Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5acd78-d670-4192-b564-040e0644fbe8/1/nX2HSDGW8AaGq7sACXXvoMfVIRA.roa
File: nX2HSDGW8AaGq7sACXXvoMfVIRA.roa (raw, json)
Hash identifier: WwShWfZ028Cf4n0EAsRNCBvR/vL1yHew1Dfgyg36rg0=
Subject key identifier: 9D:7D:87:48:31:96:F0:06:86:AB:BB:00:09:75:EF:A0:C7:D5:21:10
Certificate issuer: /CN=d0de618822b8af6f9ecaffcd7d5459b7cc11449a
Certificate serial: 018570CBF7E77295744E4765D763D617451B
Authority key identifier: D0:DE:61:88:22:B8:AF:6F:9E:CA:FF:CD:7D:54:59:B7:CC:11:44:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0N5hiCK4r2-eyv_NfVRZt8wRRJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5acd78-d670-4192-b564-040e0644fbe8/1/nX2HSDGW8AaGq7sACXXvoMfVIRA.roa
Signing time: Mon 02 Jan 2023 04:44:53 +0000
ROA not before: Mon 02 Jan 2023 04:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52093
IP address blocks: 185.156.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:f7:e7:72:95:74:4e:47:65:d7:63:d6:17:45:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0de618822b8af6f9ecaffcd7d5459b7cc11449a
Validity
Not Before: Jan 2 04:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d7d87483196f00686abbb000975efa0c7d52110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f8:3b:73:74:4a:d0:f6:6c:c5:f3:20:0a:3a:
a8:56:47:8b:14:85:5e:4c:94:0b:65:38:83:31:20:
0f:72:54:40:48:d9:cb:e1:71:45:3b:e8:7f:f7:71:
1a:43:6e:d8:e1:0e:60:cf:d3:5c:3c:a9:3a:63:9e:
08:1c:dd:1e:62:d8:2e:92:d3:63:cc:be:37:b0:63:
30:9e:73:d8:39:e1:00:77:27:24:1a:05:a1:20:0b:
7c:c4:95:6c:92:6e:46:65:24:70:bd:66:43:0d:4f:
dc:70:b8:b0:3a:66:13:42:9e:ec:92:0f:0c:a8:b7:
53:85:bc:e2:70:21:3e:3d:ba:24:19:2b:6f:7d:c4:
1d:0e:b1:7e:7f:a1:4d:d5:73:4f:b0:d8:5b:d4:f6:
1a:89:5f:11:2b:54:41:bc:36:58:85:77:97:c2:4f:
17:26:d5:e6:74:73:e1:4a:20:fc:90:84:05:20:7e:
bb:60:4d:5d:b1:81:c2:e0:bf:a6:d2:13:43:31:bc:
4f:b5:a8:df:5f:2c:e9:c4:53:5c:dc:59:1a:11:72:
21:ca:e1:5a:6c:61:c0:c7:17:3b:f6:5a:86:6d:c4:
b2:d4:84:83:d4:3e:ba:9c:eb:ac:55:de:95:9f:df:
1c:93:a3:55:9e:a2:c2:bf:77:f9:27:d4:0e:83:9f:
54:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7D:87:48:31:96:F0:06:86:AB:BB:00:09:75:EF:A0:C7:D5:21:10
X509v3 Authority Key Identifier:
keyid:D0:DE:61:88:22:B8:AF:6F:9E:CA:FF:CD:7D:54:59:B7:CC:11:44:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0N5hiCK4r2-eyv_NfVRZt8wRRJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5acd78-d670-4192-b564-040e0644fbe8/1/nX2HSDGW8AaGq7sACXXvoMfVIRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5acd78-d670-4192-b564-040e0644fbe8/1/0N5hiCK4r2-eyv_NfVRZt8wRRJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.4.0/24
