Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Abt12Nx3MO5TWNOQM1MyOth1NSQ.roa
File: Abt12Nx3MO5TWNOQM1MyOth1NSQ.roa (raw, json)
Hash identifier: Ge/mTZQw4mhfNaV5vL5kssexjLyqtcS3i/CxSmAAa8s=
Subject key identifier: 01:BB:75:D8:DC:77:30:EE:53:58:D3:90:33:53:32:3A:D8:75:35:24
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01857102FE1E610EBE3CA9114389D082B127
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Abt12Nx3MO5TWNOQM1MyOth1NSQ.roa
Signing time: Mon 02 Jan 2023 05:44:59 +0000
ROA not before: Mon 02 Jan 2023 05:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13213
IP address blocks: 185.192.68.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:fe:1e:61:0e:be:3c:a9:11:43:89:d0:82:b1:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01bb75d8dc7730ee5358d3903353323ad8753524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:01:31:ae:76:c0:bf:cd:e2:ca:c5:41:43:f5:
e2:f7:eb:58:a3:bf:1d:59:ec:ca:ae:81:48:bb:43:
3f:af:35:b1:57:f0:74:aa:3d:77:2b:1c:66:73:68:
cc:f0:29:46:f5:c1:73:73:2c:36:21:22:15:8e:bf:
a0:3b:3b:91:37:95:d5:55:f3:45:35:b8:dd:b2:1e:
ca:be:17:7d:f2:70:68:49:db:37:95:e9:80:75:96:
53:87:1a:b9:3d:7c:41:49:24:26:d0:47:d3:ec:60:
de:48:38:bf:2f:27:f4:ea:a3:5d:45:d2:3b:22:83:
80:5a:0f:40:1a:40:a1:40:ad:94:bc:3b:0e:b9:90:
e1:fe:80:1d:3c:7d:6c:61:7c:7f:41:81:1b:e2:71:
9f:3f:3f:01:32:37:f4:40:fd:d7:6c:8c:8e:fb:58:
d6:ef:7b:ce:63:e8:b8:e7:25:c3:ef:c7:b6:fe:b0:
d7:a7:bb:ec:0f:99:52:4e:68:51:0f:40:51:8b:a0:
23:df:ae:69:3b:bb:1e:d9:a1:17:b3:31:ab:5a:9d:
93:05:c9:f6:43:99:d6:b1:b8:d3:51:a0:1f:1c:b0:
56:32:0d:3b:2d:57:77:ef:9d:0a:d2:33:64:32:64:
ee:70:f0:53:5b:7e:7c:cd:31:12:a1:6d:19:83:07:
00:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BB:75:D8:DC:77:30:EE:53:58:D3:90:33:53:32:3A:D8:75:35:24
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Abt12Nx3MO5TWNOQM1MyOth1NSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.68.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:47:b4:b7:66:2f:41:77:5a:8e:89:7f:09:15:a7:ff:d2:ec:
82:e4:7c:4d:75:bf:9a:6c:98:6a:42:b9:a8:75:c6:c4:7b:be:
a3:a0:4d:f2:41:e2:35:cd:30:52:d5:59:91:b1:4a:ed:30:39:
16:0c:3e:ea:ea:a3:01:f3:88:6b:c4:70:ff:18:43:96:b0:a5:
06:02:90:fd:39:29:48:17:b4:ab:53:b0:ac:83:b6:d1:b2:d1:
d2:2e:0f:e1:e5:69:32:e6:7e:e1:67:20:53:a3:fd:6b:5e:67:
e8:bc:7b:6d:8d:56:c7:76:6d:29:28:ca:91:00:72:10:e3:42:
69:60:d8:98:96:df:20:fd:26:2b:3f:c7:e4:3b:eb:64:db:ef:
32:c5:9a:09:6e:a7:15:77:48:cc:0c:02:83:a1:5a:f2:79:0c:
01:a9:c3:3b:99:9a:65:94:8a:bf:49:3f:36:1e:79:b1:ad:2b:
db:7a:f2:e8:f4:cc:a6:80:b0:56:18:5c:2d:a4:72:75:a8:04:
57:5c:5a:59:66:97:ec:9d:a1:61:e9:d7:b2:91:00:a2:56:45:
c8:f8:0a:e4:b3:c4:64:7a:16:02:ca:f6:29:a4:93:a9:5b:0a:
0a:31:21:ec:de:85:cb:ba:f3:3b:e6:bc:d0:83:5b:34:46:09:
b5:08:b6:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxAv4eYQ6+PKkRQ4nQgrEnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjMwMTAyMDU0NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMWJiNzVkOGRjNzczMGVlNTM1OGQzOTAzMzUzMzIzYWQ4NzUzNTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAExrnbAv83iysVBQ/Xi9+tYo78d
WezKroFIu0M/rzWxV/B0qj13Kxxmc2jM8ClG9cFzcyw2ISIVjr+gOzuRN5XVVfNF
Nbjdsh7Kvhd98nBoSds3lemAdZZThxq5PXxBSSQm0EfT7GDeSDi/Lyf06qNdRdI7
IoOAWg9AGkChQK2UvDsOuZDh/oAdPH1sYXx/QYEb4nGfPz8BMjf0QP3XbIyO+1jW
73vOY+i45yXD78e2/rDXp7vsD5lSTmhRD0BRi6Aj365pO7se2aEXszGrWp2TBcn2
Q5nWsbjTUaAfHLBWMg07LVd3750K0jNkMmTucPBTW358zTESoW0ZgwcAiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAG7ddjcdzDuU1jTkDNTMjrYdTUkMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvQWJ0MTJOeDNNTzVUV05PUU0xTXlPdGgxTlNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucBEMA0G
CSqGSIb3DQEBCwUAA4IBAQBfR7S3Zi9Bd1qOiX8JFaf/0uyC5HxNdb+abJhqQrmo
dcbEe76joE3yQeI1zTBS1VmRsUrtMDkWDD7q6qMB84hrxHD/GEOWsKUGApD9OSlI
F7SrU7Csg7bRstHSLg/h5Wky5n7hZyBTo/1rXmfovHttjVbHdm0pKMqRAHIQ40Jp
YNiYlt8g/SYrP8fkO+tk2+8yxZoJbqcVd0jMDAKDoVryeQwBqcM7mZpllIq/ST82
HnmxrSvbevLo9MymgLBWGFwtpHJ1qARXXFpZZpfsnaFh6deykQCiVkXI+Arks8Rk
ehYCyvYppJOpWwoKMSHs3oXLuvM75rzQg1s0Rgm1CLYq
-----END CERTIFICATE-----
Generated at Thu Oct 5 05:33:14 2023 by rpki-client on console-ams.rpki-client.org