Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9a3846-85d9-4d94-9eb0-29784d7b68a2/1/ddXv13mIIGsK4ehEaWuHJyThjVQ.roa
File: ddXv13mIIGsK4ehEaWuHJyThjVQ.roa (raw, json)
Hash identifier: WgBhypILxsN792fQ7BuiqCLh1AGAlkVKQ0NkO4KSpd0=
Subject key identifier: 75:D5:EF:D7:79:88:20:6B:0A:E1:E8:44:69:6B:87:27:24:E1:8D:54
Certificate issuer: /CN=5b70f736a4b0524a476f6f1be2964ae99b64789f
Certificate serial: 018AD6D76FD22168144A2F95D331FECA6CFA
Authority key identifier: 5B:70:F7:36:A4:B0:52:4A:47:6F:6F:1B:E2:96:4A:E9:9B:64:78:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W3D3NqSwUkpHb28b4pZK6ZtkeJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9a3846-85d9-4d94-9eb0-29784d7b68a2/1/ddXv13mIIGsK4ehEaWuHJyThjVQ.roa
Signing time: Wed 27 Sep 2023 13:32:37 +0000
ROA not before: Wed 27 Sep 2023 13:32:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25310
IP address blocks: 83.146.0.0/18 maxlen: 18
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d6:d7:6f:d2:21:68:14:4a:2f:95:d3:31:fe:ca:6c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b70f736a4b0524a476f6f1be2964ae99b64789f
Validity
Not Before: Sep 27 13:32:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75d5efd77988206b0ae1e844696b872724e18d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:36:18:91:42:8b:82:0d:da:fc:a3:1b:75:82:
1c:18:b0:be:4d:da:51:ee:c5:ed:cd:8a:e2:9d:03:
ba:b3:4d:c3:a5:07:f2:a6:4c:7a:f4:68:31:d6:63:
d8:aa:af:36:f4:98:61:47:0f:bf:0f:b7:e5:b9:96:
dd:dc:68:ef:8d:a9:06:f4:cd:7d:0f:8c:01:73:29:
6b:56:10:ed:78:89:05:22:f5:f4:ab:c5:35:f9:6a:
8f:7a:cd:5e:8b:67:ee:0f:01:27:10:24:ce:3a:5c:
ea:2c:5a:2e:57:4d:fc:a2:fc:5f:fc:ac:fb:a0:16:
45:97:d3:1b:dd:b2:40:fb:64:7d:a2:e9:0b:27:47:
ca:9c:e9:0d:67:c0:cf:dc:2d:76:6a:7f:8d:43:83:
cd:98:32:a1:af:06:8b:6d:6b:28:61:a4:9b:96:ea:
1c:e5:6d:63:45:8c:17:17:5c:97:77:70:e8:59:09:
4b:ba:51:23:35:c1:4f:e3:29:f1:48:93:b7:5c:56:
f0:d2:d5:1f:8e:1f:25:41:7a:cf:4d:67:b1:a0:c6:
bb:d7:03:b0:0f:b1:54:9d:86:ad:bc:fd:c6:a5:04:
0a:b6:22:a8:83:de:c3:3c:81:c7:aa:e2:81:df:19:
e4:d0:b7:cc:92:fd:e7:da:a2:5b:4c:46:5b:ec:f7:
95:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D5:EF:D7:79:88:20:6B:0A:E1:E8:44:69:6B:87:27:24:E1:8D:54
X509v3 Authority Key Identifier:
keyid:5B:70:F7:36:A4:B0:52:4A:47:6F:6F:1B:E2:96:4A:E9:9B:64:78:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W3D3NqSwUkpHb28b4pZK6ZtkeJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9a3846-85d9-4d94-9eb0-29784d7b68a2/1/ddXv13mIIGsK4ehEaWuHJyThjVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9a3846-85d9-4d94-9eb0-29784d7b68a2/1/W3D3NqSwUkpHb28b4pZK6ZtkeJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.146.0.0/18
