:b2:55:21:f6:aa:a4:4c:33:5e:be:
9f:3b:c5:93:66:b6:9e:04:7f:7c:0d:f6:26:b0:b0:
48:33:8a:87:c4:00:24:93:f8:be:b3:4c:76:09:7a:
a5:86:94:9d:b1:8b:19:d9:de:26:b9:61:5b:59:2e:
d3:87:da:29:a3:ef:9d:88:03:76:6f:0d:f5:0d:e0:
06:e7:88:db:4e:e0:71:61:b4:7a:56:9e:8a:98:1b:
de:3e:21:80:1c:02:55:f5:47:84:64:78:98:9c:1a:
27:94:88:5f:d6:f3:cf:bb:6a:2c:e9:4d:55:a8:2f:
35:b5:91:95:5e:af:6b:24:8f:34:be:fb:58:1c:2c:
15:b0:24:59:cf:1d:a5:e4:74:80:a4:10:9e:2c:5a:
73:5a:9c:6a:48:6a:c6:ac:38:52:1e:ab:18:55:7b:
28:75:13:69:1e:92:be:ca:c2:1a:56:03:ab:bb:8d:
50:d0:a3:96:93:88:69:c3:64:2a:f0:54:f1:5b:ea:
e5:18:e6:22:1b:e2:ef:24:54:d4:10:12:48:65:a6:
e3:78:b5:e5:c6:77:4a:ef:11:77:ea:fc:5c:1a:72:
52:22:94:45:d1:28:82:53:23:5b:e1:45:70:f8:ac:
4b:8e:ee:d5:de:78:45:eb:1d:25:5f:81:0c:5b:16:
16:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:8B:BA:06:BE:8D:51:67:DB:7E:A6:09:D1:B1:A0:61:20:FB:D4:E9
X509v3 Authority Key Identifier:
keyid:A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/7Iu6Br6NUWfbfqYJ0bGgYSD71Ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.146.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:9c:b6:47:7a:e9:63:ce:f2:f5:b5:73:de:ee:dd:a4:80:db:
32:4a:45:c9:ad:7a:aa:c9:94:05:4b:31:c4:8d:0f:a8:49:05:
8e:a3:ed:e1:20:08:6d:e0:ff:8e:fe:3f:75:e2:eb:21:47:b0:
02:c8:41:aa:e8:6d:d2:88:96:27:6a:f3:fc:5a:ed:65:ed:d9:
0a:4f:c5:13:3a:89:de:82:43:98:4d:f3:5c:f1:17:39:ed:f3:
b3:71:a0:9a:00:b9:09:64:fd:08:86:ff:1a:b4:31:85:df:c9:
43:ac:75:d4:7d:cc:f6:06:54:f0:5a:81:68:15:b8:e1:e0:e4:
45:f5:1a:9e:62:05:6a:88:59:e6:3d:47:64:49:9b:29:e1:01:
51:d2:03:d0:3b:82:6e:39:93:f8:b2:91:f5:d8:94:8d:71:a0:
74:9d:52:b3:52:68:cb:66:13:dd:08:55:bb:1f:3d:c8:5d:0c:
e7:80:a6:62:13:0d:91:ab:49:64:24:15:5a:01:00:bf:41:5a:
0d:f5:18:d6:31:48:10:90:8f:df:ed:78:fe:97:15:08:83:2f:
43:50:13:ad:8b:b6:33:21:a5:a8:05:80:83:95:8d:df:84:c6:
49:06:a3:b2:f0:6d:51:f5:d4:e6:4a:b0:34:43:f2:2e:bf:0b:
e5:5d:36:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwQqlrw6JskX0oGMMjXLfgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3ZmQzZjg5MzM1ZGNmODI4NjY2YjI4ZmFkOGFlOTkzYmQ0
NDg4NzgwHhcNMjMwMTAyMDIxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzhiYmEwNmJlOGQ1MTY3ZGI3ZWE2MDlkMWIxYTA2MTIwZmJkNGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAleU2lrJVIfaqpEwzXr6fO8WTZrae
BH98DfYmsLBIM4qHxAAkk/i+s0x2CXqlhpSdsYsZ2d4muWFbWS7Th9opo++diAN2
bw31DeAG54jbTuBxYbR6Vp6KmBvePiGAHAJV9UeEZHiYnBonlIhf1vPPu2os6U1V
qC81tZGVXq9rJI80vvtYHCwVsCRZzx2l5HSApBCeLFpzWpxqSGrGrDhSHqsYVXso
dRNpHpK+ysIaVgOru41Q0KOWk4hpw2Qq8FTxW+rlGOYiG+LvJFTUEBJIZabjeLXl
xndK7xF36vxcGnJSIpRF0SiCUyNb4UVw+KxLju7V3nhF6x0lX4EMWxYWNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOyLuga+jVFn236mCdGxoGEg+9TpMB8GA1UdIwQY
MBaAFKf9P4kzXc+Chmayj62K6ZO9RIh4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcF8wX2lUTmR6NEtHWnJLUHJZcnBrNzFFaUhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8zODhmZDgtYzgxZi00ZTcxLWFmNTIt
YzBiMWFkNDM1Yjk1LzEvN0l1NkJyNk5VV2ZiZnFZSjBiR2dZU0Q3MU9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC8zODhmZDgtYzgxZi00ZTcxLWFmNTItYzBiMWFkNDM1Yjk1
LzEvcF8wX2lUTmR6NEtHWnJLUHJZcnBrNzFFaUhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwiCSMA0G
CSqGSIb3DQEBCwUAA4IBAQCNnLZHeuljzvL1tXPe7t2kgNsySkXJrXqqyZQFSzHE
jQ+oSQWOo+3hIAht4P+O/j914ushR7ACyEGq6G3SiJYnavP8Wu1l7dkKT8UTOone
gkOYTfNc8Rc57fOzcaCaALkJZP0Ihv8atDGF38lDrHXUfcz2BlTwWoFoFbjh4ORF
9RqeYgVqiFnmPUdkSZsp4QFR0gPQO4JuOZP4spH12JSNcaB0nVKzUmjLZhPdCFW7
Hz3IXQzngKZiEw2Rq0lkJBVaAQC/QVoN9RjWMUgQkI/f7Xj+lxUIgy9DUBOti7Yz
IaWoBYCDlY3fhMZJBqOy8G1R9dTmSrA0Q/IuvwvlXTbY
-----END CERTIFICATE-----
Generated at Wed Aug 30 19:59:18 2023 by rpki-client on console-ams.rpki-client.org