Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/17a3c0-e97a-4306-bce4-7ff32b6ffd1e/1/4JSJa4lJFyhFNzX5lQODLylYRRs.roa
File: 4JSJa4lJFyhFNzX5lQODLylYRRs.roa (raw, json)
Hash identifier: kjxKV9ZuCEcrDgDPhZIhIbbCe6HsNEADSyKQ392WnyM=
Subject key identifier: E0:94:89:6B:89:49:17:28:45:37:35:F9:95:03:83:2F:29:58:45:1B
Certificate issuer: /CN=11e512976b91a2967ebce10ed4052ece12b14155
Certificate serial: 01869CD3C3347D6E9F4FAF4A3BF3ABAFCF81
Authority key identifier: 11:E5:12:97:6B:91:A2:96:7E:BC:E1:0E:D4:05:2E:CE:12:B1:41:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EeUSl2uRopZ-vOEO1AUuzhKxQVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/17a3c0-e97a-4306-bce4-7ff32b6ffd1e/1/4JSJa4lJFyhFNzX5lQODLylYRRs.roa
Signing time: Wed 01 Mar 2023 10:59:29 +0000
ROA not before: Wed 01 Mar 2023 10:59:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 185.76.180.0/24 maxlen: 24
2a03:5120::/40 maxlen: 40
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:d3:c3:34:7d:6e:9f:4f:af:4a:3b:f3:ab:af:cf:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11e512976b91a2967ebce10ed4052ece12b14155
Validity
Not Before: Mar 1 10:59:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e094896b89491728453735f99503832f2958451b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2d:9e:74:eb:90:ae:16:ad:be:17:eb:24:5e:
8e:07:e5:f8:20:80:d4:1a:6b:da:ff:8c:93:80:22:
73:35:51:95:a5:48:29:fb:b3:eb:51:1d:79:50:7f:
cb:36:fb:91:93:0a:7c:17:6f:4f:32:ce:fb:f2:c9:
db:6f:84:b7:46:b5:51:49:b3:bd:c1:0b:e8:d9:6f:
71:d8:23:b5:8a:65:a7:8f:e1:df:25:00:7a:bf:75:
f0:6c:f9:c1:e9:64:34:54:bd:b4:da:ae:03:a6:4a:
c4:d7:51:67:2f:ac:df:22:2e:e0:e0:b1:b8:59:cc:
6d:ef:a1:1c:49:56:6d:b5:fc:24:ee:ac:13:ee:d1:
4c:8c:db:3f:4d:4d:b7:a6:3a:46:0a:64:3d:09:2f:
a0:e7:75:88:82:64:c9:b8:28:10:8a:30:2b:8d:0e:
9e:2a:c4:e1:e6:9e:06:e8:09:d9:99:53:04:d4:05:
9b:34:71:d8:51:a5:52:fa:33:72:86:c7:30:06:9e:
37:c3:bb:0c:20:c1:97:6b:84:ae:54:14:63:89:ba:
22:ea:92:c7:98:e3:91:91:95:26:66:e8:a8:5e:88:
77:9c:45:71:f5:d6:ac:cb:09:2c:93:73:5c:86:f1:
12:78:b8:f2:3a:de:20:4d:f7:36:e2:cd:9b:0c:50:
ba:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:94:89:6B:89:49:17:28:45:37:35:F9:95:03:83:2F:29:58:45:1B
X509v3 Authority Key Identifier:
keyid:11:E5:12:97:6B:91:A2:96:7E:BC:E1:0E:D4:05:2E:CE:12:B1:41:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EeUSl2uRopZ-vOEO1AUuzhKxQVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/17a3c0-e97a-4306-bce4-7ff32b6ffd1e/1/4JSJa4lJFyhFNzX5lQODLylYRRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/17a3c0-e97a-4306-bce4-7ff32b6ffd1e/1/EeUSl2uRopZ-vOEO1AUuzhKxQVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.180.0/24
