Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/23aTqvQaJyQElfu22KzCl9JQcgw.roa
File: 23aTqvQaJyQElfu22KzCl9JQcgw.roa (raw, json)
Hash identifier: qsD96tZm6g+AbD1LpEL7bJbuYqngIGBJ6tV6+8WZk/g=
Subject key identifier: DB:76:93:AA:F4:1A:27:24:04:95:FB:B6:D8:AC:C2:97:D2:50:72:0C
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 0188C0FAD5F1D6922EAAC6879EFEAC5DF7B4
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/23aTqvQaJyQElfu22KzCl9JQcgw.roa
Signing time: Thu 15 Jun 2023 21:34:04 +0000
ROA not before: Thu 15 Jun 2023 21:34:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 185.155.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Jul 2023 09:37:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c0:fa:d5:f1:d6:92:2e:aa:c6:87:9e:fe:ac:5d:f7:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Jun 15 21:34:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db7693aaf41a27240495fbb6d8acc297d250720c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ea:5e:af:69:46:6e:c5:0d:cd:53:75:62:84:
ab:f2:10:5a:78:e2:93:d5:47:5b:0d:23:4e:19:e2:
a5:11:1a:f2:8e:65:85:cf:bf:f8:e9:cb:b8:32:13:
17:86:50:96:ed:4b:46:f4:a7:97:4a:d9:8d:d7:ba:
6a:85:2f:69:cb:46:fa:1d:ec:e6:15:36:08:3c:19:
96:39:30:54:83:02:6d:c8:a5:2c:ff:02:09:c6:51:
5e:ff:ea:38:27:40:2c:f6:1b:0c:db:f8:78:4c:e9:
06:80:75:01:c2:98:d7:2f:b8:96:f9:74:88:8b:3f:
91:c5:4f:99:fb:0c:09:31:c9:52:e3:f5:51:a6:6e:
01:10:62:a4:2d:75:49:14:55:a8:22:07:36:b6:ba:
16:77:ec:f4:cb:01:4e:e3:79:b3:72:a9:25:8a:42:
88:c8:ed:63:0a:fc:16:8b:67:d5:0e:ce:68:73:50:
18:59:69:42:40:18:27:f5:1e:e3:bb:c2:80:01:9d:
9c:42:61:85:b3:dd:3c:de:09:90:e5:e4:12:55:82:
1d:da:0f:ab:8d:aa:fb:c1:9a:7b:41:b9:e0:90:e2:
51:d2:51:b8:af:d1:2a:0f:b7:9c:df:8e:dd:ec:fc:
dd:a3:cb:c9:9b:b9:f2:68:74:11:ee:5c:b4:c6:80:
7a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:76:93:AA:F4:1A:27:24:04:95:FB:B6:D8:AC:C2:97:D2:50:72:0C
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/23aTqvQaJyQElfu22KzCl9JQcgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.232.0/24
Signature Algorithm: sha256WithRSAEncryption
73:cf:5c:d4:a5:84:d9:74:af:92:90:52:53:99:8f:e9:98:88:
25:36:c2:d3:33:1a:bf:74:47:af:c7:80:53:74:e5:35:2b:d9:
c1:f0:e5:3f:a8:9e:5a:37:8c:b1:04:0c:de:1f:1c:aa:87:3e:
ce:49:f5:33:d0:5f:39:59:f4:16:5d:f0:28:ce:0e:f2:40:6b:
a9:74:fc:15:39:da:e6:07:32:87:a9:74:cd:a6:3f:6d:24:cd:
48:f0:37:b0:a6:ff:d9:bd:12:cc:54:cf:32:5f:3f:b2:a7:e3:
95:cb:de:52:9e:29:37:32:84:84:22:f7:d7:25:16:50:58:4d:
d3:f4:1b:64:5d:46:16:c1:ff:02:fb:88:9a:8a:34:e2:1b:f7:
79:8c:e0:dd:4d:81:ba:2b:f9:54:2a:a7:f4:76:5e:b4:e5:d9:
ab:2e:12:e1:1a:10:db:ae:36:4e:55:be:9e:ad:a6:15:65:38:
98:11:b3:86:8e:e5:08:df:d1:ab:1d:eb:4d:3c:13:75:62:cd:
60:bb:42:1e:f6:d0:01:64:80:dd:be:5f:51:5d:57:23:04:1b:
56:bc:be:73:16:5e:a7:a0:7f:25:37:c0:49:6e:2e:c4:21:4c:
dc:a3:d2:b7:92:3d:12:eb:f1:a7:1d:b6:0a:b1:bb:31:94:6f:
28:39:39:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjA+tXx1pIuqsaHnv6sXfe0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MTdjOWRlOTI3ZmE3NWJlYWVmNzg4NWYwZDg4ZjZmNGQy
YTBlZDYwHhcNMjMwNjE1MjEzNDA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjc2OTNhYWY0MWEyNzI0MDQ5NWZiYjZkOGFjYzI5N2QyNTA3MjBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuper2lGbsUNzVN1YoSr8hBaeOKT
1UdbDSNOGeKlERryjmWFz7/46cu4MhMXhlCW7UtG9KeXStmN17pqhS9py0b6Hezm
FTYIPBmWOTBUgwJtyKUs/wIJxlFe/+o4J0As9hsM2/h4TOkGgHUBwpjXL7iW+XSI
iz+RxU+Z+wwJMclS4/VRpm4BEGKkLXVJFFWoIgc2troWd+z0ywFO43mzcqklikKI
yO1jCvwWi2fVDs5oc1AYWWlCQBgn9R7ju8KAAZ2cQmGFs9083gmQ5eQSVYId2g+r
jar7wZp7QbngkOJR0lG4r9EqD7ec347d7Pzdo8vJm7nyaHQR7ly0xoB6oQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNt2k6r0GickBJX7ttiswpfSUHIMMB8GA1UdIwQY
MBaAFDUXyd6Sf6db6u94hfDYj29NKg7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlJmSjNwSl9wMXZxNzNpRjhOaVBiMDBxRHRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy85NTRhZGUtODRiNy00NDZkLWE2ZTIt
ZmQzYjMwMDJjMGJiLzEvMjNhVHF2UWFKeVFFbGZ1MjJLekNsOUpRY2d3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy85NTRhZGUtODRiNy00NDZkLWE2ZTItZmQzYjMwMDJjMGJi
LzEvTlJmSjNwSl9wMXZxNzNpRjhOaVBiMDBxRHRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZvoMA0G
CSqGSIb3DQEBCwUAA4IBAQBzz1zUpYTZdK+SkFJTmY/pmIglNsLTMxq/dEevx4BT
dOU1K9nB8OU/qJ5aN4yxBAzeHxyqhz7OSfUz0F85WfQWXfAozg7yQGupdPwVOdrm
BzKHqXTNpj9tJM1I8Dewpv/ZvRLMVM8yXz+yp+OVy95Snik3MoSEIvfXJRZQWE3T
9BtkXUYWwf8C+4iaijTiG/d5jODdTYG6K/lUKqf0dl605dmrLhLhGhDbrjZOVb6e
raYVZTiYEbOGjuUI39GrHetNPBN1Ys1gu0Ie9tABZIDdvl9RXVcjBBtWvL5zFl6n
oH8lN8BJbi7EIUzco9K3kj0S6/GnHbYKsbsxlG8oOTn+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:51 2024 by rpki-client on console-fra.rpki-client.org