Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/8V4tYzmN9PGK3OOXFpaMtVgR11k.roa
File: 8V4tYzmN9PGK3OOXFpaMtVgR11k.roa (raw, json)
Hash identifier: GwrAxchci//CWVhJIzu4oHwxniVk4mVEnZBOzUALsHA=
Subject key identifier: F1:5E:2D:63:39:8D:F4:F1:8A:DC:E3:97:16:96:8C:B5:58:11:D7:59
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018571C31F2510AED6A50610995706442D01
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/8V4tYzmN9PGK3OOXFpaMtVgR11k.roa
Signing time: Mon 02 Jan 2023 09:14:50 +0000
ROA not before: Mon 02 Jan 2023 09:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206313
IP address blocks: 185.197.132.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:1f:25:10:ae:d6:a5:06:10:99:57:06:44:2d:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 09:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f15e2d63398df4f18adce39716968cb55811d759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f5:65:c7:4a:83:b1:57:eb:3a:64:5f:c5:e4:
a8:3b:78:63:ce:50:30:59:cc:93:3f:2e:ed:58:79:
be:0d:af:72:cd:1a:f2:03:09:d0:93:56:2a:33:ac:
48:e4:5b:81:af:fd:53:1c:83:ab:10:b3:5e:a8:d1:
9a:8e:83:66:d7:2f:0a:66:35:c4:ac:b1:c8:71:6e:
d6:7c:4a:fb:2d:5a:19:61:04:6b:f1:31:dd:c4:54:
46:dc:d0:59:b6:bd:0e:0f:46:46:c9:c2:17:bc:8b:
24:a8:29:d8:84:04:e7:52:70:9e:62:c7:54:98:68:
f9:83:64:b5:1a:21:cc:fb:fc:a0:75:3e:36:3a:d7:
f3:5c:c8:a0:79:c0:a4:dd:88:d3:53:cd:30:b8:fc:
7f:24:19:30:78:cc:78:9b:fc:06:b6:f8:a3:5f:fe:
17:92:4b:01:2a:b1:8e:01:d2:ca:c2:75:36:44:4f:
75:de:68:11:ae:1e:62:88:13:d4:01:00:20:9a:3a:
66:0f:b6:4a:ec:70:a0:34:27:94:26:71:5c:96:97:
dd:4a:96:55:54:7b:48:f2:cd:34:63:4b:86:3b:d6:
e4:4f:51:92:2d:71:01:5f:cd:94:ba:c6:02:d5:d1:
fa:a1:b8:ee:b7:c7:08:70:b2:6b:c2:f3:10:35:7d:
d2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:5E:2D:63:39:8D:F4:F1:8A:DC:E3:97:16:96:8C:B5:58:11:D7:59
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/8V4tYzmN9PGK3OOXFpaMtVgR11k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.132.0/24
Signature Algorithm: sha256WithRSAEncryption
48:8c:0e:bc:ec:ff:a4:77:23:01:80:d5:2b:e1:61:97:62:92:
96:3e:63:24:2c:09:4c:b4:ee:fd:0c:ca:db:44:7d:cf:0d:c3:
b8:28:4d:5e:42:04:d5:49:d2:80:3d:af:4f:0e:69:bc:4f:41:
5c:1c:cc:10:e1:8e:57:2e:82:32:8b:76:3c:c9:f5:96:21:a4:
80:bb:21:19:f7:66:0f:e3:44:98:af:6f:a2:63:21:8e:96:26:
79:31:6e:65:7b:3a:a3:a7:37:b1:ae:6c:4e:25:85:fa:1f:bc:
ac:b7:c7:27:9f:e8:28:e1:f5:97:f5:e9:ea:86:74:d2:e4:5a:
fd:68:48:94:b5:31:50:44:28:65:7c:5e:79:4d:ff:79:7e:cc:
93:29:9f:68:2b:7e:08:19:f2:5e:ce:26:84:b7:8f:da:87:5e:
c1:79:de:5b:b4:15:be:b2:d9:a2:12:ff:d2:a5:e1:1b:0d:66:
37:a1:33:6b:a5:7a:02:27:e0:99:68:c8:d8:13:c3:3c:c6:8f:
76:72:d0:65:e4:7c:ec:e2:44:7b:0e:56:8c:a4:86:1b:2e:33:
1a:9c:4c:c9:2b:d8:b3:9c:e3:c6:72:36:0d:66:c0:36:51:eb:
81:0f:51:2b:59:01:33:6e:b7:28:f3:c8:30:9e:47:fa:18:5d:
f7:48:6a:ba
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxwx8lEK7WpQYQmVcGRC0BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4MDc0YjQxOWVhZDRjZWZlYTJmMmFkMmMyNTlkOTc4YzVl
ZDc5NTQwHhcNMjMwMTAyMDkxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTVlMmQ2MzM5OGRmNGYxOGFkY2UzOTcxNjk2OGNiNTU4MTFkNzU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7vVlx0qDsVfrOmRfxeSoO3hjzlAw
WcyTPy7tWHm+Da9yzRryAwnQk1YqM6xI5FuBr/1THIOrELNeqNGajoNm1y8KZjXE
rLHIcW7WfEr7LVoZYQRr8THdxFRG3NBZtr0OD0ZGycIXvIskqCnYhATnUnCeYsdU
mGj5g2S1GiHM+/ygdT42OtfzXMigecCk3YjTU80wuPx/JBkweMx4m/wGtvijX/4X
kksBKrGOAdLKwnU2RE913mgRrh5iiBPUAQAgmjpmD7ZK7HCgNCeUJnFclpfdSpZV
VHtI8s00Y0uGO9bkT1GSLXEBX82UusYC1dH6objut8cIcLJrwvMQNX3SEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPFeLWM5jfTxitzjlxaWjLVYEddZMB8GA1UdIwQY
MBaAFLgHS0GerUzv6i8q0sJZ2XjF7XlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYt
M2Q5MWVkZTViMmIxLzEvOFY0dFl6bU45UEdLM09PWEZwYU10VmdSMTFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYtM2Q5MWVkZTViMmIx
LzEvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucWEMA0G
CSqGSIb3DQEBCwUAA4IBAQBIjA687P+kdyMBgNUr4WGXYpKWPmMkLAlMtO79DMrb
RH3PDcO4KE1eQgTVSdKAPa9PDmm8T0FcHMwQ4Y5XLoIyi3Y8yfWWIaSAuyEZ92YP
40SYr2+iYyGOliZ5MW5lezqjpzexrmxOJYX6H7yst8cnn+go4fWX9enqhnTS5Fr9
aEiUtTFQRChlfF55Tf95fsyTKZ9oK34IGfJeziaEt4/ah17Bed5btBW+stmiEv/S
peEbDWY3oTNrpXoCJ+CZaMjYE8M8xo92ctBl5Hzs4kR7DlaMpIYbLjManEzJK9iz
nOPGcjYNZsA2UeuBD1ErWQEzbrco88gwnkf6GF33SGq6
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:04 2024 by rpki-client on console-ams.rpki-client.org