Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/Af01XdQGQfyk7PdUH7qKkYdLdn0.roa
File: Af01XdQGQfyk7PdUH7qKkYdLdn0.roa (raw, json)
Hash identifier: ZzUKePRL+5RqVDfMpTqAOqQXwnK/MaGW2n7mhcSymJY=
Subject key identifier: 01:FD:35:5D:D4:06:41:FC:A4:EC:F7:54:1F:BA:8A:91:87:4B:76:7D
Certificate issuer: /CN=bef2158a0f2a42617a821a0b4fcc9c9a93f4246d
Certificate serial: 01862C215D574C5FC0C8A0CC88DF00C225BE
Authority key identifier: BE:F2:15:8A:0F:2A:42:61:7A:82:1A:0B:4F:CC:9C:9A:93:F4:24:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vvIVig8qQmF6ghoLT8ycmpP0JG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/Af01XdQGQfyk7PdUH7qKkYdLdn0.roa
Signing time: Tue 07 Feb 2023 13:47:09 +0000
ROA not before: Tue 07 Feb 2023 13:47:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49283
IP address blocks: 46.182.160.0/21 maxlen: 21
185.68.56.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2c:21:5d:57:4c:5f:c0:c8:a0:cc:88:df:00:c2:25:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bef2158a0f2a42617a821a0b4fcc9c9a93f4246d
Validity
Not Before: Feb 7 13:47:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01fd355dd40641fca4ecf7541fba8a91874b767d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:30:9e:a9:b6:23:f9:b4:60:ba:dd:b9:fd:6a:
40:68:d8:0a:aa:e2:97:02:30:08:f8:33:20:3f:d0:
82:5f:93:f6:4a:4c:65:c5:c2:5b:b5:57:44:18:ce:
a6:51:e0:eb:4f:dc:ff:2c:ba:5d:14:01:9a:8f:0c:
8f:81:c2:63:67:21:bc:51:b6:95:c0:54:3d:91:32:
bf:48:24:27:75:aa:ff:de:2f:fc:60:16:d5:b1:ac:
e7:4e:b8:98:df:45:e7:dc:c1:bb:ce:98:ba:b8:36:
eb:84:54:e3:c3:2e:96:03:3d:19:7b:84:93:59:ea:
7a:52:5a:c6:4b:c7:cf:0c:16:d8:03:ee:f4:bf:f3:
f5:67:49:c7:c6:b9:91:e5:f4:55:28:8c:a8:14:f2:
ae:08:f8:9c:de:84:b2:dd:ae:19:2f:99:5f:4c:ea:
f5:7e:51:3c:4d:94:41:7e:d5:33:07:70:42:24:29:
7e:78:07:6c:02:41:09:4a:41:7b:e7:16:cd:8b:8d:
88:a5:70:1d:e5:20:2f:13:1a:a8:fe:e9:f9:52:6e:
6f:40:5a:fc:1f:3b:91:9e:c9:95:82:fe:6b:11:cc:
f7:f3:11:3e:d5:99:34:d5:a0:c1:d6:8b:ca:de:ce:
ea:51:88:44:a8:91:0e:ca:e0:54:da:f5:c2:65:09:
8e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:FD:35:5D:D4:06:41:FC:A4:EC:F7:54:1F:BA:8A:91:87:4B:76:7D
X509v3 Authority Key Identifier:
keyid:BE:F2:15:8A:0F:2A:42:61:7A:82:1A:0B:4F:CC:9C:9A:93:F4:24:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vvIVig8qQmF6ghoLT8ycmpP0JG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/Af01XdQGQfyk7PdUH7qKkYdLdn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/vvIVig8qQmF6ghoLT8ycmpP0JG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.182.160.0/21
