Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/cc8200-ec37-4394-9264-e926159044e9/1/1xKBvdd4TjJVVVCMk3GWh_Q39yI.roa
File: 1xKBvdd4TjJVVVCMk3GWh_Q39yI.roa (raw, json)
Hash identifier: RhcQD43iuiyrrBV02u9ID/8+JqcIiEfKM2Cg8WwBRAw=
Subject key identifier: D7:12:81:BD:D7:78:4E:32:55:55:50:8C:93:71:96:87:F4:37:F7:22
Certificate issuer: /CN=8eb72829e6f70ebe6bdb07cec8d0b855e5774f97
Certificate serial: 01857127A355806C5B751605D1B5D78218BD
Authority key identifier: 8E:B7:28:29:E6:F7:0E:BE:6B:DB:07:CE:C8:D0:B8:55:E5:77:4F:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrcoKeb3Dr5r2wfOyNC4VeV3T5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/cc8200-ec37-4394-9264-e926159044e9/1/1xKBvdd4TjJVVVCMk3GWh_Q39yI.roa
Signing time: Mon 02 Jan 2023 06:25:01 +0000
ROA not before: Mon 02 Jan 2023 06:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:a3:55:80:6c:5b:75:16:05:d1:b5:d7:82:18:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eb72829e6f70ebe6bdb07cec8d0b855e5774f97
Validity
Not Before: Jan 2 06:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d71281bdd7784e325555508c93719687f437f722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:dd:34:eb:53:6b:21:f9:8d:9f:a0:9e:db:b2:
93:02:21:31:6c:02:6c:e1:56:02:a1:f5:62:94:6c:
73:0b:9f:fc:f3:43:7e:8a:54:6e:12:5f:d3:8b:f9:
76:07:25:19:c0:c2:be:23:c7:7a:07:11:96:1d:c8:
4e:8d:c1:23:c9:a8:f8:8c:4b:cc:05:3e:d3:4c:c8:
17:16:dd:7e:76:07:05:57:ae:56:75:4a:7f:11:63:
d7:e1:6a:a2:53:07:52:03:fe:93:62:57:34:fe:61:
42:e2:6d:53:62:0e:22:64:2d:05:ce:fd:dd:f7:5c:
62:bd:30:74:e2:af:a2:7e:f0:1d:78:93:8f:bb:aa:
f7:62:a7:5d:59:1c:0c:1c:46:e1:e9:37:2c:fe:57:
35:d8:87:c7:f0:50:f9:17:68:75:cc:c7:75:83:8a:
46:57:8f:47:a5:05:37:dc:42:15:27:38:9f:09:73:
eb:ac:3c:b0:d6:68:a9:62:bb:f4:fe:e9:7c:c4:d1:
01:6c:ed:68:90:66:de:31:45:45:60:89:e4:fd:c8:
ec:3a:99:0b:64:bb:ab:59:18:2a:a8:5c:b0:7a:01:
59:79:de:f1:a2:5c:8b:65:0c:d1:70:71:6a:b2:d6:
1f:75:39:5c:0d:09:18:54:53:81:d6:ff:36:e3:5a:
1f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:12:81:BD:D7:78:4E:32:55:55:50:8C:93:71:96:87:F4:37:F7:22
X509v3 Authority Key Identifier:
keyid:8E:B7:28:29:E6:F7:0E:BE:6B:DB:07:CE:C8:D0:B8:55:E5:77:4F:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrcoKeb3Dr5r2wfOyNC4VeV3T5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cc8200-ec37-4394-9264-e926159044e9/1/1xKBvdd4TjJVVVCMk3GWh_Q39yI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cc8200-ec37-4394-9264-e926159044e9/1/jrcoKeb3Dr5r2wfOyNC4VeV3T5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.229.0/24
