Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/1I4j30UboxDoVcKW3VKc7aElLEw.roa
File: 1I4j30UboxDoVcKW3VKc7aElLEw.roa (raw, json)
Hash identifier: Cl6gogZEOIqsOkJWMtuO8X0RdL0N1iqBx1VQE9kE1Tg=
Subject key identifier: D4:8E:23:DF:45:1B:A3:10:E8:55:C2:96:DD:52:9C:ED:A1:25:2C:4C
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01856F5DC3D37259EF2DEF3E7BA781FA87FA
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/1I4j30UboxDoVcKW3VKc7aElLEw.roa
Signing time: Sun 01 Jan 2023 22:04:53 +0000
ROA not before: Sun 01 Jan 2023 22:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209836
IP address blocks: 87.107.160.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:c3:d3:72:59:ef:2d:ef:3e:7b:a7:81:fa:87:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 22:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d48e23df451ba310e855c296dd529ceda1252c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b0:64:a6:4d:5b:b3:74:20:f1:8b:84:c1:40:
9e:59:bd:c0:d2:18:a3:89:41:7b:68:bc:8b:18:7c:
a8:6a:75:a6:cb:aa:72:f8:5f:90:69:7b:c7:98:ed:
f6:c0:d3:9d:bb:3f:de:fd:c6:1c:5f:c4:5c:4e:21:
dc:70:cb:9c:dc:e4:98:0b:11:ac:f9:8a:6b:63:60:
6e:d9:da:55:50:ff:c3:38:dd:ae:2f:28:d6:47:56:
d8:45:15:d2:b9:03:42:2c:d4:63:da:cc:46:9e:70:
bd:6d:11:c2:35:20:92:3d:76:09:80:cb:89:d8:34:
3a:0e:7a:b8:ad:e8:18:57:70:4b:9d:75:bb:9e:f3:
02:8d:df:f5:1b:09:bc:46:e1:b7:80:62:af:81:0c:
3a:82:38:88:a8:c2:78:1c:bb:95:3e:23:ef:54:bf:
2a:85:d0:63:1d:95:7e:a1:59:6c:54:90:92:9d:bd:
cb:ed:79:b6:91:de:26:8e:91:72:26:5c:76:80:df:
b6:bb:d8:c3:83:ed:44:6f:08:78:75:6c:c0:6a:4d:
e9:88:ee:45:a5:68:3b:63:0e:9c:51:cb:4d:5d:38:
e6:6b:ec:3a:f7:d6:53:58:8b:21:9a:06:c8:ce:c1:
f8:40:65:c2:a2:48:6d:f6:aa:39:3d:d0:a6:10:54:
2d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:8E:23:DF:45:1B:A3:10:E8:55:C2:96:DD:52:9C:ED:A1:25:2C:4C
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/1I4j30UboxDoVcKW3VKc7aElLEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.160.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:a8:8c:b7:16:1e:46:5c:b4:37:03:c4:1f:4b:13:c2:08:d0:
a4:49:c8:7c:84:8c:59:e7:a6:7c:eb:30:94:d6:7b:ce:e0:13:
82:d1:0d:71:de:e7:2a:d6:aa:5f:1f:ee:5b:c7:63:19:b2:98:
06:ce:56:2f:6e:84:62:05:a1:15:4b:96:da:d0:dc:94:1a:0a:
4b:bd:40:3b:95:3a:2b:3f:40:92:03:33:39:91:b0:ff:21:0d:
de:08:cf:52:e2:87:e3:5e:79:a7:5d:7a:bd:fa:a0:c9:2d:13:
bf:bf:73:0d:3e:d9:2a:7d:c4:e4:b0:47:bd:f4:4e:7a:a4:2d:
94:eb:fe:cc:55:34:83:f0:9f:5f:e9:11:7d:30:61:82:13:05:
44:30:11:22:50:96:54:8f:e5:07:cc:93:0f:a3:44:db:38:62:
53:36:96:87:4f:31:3b:85:1a:a0:61:40:1e:9d:8b:6e:01:53:
e8:b8:9f:a3:9a:b9:b0:a0:26:8d:25:ed:81:8b:ca:b1:f2:04:
89:b1:09:2d:0e:af:ec:a4:00:d4:c5:63:8a:6a:5a:b2:1b:3f:
84:12:46:90:5a:56:10:56:ce:cb:4c:52:6e:16:97:73:1a:7d:
55:c8:e6:71:36:9c:25:ee:b8:95:b4:ce:cb:d2:73:73:e6:a3:
19:b8:04:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvXcPTclnvLe8+e6eB+of6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMwMTAxMjIwNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNDhlMjNkZjQ1MWJhMzEwZTg1NWMyOTZkZDUyOWNlZGExMjUyYzRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrBkpk1bs3Qg8YuEwUCeWb3A0hij
iUF7aLyLGHyoanWmy6py+F+QaXvHmO32wNOduz/e/cYcX8RcTiHccMuc3OSYCxGs
+YprY2Bu2dpVUP/DON2uLyjWR1bYRRXSuQNCLNRj2sxGnnC9bRHCNSCSPXYJgMuJ
2DQ6Dnq4regYV3BLnXW7nvMCjd/1Gwm8RuG3gGKvgQw6gjiIqMJ4HLuVPiPvVL8q
hdBjHZV+oVlsVJCSnb3L7Xm2kd4mjpFyJlx2gN+2u9jDg+1Ebwh4dWzAak3piO5F
pWg7Yw6cUctNXTjma+w699ZTWIshmgbIzsH4QGXCokht9qo5PdCmEFQt3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNSOI99FG6MQ6FXClt1SnO2hJSxMMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvMUk0ajMwVWJveERvVmNLVzNWS2M3YUVsTEV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCV2ugMA0G
CSqGSIb3DQEBCwUAA4IBAQC7qIy3Fh5GXLQ3A8QfSxPCCNCkSch8hIxZ56Z86zCU
1nvO4BOC0Q1x3ucq1qpfH+5bx2MZspgGzlYvboRiBaEVS5ba0NyUGgpLvUA7lTor
P0CSAzM5kbD/IQ3eCM9S4ofjXnmnXXq9+qDJLRO/v3MNPtkqfcTksEe99E56pC2U
6/7MVTSD8J9f6RF9MGGCEwVEMBEiUJZUj+UHzJMPo0TbOGJTNpaHTzE7hRqgYUAe
nYtuAVPouJ+jmrmwoCaNJe2Bi8qx8gSJsQktDq/spADUxWOKalqyGz+EEkaQWlYQ
Vs7LTFJuFpdzGn1VyOZxNpwl7riVtM7L0nNz5qMZuATb
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:35 2024 by rpki-client on console-fra.rpki-client.org