Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/7ar3G0G5ZmYdQ49pRpTSfYIPt6U.roa
File: 7ar3G0G5ZmYdQ49pRpTSfYIPt6U.roa (raw, json)
Hash identifier: MH/rvJJwgijfPwQ/SDoeyUVjFvc5bGbbJBvGu6ikr68=
Subject key identifier: ED:AA:F7:1B:41:B9:66:66:1D:43:8F:69:46:94:D2:7D:82:0F:B7:A5
Certificate issuer: /CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Certificate serial: 018573281244A12EBCA12BA120D915F87A0E
Authority key identifier: F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/7ar3G0G5ZmYdQ49pRpTSfYIPt6U.roa
Signing time: Mon 02 Jan 2023 15:44:43 +0000
ROA not before: Mon 02 Jan 2023 15:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47602
IP address blocks: 185.131.223.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:12:44:a1:2e:bc:a1:2b:a1:20:d9:15:f8:7a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Validity
Not Before: Jan 2 15:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edaaf71b41b966661d438f694694d27d820fb7a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b2:3c:34:97:f0:a5:04:ab:d7:6e:d4:d4:84:
51:1d:9c:ca:45:e7:cb:20:fe:fc:82:ca:98:2c:63:
c2:71:a5:fd:3e:e1:30:00:83:fb:97:7b:7c:18:f5:
e4:9a:bb:99:55:ee:c3:75:18:6e:56:af:95:5a:b5:
fc:ee:4d:60:6b:5d:0b:28:d2:65:58:44:36:0a:eb:
c1:47:31:17:23:7a:d2:4a:0f:51:85:3d:e0:92:d1:
26:05:80:b1:16:e1:2a:f1:a4:8d:14:e8:65:de:b4:
b9:e8:fe:c3:cf:80:f6:ba:02:c2:e0:3f:d2:c1:d9:
de:97:0a:d9:12:c4:06:ab:4a:5c:2f:b7:78:a4:9f:
f7:f1:b5:1c:11:7d:ed:10:3b:07:60:70:c2:16:29:
4e:dc:72:c9:c8:44:02:5d:14:ca:64:55:a4:94:fa:
1b:b8:78:23:fe:45:80:6a:dc:24:54:7b:8c:b2:72:
80:23:09:7e:17:07:0c:e0:94:58:23:b7:cf:6a:04:
a0:06:43:3a:be:e4:85:e9:d5:67:14:68:40:df:20:
b3:51:90:fb:8d:2e:1d:7b:9f:18:50:c1:87:0c:2c:
d7:6a:79:90:a1:d3:97:ef:71:b4:c7:6c:d5:61:59:
6a:ea:ed:bc:a3:d2:bd:f0:81:54:78:fd:e0:9a:90:
43:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:AA:F7:1B:41:B9:66:66:1D:43:8F:69:46:94:D2:7D:82:0F:B7:A5
X509v3 Authority Key Identifier:
keyid:F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/7ar3G0G5ZmYdQ49pRpTSfYIPt6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/8FIRKM9jSqavp-9S1THz_NVWKPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.223.0/24
Signature Algorithm: sha256WithRSAEncryption
04:a0:98:d0:b7:b6:84:5c:7b:64:9a:ed:e5:12:28:20:75:3d:
23:33:34:ac:24:99:77:83:ee:4e:c6:3e:eb:14:90:45:f4:dc:
44:49:27:3f:4d:cf:9f:db:2c:b7:c4:c6:aa:b6:18:bc:bc:b7:
