Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/434d6f-daef-46f2-a920-08c784aa6ebe/1/ToahHJOUkpCiWGMV34HoA1r8Io4.roa
File: ToahHJOUkpCiWGMV34HoA1r8Io4.roa (raw, json)
Hash identifier: +cF6ZlwmRiz940gdbQmaiJ/hS3oKmbfPeEtRcJ58df4=
Subject key identifier: 4E:86:A1:1C:93:94:92:90:A2:58:63:15:DF:81:E8:03:5A:FC:22:8E
Certificate issuer: /CN=f1969c845a752b92213710fc712eea8111d27b04
Certificate serial: 01856CB865909282CF2E947AD028C9E955D2
Authority key identifier: F1:96:9C:84:5A:75:2B:92:21:37:10:FC:71:2E:EA:81:11:D2:7B:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8ZachFp1K5IhNxD8cS7qgRHSewQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/434d6f-daef-46f2-a920-08c784aa6ebe/1/ToahHJOUkpCiWGMV34HoA1r8Io4.roa
Signing time: Sun 01 Jan 2023 09:45:01 +0000
ROA not before: Sun 01 Jan 2023 09:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.151.145.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:65:90:92:82:cf:2e:94:7a:d0:28:c9:e9:55:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1969c845a752b92213710fc712eea8111d27b04
Validity
Not Before: Jan 1 09:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e86a11c93949290a2586315df81e8035afc228e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:77:9c:ee:75:91:00:ba:3a:39:f4:44:d6:4f:
dd:fa:d0:77:2e:5d:c1:6f:1c:c3:1b:de:0a:ad:b3:
00:f6:07:4e:96:a5:e0:46:a3:9c:ea:b1:81:84:3a:
6b:51:18:2a:b5:70:04:b1:99:c8:e7:d6:d5:6c:07:
4c:a5:86:4b:7a:b0:e9:a9:a3:a3:75:6c:21:53:fc:
f5:e2:ce:f4:c2:66:c3:43:8e:10:b0:b2:7d:fa:09:
97:20:6d:38:a9:58:29:0b:89:b0:b7:8e:fc:d0:f8:
89:f2:6b:12:f6:f4:f1:07:60:f6:98:8d:e6:20:4b:
72:81:31:0f:bb:a5:41:1f:0c:ce:77:90:12:d5:c0:
53:de:2b:9e:3f:d4:43:d3:e9:60:75:c2:64:c5:01:
35:a2:61:86:fc:cd:8f:90:f5:34:3f:f6:c4:60:0a:
1c:fa:d5:d5:dd:ef:d0:cc:21:4d:70:ea:b3:9a:a2:
e8:15:c0:1b:b2:a0:10:cd:9b:3e:8a:e8:c7:23:f9:
65:11:c5:a6:24:21:55:d0:79:4f:31:b1:69:aa:2a:
af:17:cd:50:34:23:c3:5a:c2:ac:d0:e3:24:43:47:
11:b2:b5:da:b9:cd:df:19:f7:41:00:8e:c6:13:0e:
5f:5e:63:7c:8d:53:76:a7:38:58:cf:bf:2d:6d:15:
45:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:86:A1:1C:93:94:92:90:A2:58:63:15:DF:81:E8:03:5A:FC:22:8E
X509v3 Authority Key Identifier:
keyid:F1:96:9C:84:5A:75:2B:92:21:37:10:FC:71:2E:EA:81:11:D2:7B:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8ZachFp1K5IhNxD8cS7qgRHSewQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/434d6f-daef-46f2-a920-08c784aa6ebe/1/ToahHJOUkpCiWGMV34HoA1r8Io4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/434d6f-daef-46f2-a920-08c784aa6ebe/1/8ZachFp1K5IhNxD8cS7qgRHSewQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.145.0/24
