Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/1wfPQVIz-Dk2q9VIZPagys19eGs.roa
File: 1wfPQVIz-Dk2q9VIZPagys19eGs.roa (raw, json)
Hash identifier: 2A4u8o5vaYDPuWL6WAWMz+8dpR66PVWLqU1BRN4jePA=
Subject key identifier: D7:07:CF:41:52:33:F8:39:36:AB:D5:48:64:F6:A0:CA:CD:7D:78:6B
Certificate issuer: /CN=9c28a6ed0f5cfce772d5ce5b03bb42932c8a64d0
Certificate serial: 01899BA9D820B31A0326CF74A8386BC0EB2D
Authority key identifier: 9C:28:A6:ED:0F:5C:FC:E7:72:D5:CE:5B:03:BB:42:93:2C:8A:64:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nCim7Q9c_Ody1c5bA7tCkyyKZNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/1wfPQVIz-Dk2q9VIZPagys19eGs.roa
Signing time: Fri 28 Jul 2023 08:42:26 +0000
ROA not before: Fri 28 Jul 2023 08:42:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206075
IP address blocks: 185.153.55.0/24 maxlen: 24
2a07:e041::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 22 Aug 2023 12:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:a9:d8:20:b3:1a:03:26:cf:74:a8:38:6b:c0:eb:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c28a6ed0f5cfce772d5ce5b03bb42932c8a64d0
Validity
Not Before: Jul 28 08:42:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d707cf415233f83936abd54864f6a0cacd7d786b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bd:52:22:2a:5e:42:c3:20:80:81:29:d8:c0:
64:64:75:00:f4:fa:04:cc:bf:45:b5:01:7a:29:8e:
52:23:34:d6:c3:d4:22:d3:60:26:5d:1e:dc:d2:6b:
df:0b:20:68:aa:e3:a0:05:6d:b3:94:b9:8e:8f:90:
15:f1:72:75:5b:07:d6:74:75:a4:d4:0f:df:dc:d3:
eb:19:b8:93:09:f4:79:3a:8a:7e:be:19:c4:b0:db:
67:52:d1:50:11:d0:38:94:79:5d:d6:60:d2:9a:57:
dd:d4:73:d8:1b:4d:79:6c:e9:2d:c8:bd:aa:3c:9b:
73:d1:75:17:93:c7:cd:72:cf:36:ff:4e:78:7e:95:
b9:22:14:93:3f:fa:2b:38:44:91:5e:40:f2:28:5f:
5a:a7:d4:af:a2:e7:59:28:b5:d9:e2:3c:64:a6:3f:
fd:62:19:c8:62:49:41:de:65:9f:f7:1a:dc:6b:59:
2f:2e:f4:b4:b4:df:be:5f:08:ab:9a:8e:0c:e9:2a:
8d:f3:82:69:3b:4b:37:e2:9c:75:ad:1a:87:6c:a2:
39:35:25:93:01:ae:63:57:cd:e7:22:69:3b:75:5f:
92:97:e2:66:7a:36:51:de:a8:4d:b7:c5:09:7b:fa:
71:89:da:39:61:35:e2:8e:12:bf:9e:81:73:49:1e:
0c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:07:CF:41:52:33:F8:39:36:AB:D5:48:64:F6:A0:CA:CD:7D:78:6B
X509v3 Authority Key Identifier:
keyid:9C:28:A6:ED:0F:5C:FC:E7:72:D5:CE:5B:03:BB:42:93:2C:8A:64:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nCim7Q9c_Ody1c5bA7tCkyyKZNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/1wfPQVIz-Dk2q9VIZPagys19eGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/nCim7Q9c_Ody1c5bA7tCkyyKZNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.55.0/24
IPv6:
2a07:e041::/32
