Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/Y33RogmUj9QrAcnYYp1lHA-28y8.roa
File: Y33RogmUj9QrAcnYYp1lHA-28y8.roa (raw, json)
Hash identifier: DhgUDtA0XJcMBDBMPe9rWgOdT+xRvx8I6Un1Fz63bOM=
Subject key identifier: 63:7D:D1:A2:09:94:8F:D4:2B:01:C9:D8:62:9D:65:1C:0F:B6:F3:2F
Certificate issuer: /CN=fa2e72abf7b1728fda6aa0b0413d8854812ea361
Certificate serial: 01857102E845CB285052D375E590F891ED60
Authority key identifier: FA:2E:72:AB:F7:B1:72:8F:DA:6A:A0:B0:41:3D:88:54:81:2E:A3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-i5yq_exco_aaqCwQT2IVIEuo2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/Y33RogmUj9QrAcnYYp1lHA-28y8.roa
Signing time: Mon 02 Jan 2023 05:44:54 +0000
ROA not before: Mon 02 Jan 2023 05:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24961
IP address blocks: 185.231.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:e8:45:cb:28:50:52:d3:75:e5:90:f8:91:ed:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa2e72abf7b1728fda6aa0b0413d8854812ea361
Validity
Not Before: Jan 2 05:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=637dd1a209948fd42b01c9d8629d651c0fb6f32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e8:4f:13:ef:c2:9b:d6:d8:31:43:0b:e8:a9:
05:3d:6a:fc:c4:b9:0f:aa:a7:d7:e6:6e:a5:15:3f:
52:60:86:2c:33:4a:29:94:13:9f:d9:11:e9:38:8b:
c3:e8:89:6f:87:0e:6c:08:df:2c:66:2b:59:af:1e:
ec:53:d5:98:74:16:4a:cc:d6:2d:aa:71:53:c2:bc:
c7:f2:dc:20:35:cc:85:22:7f:10:7f:9f:63:cd:b3:
8d:41:2d:65:1f:4d:0e:d8:ee:67:ad:64:32:18:94:
f2:67:e7:26:02:58:6d:ae:d1:08:c2:06:57:aa:7f:
0f:9b:66:ed:cd:5f:48:f4:6e:5c:9a:c7:80:5f:6f:
76:1d:49:08:ff:43:62:74:ff:76:8d:f9:a1:69:57:
1c:9d:28:39:17:e6:f1:7e:b6:d2:49:9e:a9:96:ad:
d1:9f:e4:2c:db:0f:59:82:cc:84:7c:38:0b:8e:bd:
19:fa:77:ff:72:8f:ec:8e:16:c8:48:f1:82:cc:32:
c6:50:37:e4:35:4c:7d:a8:1e:e2:55:c7:24:b9:3b:
ac:8b:0e:5b:4b:d5:b8:79:1d:a0:93:75:2f:c6:43:
3f:e1:87:8e:75:4e:dd:27:0f:60:e7:6f:5a:a7:ac:
28:d9:06:bd:b7:d4:6b:98:84:f7:49:5e:76:04:ed:
06:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:7D:D1:A2:09:94:8F:D4:2B:01:C9:D8:62:9D:65:1C:0F:B6:F3:2F
X509v3 Authority Key Identifier:
keyid:FA:2E:72:AB:F7:B1:72:8F:DA:6A:A0:B0:41:3D:88:54:81:2E:A3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-i5yq_exco_aaqCwQT2IVIEuo2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/Y33RogmUj9QrAcnYYp1lHA-28y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/1-i5yq_exco_aaqCwQT2IVIEuo2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.220.0/24
Signature Algorithm: sha256WithRSAEncryption
