Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/FWrrKSIHzpabCiJtWZnhbV0wt2E.roa
File: FWrrKSIHzpabCiJtWZnhbV0wt2E.roa (raw, json)
Hash identifier: aeT0K7L0TSOlSTdkuSVBEyfMEH0YURCl/xFCmf3SaDc=
Subject key identifier: 15:6A:EB:29:22:07:CE:96:9B:0A:22:6D:59:99:E1:6D:5D:30:B7:61
Certificate issuer: /CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Certificate serial: 0185708CAF989251B58716EC49013E8A82F0
Authority key identifier: 52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/FWrrKSIHzpabCiJtWZnhbV0wt2E.roa
Signing time: Mon 02 Jan 2023 03:35:46 +0000
ROA not before: Mon 02 Jan 2023 03:35:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 185.76.41.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:af:98:92:51:b5:87:16:ec:49:01:3e:8a:82:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Validity
Not Before: Jan 2 03:35:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=156aeb292207ce969b0a226d5999e16d5d30b761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:70:a4:6c:df:01:45:eb:5a:b1:a8:a8:26:ec:
d2:85:a1:5c:f7:fa:60:f8:f7:c0:f7:b7:9a:bc:32:
ec:4d:da:51:ba:45:04:60:44:a5:5c:14:78:4c:36:
f9:d7:22:79:f2:6d:a8:39:72:ab:ef:b6:00:bc:f9:
2f:47:e7:fe:50:8b:2f:07:72:ce:8c:d8:7f:0b:cc:
5d:e2:d5:de:92:a8:28:d9:ae:cc:c5:31:6b:93:02:
7d:8c:72:8d:3e:7c:d5:9e:85:e5:50:a9:de:80:2d:
30:00:e6:b5:09:75:de:b7:ab:ac:ed:a8:10:83:5a:
fc:21:5f:c0:ea:35:1b:3f:04:06:a8:2d:5e:11:7d:
93:ff:ae:38:b9:aa:94:a0:1f:02:0f:c8:8a:a0:17:
e8:fb:66:3b:4d:a7:a0:be:66:5b:8e:12:c3:b0:c9:
96:7b:2c:a6:0e:72:3d:6c:8d:6a:17:01:ee:56:8c:
f3:16:04:76:7a:90:8d:c6:06:88:5e:8e:2f:ab:e8:
0c:3a:50:f2:5a:e8:5a:ad:9c:d9:80:75:03:63:79:
1d:7e:9f:ea:c4:e0:f6:68:d8:44:50:29:3f:69:90:
68:90:64:87:6e:51:e4:dc:5a:31:bf:5e:13:39:35:
e0:9a:85:1b:1c:12:bc:4d:00:49:dc:c2:58:ca:7c:
e5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:6A:EB:29:22:07:CE:96:9B:0A:22:6D:59:99:E1:6D:5D:30:B7:61
X509v3 Authority Key Identifier:
keyid:52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/FWrrKSIHzpabCiJtWZnhbV0wt2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/UqXJDKkoMTvHDSaDuw9k1jKyc6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.41.0/24
Signature Algorithm: sha256WithRSAEncryption
04:7b:96:0d:75:34:51:da:7d:79:06:b9:67:19:dc:d6:f6:3f:
56:db:ed:f6:18:10:c3:81:11:aa:83:c6:17:09:50:d0:17:aa:
7b:a3:d1:6e:22:09:dd:9c:e0:15:b1:1c:e6:70:e7:87:c4:af:
5f:4c:b4:cd:21:5a:1d:ea:b2:da:d0:07:83:b7:11:e2:9e:a5:
1a:43:10:77:7e:b2:ad:27:92:22:56:97:9a:c1:6f:5a:08:e0:
95:55:e3:04:1c:ba:e6:fc:58:d7:4d:c2:a2:b6:d4:41:b2:d7:
11:f8:b2:9a:0c:4f:e5:65:9d:0f:39:4c:b9:5e:82:33:45:1a:
d0:04:17:fe:4c:f4:bf:13:20:e3:2f:06:b8:c8:a0:5a:7a:58:
12:97:e2:68:25:b9:78:27:b0:22:8e:fe:ec:41:d1:e3:68:b8:
d9:b4:8b:df:8c:30:c4:57:75:08:ee:21:db:b1:dd:3b:b2:a4:
ad:55:6e:67:b7:63:f6:ff:7f:70:fa:f1:bf:75:ab:06:2a:aa:
5b:b5:88:89:51:77:9f:57:62:15:80:a6:b2:27:be:17:4d:94:
85:ea:71:25:cf:25:7f:30:9b:11:68:9b:ec:1d:56:40:ca:ef:
24:bc:a9:8a:e5:31:4b:23:31:2c:2c:42:12:19:3b:c7:3a:6c:
b9:e5:64:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwjK+YklG1hxbsSQE+ioLwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYTVjOTBjYTkyODMxM2JjNzBkMjY4M2JiMGY2NGQ2MzJi
MjczYTEwHhcNMjMwMTAyMDMzNTQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTZhZWIyOTIyMDdjZTk2OWIwYTIyNmQ1OTk5ZTE2ZDVkMzBiNzYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXCkbN8BRetasaioJuzShaFc9/pg
+PfA97eavDLsTdpRukUEYESlXBR4TDb51yJ58m2oOXKr77YAvPkvR+f+UIsvB3LO
jNh/C8xd4tXekqgo2a7MxTFrkwJ9jHKNPnzVnoXlUKnegC0wAOa1CXXet6us7agQ
g1r8IV/A6jUbPwQGqC1eEX2T/644uaqUoB8CD8iKoBfo+2Y7TaegvmZbjhLDsMmW
eyymDnI9bI1qFwHuVozzFgR2epCNxgaIXo4vq+gMOlDyWuharZzZgHUDY3kdfp/q
xOD2aNhEUCk/aZBokGSHblHk3Foxv14TOTXgmoUbHBK8TQBJ3MJYynzlSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBVq6ykiB86WmwoibVmZ4W1dMLdhMB8GA1UdIwQY
MBaAFFKlyQypKDE7xw0mg7sPZNYysnOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXFYSkRLa29NVHZIRFNhRHV3OWsxakt5YzZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9jNGI3YTAtMWU1MC00MDNjLWIyNGUt
MTNlZDYzM2Y5MjJhLzEvRldycktTSUh6cGFiQ2lKdFdabmhiVjB3dDJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9jNGI3YTAtMWU1MC00MDNjLWIyNGUtMTNlZDYzM2Y5MjJh
LzEvVXFYSkRLa29NVHZIRFNhRHV3OWsxakt5YzZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUwpMA0G
CSqGSIb3DQEBCwUAA4IBAQAEe5YNdTRR2n15BrlnGdzW9j9W2+32GBDDgRGqg8YX
CVDQF6p7o9FuIgndnOAVsRzmcOeHxK9fTLTNIVod6rLa0AeDtxHinqUaQxB3frKt
J5IiVpeawW9aCOCVVeMEHLrm/FjXTcKittRBstcR+LKaDE/lZZ0POUy5XoIzRRrQ
BBf+TPS/EyDjLwa4yKBaelgSl+JoJbl4J7Aijv7sQdHjaLjZtIvfjDDEV3UI7iHb
sd07sqStVW5nt2P2/39w+vG/dasGKqpbtYiJUXefV2IVgKayJ74XTZSF6nElzyV/
MJsRaJvsHVZAyu8kvKmK5TFLIzEsLEISGTvHOmy55WQq
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-fra.rpki-client.org