e2:20:d4:94:8f:8b:25:d8:bd:02:51:bb:42:1a:9b:db:17:5a:
9b:d9:34:68:c1:57:3e:ec:f4:2b:48:ac:3f:67:fb:63:fb:ba:
de:32:1e:cf:ce:ec:ff:08:be:53:82:10:b0:c0:48:f9:1b:d6:
e5:03:b6:3f:a2:df:b6:28:7c:b0:b4:eb:b4:7f:01:85:24:f7:
74:50:84:9e:79:2c:6d:b7:46:36:82:7b:ed:13:21:8d:59:3a:
2c:35:d2:9f:da:3f:0b:4e:46:72:2d:73:f5:07:0c:58:d6:05:
29:d5:e4:1d:95:03:61:84:a0:1e:a3:58:35:b5:24:3a:de:47:
fa:b5:2e:2d:65:da:d2:87:f7:72:ec:29:9c:71:60:06:90:66:
03:48:9f:7a:e5:9d:3f:dc:93:6c:c6:e1:5b:93:45:c5:08:59:
a7:90:67:d1:d8:66:16:63:c8:e7:bf:c0:5c:d8:d9:37:dd:8d:
46:9c:53:ce:49:ef:bb:58:ed:d8:3e:02:90:eb:ce:7c:35:91:
be:f6:20:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzKBJEoS68oSuhINkV+HoOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNTIxMTI4Y2Y2MzRhYTZhZmE3ZWY1MmQ1MzFmM2ZjZDU1
NjI4ZjkwHhcNMjMwMTAyMTU0NDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZGFhZjcxYjQxYjk2NjY2MWQ0MzhmNjk0Njk0ZDI3ZDgyMGZiN2E1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprI8NJfwpQSr127U1IRRHZzKRefL
IP78gsqYLGPCcaX9PuEwAIP7l3t8GPXkmruZVe7DdRhuVq+VWrX87k1ga10LKNJl
WEQ2CuvBRzEXI3rSSg9RhT3gktEmBYCxFuEq8aSNFOhl3rS56P7Dz4D2ugLC4D/S
wdnelwrZEsQGq0pcL7d4pJ/38bUcEX3tEDsHYHDCFilO3HLJyEQCXRTKZFWklPob
uHgj/kWAatwkVHuMsnKAIwl+FwcM4JRYI7fPagSgBkM6vuSF6dVnFGhA3yCzUZD7
jS4de58YUMGHDCzXanmQodOX73G0x2zVYVlq6u28o9K98IFUeP3gmpBD7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO2q9xtBuWZmHUOPaUaU0n2CD7elMB8GA1UdIwQY
MBaAFPBSESjPY0qmr6fvUtUx8/zVVij5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEZJUktNOWpTcWF2cC05UzFUSHpfTlZXS1BrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9iNGIxNTAtZGJiOC00NjVmLTgxNTUt
ZTQ0MTliNjQyMTJlLzEvN2FyM0cwRzVabVlkUTQ5cFJwVFNmWUlQdDZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi9iNGIxNTAtZGJiOC00NjVmLTgxNTUtZTQ0MTliNjQyMTJl
LzEvOEZJUktNOWpTcWF2cC05UzFUSHpfTlZXS1BrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYPfMA0G
CSqGSIb3DQEBCwUAA4IBAQAEoJjQt7aEXHtkmu3lEiggdT0jMzSsJJl3g+5Oxj7r
FJBF9NxESSc/Tc+f2yy3xMaqthi8vLfiINSUj4sl2L0CUbtCGpvbF1qb2TRowVc+
7PQrSKw/Z/tj+7reMh7Pzuz/CL5TghCwwEj5G9blA7Y/ot+2KHywtOu0fwGFJPd0
UISeeSxtt0Y2gnvtEyGNWTosNdKf2j8LTkZyLXP1BwxY1gUp1eQdlQNhhKAeo1g1
tSQ63kf6tS4tZdrSh/dy7CmccWAGkGYDSJ965Z0/3JNsxuFbk0XFCFmnkGfR2GYW
Y8jnv8Bc2Nk33Y1GnFPOSe+7WO3YPgKQ6858NZG+9iAZ
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:38 2024 by rpki-client on console-fra.rpki-client.org