Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/C3SZQTHjC-YWqJeJ__qRWCl4LKs.roa
File: C3SZQTHjC-YWqJeJ__qRWCl4LKs.roa (raw, json)
Hash identifier: GgrLC0p5kuPTvXN8rtFmuOENZ5f2snNUNnXH0TCaE8M=
Subject key identifier: 0B:74:99:41:31:E3:0B:E6:16:A8:97:89:FF:FA:91:58:29:78:2C:AB
Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Certificate serial: 01856BEEBE7417597E27041C454E4EB7BFBB
Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/C3SZQTHjC-YWqJeJ__qRWCl4LKs.roa
Signing time: Sun 01 Jan 2023 06:04:46 +0000
ROA not before: Sun 01 Jan 2023 06:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200679
IP address blocks: 92.255.53.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:be:74:17:59:7e:27:04:1c:45:4e:4e:b7:bf:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Validity
Not Before: Jan 1 06:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b74994131e30be616a89789fffa915829782cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4f:eb:ab:66:e1:a2:d0:38:d4:11:e1:cc:41:
e1:92:30:18:65:7b:87:d6:b1:7d:29:10:b9:0d:61:
3c:2d:65:6c:94:13:f0:83:ab:60:7b:10:81:fe:cc:
06:11:ca:90:26:90:70:cc:f6:76:09:eb:03:ba:36:
9f:01:39:e7:46:8d:cd:58:24:9e:7a:4c:a2:1c:87:
e0:41:8a:5e:eb:3a:4e:d6:46:04:c1:3f:36:60:8d:
54:ab:67:0b:61:50:b8:49:28:63:f0:ed:15:47:66:
05:08:e2:2c:2f:24:70:2b:fe:f7:30:1e:18:8c:f7:
41:76:a5:58:83:88:44:45:f1:49:2e:88:29:6e:0a:
c5:c9:ec:e4:de:fa:35:7d:9f:6d:36:5a:05:1d:a3:
2d:b8:be:5b:d3:f0:ff:a9:14:d6:84:47:34:1e:48:
8b:57:5e:fb:1a:19:e8:17:41:ce:50:2e:8e:09:7f:
43:39:19:30:d8:92:be:b0:13:36:9c:36:f3:34:78:
62:46:f2:57:73:5b:54:2a:07:42:15:ed:2c:9f:36:
65:d7:5e:8b:a7:7f:48:1e:d5:8e:4d:b4:b9:21:a7:
18:ad:5a:cd:55:73:cf:28:ac:17:02:b3:41:68:f6:
70:e3:ff:84:9f:60:51:3f:df:04:97:fe:5b:78:4a:
1b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:74:99:41:31:E3:0B:E6:16:A8:97:89:FF:FA:91:58:29:78:2C:AB
X509v3 Authority Key Identifier:
keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/C3SZQTHjC-YWqJeJ__qRWCl4LKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.255.53.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:31:5e:3e:95:35:c8:50:1e:a4:34:65:cd:c4:eb:d6:32:12:
f5:f9:e7:b3:a7:d7:b0:b9:bc:44:29:04:45:d1:ce:fa:a2:3e:
6b:2c:2e:d9:68:0e:32:68:8a:af:2d:82:76:f1:c7:aa:3c:0c:
0c:59:9d:f4:03:d4:fb:4b:76:93:88:4b:08:1d:d5:89:c6:6a:
ba:1f:39:2a:ad:88:0b:67:8e:eb:6a:d5:e1:62:e5:60:98:50:
4f:1d:b7:e0:9f:95:04:b6:26:e4:b3:bb:16:91:42:00:92:c9:
75:a3:e5:cd:64:81:95:d8:bf:b1:18:82:56:7f:12:4b:ac:e3:
94:d3:0a:58:0e:76:e4:0d:c1:60:af:45:6e:6e:3b:09:cb:41:
2e:c7:e5:6a:1d:47:1a:6b:91:2e:c6:a0:da:77:d9:69:5f:b9:
5f:30:eb:41:ea:a9:e5:8e:0f:1b:15:e5:12:f9:63:af:d2:e6:
01:77:13:82:e0:9c:b4:47:56:80:20:7c:96:e1:8c:f8:dc:04:
af:34:11:4d:e0:4e:19:a3:57:10:29:8d:b2:de:a7:ce:5a:3d:
63:f6:17:89:62:44:5a:02:4f:d5:d3:c5:7b:61:63:34:12:79:
25:b2:95:02:45:73:63:c7:f8:08:60:c3:05:18:41:d4:66:79:
ce:44:dd:33
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr7r50F1l+JwQcRU5Ot7+7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz
NmM0ZmYwHhcNMjMwMTAxMDYwNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjc0OTk0MTMxZTMwYmU2MTZhODk3ODlmZmZhOTE1ODI5NzgyY2FiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkU/rq2bhotA41BHhzEHhkjAYZXuH
1rF9KRC5DWE8LWVslBPwg6tgexCB/swGEcqQJpBwzPZ2CesDujafATnnRo3NWCSe
ekyiHIfgQYpe6zpO1kYEwT82YI1Uq2cLYVC4SShj8O0VR2YFCOIsLyRwK/73MB4Y
jPdBdqVYg4hERfFJLogpbgrFyezk3vo1fZ9tNloFHaMtuL5b0/D/qRTWhEc0HkiL
V177GhnoF0HOUC6OCX9DORkw2JK+sBM2nDbzNHhiRvJXc1tUKgdCFe0snzZl116L
p39IHtWOTbS5IacYrVrNVXPPKKwXArNBaPZw4/+En2BRP98El/5beEob8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAt0mUEx4wvmFqiXif/6kVgpeCyrMB8GA1UdIwQY
MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt
ODg2MmI1MTczMTdjLzEvQzNTWlFUSGpDLVlXcUplSl9fcVJXQ2w0TEtzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj
LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXP81MA0G
CSqGSIb3DQEBCwUAA4IBAQA6MV4+lTXIUB6kNGXNxOvWMhL1+eezp9ewubxEKQRF
0c76oj5rLC7ZaA4yaIqvLYJ28ceqPAwMWZ30A9T7S3aTiEsIHdWJxmq6HzkqrYgL
Z47ratXhYuVgmFBPHbfgn5UEtibks7sWkUIAksl1o+XNZIGV2L+xGIJWfxJLrOOU
0wpYDnbkDcFgr0VubjsJy0Eux+VqHUcaa5EuxqDad9lpX7lfMOtB6qnljg8bFeUS
+WOv0uYBdxOC4Jy0R1aAIHyW4Yz43ASvNBFN4E4Zo1cQKY2y3qfOWj1j9heJYkRa
Ak/V08V7YWM0EnklspUCRXNjx/gIYMMFGEHUZnnORN0z
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:23 2024 by rpki-client on console-fra.rpki-client.org