Signature Algorithm: sha256WithRSAEncryption
86:5e:86:fd:0c:45:d4:d9:b2:db:b0:93:b1:6b:f8:ed:07:e3:
d3:2f:e3:e5:be:c7:38:5f:b0:29:c6:e4:20:24:a3:e5:6d:ca:
c4:46:72:36:c0:9f:35:3e:f7:5f:cf:35:d3:87:90:2d:60:ff:
df:3e:29:2a:d4:ec:f7:b9:c2:7d:20:67:d8:9d:90:5a:31:28:
3f:40:e9:9e:58:4c:e2:56:38:89:95:74:bf:30:d0:08:29:c2:
53:1c:b0:81:82:61:ec:39:0e:1a:7d:38:8e:79:39:10:cd:30:
d1:53:67:ef:da:90:94:19:20:9d:06:30:66:a1:f9:ae:8b:41:
fa:99:7b:72:d7:ca:24:db:37:ae:bc:4b:35:33:16:b2:86:4c:
12:91:9b:f9:b1:77:77:89:13:9d:3c:04:d0:85:34:01:3d:de:
cf:11:fc:96:b6:18:a8:94:94:cd:a2:14:ab:0a:3c:b1:ea:11:
2a:66:06:78:77:22:c9:6c:27:af:24:4b:55:a9:ac:c2:3a:b9:
f5:ef:5b:72:38:87:e2:b4:b8:ca:ed:b0:3b:14:4d:aa:a4:c7:
6a:b0:0b:a6:58:04:d7:1d:c4:28:d7:0b:31:b3:86:76:ec:98:
d7:aa:e2:e7:24:53:11:96:9a:8b:29:af:c3:5f:3c:37:ae:d8:
c2:12:86:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxJ6NVgGxbdRYF0bXXghi9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlYjcyODI5ZTZmNzBlYmU2YmRiMDdjZWM4ZDBiODU1ZTU3
NzRmOTcwHhcNMjMwMTAyMDYyNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzEyODFiZGQ3Nzg0ZTMyNTU1NTUwOGM5MzcxOTY4N2Y0MzdmNzIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgt0061NrIfmNn6Ce27KTAiExbAJs
4VYCofVilGxzC5/880N+ilRuEl/Ti/l2ByUZwMK+I8d6BxGWHchOjcEjyaj4jEvM
BT7TTMgXFt1+dgcFV65WdUp/EWPX4WqiUwdSA/6TYlc0/mFC4m1TYg4iZC0Fzv3d
91xivTB04q+ifvAdeJOPu6r3YqddWRwMHEbh6Tcs/lc12IfH8FD5F2h1zMd1g4pG
V49HpQU33EIVJzifCXPrrDyw1mipYrv0/ul8xNEBbO1okGbeMUVFYInk/cjsOpkL
ZLurWRgqqFywegFZed7xolyLZQzRcHFqstYfdTlcDQkYVFOB1v8241ofQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNcSgb3XeE4yVVVQjJNxlof0N/ciMB8GA1UdIwQY
MBaAFI63KCnm9w6+a9sHzsjQuFXld0+XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanJjb0tlYjNEcjVyMndmT3lOQzRWZVYzVDVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9jYzgyMDAtZWMzNy00Mzk0LTkyNjQt
ZTkyNjE1OTA0NGU5LzEvMXhLQnZkZDRUakpWVlZDTWszR1doX1EzOXlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9jYzgyMDAtZWMzNy00Mzk0LTkyNjQtZTkyNjE1OTA0NGU5
LzEvanJjb0tlYjNEcjVyMndmT3lOQzRWZVYzVDVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhPlMA0G
CSqGSIb3DQEBCwUAA4IBAQCGXob9DEXU2bLbsJOxa/jtB+PTL+Plvsc4X7ApxuQg
JKPlbcrERnI2wJ81PvdfzzXTh5AtYP/fPikq1Oz3ucJ9IGfYnZBaMSg/QOmeWEzi
VjiJlXS/MNAIKcJTHLCBgmHsOQ4afTiOeTkQzTDRU2fv2pCUGSCdBjBmofmui0H6
mXty18ok2zeuvEs1MxayhkwSkZv5sXd3iROdPATQhTQBPd7PEfyWthiolJTNohSr
Cjyx6hEqZgZ4dyLJbCevJEtVqazCOrn171tyOIfitLjK7bA7FE2qpMdqsAumWATX
HcQo1wsxs4Z27JjXquLnJFMRlpqLKa/DXzw3rtjCEob9
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:46 2023 by rpki-client on console-ams.rpki-client.org