Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/eaaf19-5440-4228-8c31-3622cd7d8956/1/1-2HTcjw1C5coIozd3lJeMVeI1UQ.roa
File: 1-2HTcjw1C5coIozd3lJeMVeI1UQ.roa (raw, json)
Hash identifier: KU1iO54yaRqIvXfq7zmAOTxrhZ2WFTMRDM23zp6gmeY=
Subject key identifier: FB:61:D3:72:3C:35:0B:97:28:22:8C:DD:DE:52:5E:31:57:88:D5:44
Certificate issuer: /CN=0046f78f5f3410eb0e56dc17003667e030711baf
Certificate serial: 0185F3A18DA76EB39ACA3542891245B8893C
Authority key identifier: 00:46:F7:8F:5F:34:10:EB:0E:56:DC:17:00:36:67:E0:30:71:1B:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AEb3j180EOsOVtwXADZn4DBxG68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/eaaf19-5440-4228-8c31-3622cd7d8956/1/1-2HTcjw1C5coIozd3lJeMVeI1UQ.roa
Signing time: Fri 27 Jan 2023 14:28:49 +0000
ROA not before: Fri 27 Jan 2023 14:28:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200140
IP address blocks: 77.72.85.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f3:a1:8d:a7:6e:b3:9a:ca:35:42:89:12:45:b8:89:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0046f78f5f3410eb0e56dc17003667e030711baf
Validity
Not Before: Jan 27 14:28:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb61d3723c350b9728228cddde525e315788d544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:31:ab:65:6f:8c:30:5a:2b:d3:37:f3:e0:49:
af:86:94:b8:42:ae:94:24:c1:c7:7d:c7:e8:45:db:
6e:ff:8d:90:21:51:ed:37:97:8d:3e:c2:b2:19:89:
15:c3:ac:fc:75:6b:9d:e1:d2:37:50:45:fb:21:11:
7f:90:f5:7c:47:cb:8f:f7:e1:2f:91:62:59:f7:35:
87:32:6d:cf:28:23:ac:5d:ee:3f:45:3d:8e:37:84:
39:66:8c:42:3c:6e:a7:75:35:7e:16:3d:af:e6:34:
7f:48:4c:35:3a:e1:4b:84:94:c8:16:35:77:6a:07:
bc:b4:ce:6e:cd:5a:4c:02:45:37:fc:fc:04:fd:dd:
4b:10:90:1f:03:6a:ac:2d:75:bf:85:e1:7e:dc:65:
26:46:a6:23:3b:44:0c:47:9d:2d:c0:2a:61:c9:1c:
60:cc:95:bf:0c:f6:34:da:91:fa:55:df:da:ea:bc:
fd:e5:ae:a7:85:7c:95:36:21:be:a3:36:6e:ce:7f:
2f:0f:54:4f:6e:54:68:94:3f:76:e4:ec:d7:c1:68:
70:51:b9:86:40:85:76:af:87:1e:3a:56:52:44:e9:
4a:7e:c3:fd:2d:b6:a1:4e:53:62:48:b0:fb:0c:23:
37:1e:27:04:aa:ea:cd:e3:3f:fb:51:6f:d0:78:26:
2a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:61:D3:72:3C:35:0B:97:28:22:8C:DD:DE:52:5E:31:57:88:D5:44
X509v3 Authority Key Identifier:
keyid:00:46:F7:8F:5F:34:10:EB:0E:56:DC:17:00:36:67:E0:30:71:1B:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AEb3j180EOsOVtwXADZn4DBxG68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eaaf19-5440-4228-8c31-3622cd7d8956/1/1-2HTcjw1C5coIozd3lJeMVeI1UQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eaaf19-5440-4228-8c31-3622cd7d8956/1/AEb3j180EOsOVtwXADZn4DBxG68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.85.0/24
