Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/miJS0AkcBpMUH7kLfz3dGvmS5Vg.roa
File: miJS0AkcBpMUH7kLfz3dGvmS5Vg.roa (raw, json)
Hash identifier: IkaZ2EFGDE7AGovHw2CUBb5bKD2lWPh7gzbuFg4HaNc=
Subject key identifier: 9A:22:52:D0:09:1C:06:93:14:1F:B9:0B:7F:3D:DD:1A:F9:92:E5:58
Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a
Certificate serial: 018AF9BEF38F62CAEF3791258AB7A53E6FD2
Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/miJS0AkcBpMUH7kLfz3dGvmS5Vg.roa
Signing time: Wed 04 Oct 2023 08:12:35 +0000
ROA not before: Wed 04 Oct 2023 08:12:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 85.28.63.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f9:be:f3:8f:62:ca:ef:37:91:25:8a:b7:a5:3e:6f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a
Validity
Not Before: Oct 4 08:12:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a2252d0091c0693141fb90b7f3ddd1af992e558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9b:c9:d0:ab:66:26:c0:46:ee:50:b4:e3:43:
a2:6d:f1:80:7f:48:79:d2:b1:ba:25:87:69:e4:a5:
be:23:0f:e5:42:7c:5f:ae:73:0c:1f:96:fa:ce:88:
fc:e2:af:65:da:62:50:13:83:8b:83:0c:60:4d:8a:
c6:3e:65:c3:03:ca:bd:8b:e2:31:10:d2:ce:02:36:
6a:35:c3:38:03:7f:b0:38:68:76:6a:e6:e5:df:4a:
8a:64:e2:e9:95:fb:6f:02:63:3d:8d:12:10:6a:83:
4a:7e:21:9e:c9:0b:d6:8b:82:81:62:19:cf:99:7d:
31:5b:86:8c:5f:8d:90:51:84:3b:a7:71:d0:9c:e3:
d5:79:32:f2:96:42:63:14:2f:63:38:16:bf:93:14:
9d:52:34:41:9b:97:20:99:2f:3f:1d:c0:8d:fd:e4:
2a:b4:a5:a8:25:1b:3f:2f:ce:dc:21:25:42:74:76:
a0:60:6a:c6:5d:93:f2:83:48:a6:38:42:b4:a4:c3:
67:6f:62:e8:db:88:a9:13:d2:3f:b3:4d:a9:2e:35:
d5:ed:be:05:2b:90:76:41:bd:40:e1:64:5c:4c:0a:
4e:6d:db:88:b4:e5:a7:46:f8:3e:93:7f:48:f4:42:
47:a8:94:03:49:6a:17:95:ef:3d:a4:8b:6b:69:76:
c0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:22:52:D0:09:1C:06:93:14:1F:B9:0B:7F:3D:DD:1A:F9:92:E5:58
X509v3 Authority Key Identifier:
keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/miJS0AkcBpMUH7kLfz3dGvmS5Vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.28.63.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:6c:19:73:d1:47:3e:5d:1c:ad:e5:e6:9d:d6:04:0f:ae:72:
3c:49:48:66:81:dc:05:0c:11:d7:65:f0:74:06:0f:3e:16:6b:
0a:ce:79:ef:58:ab:e5:35:62:b7:cd:d3:06:0c:17:4b:08:25:
72:ff:90:8a:d1:58:0d:c8:10:da:29:eb:04:93:ec:b9:cb:75:
e9:65:ec:8e:23:58:43:ca:bc:ef:b8:8c:f5:86:79:c2:84:8f:
ee:60:78:22:8b:7a:b1:9b:75:c5:e4:14:e2:e7:da:71:d7:ee:
05:7d:d0:d8:e0:ce:2c:97:29:83:55:9b:2c:1b:21:c0:21:ee:
62:cc:c5:8b:21:42:c6:cf:63:69:88:ba:6b:b4:86:82:17:04:
24:14:38:b0:45:2a:9d:ae:41:fa:ed:77:b4:9b:b0:b8:28:0b:
ba:94:16:d7:a1:1a:ed:55:d6:7f:a5:7a:3e:f3:40:90:e8:00:
ba:19:e3:fb:22:8b:03:c0:09:8d:79:a3:e0:12:8e:93:c3:12:
e1:af:68:99:cc:10:66:b9:5b:b7:a3:d0:8e:25:9a:1f:30:64:
c8:cd:54:c9:7d:0f:fc:e9:75:c0:55:2a:8a:3e:1a:a4:b7:0d:
28:2a:47:f1:04:bb:63:8f:11:86:f5:8a:1c:38:b9:83:89:37:
35:6e:0a:23
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYr5vvOPYsrvN5ElirelPm/SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyZjM0NGE2M2RjYjcwZTg5MDU3ZGViOGUyNzYxZGM0NTE2
NTg4MWEwHhcNMjMxMDA0MDgxMjM1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTIyNTJkMDA5MWMwNjkzMTQxZmI5MGI3ZjNkZGQxYWY5OTJlNTU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpvJ0KtmJsBG7lC040OibfGAf0h5
0rG6JYdp5KW+Iw/lQnxfrnMMH5b6zoj84q9l2mJQE4OLgwxgTYrGPmXDA8q9i+Ix
ENLOAjZqNcM4A3+wOGh2aubl30qKZOLplftvAmM9jRIQaoNKfiGeyQvWi4KBYhnP
mX0xW4aMX42QUYQ7p3HQnOPVeTLylkJjFC9jOBa/kxSdUjRBm5cgmS8/HcCN/eQq
tKWoJRs/L87cISVCdHagYGrGXZPyg0imOEK0pMNnb2Lo24ipE9I/s02pLjXV7b4F
K5B2Qb1A4WRcTApObduItOWnRvg+k39I9EJHqJQDSWoXle89pItraXbAkwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJoiUtAJHAaTFB+5C3893Rr5kuVYMB8GA1UdIwQY
MBaAFCLzRKY9y3DokFfeuOJ2HcRRZYgaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXZORXBqM0xjT2lRVjk2NDRuWWR4RkZsaUJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi81MzYwZTctZjAyYS00NzM3LTk5Yzct
ZmViYjY0YjVlMTY0LzEvbWlKUzBBa2NCcE1VSDdrTGZ6M2RHdm1TNVZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi81MzYwZTctZjAyYS00NzM3LTk5YzctZmViYjY0YjVlMTY0
LzEvSXZORXBqM0xjT2lRVjk2NDRuWWR4RkZsaUJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVRw/MA0G
CSqGSIb3DQEBCwUAA4IBAQDObBlz0Uc+XRyt5ead1gQPrnI8SUhmgdwFDBHXZfB0
Bg8+FmsKznnvWKvlNWK3zdMGDBdLCCVy/5CK0VgNyBDaKesEk+y5y3XpZeyOI1hD
yrzvuIz1hnnChI/uYHgii3qxm3XF5BTi59px1+4FfdDY4M4slymDVZssGyHAIe5i
zMWLIULGz2NpiLprtIaCFwQkFDiwRSqdrkH67Xe0m7C4KAu6lBbXoRrtVdZ/pXo+
80CQ6AC6GeP7IosDwAmNeaPgEo6TwxLhr2iZzBBmuVu3o9COJZofMGTIzVTJfQ/8
6XXAVSqKPhqktw0oKkfxBLtjjxGG9YocOLmDiTc1bgoj
-----END CERTIFICATE-----
Generated at Mon Oct 9 11:17:33 2023 by rpki-client on console-ams.rpki-client.org