Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/78c577-8f98-40b2-b01d-10777f9e3685/1/9X9Zc2pxgyICi3vC0e5-BEy4mcU.roa
File: 9X9Zc2pxgyICi3vC0e5-BEy4mcU.roa (raw, json)
Hash identifier: vHInUyko/c+z/SeGMVlDy2nT5vKBmnQAsIuzO74Z3zA=
Subject key identifier: F5:7F:59:73:6A:71:83:22:02:8B:7B:C2:D1:EE:7E:04:4C:B8:99:C5
Certificate issuer: /CN=532d1e41424819bcc0cd637d8ee141fea585d00d
Certificate serial: 018571F125A9C999D3211F03BE9544664C9A
Authority key identifier: 53:2D:1E:41:42:48:19:BC:C0:CD:63:7D:8E:E1:41:FE:A5:85:D0:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uy0eQUJIGbzAzWN9juFB_qWF0A0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/78c577-8f98-40b2-b01d-10777f9e3685/1/9X9Zc2pxgyICi3vC0e5-BEy4mcU.roa
Signing time: Mon 02 Jan 2023 10:05:07 +0000
ROA not before: Mon 02 Jan 2023 10:05:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201405
IP address blocks: 185.49.48.0/24 maxlen: 24
2a04:b700:185a::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f1:25:a9:c9:99:d3:21:1f:03:be:95:44:66:4c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=532d1e41424819bcc0cd637d8ee141fea585d00d
Validity
Not Before: Jan 2 10:05:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f57f59736a718322028b7bc2d1ee7e044cb899c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:16:97:bf:c4:96:c3:42:0b:53:05:75:61:83:
d1:49:7c:cd:89:d6:11:da:87:85:0d:eb:a7:c5:60:
c0:4d:cc:5d:80:cd:b3:7c:73:a4:12:37:31:01:8e:
e0:1e:a6:3c:df:3d:9b:fb:0d:e8:8c:4c:4b:84:3b:
50:43:a4:77:d5:80:ad:41:cf:84:5b:88:bb:c1:0e:
ff:36:3b:ec:e8:34:f9:c1:2a:81:74:cc:f9:6f:62:
e1:dc:ce:4f:ae:1f:ed:c3:d7:0d:47:4c:26:31:9a:
3f:02:67:dd:53:fe:f4:e7:b0:47:73:24:a5:75:6f:
93:6f:84:4e:13:59:5a:f6:f3:e6:b9:6f:0e:d6:e0:
2d:ce:5e:3d:4f:ba:71:4e:12:da:cc:b2:44:74:d4:
dd:86:0a:4d:6c:7b:03:d3:15:64:73:d5:4a:56:0f:
a4:01:09:db:49:e0:f6:77:3c:7b:30:99:17:97:9e:
fc:db:dd:95:12:b0:22:8f:d7:20:8c:f2:bd:5e:5d:
d1:06:10:2e:04:be:3c:8f:de:0b:20:04:e6:8f:20:
ad:ef:36:79:44:4f:f7:25:0a:d3:e6:1b:f9:f4:0b:
88:d7:b8:f9:e1:2e:03:fc:e5:80:71:e4:24:64:c2:
15:56:46:b5:55:44:7c:c6:3f:57:e2:da:98:0d:af:
1b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7F:59:73:6A:71:83:22:02:8B:7B:C2:D1:EE:7E:04:4C:B8:99:C5
X509v3 Authority Key Identifier:
keyid:53:2D:1E:41:42:48:19:BC:C0:CD:63:7D:8E:E1:41:FE:A5:85:D0:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uy0eQUJIGbzAzWN9juFB_qWF0A0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/78c577-8f98-40b2-b01d-10777f9e3685/1/9X9Zc2pxgyICi3vC0e5-BEy4mcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/78c577-8f98-40b2-b01d-10777f9e3685/1/Uy0eQUJIGbzAzWN9juFB_qWF0A0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.48.0/24
