Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/a785f6-e9cf-42bf-849c-8156e30fcd1d/1/EhUu2h3xn9jpqsJX6UNu046mbJY.roa
File: EhUu2h3xn9jpqsJX6UNu046mbJY.roa (raw, json)
Hash identifier: pUF1R4KB7G/QwVpXlSDL8Y+V9OXm7dUY/6c7jCpjsnQ=
Subject key identifier: 12:15:2E:DA:1D:F1:9F:D8:E9:AA:C2:57:E9:43:6E:D3:8E:A6:6C:96
Certificate issuer: /CN=b2c18fdd2f0807dd5bab5ed70dd728e771fc6cc7
Certificate serial: 01856CAF18628B5493AF980C2576C1CA6B98
Authority key identifier: B2:C1:8F:DD:2F:08:07:DD:5B:AB:5E:D7:0D:D7:28:E7:71:FC:6C:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssGP3S8IB91bq17XDdco53H8bMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/a785f6-e9cf-42bf-849c-8156e30fcd1d/1/EhUu2h3xn9jpqsJX6UNu046mbJY.roa
Signing time: Sun 01 Jan 2023 09:34:52 +0000
ROA not before: Sun 01 Jan 2023 09:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 89.248.65.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:18:62:8b:54:93:af:98:0c:25:76:c1:ca:6b:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c18fdd2f0807dd5bab5ed70dd728e771fc6cc7
Validity
Not Before: Jan 1 09:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12152eda1df19fd8e9aac257e9436ed38ea66c96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:44:a9:66:0f:9f:59:10:52:71:23:76:02:9e:
40:8a:e2:f0:19:06:2b:e3:20:03:38:8d:21:9b:c1:
ae:31:48:6a:f2:52:a4:91:98:57:11:d8:76:e5:5c:
3a:a9:ac:3b:b6:dc:13:18:da:cd:9e:48:4e:0d:99:
88:c4:c0:91:88:4a:f9:32:87:53:0b:54:1e:57:e8:
63:a9:d0:d2:23:15:18:fd:c8:7e:1e:f6:51:fe:f1:
44:69:a4:d7:88:7c:39:cc:e9:0b:e0:00:a2:a2:f8:
93:dd:36:19:07:49:48:7c:b9:26:76:d2:57:51:0a:
f2:07:e1:45:fc:4c:0c:5b:c3:44:99:34:54:59:25:
a9:4a:6e:f2:ae:b5:17:1e:cb:17:96:23:40:e7:21:
d5:8c:a9:6b:16:dc:23:ef:cd:a1:da:72:42:ea:7b:
fe:af:d2:27:41:79:e8:50:69:0f:76:fc:c2:65:70:
43:bc:7f:20:ea:24:99:6f:a0:1a:3e:1c:93:18:06:
57:5f:be:6e:65:80:13:b4:e4:79:56:ce:fc:99:ac:
cf:90:07:19:2a:a9:b2:69:05:77:26:0e:bc:c2:12:
92:cf:8d:78:42:1d:7c:c3:76:99:b4:1c:e6:98:70:
2a:6e:2f:8b:95:f7:9f:e3:f0:db:68:44:55:26:7c:
ff:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:15:2E:DA:1D:F1:9F:D8:E9:AA:C2:57:E9:43:6E:D3:8E:A6:6C:96
X509v3 Authority Key Identifier:
keyid:B2:C1:8F:DD:2F:08:07:DD:5B:AB:5E:D7:0D:D7:28:E7:71:FC:6C:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssGP3S8IB91bq17XDdco53H8bMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/a785f6-e9cf-42bf-849c-8156e30fcd1d/1/EhUu2h3xn9jpqsJX6UNu046mbJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/a785f6-e9cf-42bf-849c-8156e30fcd1d/1/ssGP3S8IB91bq17XDdco53H8bMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.65.0/24
