Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/_TOr3R4WLinH0iPd_IlNpgkWHyk.roa
File: _TOr3R4WLinH0iPd_IlNpgkWHyk.roa (raw, json)
Hash identifier: 2CujoY6dI+WBFS8qFoJlkXL6NApay5n3TTm56qwNCPc=
Subject key identifier: FD:33:AB:DD:1E:16:2E:29:C7:D2:23:DD:FC:89:4D:A6:09:16:1F:29
Certificate issuer: /CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Certificate serial: 01856F14D671E3ED6789BFA2BFEF8F8996BB
Authority key identifier: 73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/_TOr3R4WLinH0iPd_IlNpgkWHyk.roa
Signing time: Sun 01 Jan 2023 20:45:14 +0000
ROA not before: Sun 01 Jan 2023 20:45:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208763
IP address blocks: 185.86.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:d6:71:e3:ed:67:89:bf:a2:bf:ef:8f:89:96:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Validity
Not Before: Jan 1 20:45:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd33abdd1e162e29c7d223ddfc894da609161f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ad:64:1b:9e:0b:4f:b2:99:35:4b:ee:33:a2:
d6:95:bf:ae:c1:96:a0:6e:6d:a3:ae:5b:81:49:92:
09:b3:f5:28:bf:94:b6:86:8f:74:95:fb:c7:6b:4c:
77:9c:51:51:fe:9d:e1:15:25:15:bd:1d:bd:64:6b:
88:37:ec:d8:b7:51:c2:f9:b5:f9:de:3b:9a:4c:c8:
bc:69:53:5a:24:df:88:91:b6:55:84:d8:a8:3f:43:
88:32:40:ca:a6:04:ca:08:eb:fc:2a:cc:2f:4b:b6:
8b:49:d8:75:95:8d:99:6f:9a:d9:ee:9e:6b:2b:81:
61:e0:eb:55:95:e9:3a:d0:8c:8f:36:69:b5:5f:59:
11:4d:d4:78:05:15:71:20:9b:45:24:0a:b1:db:56:
19:f3:0e:50:be:e3:df:eb:63:0d:be:e0:8d:77:2b:
9f:ca:e9:68:f8:20:91:d3:e3:82:39:61:cd:16:74:
fd:3f:33:9d:ef:6c:1d:82:1a:48:0c:03:72:95:aa:
8e:d1:26:b5:bf:29:d0:5c:c2:ee:2a:2a:33:3c:42:
37:08:d4:24:25:42:64:0b:08:b8:93:30:cf:d5:ed:
e6:aa:fe:f2:db:05:04:a2:39:c5:81:f0:f2:2a:d3:
a0:03:a9:03:b7:e6:e0:e6:03:9c:4c:f7:5d:35:98:
ab:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:33:AB:DD:1E:16:2E:29:C7:D2:23:DD:FC:89:4D:A6:09:16:1F:29
X509v3 Authority Key Identifier:
keyid:73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/_TOr3R4WLinH0iPd_IlNpgkWHyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/c5ddXanaigdLM_vLXAnVA6O0Q6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.225.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:28:ee:94:09:c0:d5:bd:85:7a:1d:f3:39:e4:23:80:0e:50:
e1:cd:01:aa:02:0c:15:d6:c3:80:73:5e:4e:6b:96:7b:90:ca:
0b:cc:25:1f:2d:b3:82:47:ba:19:42:6c:f7:6a:5a:19:3d:03:
ec:43:91:b7:94:82:b9:0c:42:3c:b7:d9:82:8c:d0:87:31:f0:
57:43:be:1c:72:e2:95:b7:db:66:4b:ba:69:8a:fb:8d:2a:40:
e5:37:45:0e:0c:6f:8d:dd:e7:f3:54:84:be:13:f5:8f:b3:75:
96:32:3f:1a:53:40:49:77:dc:3c:b1:aa:bb:4d:df:96:dd:43:
ce:0b:9e:a6:d9:c0:30:5d:b0:47:cc:22:34:fa:d8:d0:40:c4:
3e:13:e1:28:34:6c:75:93:f9:e0:b5:28:71:4a:51:fb:45:c3:
fd:7d:fd:6c:42:33:f8:03:0d:9d:d2:c6:f7:20:ba:e3:dc:46:
f0:ec:0e:ce:3b:52:3e:c7:d9:ad:b5:cc:40:47:44:4f:68:40:
87:83:c7:96:e0:f0:4e:fa:88:8f:74:96:bf:fa:f7:2c:40:a2:
86:a2:f3:f1:1b:12:eb:53:1e:7b:42:e7:f1:4b:18:ed:ec:44:
a4:19:d7:79:a2:1c:91:32:12:14:bc:1f:b8:70:ba:95:ea:d2:
3c:01:19:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFNZx4+1nib+iv++PiZa7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczOTc1ZDVkYTlkYThhMDc0YjMzZmJjYjVjMDlkNTAzYTNi
NDQzYTEwHhcNMjMwMTAxMjA0NTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDMzYWJkZDFlMTYyZTI5YzdkMjIzZGRmYzg5NGRhNjA5MTYxZjI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjK1kG54LT7KZNUvuM6LWlb+uwZag
bm2jrluBSZIJs/Uov5S2ho90lfvHa0x3nFFR/p3hFSUVvR29ZGuIN+zYt1HC+bX5
3juaTMi8aVNaJN+IkbZVhNioP0OIMkDKpgTKCOv8KswvS7aLSdh1lY2Zb5rZ7p5r
K4Fh4OtVlek60IyPNmm1X1kRTdR4BRVxIJtFJAqx21YZ8w5QvuPf62MNvuCNdyuf
yulo+CCR0+OCOWHNFnT9PzOd72wdghpIDANylaqO0Sa1vynQXMLuKiozPEI3CNQk
JUJkCwi4kzDP1e3mqv7y2wUEojnFgfDyKtOgA6kDt+bg5gOcTPddNZir3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP0zq90eFi4px9Ij3fyJTaYJFh8pMB8GA1UdIwQY
MBaAFHOXXV2p2ooHSzP7y1wJ1QOjtEOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzVkZFhhbmFpZ2RMTV92TFhBblZBNk8wUTZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9mMDE3MmUtNjljMi00MjJmLTgyOTYt
OWU4MGQwZDg3YzJkLzEvX1RPcjNSNFdMaW5IMGlQZF9JbE5wZ2tXSHlrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9mMDE3MmUtNjljMi00MjJmLTgyOTYtOWU4MGQwZDg3YzJk
LzEvYzVkZFhhbmFpZ2RMTV92TFhBblZBNk8wUTZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVbhMA0G
CSqGSIb3DQEBCwUAA4IBAQAPKO6UCcDVvYV6HfM55COADlDhzQGqAgwV1sOAc15O
a5Z7kMoLzCUfLbOCR7oZQmz3aloZPQPsQ5G3lIK5DEI8t9mCjNCHMfBXQ74ccuKV
t9tmS7ppivuNKkDlN0UODG+N3efzVIS+E/WPs3WWMj8aU0BJd9w8saq7Td+W3UPO
C56m2cAwXbBHzCI0+tjQQMQ+E+EoNGx1k/ngtShxSlH7RcP9ff1sQjP4Aw2d0sb3
ILrj3Ebw7A7OO1I+x9mttcxAR0RPaECHg8eW4PBO+oiPdJa/+vcsQKKGovPxGxLr
Ux57QufxSxjt7ESkGdd5ohyRMhIUvB+4cLqV6tI8ARkN
-----END CERTIFICATE-----
Generated at Tue Nov 21 21:20:35 2023 by rpki-client on console-ams.rpki-client.org