Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/9f35e9-a17a-48cd-9402-31d245f3b3b8/1/dwcaBo2fdWxcNxYuiI3YAGgc5Uk.roa
File: dwcaBo2fdWxcNxYuiI3YAGgc5Uk.roa (raw, json)
Hash identifier: 9sVn4z8cKVTCxajVk3Jz1zjaOBRpymgIqP0epd4DyDY=
Subject key identifier: 77:07:1A:06:8D:9F:75:6C:5C:37:16:2E:88:8D:D8:00:68:1C:E5:49
Certificate issuer: /CN=ad0618bc00d911a5d5eebf9c5896a41bf2898ecb
Certificate serial: 01857030730D68A3D06CF08A162665A23258
Authority key identifier: AD:06:18:BC:00:D9:11:A5:D5:EE:BF:9C:58:96:A4:1B:F2:89:8E:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQYYvADZEaXV7r-cWJakG_KJjss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/9f35e9-a17a-48cd-9402-31d245f3b3b8/1/dwcaBo2fdWxcNxYuiI3YAGgc5Uk.roa
Signing time: Mon 02 Jan 2023 01:55:01 +0000
ROA not before: Mon 02 Jan 2023 01:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202804
IP address blocks: 185.20.78.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:73:0d:68:a3:d0:6c:f0:8a:16:26:65:a2:32:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0618bc00d911a5d5eebf9c5896a41bf2898ecb
Validity
Not Before: Jan 2 01:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77071a068d9f756c5c37162e888dd800681ce549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:20:03:e7:78:0c:f3:90:73:22:46:a0:05:39:
c5:a9:d8:de:f4:c5:b5:11:44:c4:43:42:aa:72:7c:
38:59:25:77:a4:e3:75:ce:fa:0b:8f:09:5a:d8:00:
44:9c:a2:26:2f:85:34:8c:43:89:be:83:08:7b:8f:
c8:af:8a:0b:50:c4:6e:ff:2d:c9:06:bd:06:f3:b0:
ab:06:60:50:07:4d:e4:8b:f7:0a:35:d0:e5:65:41:
6c:c5:48:42:40:ef:e9:7a:05:38:62:0a:01:23:84:
09:8c:e7:f8:32:8b:20:cd:03:b9:37:ab:df:4d:83:
9b:09:c4:30:3d:14:90:7c:be:88:40:da:27:e2:6e:
fe:bb:19:c1:a4:55:9e:37:1f:51:bb:68:d1:d7:ef:
44:51:94:15:d1:11:54:7e:97:15:38:6f:45:3c:1f:
ec:a8:08:fc:47:10:d1:87:79:99:19:91:d9:95:02:
7f:8a:70:98:f8:52:3f:5b:39:f1:b2:e3:6a:5b:04:
ac:d9:85:4a:0c:79:77:f1:af:92:ba:c5:17:5d:ef:
0e:af:58:18:1a:40:f0:79:52:5e:88:a0:ab:47:b1:
52:6e:19:9f:5f:16:cd:e4:3e:68:06:f9:f6:55:5b:
09:d0:0b:83:74:e7:d1:94:9e:8b:4f:df:39:26:6f:
f2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:07:1A:06:8D:9F:75:6C:5C:37:16:2E:88:8D:D8:00:68:1C:E5:49
X509v3 Authority Key Identifier:
keyid:AD:06:18:BC:00:D9:11:A5:D5:EE:BF:9C:58:96:A4:1B:F2:89:8E:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQYYvADZEaXV7r-cWJakG_KJjss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/9f35e9-a17a-48cd-9402-31d245f3b3b8/1/dwcaBo2fdWxcNxYuiI3YAGgc5Uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/9f35e9-a17a-48cd-9402-31d245f3b3b8/1/rQYYvADZEaXV7r-cWJakG_KJjss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.78.0/23
