Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/f95ac5-0b8b-45d6-be9a-2db2245f2985/1/BnE-CzvPHbW7TBGM7JKAj3zOelg.roa
File: BnE-CzvPHbW7TBGM7JKAj3zOelg.roa (raw, json)
Hash identifier: cp2ehnl2j1qLRd7iccR0gEP1GBJigu9r67NCHGpOPOY=
Subject key identifier: 06:71:3E:0B:3B:CF:1D:B5:BB:4C:11:8C:EC:92:80:8F:7C:CE:7A:58
Certificate issuer: /CN=c546e15819eacd05bccebf80019ca3cb7c4a38e0
Certificate serial: 01856D0AE083AD24C671913ADF4809CFFD46
Authority key identifier: C5:46:E1:58:19:EA:CD:05:BC:CE:BF:80:01:9C:A3:CB:7C:4A:38:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xUbhWBnqzQW8zr-AAZyjy3xKOOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/f95ac5-0b8b-45d6-be9a-2db2245f2985/1/BnE-CzvPHbW7TBGM7JKAj3zOelg.roa
Signing time: Sun 01 Jan 2023 11:15:07 +0000
ROA not before: Sun 01 Jan 2023 11:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203137
IP address blocks: 185.130.179.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:e0:83:ad:24:c6:71:91:3a:df:48:09:cf:fd:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c546e15819eacd05bccebf80019ca3cb7c4a38e0
Validity
Not Before: Jan 1 11:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06713e0b3bcf1db5bb4c118cec92808f7cce7a58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:23:fe:f4:ae:dc:a3:98:b9:a1:e0:27:2a:a5:
87:b9:f5:6a:ec:40:81:71:68:56:26:e3:5d:b8:3f:
aa:2e:29:b8:1c:ea:c2:19:2c:92:76:ba:f9:9e:f6:
bf:f5:15:c9:5e:83:59:6e:f8:94:9b:96:41:6e:4e:
74:9e:5e:32:d3:b9:c3:4c:22:14:83:af:aa:87:2d:
b7:1a:76:7f:e8:1c:de:16:4f:68:4d:e5:57:72:91:
5c:12:ca:dd:cb:9a:95:27:4a:5c:13:75:6f:75:88:
a2:94:b7:13:01:ff:43:01:77:e6:48:c6:c2:45:2b:
53:6f:6b:86:22:bc:75:31:f2:9f:89:36:b0:33:18:
a7:95:f5:4f:b3:63:e9:e2:54:8e:72:9c:04:1d:47:
15:aa:89:a9:3f:4e:99:10:3d:9d:1f:f7:19:6b:60:
7f:81:f3:fc:6e:f0:fd:33:20:3d:9b:35:07:45:2b:
e5:4c:a3:b3:76:99:8a:ae:e7:7e:fb:5b:05:e8:a9:
87:b3:99:ed:1d:94:f9:37:b5:53:dd:63:73:09:22:
cb:8f:70:3c:1b:97:fb:f5:51:39:60:f5:b1:56:1a:
0b:95:bb:b1:73:7b:db:66:ff:a3:8a:5f:5e:41:e8:
ba:6b:7a:29:84:66:1a:83:99:82:dc:5b:6f:a7:3b:
ef:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:71:3E:0B:3B:CF:1D:B5:BB:4C:11:8C:EC:92:80:8F:7C:CE:7A:58
X509v3 Authority Key Identifier:
keyid:C5:46:E1:58:19:EA:CD:05:BC:CE:BF:80:01:9C:A3:CB:7C:4A:38:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xUbhWBnqzQW8zr-AAZyjy3xKOOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/f95ac5-0b8b-45d6-be9a-2db2245f2985/1/BnE-CzvPHbW7TBGM7JKAj3zOelg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/f95ac5-0b8b-45d6-be9a-2db2245f2985/1/xUbhWBnqzQW8zr-AAZyjy3xKOOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.179.0/24