IPv6:
2a03:5120::/40
Signature Algorithm: sha256WithRSAEncryption
01:b4:c8:68:3d:7f:1e:4b:22:c0:7e:ef:e4:4f:a3:57:2f:bf:
11:bb:c3:d7:2c:73:40:4a:03:d7:c7:8b:99:7b:64:7d:68:6e:
7d:7c:e5:b9:83:7f:2b:1b:f9:d2:c5:0b:66:8e:ef:e8:63:9b:
6d:76:41:e5:2c:d7:ae:28:29:5c:85:de:46:55:77:78:06:94:
83:1e:6e:b9:f6:70:08:6d:87:2f:dd:cb:f8:02:1c:2f:4d:2c:
12:6a:81:fa:4a:9a:aa:02:19:83:e4:ae:93:47:5b:d9:cf:43:
24:3c:c4:11:89:87:80:75:2e:8c:26:97:7f:52:d5:8c:0b:2e:
71:3b:ec:ad:d8:e4:1f:cd:c0:7e:09:b4:13:3c:52:e6:f2:28:
88:52:24:14:1f:8d:71:3c:b3:4f:e3:95:da:a6:88:14:d6:8c:
c9:fc:23:db:2f:10:22:f7:11:6f:6a:a9:a5:9b:9a:5e:36:8f:
e1:ed:6a:f3:72:1b:37:a2:c1:8b:24:83:42:cd:73:28:0b:31:
77:dc:ac:82:33:94:50:d3:bc:87:1e:01:cc:a4:4a:1f:2a:98:
c9:bb:c7:77:93:d6:a3:35:5c:54:4a:b4:6b:d5:0b:67:17:d6:
0a:cd:cb:50:81:fa:08:92:73:cd:f1:64:65:7c:b9:4f:e4:07:
83:6c:80:f4
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgISAYac08M0fW6fT69KO/Orr8+BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExZTUxMjk3NmI5MWEyOTY3ZWJjZTEwZWQ0MDUyZWNlMTJi
MTQxNTUwHhcNMjMwMzAxMTA1OTI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDk0ODk2Yjg5NDkxNzI4NDUzNzM1Zjk5NTAzODMyZjI5NTg0NTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxS2edOuQrhatvhfrJF6OB+X4IIDU
Gmva/4yTgCJzNVGVpUgp+7PrUR15UH/LNvuRkwp8F29PMs778snbb4S3RrVRSbO9
wQvo2W9x2CO1imWnj+HfJQB6v3XwbPnB6WQ0VL202q4DpkrE11FnL6zfIi7g4LG4
Wcxt76EcSVZttfwk7qwT7tFMjNs/TU23pjpGCmQ9CS+g53WIgmTJuCgQijArjQ6e
KsTh5p4G6AnZmVME1AWbNHHYUaVS+jNyhscwBp43w7sMIMGXa4SuVBRjiboi6pLH
mOORkZUmZuioXoh3nEVx9dasywksk3NchvESeLjyOt4gTfc24s2bDFC62QIDAQAB
o4ICGTCCAhUwHQYDVR0OBBYEFOCUiWuJSRcoRTc1+ZUDgy8pWEUbMB8GA1UdIwQY
MBaAFBHlEpdrkaKWfrzhDtQFLs4SsUFVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWVVU2wydVJvcFotdk9FTzFBVXV6aEt4UVZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8xN2EzYzAtZTk3YS00MzA2LWJjZTQt
N2ZmMzJiNmZmZDFlLzEvNEpTSmE0bEpGeWhGTnpYNWxRT0RMeWxZUlJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS8xN2EzYzAtZTk3YS00MzA2LWJjZTQtN2ZmMzJiNmZmZDFl
LzEvRWVVU2wydVJvcFotdk9FTzFBVXV6aEt4UVZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAuUy0MA4E
AgACMAgDBgAqA1EgADANBgkqhkiG9w0BAQsFAAOCAQEAAbTIaD1/HksiwH7v5E+j
Vy+/EbvD1yxzQEoD18eLmXtkfWhufXzluYN/Kxv50sULZo7v6GObbXZB5SzXrigp
XIXeRlV3eAaUgx5uufZwCG2HL93L+AIcL00sEmqB+kqaqgIZg+Suk0db2c9DJDzE
EYmHgHUujCaXf1LVjAsucTvsrdjkH83Afgm0EzxS5vIoiFIkFB+NcTyzT+OV2qaI
FNaMyfwj2y8QIvcRb2qppZuaXjaP4e1q83IbN6LBiySDQs1zKAsxd9ysgjOUUNO8
hx4BzKRKHyqYybvHd5PWozVcVEq0a9ULZxfWCs3LUIH6CJJzzfFkZXy5T+QHg2yA
9A==
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:26 2024 by rpki-client on console-fra.rpki-client.org