Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/47j5fnoWLbvLxgp8IkgdbEtdbfI.roa
File: 47j5fnoWLbvLxgp8IkgdbEtdbfI.roa (raw, json)
Hash identifier: dCWoS0eFl6dd1oY6jvT71YizpxiRCM/Le1IqJcjhv8M=
Subject key identifier: E3:B8:F9:7E:7A:16:2D:BB:CB:C6:0A:7C:22:48:1D:6C:4B:5D:6D:F2
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0189B60E000754F6B23C977AF283266D994B
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/47j5fnoWLbvLxgp8IkgdbEtdbfI.roa
Signing time: Wed 02 Aug 2023 11:41:58 +0000
ROA not before: Wed 02 Aug 2023 11:41:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 85.209.163.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b6:0e:00:07:54:f6:b2:3c:97:7a:f2:83:26:6d:99:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 2 11:41:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3b8f97e7a162dbbcbc60a7c22481d6c4b5d6df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1e:03:99:ef:35:c8:02:f1:ad:3c:5a:6e:01:
de:cb:0b:dd:61:b5:d3:8c:15:e9:86:05:96:c4:b3:
2b:0b:27:97:e7:df:e6:d6:dc:a8:c6:f5:4e:3b:23:
ba:37:65:35:35:52:e3:5a:67:18:99:d5:a7:12:3c:
30:74:28:37:2a:7f:4b:76:33:21:5a:4b:d3:ca:b2:
16:04:a5:f4:b2:96:df:74:9e:9c:fa:f7:ca:dc:ba:
d9:e6:cc:ab:c9:95:1a:26:ff:2a:cf:af:de:d4:8b:
1f:4b:e4:f9:6a:72:d0:6a:28:b9:8d:34:50:bb:b4:
e3:6a:9c:84:cb:00:58:c1:8d:07:1b:e0:0c:84:4d:
7f:fa:00:4e:11:be:b6:5a:e9:f3:56:b0:8f:d7:c6:
df:5d:b2:c1:27:c9:40:ac:56:52:6f:d5:6e:70:7f:
e2:c1:28:5f:3e:24:45:b4:84:8a:64:40:95:e6:96:
59:e2:99:8d:03:48:96:d8:62:5e:bc:65:ba:b7:d0:
1c:ec:92:85:d9:b9:e0:b1:1d:f4:4c:f4:42:8f:a3:
62:3c:c8:6f:3b:bd:84:90:1a:28:60:cc:73:19:7a:
2e:3e:b7:a2:ae:67:a5:43:6b:a2:ff:53:db:61:51:
40:18:5e:60:00:ab:84:ff:65:e4:58:45:4d:9b:d2:
b2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B8:F9:7E:7A:16:2D:BB:CB:C6:0A:7C:22:48:1D:6C:4B:5D:6D:F2
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/47j5fnoWLbvLxgp8IkgdbEtdbfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.163.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:1c:2f:83:cc:da:f0:62:6b:8a:bf:aa:d2:0e:02:b6:7e:ab:
b3:8a:d6:ee:45:64:e1:46:c0:b5:de:67:2c:0d:27:17:72:f2:
dc:d5:11:fc:69:a0:69:22:8f:80:98:6a:04:b8:43:8c:7e:b7:
1d:49:f3:98:24:22:49:fb:21:ae:4a:b8:56:66:16:25:2f:76:
c4:5a:24:b0:72:f3:78:7c:78:b1:66:27:ed:08:17:49:b0:32:
97:e5:f6:3a:85:fc:e4:ac:92:d5:5e:06:18:2a:e3:ff:98:a4:
6a:dd:bc:39:62:98:52:6b:ca:3d:e7:f6:8b:0a:a8:05:52:40:
4c:3d:84:64:3e:5c:62:22:b7:d5:3a:98:bd:4e:34:22:cc:c8:
3a:c7:19:0d:72:ee:5b:c0:27:bd:0f:e2:03:f9:60:f9:08:b2:
8e:f8:4f:a6:08:ba:bd:3e:c1:ff:59:f1:c7:b8:04:67:14:05:
fa:99:c2:2d:9b:9b:94:63:91:6d:ff:c6:d1:88:5c:84:5c:11:
5f:e1:60:af:fb:57:a7:7b:6e:b6:a9:a0:2c:88:7a:3a:26:74:
0c:41:66:55:d8:8a:90:95:fe:1d:9c:f5:ad:a9:93:68:e1:43:
5f:5f:de:f3:bb:85:c9:d6:12:b7:95:37:42:46:c3:e5:dd:46:
60:2f:01:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYm2DgAHVPayPJd68oMmbZlLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjMwODAyMTE0MTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlM2I4Zjk3ZTdhMTYyZGJiY2JjNjBhN2MyMjQ4MWQ2YzRiNWQ2ZGYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAux4Dme81yALxrTxabgHeywvdYbXT
jBXphgWWxLMrCyeX59/m1tyoxvVOOyO6N2U1NVLjWmcYmdWnEjwwdCg3Kn9LdjMh
WkvTyrIWBKX0spbfdJ6c+vfK3LrZ5syryZUaJv8qz6/e1IsfS+T5anLQaii5jTRQ
u7TjapyEywBYwY0HG+AMhE1/+gBOEb62WunzVrCP18bfXbLBJ8lArFZSb9VucH/i
wShfPiRFtISKZECV5pZZ4pmNA0iW2GJevGW6t9Ac7JKF2bngsR30TPRCj6NiPMhv
O72EkBooYMxzGXouPreirmelQ2ui/1PbYVFAGF5gAKuE/2XkWEVNm9Ky2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOO4+X56Fi27y8YKfCJIHWxLXW3yMB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvNDdqNWZub1dMYnZMeGdwOElrZ2RiRXRkYmZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVdGjMA0G
CSqGSIb3DQEBCwUAA4IBAQCxHC+DzNrwYmuKv6rSDgK2fquzitbuRWThRsC13mcs
DScXcvLc1RH8aaBpIo+AmGoEuEOMfrcdSfOYJCJJ+yGuSrhWZhYlL3bEWiSwcvN4
fHixZiftCBdJsDKX5fY6hfzkrJLVXgYYKuP/mKRq3bw5YphSa8o95/aLCqgFUkBM
PYRkPlxiIrfVOpi9TjQizMg6xxkNcu5bwCe9D+ID+WD5CLKO+E+mCLq9PsH/WfHH
uARnFAX6mcItm5uUY5Ft/8bRiFyEXBFf4WCv+1ene262qaAsiHo6JnQMQWZV2IqQ
lf4dnPWtqZNo4UNfX97zu4XJ1hK3lTdCRsPl3UZgLwG9
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:03 2024 by rpki-client on console-ams.rpki-client.org