Signature Algorithm: sha256WithRSAEncryption
60:97:dd:91:0b:19:29:39:83:be:83:c0:12:ca:85:7b:da:9c:
2f:34:b2:22:44:14:50:86:6d:40:a6:c5:7b:c8:ea:ca:15:7e:
ee:f1:4e:86:7a:23:5b:ec:0d:6f:3e:9c:3d:f6:33:d8:31:8d:
b3:13:a0:c0:29:5b:cd:64:cc:40:74:a8:0d:2e:59:3d:57:54:
b2:2e:f8:ac:87:43:bb:65:80:e1:8e:1c:fd:2e:29:e7:18:d6:
3b:e9:22:44:a7:e8:b4:a7:9b:64:55:d5:55:01:d2:c0:67:11:
22:77:da:2c:c2:89:54:bc:34:7b:10:6c:92:ed:04:81:fc:6a:
95:a6:d5:8c:4e:84:0c:27:ed:57:de:c2:20:60:8a:d8:3b:66:
c7:8c:ab:27:d3:01:36:3a:a2:08:51:6f:25:f8:8f:e1:20:3a:
26:78:0a:f3:23:9b:04:04:05:70:ca:77:f2:ee:40:fa:fd:c0:
cd:97:d0:2e:a2:05:42:8b:e4:3c:0c:60:e8:23:be:66:38:5b:
55:dc:6d:f2:4a:b1:70:24:b9:d6:11:86:a0:b1:69:47:48:e7:
1f:3c:13:df:bd:33:73:8b:9c:36:d8:f3:53:77:11:1f:4b:fd:
f8:8f:78:90:bc:6a:af:55:1f:9b:12:a9:7d:97:71:34:14:6b:
cc:df:0b:66
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYmbqdggsxoDJs90qDhrwOstMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljMjhhNmVkMGY1Y2ZjZTc3MmQ1Y2U1YjAzYmI0MjkzMmM4
YTY0ZDAwHhcNMjMwNzI4MDg0MjI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzA3Y2Y0MTUyMzNmODM5MzZhYmQ1NDg2NGY2YTBjYWNkN2Q3ODZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlr1SIipeQsMggIEp2MBkZHUA9PoE
zL9FtQF6KY5SIzTWw9Qi02AmXR7c0mvfCyBoquOgBW2zlLmOj5AV8XJ1WwfWdHWk
1A/f3NPrGbiTCfR5Oop+vhnEsNtnUtFQEdA4lHld1mDSmlfd1HPYG015bOktyL2q
PJtz0XUXk8fNcs82/054fpW5IhSTP/orOESRXkDyKF9ap9SvoudZKLXZ4jxkpj/9
YhnIYklB3mWf9xrca1kvLvS0tN++Xwirmo4M6SqN84JpO0s34px1rRqHbKI5NSWT
Aa5jV83nImk7dV+Sl+JmejZR3qhNt8UJe/pxido5YTXijhK/noFzSR4M1QIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFNcHz0FSM/g5NqvVSGT2oMrNfXhrMB8GA1UdIwQY
MBaAFJwopu0PXPznctXOWwO7QpMsimTQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkNpbTdROWNfT2R5MWM1YkE3dENreXlLWk5BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy83M2U1MmYtNDJlMy00YTMxLTk3MzYt
YTZiNzYwMDg3MWE2LzEvMXdmUFFWSXotRGsycTlWSVpQYWd5czE5ZUdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy83M2U1MmYtNDJlMy00YTMxLTk3MzYtYTZiNzYwMDg3MWE2
LzEvbkNpbTdROWNfT2R5MWM1YkE3dENreXlLWk5BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuZk3MA0E
AgACMAcDBQAqB+BBMA0GCSqGSIb3DQEBCwUAA4IBAQBgl92RCxkpOYO+g8ASyoV7
2pwvNLIiRBRQhm1ApsV7yOrKFX7u8U6GeiNb7A1vPpw99jPYMY2zE6DAKVvNZMxA
dKgNLlk9V1SyLvish0O7ZYDhjhz9LinnGNY76SJEp+i0p5tkVdVVAdLAZxEid9os
wolUvDR7EGyS7QSB/GqVptWMToQMJ+1X3sIgYIrYO2bHjKsn0wE2OqIIUW8l+I/h
IDomeArzI5sEBAVwynfy7kD6/cDNl9AuogVCi+Q8DGDoI75mOFtV3G3ySrFwJLnW
EYagsWlHSOcfPBPfvTNzi5w22PNTdxEfS/34j3iQvGqvVR+bEql9l3E0FGvM3wtm
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:30 2024 by rpki-client on console-ams.rpki-client.org