Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/6e4ecc-ad79-4603-84c5-b64e61e280ab/1/DIdbyvv6sBle3HkWmXdrbiG7nJc.roa
File: DIdbyvv6sBle3HkWmXdrbiG7nJc.roa (raw, json)
Hash identifier: W8h5zPtAjt6wmhMqNesLQs9I6+/sVYHs9Mq26rNm+3Y=
Subject key identifier: 0C:87:5B:CA:FB:FA:B0:19:5E:DC:79:16:99:77:6B:6E:21:BB:9C:97
Certificate issuer: /CN=0bdaba873ee18be547bd935943c0798ddcf70935
Certificate serial: 01856D6F4F7E89C752C47082A70E1E00E5E0
Authority key identifier: 0B:DA:BA:87:3E:E1:8B:E5:47:BD:93:59:43:C0:79:8D:DC:F7:09:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C9q6hz7hi-VHvZNZQ8B5jdz3CTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/6e4ecc-ad79-4603-84c5-b64e61e280ab/1/DIdbyvv6sBle3HkWmXdrbiG7nJc.roa
Signing time: Sun 01 Jan 2023 13:04:49 +0000
ROA not before: Sun 01 Jan 2023 13:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210398
IP address blocks: 185.81.70.0/24 maxlen: 24
2a12:e680::/29 maxlen: 29
2a12:e681::/32 maxlen: 32
2a12:e680::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:4f:7e:89:c7:52:c4:70:82:a7:0e:1e:00:e5:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bdaba873ee18be547bd935943c0798ddcf70935
Validity
Not Before: Jan 1 13:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c875bcafbfab0195edc791699776b6e21bb9c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7c:96:34:cc:3d:69:9f:6b:8f:01:8d:f1:34:
b9:61:5c:ae:7b:57:66:fa:c1:20:c7:26:f5:52:99:
e4:69:44:ef:fe:8c:06:22:a8:67:bf:a8:cc:9f:59:
a0:a2:9f:aa:0b:0e:b3:c5:dd:62:9c:a9:15:2f:04:
ac:8c:da:b1:3a:4d:81:77:df:1d:84:e2:27:51:74:
1a:77:f7:5b:c9:82:5b:22:5d:5f:b1:b3:cb:ce:6d:
64:06:ac:bb:8c:bc:0e:8b:d0:61:5d:af:e0:c4:6f:
45:0b:97:99:58:c8:ec:b8:76:ab:9c:59:dd:71:9e:
d3:dc:ac:b5:29:c9:ee:db:cc:7f:71:6f:aa:01:a1:
d0:43:12:43:c4:b9:14:22:27:14:61:2c:72:2e:ee:
dd:fe:e8:cb:ff:46:d6:6d:ac:a9:41:5b:41:1e:8d:
a3:71:73:1b:78:78:4c:87:78:62:1c:e0:b5:87:8d:
2e:19:81:bd:be:36:5d:08:60:bd:ed:ba:44:a1:5f:
4a:1b:d3:bb:a9:f1:5d:14:c2:35:e6:d3:83:68:24:
3a:bf:a9:aa:aa:47:f0:f2:10:49:09:2f:22:20:9f:
70:c9:75:14:f9:3b:76:4e:34:ed:d6:63:53:b6:19:
6c:59:6a:ee:fd:c1:c1:14:f3:d9:36:51:ba:d6:4b:
08:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:87:5B:CA:FB:FA:B0:19:5E:DC:79:16:99:77:6B:6E:21:BB:9C:97
X509v3 Authority Key Identifier:
keyid:0B:DA:BA:87:3E:E1:8B:E5:47:BD:93:59:43:C0:79:8D:DC:F7:09:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C9q6hz7hi-VHvZNZQ8B5jdz3CTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/6e4ecc-ad79-4603-84c5-b64e61e280ab/1/DIdbyvv6sBle3HkWmXdrbiG7nJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/6e4ecc-ad79-4603-84c5-b64e61e280ab/1/C9q6hz7hi-VHvZNZQ8B5jdz3CTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.70.0/24