Signature Algorithm: sha256WithRSAEncryption
00:a7:a1:83:d6:5a:6a:90:40:2b:ad:68:a5:0e:e5:a4:0d:69:
e4:ed:6f:b6:7e:8b:b4:8e:7e:4b:8e:96:aa:cd:42:a7:74:88:
cf:14:3b:c8:e6:14:ea:07:30:15:96:b0:fd:d2:64:36:fe:78:
7d:41:32:2d:74:5f:0b:44:2b:6b:37:e3:04:8d:0d:a8:d1:2f:
ac:8b:ad:9a:c4:b2:e8:ec:cc:50:b1:e9:1c:0a:b1:82:48:91:
72:69:5a:4e:29:68:29:6a:e3:de:bd:6f:49:4a:5d:29:64:86:
0a:04:69:82:ec:4a:17:17:96:49:d4:2d:74:d3:e1:b3:5a:d8:
e0:d6:c8:6a:89:f7:ff:8b:0c:9b:bd:f8:8a:4e:68:fd:bd:51:
8a:bf:ea:f4:2f:32:f1:1e:69:09:c9:4c:88:db:5f:29:df:07:
e8:5e:5b:ac:1e:c3:a0:42:a2:d7:f6:42:b4:2f:f1:e5:ac:c7:
ae:ed:cc:f4:19:39:2d:44:28:a6:4d:d4:76:90:2d:10:4d:16:
8b:06:8e:1f:62:b7:ac:c0:cd:7a:25:14:9b:0d:43:6b:cf:e2:
6a:2b:f9:57:47:ac:43:86:aa:3a:6a:e0:2c:1b:3b:4c:20:65:
9d:f7:99:24:d8:4f:71:58:b4:2c:fd:31:60:ff:0b:dd:6b:f3:
be:fa:62:ae
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsuGWQkoLPLpR60CjJ6VXSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxOTY5Yzg0NWE3NTJiOTIyMTM3MTBmYzcxMmVlYTgxMTFk
MjdiMDQwHhcNMjMwMTAxMDk0NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTg2YTExYzkzOTQ5MjkwYTI1ODYzMTVkZjgxZTgwMzVhZmMyMjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgnec7nWRALo6OfRE1k/d+tB3Ll3B
bxzDG94KrbMA9gdOlqXgRqOc6rGBhDprURgqtXAEsZnI59bVbAdMpYZLerDpqaOj
dWwhU/z14s70wmbDQ44QsLJ9+gmXIG04qVgpC4mwt4780PiJ8msS9vTxB2D2mI3m
IEtygTEPu6VBHwzOd5AS1cBT3iueP9RD0+lgdcJkxQE1omGG/M2PkPU0P/bEYAoc
+tXV3e/QzCFNcOqzmqLoFcAbsqAQzZs+iujHI/llEcWmJCFV0HlPMbFpqiqvF81Q
NCPDWsKs0OMkQ0cRsrXauc3fGfdBAI7GEw5fXmN8jVN2pzhYz78tbRVF9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE6GoRyTlJKQolhjFd+B6ANa/CKOMB8GA1UdIwQY
MBaAFPGWnIRadSuSITcQ/HEu6oER0nsEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFphY2hGcDFLNUloTnhEOGNTN3FnUkhTZXdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS80MzRkNmYtZGFlZi00NmYyLWE5MjAt
MDhjNzg0YWE2ZWJlLzEvVG9haEhKT1VrcENpV0dNVjM0SG9BMXI4SW80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS80MzRkNmYtZGFlZi00NmYyLWE5MjAtMDhjNzg0YWE2ZWJl
LzEvOFphY2hGcDFLNUloTnhEOGNTN3FnUkhTZXdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZeRMA0G
CSqGSIb3DQEBCwUAA4IBAQAAp6GD1lpqkEArrWilDuWkDWnk7W+2fou0jn5Ljpaq
zUKndIjPFDvI5hTqBzAVlrD90mQ2/nh9QTItdF8LRCtrN+MEjQ2o0S+si62axLLo
7MxQsekcCrGCSJFyaVpOKWgpauPevW9JSl0pZIYKBGmC7EoXF5ZJ1C100+GzWtjg
1shqiff/iwybvfiKTmj9vVGKv+r0LzLxHmkJyUyI218p3wfoXlusHsOgQqLX9kK0
L/HlrMeu7cz0GTktRCimTdR2kC0QTRaLBo4fYreswM16JRSbDUNrz+JqK/lXR6xD
hqo6auAsGztMIGWd95kk2E9xWLQs/TFg/wvda/O++mKu
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:32 2023 by rpki-client on console-fra.rpki-client.org