185.68.56.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:5b:b1:81:ca:19:3c:a3:c0:b1:a0:f0:25:0d:7d:e8:9c:b3:
85:d5:48:89:7f:e0:86:49:a3:9b:a1:6f:8b:64:39:41:74:25:
d0:63:06:db:1e:62:b3:95:83:18:10:78:31:aa:0c:b1:8a:31:
21:1e:fb:63:d3:a0:bb:40:8d:6d:22:f8:46:2c:2a:e3:49:7a:
ad:ac:81:81:c4:80:a0:c0:99:0f:03:bf:50:73:76:2a:d3:48:
da:31:e8:bb:bc:fc:12:4a:7b:de:fc:67:55:07:59:cf:20:1b:
48:84:fb:72:41:f2:0d:e7:91:e1:34:db:26:b9:a6:70:5b:41:
4c:25:55:b9:02:1c:c8:65:23:05:57:e6:ea:47:ca:a2:a2:32:
ec:2a:11:76:bb:ec:79:80:e6:2d:dd:c7:c8:46:0f:1d:ea:e8:
38:1c:55:16:ca:55:f6:da:1c:77:40:13:48:68:b5:19:4f:75:
8a:1d:39:b8:15:cf:74:c0:8a:64:90:1d:ae:ee:fb:a1:89:ba:
6a:45:5b:66:2f:ff:5b:7a:1f:cd:f4:cb:d4:13:1b:95:49:cc:
d3:f2:1f:24:39:81:23:61:e8:ce:14:c5:7a:78:94:e7:e7:1e:
e3:f4:41:4e:76:be:0e:0f:4a:92:cc:55:7f:10:03:ad:b1:f3:
56:eb:a8:38
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYYsIV1XTF/AyKDMiN8AwiW+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlZjIxNThhMGYyYTQyNjE3YTgyMWEwYjRmY2M5YzlhOTNm
NDI0NmQwHhcNMjMwMjA3MTM0NzA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMWZkMzU1ZGQ0MDY0MWZjYTRlY2Y3NTQxZmJhOGE5MTg3NGI3NjdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozCeqbYj+bRgut25/WpAaNgKquKX
AjAI+DMgP9CCX5P2SkxlxcJbtVdEGM6mUeDrT9z/LLpdFAGajwyPgcJjZyG8UbaV
wFQ9kTK/SCQndar/3i/8YBbVsaznTriY30Xn3MG7zpi6uDbrhFTjwy6WAz0Ze4ST
Wep6UlrGS8fPDBbYA+70v/P1Z0nHxrmR5fRVKIyoFPKuCPic3oSy3a4ZL5lfTOr1
flE8TZRBftUzB3BCJCl+eAdsAkEJSkF75xbNi42IpXAd5SAvExqo/un5Um5vQFr8
HzuRnsmVgv5rEcz38xE+1Zk01aDB1ovK3s7qUYhEqJEOyuBU2vXCZQmOiwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAH9NV3UBkH8pOz3VB+6ipGHS3Z9MB8GA1UdIwQY
MBaAFL7yFYoPKkJheoIaC0/MnJqT9CRtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnZJVmlnOHFRbUY2Z2hvTFQ4eWNtcFAwSkcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS80MmQ4MjEtNzRhZi00Y2VkLTk0ZWEt
MDI3YjU4ZTZmZGM1LzEvQWYwMVhkUUdRZnlrN1BkVUg3cUtrWWRMZG4wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS80MmQ4MjEtNzRhZi00Y2VkLTk0ZWEtMDI3YjU4ZTZmZGM1
LzEvdnZJVmlnOHFRbUY2Z2hvTFQ4eWNtcFAwSkcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDLragAwQA
uUQ4MA0GCSqGSIb3DQEBCwUAA4IBAQCfW7GByhk8o8CxoPAlDX3onLOF1UiJf+CG
SaOboW+LZDlBdCXQYwbbHmKzlYMYEHgxqgyxijEhHvtj06C7QI1tIvhGLCrjSXqt
rIGBxICgwJkPA79Qc3Yq00jaMei7vPwSSnve/GdVB1nPIBtIhPtyQfIN55HhNNsm
uaZwW0FMJVW5AhzIZSMFV+bqR8qiojLsKhF2u+x5gOYt3cfIRg8d6ug4HFUWylX2
2hx3QBNIaLUZT3WKHTm4Fc90wIpkkB2u7vuhibpqRVtmL/9beh/N9MvUExuVSczT
8h8kOYEjYejOFMV6eJTn5x7j9EFOdr4OD0qSzFV/EAOtsfNW66g4
-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:43 2024 by rpki-client on console-ams.rpki-client.org