Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/TtVGoWm9GYdqRoKOkLq2nrAAWAA.roa
File: TtVGoWm9GYdqRoKOkLq2nrAAWAA.roa (raw, json)
Hash identifier: hGfAK0la5ELeEja4Z1vX9vYbQDnKpXPXnnAVnD4/lCA=
Subject key identifier: 4E:D5:46:A1:69:BD:19:87:6A:46:82:8E:90:BA:B6:9E:B0:00:58:00
Certificate issuer: /CN=91242d9769b759349c8018c908736e54dffc0cb5
Certificate serial: 0187284F28E3418EAC38147D31D372C9D60D
Authority key identifier: 91:24:2D:97:69:B7:59:34:9C:80:18:C9:08:73:6E:54:DF:FC:0C:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kSQtl2m3WTScgBjJCHNuVN_8DLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/TtVGoWm9GYdqRoKOkLq2nrAAWAA.roa
Signing time: Tue 28 Mar 2023 13:01:29 +0000
ROA not before: Tue 28 Mar 2023 13:01:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 185.249.55.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:28:4f:28:e3:41:8e:ac:38:14:7d:31:d3:72:c9:d6:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91242d9769b759349c8018c908736e54dffc0cb5
Validity
Not Before: Mar 28 13:01:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ed546a169bd19876a46828e90bab69eb0005800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ff:ad:0f:38:e3:45:4e:54:a3:57:d7:30:21:
0a:a2:a6:5e:c4:78:68:c5:db:77:d5:24:b0:5c:4b:
52:66:e3:ce:88:c7:55:85:7b:c8:28:fd:64:db:da:
96:59:ce:1c:2f:b0:7e:2c:63:ca:3e:71:dd:5a:65:
cf:82:79:1d:e9:a1:ba:27:ea:85:f5:00:0e:20:ab:
17:af:d5:5c:0a:6f:ac:92:2e:61:3c:d9:1e:5d:7d:
dc:cb:d7:fc:b4:a0:1a:d5:cf:40:48:73:35:12:57:
22:7f:68:68:c5:9e:08:6d:73:80:b8:9f:a8:3c:45:
c4:c5:5d:e7:d5:e9:24:15:95:ae:59:61:2e:05:2d:
b7:34:8c:40:85:3f:6f:c6:57:71:85:7b:dc:7a:b6:
bd:b1:2a:da:a9:5a:3e:86:6c:95:e8:24:a6:a2:b4:
e8:18:64:a7:c3:ac:50:8c:0f:f7:34:e1:62:db:0f:
78:88:81:22:be:f4:96:79:28:ff:eb:34:cf:56:af:
54:80:d6:1e:5d:46:9d:af:63:86:7d:87:a9:89:0d:
30:74:c3:46:47:b5:b8:a1:14:05:61:f3:04:65:cd:
c8:e7:98:a3:65:1a:fd:8b:10:7a:20:17:8e:27:f2:
69:78:dd:cf:4f:29:c8:aa:1f:af:85:64:10:5c:2d:
eb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D5:46:A1:69:BD:19:87:6A:46:82:8E:90:BA:B6:9E:B0:00:58:00
X509v3 Authority Key Identifier:
keyid:91:24:2D:97:69:B7:59:34:9C:80:18:C9:08:73:6E:54:DF:FC:0C:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kSQtl2m3WTScgBjJCHNuVN_8DLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/TtVGoWm9GYdqRoKOkLq2nrAAWAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/kSQtl2m3WTScgBjJCHNuVN_8DLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.55.0/24
Signature Algorithm: sha256WithRSAEncryption
