Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/0L5pdZNJnl7uQLjJblZi_HQybDc.roa
File: 0L5pdZNJnl7uQLjJblZi_HQybDc.roa (raw, json)
Hash identifier: EVmI83DD972jucvWSvBFINvmP12AASzzqukjSKOM2gg=
Subject key identifier: D0:BE:69:75:93:49:9E:5E:EE:40:B8:C9:6E:56:62:FC:74:32:6C:37
Certificate issuer: /CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Certificate serial: 018573B1944F463AB8C562040275E97626A0
Authority key identifier: EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/0L5pdZNJnl7uQLjJblZi_HQybDc.roa
Signing time: Mon 02 Jan 2023 18:14:55 +0000
ROA not before: Mon 02 Jan 2023 18:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30860
IP address blocks: 185.255.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:b1:94:4f:46:3a:b8:c5:62:04:02:75:e9:76:26:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Validity
Not Before: Jan 2 18:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0be697593499e5eee40b8c96e5662fc74326c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ec:c1:c6:ba:fc:58:e5:e8:9d:41:02:92:6c:
c8:9f:2f:cd:3f:94:7b:63:d6:80:81:31:17:91:70:
03:24:b6:10:26:66:d7:c1:cd:30:4e:bd:57:5f:ac:
b2:83:a6:d4:d3:d5:72:ce:f1:65:c4:c0:ae:b2:31:
aa:d9:1f:27:8e:4a:df:4e:64:f4:20:32:88:3c:18:
75:c7:33:d3:33:58:5d:0e:ef:a9:b1:36:90:d9:df:
82:32:4e:43:29:1e:fe:4f:5e:4c:a4:cf:14:3a:1c:
28:dc:c0:b6:54:69:3f:3f:0e:43:78:6a:94:d4:c7:
22:fe:2f:0d:3a:29:c0:b2:a3:01:57:57:06:e2:c2:
a3:26:21:55:29:22:ba:8b:f9:20:3c:28:b2:c2:2b:
f8:39:44:b0:b5:b0:68:55:1f:bb:f5:77:ef:e2:7e:
48:a1:ca:2e:a0:d4:ba:cc:da:26:fc:53:5b:53:9f:
0d:a9:2a:11:64:da:e0:ca:b0:f4:05:bd:83:7e:0e:
61:fc:24:6c:0d:1e:ac:83:ad:1d:ff:6e:4c:26:31:
fb:62:8d:d2:06:9d:74:07:30:37:0a:59:d2:60:da:
21:49:ba:24:29:f8:3d:14:6d:19:55:3e:27:21:ef:
ac:ad:6c:ea:cb:db:22:ff:b0:77:2b:63:12:fb:ed:
e2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:BE:69:75:93:49:9E:5E:EE:40:B8:C9:6E:56:62:FC:74:32:6C:37
X509v3 Authority Key Identifier:
keyid:EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/0L5pdZNJnl7uQLjJblZi_HQybDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/73OJCflNmWhDa7Tgmi1HzHkBczw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.120.0/24
Signature Algorithm: sha256WithRSAEncryption
79:fc:98:f4:2d:0a:0c:20:6b:cc:98:a4:05:d7:bd:c1:54:7c:
87:fd:6e:96:1f:05:fb:22:19:03:52:d9:3d:11:9e:ca:ce:51:
dc:dd:16:95:8c:f2:57:6e:af:7f:cf:51:6b:e1:33:15:8a:08:
d6:42:bc:eb:cc:19:65:1c:60:80:93:25:22:c3:b5:1d:4b:96:
7a:4e:ea:6f:90:bf:73:d0:e6:69:bd:ec:c1:e4:a9:0c:cf:a2:
ba:56:b8:90:62:7a:93:2f:1a:b9:65:a4:97:dd:ac:05:54:b7:
1c:03:c0:53:b9:9c:86:0a:11:c6:f1:d5:39:d2:08:95:c9:75:
6d:43:8d:bb:f6:4a:39:c2:70:e6:16:34:7a:8b:3b:69:85:e0:
3d:da:32:eb:02:15:a3:45:27:ea:81:46:c5:7f:8b:49:88:c6:
6f:cd:46:d5:fb:01:75:f2:4c:7e:12:d0:fe:02:dc:e4:e9:6d:
6c:48:d9:db:17:30:ad:e9:5e:b9:34:d8:01:c5:54:54:f3:65:
49:50:60:cd:f4:79:ab:6b:7b:8e:92:56:cf:da:07:ac:eb:29:
2a:7d:a1:cb:77:6c:1b:34:26:0e:f0:a7:b9:72:39:87:8e:a2:
8d:5d:61:fe:16:0e:86:ef:dc:10:f2:19:89:54:7a:60:a0:26:
2c:aa:5a:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzsZRPRjq4xWIEAnXpdiagMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNzM4OTA5Zjk0ZDk5Njg0MzZiYjRlMDlhMmQ0N2NjNzkw
MTczM2MwHhcNMjMwMTAyMTgxNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGJlNjk3NTkzNDk5ZTVlZWU0MGI4Yzk2ZTU2NjJmYzc0MzI2YzM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2uzBxrr8WOXonUECkmzIny/NP5R7
Y9aAgTEXkXADJLYQJmbXwc0wTr1XX6yyg6bU09VyzvFlxMCusjGq2R8njkrfTmT0
IDKIPBh1xzPTM1hdDu+psTaQ2d+CMk5DKR7+T15MpM8UOhwo3MC2VGk/Pw5DeGqU
1Mci/i8NOinAsqMBV1cG4sKjJiFVKSK6i/kgPCiywiv4OUSwtbBoVR+79Xfv4n5I
ocouoNS6zNom/FNbU58NqSoRZNrgyrD0Bb2Dfg5h/CRsDR6sg60d/25MJjH7Yo3S
Bp10BzA3ClnSYNohSbokKfg9FG0ZVT4nIe+srWzqy9si/7B3K2MS++3igQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNC+aXWTSZ5e7kC4yW5WYvx0Mmw3MB8GA1UdIwQY
MBaAFO9ziQn5TZloQ2u04JotR8x5AXM8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzNPSkNmbE5tV2hEYTdUZ21pMUh6SGtCY3p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8yOWEwMTYtZjYxNC00YmMzLTkzNjIt
NWVlMzA5ODliNmViLzEvMEw1cGRaTkpubDd1UUxqSmJsWmlfSFF5YkRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC8yOWEwMTYtZjYxNC00YmMzLTkzNjItNWVlMzA5ODliNmVi
LzEvNzNPSkNmbE5tV2hEYTdUZ21pMUh6SGtCY3p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf94MA0G
CSqGSIb3DQEBCwUAA4IBAQB5/Jj0LQoMIGvMmKQF173BVHyH/W6WHwX7IhkDUtk9
EZ7KzlHc3RaVjPJXbq9/z1Fr4TMVigjWQrzrzBllHGCAkyUiw7UdS5Z6TupvkL9z
0OZpvezB5KkMz6K6VriQYnqTLxq5ZaSX3awFVLccA8BTuZyGChHG8dU50giVyXVt
Q4279ko5wnDmFjR6iztpheA92jLrAhWjRSfqgUbFf4tJiMZvzUbV+wF18kx+EtD+
Atzk6W1sSNnbFzCt6V65NNgBxVRU82VJUGDN9Hmra3uOklbP2ges6ykqfaHLd2wb
NCYO8Ke5cjmHjqKNXWH+Fg6G79wQ8hmJVHpgoCYsqlq9
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:22 2023 by rpki-client on console-ams.rpki-client.org