Signature Algorithm: sha256WithRSAEncryption
89:a7:e9:6f:1c:88:ab:97:7c:62:ee:56:7f:37:72:27:2e:7e:
80:de:ee:45:be:5b:44:6b:15:c4:a1:d4:10:52:26:40:9a:10:
78:65:bd:bc:e0:e7:6a:25:a5:13:5e:bc:96:12:eb:86:53:a2:
a8:ea:e4:ab:92:0a:0f:fd:03:4a:f0:06:b9:22:74:fc:dc:ae:
09:80:a2:17:f2:c1:b5:77:70:f5:29:76:fa:02:15:11:6e:d4:
73:7f:dc:3b:b7:43:e0:64:14:8a:b4:85:fb:53:e5:2e:c4:54:
6b:20:b5:61:85:da:9a:fb:e0:51:d2:36:f4:ad:c5:21:9e:27:
29:64:fa:1a:d7:1c:60:d0:00:25:54:41:f2:1c:b8:99:d8:13:
f6:db:0e:46:af:59:5a:c3:1e:a9:79:30:13:6e:b6:ff:0f:e1:
43:32:22:d7:a8:8f:25:00:1b:65:ea:f7:3d:67:63:db:f7:51:
e9:8e:29:dd:6e:4e:33:9a:f0:64:0e:b8:9b:f2:20:57:be:1a:
ee:ac:e7:db:7a:3d:47:10:c8:b1:d3:1a:c4:96:ce:b4:d1:19:
d9:c3:ea:9b:66:9a:63:f6:4f:4c:00:57:5e:f7:bb:03:6b:92:
56:04:29:86:7d:3b:dd:54:be:45:46:17:bc:3e:11:37:b4:cd:
41:b3:d1:23
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwMHMNaKPQbPCKFiZlojJYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMDYxOGJjMDBkOTExYTVkNWVlYmY5YzU4OTZhNDFiZjI4
OThlY2IwHhcNMjMwMTAyMDE1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzA3MWEwNjhkOWY3NTZjNWMzNzE2MmU4ODhkZDgwMDY4MWNlNTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkiAD53gM85BzIkagBTnFqdje9MW1
EUTEQ0Kqcnw4WSV3pON1zvoLjwla2ABEnKImL4U0jEOJvoMIe4/Ir4oLUMRu/y3J
Br0G87CrBmBQB03ki/cKNdDlZUFsxUhCQO/pegU4YgoBI4QJjOf4MosgzQO5N6vf
TYObCcQwPRSQfL6IQNon4m7+uxnBpFWeNx9Ru2jR1+9EUZQV0RFUfpcVOG9FPB/s
qAj8RxDRh3mZGZHZlQJ/inCY+FI/WznxsuNqWwSs2YVKDHl38a+SusUXXe8Or1gY
GkDweVJeiKCrR7FSbhmfXxbN5D5oBvn2VVsJ0AuDdOfRlJ6LT985Jm/yVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHcHGgaNn3VsXDcWLoiN2ABoHOVJMB8GA1UdIwQY
MBaAFK0GGLwA2RGl1e6/nFiWpBvyiY7LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclFZWXZBRFpFYVhWN3ItY1dKYWtHX0tKanNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS85ZjM1ZTktYTE3YS00OGNkLTk0MDIt
MzFkMjQ1ZjNiM2I4LzEvZHdjYUJvMmZkV3hjTnhZdWlJM1lBR2djNVVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS85ZjM1ZTktYTE3YS00OGNkLTk0MDItMzFkMjQ1ZjNiM2I4
LzEvclFZWXZBRFpFYVhWN3ItY1dKYWtHX0tKanNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuRROMA0G
CSqGSIb3DQEBCwUAA4IBAQCJp+lvHIirl3xi7lZ/N3InLn6A3u5FvltEaxXEodQQ
UiZAmhB4Zb284OdqJaUTXryWEuuGU6Ko6uSrkgoP/QNK8Aa5InT83K4JgKIX8sG1
d3D1KXb6AhURbtRzf9w7t0PgZBSKtIX7U+UuxFRrILVhhdqa++BR0jb0rcUhnicp
ZPoa1xxg0AAlVEHyHLiZ2BP22w5Gr1lawx6peTATbrb/D+FDMiLXqI8lABtl6vc9
Z2Pb91Hpjindbk4zmvBkDrib8iBXvhrurOfbej1HEMix0xrEls600RnZw+qbZppj
9k9MAFde97sDa5JWBCmGfTvdVL5FRhe8PhE3tM1Bs9Ej
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:43 2024 by rpki-client on console-ams.rpki-client.org