IPv6:
2a04:b700:185a::/48
Signature Algorithm: sha256WithRSAEncryption
90:fd:17:80:e0:53:64:25:75:61:9a:c6:a3:04:d1:89:c5:8a:
f3:4e:bb:e8:c4:55:06:9e:6d:97:6a:4a:f9:c1:e0:c1:c7:1b:
3f:57:8a:9e:1a:96:07:dc:02:70:50:45:1f:7a:a4:8e:fe:77:
d6:fd:cb:ba:08:e8:ce:ef:86:7d:6e:9a:df:21:de:42:7a:7d:
5e:9e:02:6a:36:e7:52:35:42:79:15:5f:e3:f4:17:c3:38:61:
f5:16:a4:c0:5d:76:d0:bf:e4:88:c2:c3:9d:59:a8:c9:50:f7:
0f:a6:c8:5d:b9:b3:34:9e:f0:ba:1a:72:f6:90:ec:62:0a:a9:
90:bc:01:df:a6:d7:2d:ea:fc:af:d7:05:1c:27:65:b8:9c:e6:
0c:f6:ef:6a:28:34:e8:21:f9:29:05:5d:4e:ac:39:19:78:b1:
7b:23:ca:34:b6:60:6f:b7:ea:3f:5e:49:e5:d8:3b:7e:53:44:
fa:38:35:bf:98:89:6d:4a:ad:c3:9b:ea:b0:a4:ac:ed:99:c8:
65:d4:ad:fb:0c:ea:7c:a1:bf:19:15:ff:b9:c7:57:8c:3b:3f:
8a:c0:ce:5b:10:b5:df:04:cf:32:16:26:38:3d:84:2b:74:ba:
4d:a0:7e:55:82:c6:12:ce:12:90:a4:28:7d:ca:3d:09:c0:43:
4d:3f:d9:5c
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVx8SWpyZnTIR8DvpVEZkyaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzMmQxZTQxNDI0ODE5YmNjMGNkNjM3ZDhlZTE0MWZlYTU4
NWQwMGQwHhcNMjMwMTAyMTAwNTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTdmNTk3MzZhNzE4MzIyMDI4YjdiYzJkMWVlN2UwNDRjYjg5OWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihaXv8SWw0ILUwV1YYPRSXzNidYR
2oeFDeunxWDATcxdgM2zfHOkEjcxAY7gHqY83z2b+w3ojExLhDtQQ6R31YCtQc+E
W4i7wQ7/Njvs6DT5wSqBdMz5b2Lh3M5Prh/tw9cNR0wmMZo/AmfdU/7057BHcySl
dW+Tb4ROE1la9vPmuW8O1uAtzl49T7pxThLazLJEdNTdhgpNbHsD0xVkc9VKVg+k
AQnbSeD2dzx7MJkXl578292VErAij9cgjPK9Xl3RBhAuBL48j94LIATmjyCt7zZ5
RE/3JQrT5hv59AuI17j54S4D/OWAceQkZMIVVka1VUR8xj9X4tqYDa8bWwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFPV/WXNqcYMiAot7wtHufgRMuJnFMB8GA1UdIwQY
MBaAFFMtHkFCSBm8wM1jfY7hQf6lhdANMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXkwZVFVSklHYnpBeldOOWp1RkJfcVdGMEEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC83OGM1NzctOGY5OC00MGIyLWIwMWQt
MTA3NzdmOWUzNjg1LzEvOVg5WmMycHhneUlDaTN2QzBlNS1CRXk0bWNVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC83OGM1NzctOGY5OC00MGIyLWIwMWQtMTA3NzdmOWUzNjg1
LzEvVXkwZVFVSklHYnpBeldOOWp1RkJfcVdGMEEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuTEwMA8E
AgACMAkDBwAqBLcAGFowDQYJKoZIhvcNAQELBQADggEBAJD9F4DgU2QldWGaxqME
0YnFivNOu+jEVQaebZdqSvnB4MHHGz9Xip4algfcAnBQRR96pI7+d9b9y7oI6M7v
hn1umt8h3kJ6fV6eAmo251I1QnkVX+P0F8M4YfUWpMBddtC/5IjCw51ZqMlQ9w+m
yF25szSe8LoacvaQ7GIKqZC8Ad+m1y3q/K/XBRwnZbic5gz272ooNOgh+SkFXU6s
ORl4sXsjyjS2YG+36j9eSeXYO35TRPo4Nb+YiW1KrcOb6rCkrO2ZyGXUrfsM6nyh
vxkV/7nHV4w7P4rAzlsQtd8EzzIWJjg9hCt0uk2gflWCxhLOEpCkKH3KPQnAQ00/
2Vw=
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:15 2024 by rpki-client on console-fra.rpki-client.org