Signature Algorithm: sha256WithRSAEncryption
97:c7:f4:62:2e:81:3c:8b:b9:46:1c:21:68:63:f3:77:ba:ea:
e7:ba:de:70:70:53:c4:44:34:b5:01:a1:35:c3:91:5e:e5:b0:
d7:c7:2b:9c:9e:15:1f:8c:60:0f:a1:7d:e2:1a:c3:5d:07:78:
a9:2d:dc:f1:14:7f:7f:dd:e3:1b:85:e2:b4:cb:8d:c4:56:f7:
11:b6:34:5d:c2:f5:4f:4f:1c:d3:98:cf:eb:2f:b9:f5:1a:40:
a3:5e:17:7f:b8:d0:97:bc:d7:16:72:11:69:c4:18:09:04:55:
8a:e7:e0:db:dc:1c:eb:63:f0:84:aa:9c:a6:46:cc:09:30:72:
6c:bf:da:6d:a5:dd:f9:29:d7:f9:ce:85:a9:55:8a:9a:dc:28:
e4:8c:f0:7a:54:10:58:6e:14:98:f5:2a:69:5a:63:29:7e:02:
92:d2:93:45:f2:ab:d5:3d:e5:7b:b4:6a:1f:46:fd:cf:4d:3c:
5c:ab:08:97:59:ef:25:4a:de:19:51:90:b7:b9:b6:93:6e:44:
a0:da:13:bf:13:b7:3f:dc:1c:a6:42:6e:e8:85:b0:91:44:ec:
d9:95:49:30:75:1d:95:23:28:bc:54:ad:df:00:d6:18:36:d6:
0b:74:8a:70:3b:8d:a2:f4:3c:87:db:9e:ca:5f:42:49:1f:73:
82:41:55:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsrxhii1STr5gMJXbBymuYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYzE4ZmRkMmYwODA3ZGQ1YmFiNWVkNzBkZDcyOGU3NzFm
YzZjYzcwHhcNMjMwMTAxMDkzNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjE1MmVkYTFkZjE5ZmQ4ZTlhYWMyNTdlOTQzNmVkMzhlYTY2Yzk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxUSpZg+fWRBScSN2Ap5AiuLwGQYr
4yADOI0hm8GuMUhq8lKkkZhXEdh25Vw6qaw7ttwTGNrNnkhODZmIxMCRiEr5ModT
C1QeV+hjqdDSIxUY/ch+HvZR/vFEaaTXiHw5zOkL4ACioviT3TYZB0lIfLkmdtJX
UQryB+FF/EwMW8NEmTRUWSWpSm7yrrUXHssXliNA5yHVjKlrFtwj782h2nJC6nv+
r9InQXnoUGkPdvzCZXBDvH8g6iSZb6AaPhyTGAZXX75uZYATtOR5Vs78mazPkAcZ
KqmyaQV3Jg68whKSz414Qh18w3aZtBzmmHAqbi+Llfef4/DbaERVJnz/kQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBIVLtod8Z/Y6arCV+lDbtOOpmyWMB8GA1UdIwQY
MBaAFLLBj90vCAfdW6te1w3XKOdx/GzHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3NHUDNTOElCOTFicTE3WERkY281M0g4Yk1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9hNzg1ZjYtZTljZi00MmJmLTg0OWMt
ODE1NmUzMGZjZDFkLzEvRWhVdTJoM3huOWpwcXNKWDZVTnUwNDZtYkpZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC9hNzg1ZjYtZTljZi00MmJmLTg0OWMtODE1NmUzMGZjZDFk
LzEvc3NHUDNTOElCOTFicTE3WERkY281M0g4Yk1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWfhBMA0G
CSqGSIb3DQEBCwUAA4IBAQCXx/RiLoE8i7lGHCFoY/N3uurnut5wcFPERDS1AaE1
w5Fe5bDXxyucnhUfjGAPoX3iGsNdB3ipLdzxFH9/3eMbheK0y43EVvcRtjRdwvVP
TxzTmM/rL7n1GkCjXhd/uNCXvNcWchFpxBgJBFWK5+Db3BzrY/CEqpymRswJMHJs
v9ptpd35Kdf5zoWpVYqa3CjkjPB6VBBYbhSY9SppWmMpfgKS0pNF8qvVPeV7tGof
Rv3PTTxcqwiXWe8lSt4ZUZC3ubaTbkSg2hO/E7c/3BymQm7ohbCRROzZlUkwdR2V
Iyi8VK3fANYYNtYLdIpwO42i9DyH257KX0JJH3OCQVVB
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:13 2023 by rpki-client on console-ams.rpki-client.org