Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/EQupUjoUj7TNiFDwIKiDnPkmTzI.roa
File: EQupUjoUj7TNiFDwIKiDnPkmTzI.roa (raw, json)
Hash identifier: HI6Yn9ZSLyIHditSIoyFxQRKD/QRlcHdpgV+SJlIPa8=
Subject key identifier: 11:0B:A9:52:3A:14:8F:B4:CD:88:50:F0:20:A8:83:9C:F9:26:4F:32
Certificate issuer: /CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Certificate serial: 0185715E46EF82B20AFD1663F032CC7F9241
Authority key identifier: 1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/EQupUjoUj7TNiFDwIKiDnPkmTzI.roa
Signing time: Mon 02 Jan 2023 07:24:42 +0000
ROA not before: Mon 02 Jan 2023 07:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17767
IP address blocks: 185.192.56.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:46:ef:82:b2:0a:fd:16:63:f0:32:cc:7f:92:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Validity
Not Before: Jan 2 07:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=110ba9523a148fb4cd8850f020a8839cf9264f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:56:1a:53:6b:fb:6d:78:e5:35:6f:d7:df:e4:
e8:2e:81:4c:d3:f2:9c:ed:42:02:be:8e:6d:6e:40:
09:20:10:ca:98:de:ef:0c:e5:1a:e0:6b:22:6d:3a:
25:fb:fb:69:30:06:e8:eb:2e:22:8d:8e:44:84:17:
f3:32:6b:1e:9f:c0:fc:1d:cd:4b:cc:6b:14:a7:b8:
6c:76:d5:2c:3d:37:4e:7a:81:c3:a8:cb:fc:0b:54:
44:08:0c:57:8b:4c:6b:9e:d3:34:6e:8c:f7:db:bc:
dc:18:8d:a6:ed:a6:eb:49:14:93:1b:42:87:15:a4:
09:41:7f:35:f4:c9:b7:d0:b4:f8:3e:18:f3:e1:a2:
61:7c:4c:fe:da:35:2c:36:61:5c:b3:6c:b6:7a:1d:
ff:bc:03:31:1a:f7:fa:97:f8:d0:47:88:da:6c:3e:
6b:5d:c6:e7:87:44:ff:6f:a0:d8:12:65:63:87:0f:
3f:8e:cc:84:ad:7d:b4:8b:52:4f:fd:b9:75:4a:57:
25:0f:7b:6e:1c:df:90:78:71:e4:85:f5:f1:ee:5d:
cc:15:e6:d9:7f:c1:82:e1:88:b6:7f:60:6e:af:29:
fe:15:eb:6a:39:73:46:91:5a:f1:a5:fa:95:6f:89:
ec:02:f4:de:2b:47:aa:e3:d3:5d:2d:9a:dc:2f:91:
5e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:0B:A9:52:3A:14:8F:B4:CD:88:50:F0:20:A8:83:9C:F9:26:4F:32
X509v3 Authority Key Identifier:
keyid:1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/EQupUjoUj7TNiFDwIKiDnPkmTzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.56.0/22
Signature Algorithm: sha256WithRSAEncryption
20:55:a4:e3:09:16:f3:d0:f9:37:98:79:02:6d:a7:5c:23:7a:
8c:16:82:f3:05:47:b7:e4:3c:51:ef:90:d2:06:45:8b:e7:45:
f8:2d:02:c5:94:38:7d:36:75:74:d9:3b:d2:fd:40:d9:f4:ce:
b3:7f:91:eb:52:cf:e9:db:00:15:03:c6:79:c9:06:af:28:d0:
cd:6f:bc:15:a3:82:a0:43:9c:86:0f:0a:cf:95:2c:72:ed:09:
ef:8e:5a:74:f8:8c:d3:12:a1:98:58:a1:c0:f1:c1:d9:0c:e6:
39:ba:50:e5:c0:83:3a:06:dc:ae:5c:78:44:3e:fa:34:0d:55:
e7:fd:ee:f8:46:85:2d:4c:97:e4:34:f7:4d:85:76:27:a8:e4:
f9:f7:4e:be:ef:27:0a:2d:24:65:f6:33:6b:15:22:4a:7e:22:
22:4d:2e:20:d5:28:60:ff:7e:2d:c5:d0:7e:8c:7f:a1:2a:45:
34:4d:32:78:e2:f3:ac:7b:67:7b:96:8f:ec:68:3e:15:a2:ae:
7d:7d:52:4d:dd:9b:5e:28:40:4b:78:eb:bc:f1:5c:e7:00:85:
cc:3a:7d:63:b6:b8:26:fd:7f:70:6e:80:3a:c2:df:dc:ba:20:
60:df:1a:fe:e5:26:4e:8f:84:9d:b3:e7:b0:13:7f:b2:63:76:
e7:05:ec:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxXkbvgrIK/RZj8DLMf5JBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhNGRkMTE1NTQyNDdiZDJiZDMwMWNlYTQzZmY1MTgwMzcy
YzM4ZTQwHhcNMjMwMTAyMDcyNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTBiYTk1MjNhMTQ4ZmI0Y2Q4ODUwZjAyMGE4ODM5Y2Y5MjY0ZjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8FYaU2v7bXjlNW/X3+ToLoFM0/Kc
7UICvo5tbkAJIBDKmN7vDOUa4GsibTol+/tpMAbo6y4ijY5EhBfzMmsen8D8Hc1L
zGsUp7hsdtUsPTdOeoHDqMv8C1RECAxXi0xrntM0boz327zcGI2m7abrSRSTG0KH
FaQJQX819Mm30LT4Phjz4aJhfEz+2jUsNmFcs2y2eh3/vAMxGvf6l/jQR4jabD5r
Xcbnh0T/b6DYEmVjhw8/jsyErX20i1JP/bl1SlclD3tuHN+QeHHkhfXx7l3MFebZ
f8GC4Yi2f2Buryn+FetqOXNGkVrxpfqVb4nsAvTeK0eq49NdLZrcL5FeQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBELqVI6FI+0zYhQ8CCog5z5Jk8yMB8GA1UdIwQY
MBaAFBpN0RVUJHvSvTAc6kP/UYA3LDjkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2szUkZWUWtlOUs5TUJ6cVFfOVJnRGNzT09RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS83YmRkZGEtMGM2Yy00YTVlLWIxYzUt
M2JhNWYzMGNhYWJmLzEvRVF1cFVqb1VqN1ROaUZEd0lLaURuUGttVHpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS83YmRkZGEtMGM2Yy00YTVlLWIxYzUtM2JhNWYzMGNhYWJm
LzEvR2szUkZWUWtlOUs5TUJ6cVFfOVJnRGNzT09RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucA4MA0G
CSqGSIb3DQEBCwUAA4IBAQAgVaTjCRbz0Pk3mHkCbadcI3qMFoLzBUe35DxR75DS
BkWL50X4LQLFlDh9NnV02TvS/UDZ9M6zf5HrUs/p2wAVA8Z5yQavKNDNb7wVo4Kg
Q5yGDwrPlSxy7Qnvjlp0+IzTEqGYWKHA8cHZDOY5ulDlwIM6BtyuXHhEPvo0DVXn
/e74RoUtTJfkNPdNhXYnqOT5906+7ycKLSRl9jNrFSJKfiIiTS4g1Shg/34txdB+
jH+hKkU0TTJ44vOse2d7lo/saD4Voq59fVJN3ZteKEBLeOu88VznAIXMOn1jtrgm
/X9wboA6wt/cuiBg3xr+5SZOj4Sds+ewE3+yY3bnBeyJ
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:16:13 2024 by rpki-client on console-ams.rpki-client.org