Signature Algorithm: sha256WithRSAEncryption
89:0f:ab:b4:0f:79:fa:ab:e5:63:16:5e:ef:67:de:1b:df:f4:
21:4d:f4:03:d7:f0:ec:e2:51:d5:17:60:94:81:0a:d3:6f:cc:
9a:5e:bb:5c:da:2b:56:42:ab:95:59:71:f3:d8:52:53:77:ae:
e5:ad:87:a5:cf:d2:42:4a:5f:49:ff:3d:5a:bc:b1:11:fc:68:
36:fb:4f:b4:d6:51:62:e9:83:af:38:ae:8f:de:08:dd:10:ba:
28:f5:b6:0d:fe:e8:d4:38:c4:4a:a6:97:6d:c8:90:eb:f7:1b:
79:78:d7:e0:83:4c:28:98:93:dc:82:d5:23:99:0c:e2:51:05:
26:98:ca:d7:b4:ea:b2:82:52:42:72:4c:61:83:b7:ae:04:79:
8d:b8:9a:5b:d8:51:64:f0:62:79:29:af:95:80:8d:06:1a:cc:
e4:c7:c5:b2:70:e8:b1:28:5c:f4:d4:e6:d1:03:59:e9:6c:f6:
83:f4:5a:a9:cc:23:e4:3f:f5:b6:b3:fa:6a:94:1e:88:3f:9a:
97:8b:e0:53:92:85:91:d4:1b:f7:87:4c:c1:ce:3f:3e:c5:f3:
83:7a:6c:1b:ce:5c:90:24:b3:a5:c8:94:5e:57:cb:94:7b:f3:
c0:b6:7f:f2:b3:2a:8e:21:71:33:08:ef:55:bf:ea:ed:e0:ae:
3d:3e:de:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtCuCDrSTGcZE630gJz/1GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1NDZlMTU4MTllYWNkMDViY2NlYmY4MDAxOWNhM2NiN2M0
YTM4ZTAwHhcNMjMwMTAxMTExNTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjcxM2UwYjNiY2YxZGI1YmI0YzExOGNlYzkyODA4ZjdjY2U3YTU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjSP+9K7co5i5oeAnKqWHufVq7ECB
cWhWJuNduD+qLim4HOrCGSySdrr5nva/9RXJXoNZbviUm5ZBbk50nl4y07nDTCIU
g6+qhy23GnZ/6BzeFk9oTeVXcpFcEsrdy5qVJ0pcE3VvdYiilLcTAf9DAXfmSMbC
RStTb2uGIrx1MfKfiTawMxinlfVPs2Pp4lSOcpwEHUcVqompP06ZED2dH/cZa2B/
gfP8bvD9MyA9mzUHRSvlTKOzdpmKrud++1sF6KmHs5ntHZT5N7VT3WNzCSLLj3A8
G5f79VE5YPWxVhoLlbuxc3vbZv+jil9eQei6a3ophGYag5mC3FtvpzvvQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAZxPgs7zx21u0wRjOySgI98znpYMB8GA1UdIwQY
MBaAFMVG4VgZ6s0FvM6/gAGco8t8SjjgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFViaFdCbnF6UVc4enItQUFaeWp5M3hLT09BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9mOTVhYzUtMGI4Yi00NWQ2LWJlOWEt
MmRiMjI0NWYyOTg1LzEvQm5FLUN6dlBIYlc3VEJHTTdKS0FqM3pPZWxnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9mOTVhYzUtMGI4Yi00NWQ2LWJlOWEtMmRiMjI0NWYyOTg1
LzEveFViaFdCbnF6UVc4enItQUFaeWp5M3hLT09BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYKzMA0G
CSqGSIb3DQEBCwUAA4IBAQCJD6u0D3n6q+VjFl7vZ94b3/QhTfQD1/Ds4lHVF2CU
gQrTb8yaXrtc2itWQquVWXHz2FJTd67lrYelz9JCSl9J/z1avLER/Gg2+0+01lFi
6YOvOK6P3gjdELoo9bYN/ujUOMRKppdtyJDr9xt5eNfgg0womJPcgtUjmQziUQUm
mMrXtOqyglJCckxhg7euBHmNuJpb2FFk8GJ5Ka+VgI0GGszkx8WycOixKFz01ObR
A1npbPaD9FqpzCPkP/W2s/pqlB6IP5qXi+BTkoWR1Bv3h0zBzj8+xfODemwbzlyQ
JLOlyJReV8uUe/PAtn/ysyqOIXEzCO9Vv+rt4K49Pt6/
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:54 2024 by rpki-client on console-fra.rpki-client.org