44:25:e1:1c:e1:df:f9:07:cd:b5:fc:c2:2d:04:c4:e7:4b:f9:
5f:66:12:f1:9f:0b:bf:d5:7b:ee:76:40:35:f4:ea:53:bb:96:
01:c0:76:92:b8:e0:a8:39:7e:b6:23:0f:a5:44:94:3f:d1:f2:
6e:42:78:73:93:06:a2:b0:65:34:5b:6c:73:ae:b5:0a:27:56:
17:29:30:5b:51:57:5e:7e:12:2e:c6:3f:fe:b7:b1:b7:1d:14:
1d:2c:48:16:2d:fa:7e:77:aa:aa:87:40:39:59:05:ff:65:a3:
38:3f:d5:c0:fa:4d:4d:a2:7b:04:34:c6:c7:c6:4d:1b:64:71:
61:73:6d:54:0e:a5:ca:e0:5a:ae:7c:28:5d:a0:a0:80:27:5c:
36:64:83:51:fc:60:05:82:c2:d3:91:4d:38:d9:93:e0:be:58:
e7:0d:fb:da:f6:f0:0a:de:20:4d:62:f4:17:88:19:d7:52:3c:
e8:75:42:91:1f:39:b1:b3:11:9c:09:19:13:64:35:20:f7:21:
42:66:45:1b:7a:fe:52:40:a0:9e:e6:6b:e9:2a:ba:94:25:c6:
ed:c9:ba:f1:66:ac:24:c7:eb:7e:52:62:5e:18:41:2d:37:ed:
84:dc:4f:49:55:f0:76:26:10:c9:54:95:58:72:93:b0:0a:08:
7b:25:74:f5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcoTyjjQY6sOBR9MdNyydYNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMjQyZDk3NjliNzU5MzQ5YzgwMThjOTA4NzM2ZTU0ZGZm
YzBjYjUwHhcNMjMwMzI4MTMwMTI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZWQ1NDZhMTY5YmQxOTg3NmE0NjgyOGU5MGJhYjY5ZWIwMDA1ODAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/+tDzjjRU5Uo1fXMCEKoqZexHho
xdt31SSwXEtSZuPOiMdVhXvIKP1k29qWWc4cL7B+LGPKPnHdWmXPgnkd6aG6J+qF
9QAOIKsXr9VcCm+ski5hPNkeXX3cy9f8tKAa1c9ASHM1Elcif2hoxZ4IbXOAuJ+o
PEXExV3n1ekkFZWuWWEuBS23NIxAhT9vxldxhXvcera9sSraqVo+hmyV6CSmorTo
GGSnw6xQjA/3NOFi2w94iIEivvSWeSj/6zTPVq9UgNYeXUadr2OGfYepiQ0wdMNG
R7W4oRQFYfMEZc3I55ijZRr9ixB6IBeOJ/JpeN3PTynIqh+vhWQQXC3rYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE7VRqFpvRmHakaCjpC6tp6wAFgAMB8GA1UdIwQY
MBaAFJEkLZdpt1k0nIAYyQhzblTf/Ay1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1NRdGwybTNXVFNjZ0JqSkNITnVWTl84RExVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xYzNiMjAtYzk2Ni00ODQwLThiZTIt
MmUxMGExZTcxOThlLzEvVHRWR29XbTlHWWRxUm9LT2tMcTJuckFBV0FBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8xYzNiMjAtYzk2Ni00ODQwLThiZTItMmUxMGExZTcxOThl
LzEva1NRdGwybTNXVFNjZ0JqSkNITnVWTl84RExVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufk3MA0G
CSqGSIb3DQEBCwUAA4IBAQBEJeEc4d/5B821/MItBMTnS/lfZhLxnwu/1XvudkA1
9OpTu5YBwHaSuOCoOX62Iw+lRJQ/0fJuQnhzkwaisGU0W2xzrrUKJ1YXKTBbUVde
fhIuxj/+t7G3HRQdLEgWLfp+d6qqh0A5WQX/ZaM4P9XA+k1NonsENMbHxk0bZHFh
c21UDqXK4FqufChdoKCAJ1w2ZINR/GAFgsLTkU042ZPgvljnDfva9vAK3iBNYvQX
iBnXUjzodUKRHzmxsxGcCRkTZDUg9yFCZkUbev5SQKCe5mvpKrqUJcbtybrxZqwk
x+t+UmJeGEEtN+2E3E9JVfB2JhDJVJVYcpOwCgh7JXT1
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:46 2023 by rpki-client on console-fra.rpki-client.org