Signature Algorithm: sha256WithRSAEncryption
c1:8e:01:6c:c1:9b:f2:18:4f:3d:c0:e0:29:9a:27:29:83:83:
f8:53:6d:04:6a:ac:fe:c4:35:bf:18:ca:d1:a7:bb:db:d1:9b:
d1:d7:e8:58:08:b8:04:5f:bf:4a:c0:86:cb:76:f6:d5:bd:ad:
cd:40:fc:2d:fa:b6:f4:97:36:21:af:42:58:8f:b4:65:26:17:
f2:2e:69:55:4e:ce:dd:c8:9c:98:f7:33:f3:ab:fc:c1:a2:6d:
1e:99:bc:d7:68:55:b7:1e:c2:6c:fc:ea:d5:27:80:e3:8f:c5:
66:6e:34:5a:28:35:bc:07:7a:c7:a0:ed:0a:88:14:02:b3:df:
2d:82:82:f4:91:4c:fb:21:ad:23:a2:e2:94:81:bb:52:fb:4f:
68:67:39:8e:e7:1c:9d:13:4b:d8:6f:d6:eb:e9:83:d6:fd:92:
37:ee:c7:2e:3b:3f:c7:31:1c:73:75:e3:c2:56:cc:09:4d:be:
e7:be:6a:ca:88:e9:7b:2e:4e:5b:48:41:cd:4c:fc:f1:80:37:
1b:ac:e0:3c:15:2b:8b:2d:09:f3:1e:a7:96:9b:6a:fb:3b:8c:
db:fa:8c:19:54:04:8f:7d:69:94:e6:2c:7e:ea:a7:79:ec:d2:
62:a8:19:60:18:90:d7:66:c2:9f:0d:ba:12:28:44:4e:21:28:
5b:f4:32:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrW12/SIWgUSi+V0zH+ymz6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNzBmNzM2YTRiMDUyNGE0NzZmNmYxYmUyOTY0YWU5OWI2
NDc4OWYwHhcNMjMwOTI3MTMzMjM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWQ1ZWZkNzc5ODgyMDZiMGFlMWU4NDQ2OTZiODcyNzI0ZTE4ZDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkTYYkUKLgg3a/KMbdYIcGLC+TdpR
7sXtzYrinQO6s03DpQfypkx69Ggx1mPYqq829JhhRw+/D7fluZbd3GjvjakG9M19
D4wBcylrVhDteIkFIvX0q8U1+WqPes1ei2fuDwEnECTOOlzqLFouV038ovxf/Kz7
oBZFl9Mb3bJA+2R9oukLJ0fKnOkNZ8DP3C12an+NQ4PNmDKhrwaLbWsoYaSbluoc
5W1jRYwXF1yXd3DoWQlLulEjNcFP4ynxSJO3XFbw0tUfjh8lQXrPTWexoMa71wOw
D7FUnYatvP3GpQQKtiKog97DPIHHquKB3xnk0LfMkv3n2qJbTEZb7PeVbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHXV79d5iCBrCuHoRGlrhyck4Y1UMB8GA1UdIwQY
MBaAFFtw9zaksFJKR29vG+KWSumbZHifMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzNEM05xU3dVa3BIYjI4YjRwWks2WnRrZUo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85YTM4NDYtODVkOS00ZDk0LTllYjAt
Mjk3ODRkN2I2OGEyLzEvZGRYdjEzbUlJR3NLNGVoRWFXdUhKeVRoalZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC85YTM4NDYtODVkOS00ZDk0LTllYjAtMjk3ODRkN2I2OGEy
LzEvVzNEM05xU3dVa3BIYjI4YjRwWks2WnRrZUo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGU5IAMA0G
CSqGSIb3DQEBCwUAA4IBAQDBjgFswZvyGE89wOApmicpg4P4U20Eaqz+xDW/GMrR
p7vb0ZvR1+hYCLgEX79KwIbLdvbVva3NQPwt+rb0lzYhr0JYj7RlJhfyLmlVTs7d
yJyY9zPzq/zBom0embzXaFW3HsJs/OrVJ4Djj8VmbjRaKDW8B3rHoO0KiBQCs98t
goL0kUz7Ia0jouKUgbtS+09oZzmO5xydE0vYb9br6YPW/ZI37scuOz/HMRxzdePC
VswJTb7nvmrKiOl7Lk5bSEHNTPzxgDcbrOA8FSuLLQnzHqeWm2r7O4zb+owZVASP
fWmU5ix+6qd57NJiqBlgGJDXZsKfDboSKEROIShb9DKJ
Generated at Wed Sep 27 14:52:23 2023 by rpki-client on console-fra.rpki-client.org