08:75:e3:7f:92:36:fd:7f:0b:12:35:ab:1a:56:12:cd:f7:be:
12:d7:32:94:ee:df:b4:c2:08:da:1d:d8:30:ac:a0:0a:4c:19:
e5:c1:df:bc:2c:d6:be:c7:57:7d:bd:b0:ef:cf:91:bd:f4:01:
29:dc:27:2b:f3:62:7c:1f:d7:86:26:f8:e2:c9:66:de:ed:33:
f7:46:f1:d0:8c:60:6c:60:ea:51:d9:6b:a7:52:76:1b:7b:e7:
2d:87:34:13:55:df:27:9f:ae:98:d6:69:89:22:8b:a7:bc:3b:
f9:8a:b1:28:c0:8e:90:78:a7:77:c0:2d:a5:88:2b:97:e8:f1:
55:ba:27:ce:d6:45:79:fe:73:24:b7:9b:f7:6e:c3:8e:28:46:
c9:ce:54:99:ed:7f:fc:5c:95:68:ed:b0:dd:7b:67:ed:02:53:
33:14:ba:1c:82:d0:31:b4:69:d0:1b:5e:cf:82:9b:8e:54:e4:
60:1a:03:9f:15:a4:9f:6a:40:08:20:e3:7b:d9:34:54:66:f5:
82:bd:84:de:8b:ce:bc:9d:66:1d:14:b7:42:a1:fc:15:e3:ad:
ee:c5:0c:b2:89:29:e7:e5:6a:d2:ea:19:c1:fa:21:73:cb:2a:
25:50:1e:3e:b1:ec:4d:46:62:64:cf:f3:99:02:5a:73:a3:01:
f4:5b:df:db
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVxAuhFyyhQUtN15ZD4ke1gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhMmU3MmFiZjdiMTcyOGZkYTZhYTBiMDQxM2Q4ODU0ODEy
ZWEzNjEwHhcNMjMwMTAyMDU0NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzdkZDFhMjA5OTQ4ZmQ0MmIwMWM5ZDg2MjlkNjUxYzBmYjZmMzJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ehPE+/Cm9bYMUML6KkFPWr8xLkP
qqfX5m6lFT9SYIYsM0oplBOf2RHpOIvD6Ilvhw5sCN8sZitZrx7sU9WYdBZKzNYt
qnFTwrzH8twgNcyFIn8Qf59jzbONQS1lH00O2O5nrWQyGJTyZ+cmAlhtrtEIwgZX
qn8Pm2btzV9I9G5cmseAX292HUkI/0NidP92jfmhaVccnSg5F+bxfrbSSZ6plq3R
n+Qs2w9ZgsyEfDgLjr0Z+nf/co/sjhbISPGCzDLGUDfkNUx9qB7iVcckuTusiw5b
S9W4eR2gk3UvxkM/4YeOdU7dJw9g529ap6wo2Qa9t9RrmIT3SV52BO0GHQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFGN90aIJlI/UKwHJ2GKdZRwPtvMvMB8GA1UdIwQY
MBaAFPoucqv3sXKP2mqgsEE9iFSBLqNhMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1pNXlxX2V4Y29fYWFxQ3dRVDJJVklFdW8yRS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMvZjYxNTkxLTdjYTgtNGE5YS04OTlm
LWEzNjZkYTI1MWE4My8xL1kzM1JvZ21VajlRckFjbllZcDFsSEEtMjh5OC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvOWMvZjYxNTkxLTdjYTgtNGE5YS04OTlmLWEzNjZkYTI1MWE4
My8xLzEtaTV5cV9leGNvX2FhcUN3UVQySVZJRXVvMkUuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC559ww
DQYJKoZIhvcNAQELBQADggEBAAh143+SNv1/CxI1qxpWEs33vhLXMpTu37TCCNod
2DCsoApMGeXB37ws1r7HV329sO/Pkb30ASncJyvzYnwf14Ym+OLJZt7tM/dG8dCM
YGxg6lHZa6dSdht75y2HNBNV3yefrpjWaYkii6e8O/mKsSjAjpB4p3fALaWIK5fo
8VW6J87WRXn+cyS3m/duw44oRsnOVJntf/xclWjtsN17Z+0CUzMUuhyC0DG0adAb
Xs+Cm45U5GAaA58VpJ9qQAgg43vZNFRm9YK9hN6LzrydZh0Ut0Kh/BXjre7FDLKJ
KeflatLqGcH6IXPLKiVQHj6x7E1GYmTP85kCWnOjAfRb39s=
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:49 2024 by rpki-client on console-fra.rpki-client.org