Signature Algorithm: sha256WithRSAEncryption
35:02:d5:65:8a:fb:04:d4:dc:d5:5d:a6:d0:83:40:c6:30:b0:
79:8b:3a:6f:91:b7:53:6b:c6:14:e0:d3:7b:5b:41:be:09:d6:
06:36:1d:ad:56:de:31:2c:34:a1:c8:4d:1f:90:83:2a:da:94:
b1:6a:92:9c:b4:fc:87:4b:48:20:69:63:cd:2c:e8:34:75:5a:
07:48:cd:3a:c8:62:5a:36:53:26:27:71:64:a3:ad:0e:ab:ad:
62:9a:0e:c3:43:22:ef:16:48:46:92:7e:c7:24:62:64:62:b0:
2e:b6:30:6d:f2:d6:74:b9:22:13:09:20:88:91:84:51:8b:77:
3e:74:03:c2:58:ec:4f:eb:89:e0:69:28:64:39:a9:a6:4c:1e:
3c:b7:9d:a3:f4:3f:0f:af:25:5d:2f:75:1a:6e:f2:61:d0:89:
70:5d:81:cb:3f:67:df:ca:8f:56:b0:14:d7:a8:c3:ff:ad:ee:
64:72:c2:3f:cf:16:ad:f6:3c:d7:fa:a9:82:42:9d:c1:91:19:
a7:48:79:24:cc:1e:76:eb:f5:50:f3:b0:aa:ea:8a:ab:b9:b4:
7f:27:a7:46:35:4f:0f:d1:d4:c9:bb:3b:56:92:ef:b9:80:9f:
a3:a8:bb:4e:f7:ed:40:2f:25:db:7c:00:5f:8d:e2:5c:6d:c9:
53:68:79:c6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwy/fncpV0Tkdl12PWF0UbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwZGU2MTg4MjJiOGFmNmY5ZWNhZmZjZDdkNTQ1OWI3Y2Mx
MTQ0OWEwHhcNMjMwMTAyMDQ0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDdkODc0ODMxOTZmMDA2ODZhYmJiMDAwOTc1ZWZhMGM3ZDUyMTEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfg7c3RK0PZsxfMgCjqoVkeLFIVe
TJQLZTiDMSAPclRASNnL4XFFO+h/93EaQ27Y4Q5gz9NcPKk6Y54IHN0eYtguktNj
zL43sGMwnnPYOeEAdyckGgWhIAt8xJVskm5GZSRwvWZDDU/ccLiwOmYTQp7skg8M
qLdThbzicCE+PbokGStvfcQdDrF+f6FN1XNPsNhb1PYaiV8RK1RBvDZYhXeXwk8X
JtXmdHPhSiD8kIQFIH67YE1dsYHC4L+m0hNDMbxPtajfXyzpxFNc3FkaEXIhyuFa
bGHAxxc79lqGbcSy1ISD1D66nOusVd6Vn98ck6NVnqLCv3f5J9QOg59UfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ19h0gxlvAGhqu7AAl176DH1SEQMB8GA1UdIwQY
MBaAFNDeYYgiuK9vnsr/zX1UWbfMEUSaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvME41aGlDSzRyMi1leXZfTmZWUlp0OHdSUkpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC81YWNkNzgtZDY3MC00MTkyLWI1NjQt
MDQwZTA2NDRmYmU4LzEvblgySFNER1c4QWFHcTdzQUNYWHZvTWZWSVJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC81YWNkNzgtZDY3MC00MTkyLWI1NjQtMDQwZTA2NDRmYmU4
LzEvME41aGlDSzRyMi1leXZfTmZWUlp0OHdSUkpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZwEMA0G
CSqGSIb3DQEBCwUAA4IBAQA1AtVlivsE1NzVXabQg0DGMLB5izpvkbdTa8YU4NN7
W0G+CdYGNh2tVt4xLDShyE0fkIMq2pSxapKctPyHS0ggaWPNLOg0dVoHSM06yGJa
NlMmJ3Fko60Oq61img7DQyLvFkhGkn7HJGJkYrAutjBt8tZ0uSITCSCIkYRRi3c+
dAPCWOxP64ngaShkOammTB48t52j9D8PryVdL3UabvJh0IlwXYHLP2ffyo9WsBTX
qMP/re5kcsI/zxat9jzX+qmCQp3BkRmnSHkkzB526/VQ87Cq6oqrubR/J6dGNU8P
0dTJuztWku+5gJ+jqLtO9+1ALyXbfABfjeJcbclTaHnG
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:42 2024 by rpki-client on console-fra.rpki-client.org