Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/p0RWXa15Oa_0Asu6VOUfNqK5ALs.roa
File: p0RWXa15Oa_0Asu6VOUfNqK5ALs.roa (raw, json)
Hash identifier: fgXJvdBIWBp333wXtt92SLd5XkAQYw/c+1xiheyv1ZY=
Subject key identifier: A7:44:56:5D:AD:79:39:AF:F4:02:CB:BA:54:E5:1F:36:A2:B9:00:BB
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 01856CAF439C7068C455C3C705B435986166
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/p0RWXa15Oa_0Asu6VOUfNqK5ALs.roa
Signing time: Sun 01 Jan 2023 09:35:03 +0000
ROA not before: Sun 01 Jan 2023 09:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211771
IP address blocks: 185.11.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:43:9c:70:68:c4:55:c3:c7:05:b4:35:98:61:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 09:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a744565dad7939aff402cbba54e51f36a2b900bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f7:a2:0a:c3:5b:62:72:64:98:29:a8:e1:c0:
e8:8f:f8:af:1c:d5:f3:55:67:d8:c7:2e:f1:7d:8d:
3f:27:e8:09:db:d5:33:53:76:d1:98:aa:26:48:9d:
99:d0:19:9b:df:01:4d:a4:f7:c9:8f:39:14:ee:3f:
2a:f0:21:1b:73:fe:bb:82:91:30:d3:a5:13:27:f3:
4e:01:1d:10:56:a6:99:86:71:ae:c6:fe:1a:ad:49:
f8:1d:2b:e8:55:f8:47:7a:a1:56:19:e4:09:2d:98:
9d:4a:d4:49:ee:7d:7a:30:3d:7a:4f:67:39:30:95:
e3:80:03:89:b5:4f:e7:03:ed:c4:fa:76:db:a2:2c:
50:55:4b:8a:ef:b8:fc:96:7c:14:18:49:b6:12:58:
04:e6:ab:a0:8f:4f:6e:aa:43:28:30:2a:8c:ac:bd:
3f:2c:19:90:68:f1:01:56:cb:54:ad:88:fd:c4:18:
14:04:15:fe:67:45:09:42:85:90:2e:dc:a4:b3:b1:
bd:27:ab:f2:f5:00:64:a5:39:5b:6d:a7:20:a3:82:
95:c3:fb:e4:f1:17:7c:0c:dd:43:b6:7c:ac:d0:c9:
a9:9c:c0:e5:9c:a0:6e:be:dd:71:33:2b:fd:e6:a2:
4d:14:f0:8f:53:8f:27:f3:e6:63:55:77:c6:6c:ba:
6f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:44:56:5D:AD:79:39:AF:F4:02:CB:BA:54:E5:1F:36:A2:B9:00:BB
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/p0RWXa15Oa_0Asu6VOUfNqK5ALs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.27.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b8:b8:60:3d:17:c1:2b:9e:34:1c:13:ba:5f:c9:0a:69:2d:
91:09:aa:9c:73:8a:aa:c2:89:cc:52:bb:ae:b4:3f:b0:81:ff:
40:f2:de:38:24:05:b3:61:fb:2f:2f:bf:3b:eb:09:3f:5d:2f:
ed:61:a9:99:f0:df:9b:c9:aa:bb:fa:bb:4c:55:f8:b9:56:90:
c5:cd:30:fc:ac:0a:66:e0:44:8c:a5:a5:73:59:6e:24:29:74:
f0:bf:23:33:70:21:af:ae:d9:b3:f4:50:c7:25:74:83:fe:61:
bc:77:2b:7d:97:80:2e:22:3c:96:c3:92:0c:7b:80:6c:b8:1b:
64:37:7a:93:d4:ac:ac:d6:d5:19:ae:58:e8:ef:4a:a1:5d:0a:
7d:41:b7:34:37:29:25:2d:c9:f7:6a:8f:94:69:0e:9f:7a:b6:
bc:b9:a2:4b:10:60:16:aa:25:0a:d3:88:24:a8:69:72:9d:dc:
44:6d:61:58:dd:df:cb:eb:8a:21:70:0e:2e:e7:ac:f3:aa:b5:
74:ea:1e:f9:39:db:b1:ef:cf:01:fe:7e:c0:09:02:9c:f4:c2:
18:ee:77:92:02:4d:a6:d5:3a:0c:f3:00:e3:07:bf:a3:23:7b:
4d:70:e4:d4:88:cf:f8:a2:a1:0d:2b:d0:85:9f:64:e2:da:39:
0c:8f:be:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsr0OccGjEVcPHBbQ1mGFmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyNTRhOWYzYTI2NjUxM2RkYzY5MzVkOGJlMDIyZTdlNTIz
MGVhMTAwHhcNMjMwMTAxMDkzNTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzQ0NTY1ZGFkNzkzOWFmZjQwMmNiYmE1NGU1MWYzNmEyYjkwMGJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPeiCsNbYnJkmCmo4cDoj/ivHNXz
VWfYxy7xfY0/J+gJ29UzU3bRmKomSJ2Z0Bmb3wFNpPfJjzkU7j8q8CEbc/67gpEw
06UTJ/NOAR0QVqaZhnGuxv4arUn4HSvoVfhHeqFWGeQJLZidStRJ7n16MD16T2c5
MJXjgAOJtU/nA+3E+nbboixQVUuK77j8lnwUGEm2ElgE5qugj09uqkMoMCqMrL0/
LBmQaPEBVstUrYj9xBgUBBX+Z0UJQoWQLtyks7G9J6vy9QBkpTlbbacgo4KVw/vk
8Rd8DN1Dtnys0MmpnMDlnKBuvt1xMyv95qJNFPCPU48n8+ZjVXfGbLpvhwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKdEVl2teTmv9ALLulTlHzaiuQC7MB8GA1UdIwQY
MBaAFKJUqfOiZlE93Gk12L4CLn5SMOoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2xTcDg2Sm1VVDNjYVRYWXZnSXVmbEl3NmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNjAzNzMtODE4ZS00MGE5LTkzMTkt
YWRkZjBlMTg0OWViLzEvcDBSV1hhMTVPYV8wQXN1NlZPVWZOcUs1QUxzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9iNjAzNzMtODE4ZS00MGE5LTkzMTktYWRkZjBlMTg0OWVi
LzEvb2xTcDg2Sm1VVDNjYVRYWXZnSXVmbEl3NmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQsbMA0G
CSqGSIb3DQEBCwUAA4IBAQB5uLhgPRfBK540HBO6X8kKaS2RCaqcc4qqwonMUruu
tD+wgf9A8t44JAWzYfsvL7876wk/XS/tYamZ8N+byaq7+rtMVfi5VpDFzTD8rApm
4ESMpaVzWW4kKXTwvyMzcCGvrtmz9FDHJXSD/mG8dyt9l4AuIjyWw5IMe4BsuBtk
N3qT1Kys1tUZrljo70qhXQp9Qbc0NyklLcn3ao+UaQ6fera8uaJLEGAWqiUK04gk
qGlyndxEbWFY3d/L64ohcA4u56zzqrV06h75Odux788B/n7ACQKc9MIY7neSAk2m
1ToM8wDjB7+jI3tNcOTUiM/4oqENK9CFn2Ti2jkMj76r
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org