Signature Algorithm: sha256WithRSAEncryption
65:43:63:2c:f3:25:8f:0f:a3:91:17:3c:b4:86:cc:db:99:1b:
7a:56:df:59:70:91:96:b9:cc:de:87:bc:9f:42:fd:98:25:97:
6c:f2:ed:e4:e6:36:cc:41:16:0d:63:37:e2:db:6f:77:16:67:
37:da:15:98:1f:03:35:6c:40:a0:d8:41:69:07:ff:bc:d0:83:
10:ad:47:20:a3:4d:14:15:66:44:55:9b:6c:b1:9c:69:ca:e4:
63:06:a7:bd:c9:6e:da:79:c6:15:c5:43:b4:3f:b7:0f:52:5e:
ba:20:96:1b:8e:18:a0:89:21:65:c1:21:8a:bd:3b:a0:32:3f:
93:8a:78:41:1a:4f:aa:8c:5b:f2:6e:21:d6:7b:85:2a:77:1f:
bc:a9:a8:7a:1b:d1:cd:81:5f:a3:7d:c5:2f:aa:e2:a7:64:2c:
b5:1c:06:5a:f1:c6:04:ec:76:55:cc:07:b3:3d:41:34:29:a3:
42:86:f2:5b:82:8a:91:2f:ad:0a:5b:ff:84:df:14:5c:82:82:
7b:d1:d7:e3:2f:3c:1f:4b:19:3f:f7:0f:b7:b6:6e:43:5d:b2:
52:76:e3:d8:5c:c4:a2:39:67:96:13:1c:0a:7c:a9:30:50:00:
09:7a:56:73:8f:54:f6:c7:1d:40:f5:85:25:6a:48:55:44:1c:
c6:c9:4f:21
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYXzoY2nbrOayjVCiRJFuIk8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNDZmNzhmNWYzNDEwZWIwZTU2ZGMxNzAwMzY2N2UwMzA3
MTFiYWYwHhcNMjMwMTI3MTQyODQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYjYxZDM3MjNjMzUwYjk3MjgyMjhjZGRkZTUyNWUzMTU3ODhkNTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0DGrZW+MMFor0zfz4EmvhpS4Qq6U
JMHHfcfoRdtu/42QIVHtN5eNPsKyGYkVw6z8dWud4dI3UEX7IRF/kPV8R8uP9+Ev
kWJZ9zWHMm3PKCOsXe4/RT2ON4Q5ZoxCPG6ndTV+Fj2v5jR/SEw1OuFLhJTIFjV3
age8tM5uzVpMAkU3/PwE/d1LEJAfA2qsLXW/heF+3GUmRqYjO0QMR50twCphyRxg
zJW/DPY02pH6Vd/a6rz95a6nhXyVNiG+ozZuzn8vD1RPblRolD925OzXwWhwUbmG
QIV2r4ceOlZSROlKfsP9LbahTlNiSLD7DCM3HicEqurN4z/7UW/QeCYqYQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPth03I8NQuXKCKM3d5SXjFXiNVEMB8GA1UdIwQY
MBaAFABG949fNBDrDlbcFwA2Z+AwcRuvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUViM2oxODBFT3NPVnR3WEFEWm40REJ4RzY4LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9lYWFmMTktNTQ0MC00MjI4LThjMzEt
MzYyMmNkN2Q4OTU2LzEvMS0ySFRjancxQzVjb0lvemQzbEplTVZlSTFVUS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYmIvZWFhZjE5LTU0NDAtNDIyOC04YzMxLTM2MjJjZDdkODk1
Ni8xL0FFYjNqMTgwRU9zT1Z0d1hBRFpuNERCeEc2OC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE1IVTAN
BgkqhkiG9w0BAQsFAAOCAQEAZUNjLPMljw+jkRc8tIbM25kbelbfWXCRlrnM3oe8
n0L9mCWXbPLt5OY2zEEWDWM34ttvdxZnN9oVmB8DNWxAoNhBaQf/vNCDEK1HIKNN
FBVmRFWbbLGcacrkYwanvclu2nnGFcVDtD+3D1JeuiCWG44YoIkhZcEhir07oDI/
k4p4QRpPqoxb8m4h1nuFKncfvKmoehvRzYFfo33FL6rip2QstRwGWvHGBOx2VcwH
sz1BNCmjQobyW4KKkS+tClv/hN8UXIKCe9HX4y88H0sZP/cPt7ZuQ12yUnbj2FzE
ojlnlhMcCnypMFAACXpWc49U9scdQPWFJWpIVUQcxslPIQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:51 2023 by rpki-client on console-ams.rpki-client.org