IPv6:
2a12:e680::/29
Signature Algorithm: sha256WithRSAEncryption
24:73:24:02:b0:af:b5:dd:8c:6b:be:f6:5e:b7:52:d7:f1:b8:
6e:82:e5:cd:ee:29:c5:3f:3b:8b:fd:cc:26:d8:06:c8:dd:4f:
b1:e9:68:99:32:02:78:d7:57:c4:e0:ea:da:93:8f:46:f9:56:
0c:8e:17:b1:6a:f6:a2:25:85:14:3c:f9:a0:cc:c9:1c:50:b6:
a2:ee:ae:83:3b:03:99:30:ae:31:1e:24:4a:b6:bb:2a:23:c8:
8a:b3:60:fd:32:01:1a:88:87:35:e6:07:ad:c3:a2:7e:59:e9:
62:76:c6:34:02:8a:a4:d6:04:e4:4f:cb:b9:6d:e2:78:f7:80:
0e:86:f6:86:37:de:2f:e8:a2:95:27:dc:61:5e:21:37:04:5f:
fb:b5:94:dd:14:23:bf:15:a9:06:46:a1:69:75:a9:41:72:9e:
c2:ad:c6:5f:4e:dd:bb:33:b0:f6:17:27:9d:9a:34:a7:ef:39:
ac:1e:8b:2f:45:63:26:f0:79:95:fe:8b:b2:0e:73:6c:bf:76:
4c:03:ef:09:68:48:3e:54:b8:45:6d:fe:ed:e9:6e:c9:b4:ef:
ab:a6:22:0d:2e:e8:b8:a6:c3:b4:b5:ba:da:dc:03:df:89:2a:
98:12:06:12:55:01:4b:30:27:48:7a:f0:14:80:1e:c0:40:35:
1f:0e:20:a1
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVtb09+icdSxHCCpw4eAOXgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiZGFiYTg3M2VlMThiZTU0N2JkOTM1OTQzYzA3OThkZGNm
NzA5MzUwHhcNMjMwMTAxMTMwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzg3NWJjYWZiZmFiMDE5NWVkYzc5MTY5OTc3NmI2ZTIxYmI5Yzk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhHyWNMw9aZ9rjwGN8TS5YVyue1dm
+sEgxyb1UpnkaUTv/owGIqhnv6jMn1mgop+qCw6zxd1inKkVLwSsjNqxOk2Bd98d
hOInUXQad/dbyYJbIl1fsbPLzm1kBqy7jLwOi9BhXa/gxG9FC5eZWMjsuHarnFnd
cZ7T3Ky1Kcnu28x/cW+qAaHQQxJDxLkUIicUYSxyLu7d/ujL/0bWbaypQVtBHo2j
cXMbeHhMh3hiHOC1h40uGYG9vjZdCGC97bpEoV9KG9O7qfFdFMI15tODaCQ6v6mq
qkfw8hBJCS8iIJ9wyXUU+Tt2TjTt1mNTthlsWWru/cHBFPPZNlG61ksI7wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFAyHW8r7+rAZXtx5Fpl3a24hu5yXMB8GA1UdIwQY
MBaAFAvauoc+4YvlR72TWUPAeY3c9wk1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzlxNmh6N2hpLVZIdlpOWlE4QjVqZHozQ1RVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi82ZTRlY2MtYWQ3OS00NjAzLTg0YzUt
YjY0ZTYxZTI4MGFiLzEvRElkYnl2djZzQmxlM0hrV21YZHJiaUc3bkpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi82ZTRlY2MtYWQ3OS00NjAzLTg0YzUtYjY0ZTYxZTI4MGFi
LzEvQzlxNmh6N2hpLVZIdlpOWlE4QjVqZHozQ1RVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuVFGMA0E
AgACMAcDBQMqEuaAMA0GCSqGSIb3DQEBCwUAA4IBAQAkcyQCsK+13YxrvvZet1LX
8bhuguXN7inFPzuL/cwm2AbI3U+x6WiZMgJ411fE4Orak49G+VYMjhexavaiJYUU
PPmgzMkcULai7q6DOwOZMK4xHiRKtrsqI8iKs2D9MgEaiIc15getw6J+WelidsY0
Aoqk1gTkT8u5beJ494AOhvaGN94v6KKVJ9xhXiE3BF/7tZTdFCO/FakGRqFpdalB
cp7CrcZfTt27M7D2FyedmjSn7zmsHosvRWMm8HmV/ouyDnNsv3ZMA+8JaEg+VLhF
bf7t6W7JtO+rpiINLui4psO0tbra3APfiSqYEgYSVQFLMCdIevAUgB7AQDUfDiCh
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:40:04 2024 by rpki-client on console-fra.rpki-client.org