Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/gYpptT8Ra9dRe8OfwEsM5kNvvb4.roa
File: gYpptT8Ra9dRe8OfwEsM5kNvvb4.roa (raw, json)
Hash identifier: lAFaigCKK7Rjy9kvoP4cKER8TEhWIzAz7QTF91kkVu0=
Subject key identifier: 81:8A:69:B5:3F:11:6B:D7:51:7B:C3:9F:C0:4B:0C:E6:43:6F:BD:BE
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 01856D941156FF6133B44D0B93A1655F91F1
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/gYpptT8Ra9dRe8OfwEsM5kNvvb4.roa
Signing time: Sun 01 Jan 2023 13:44:58 +0000
ROA not before: Sun 01 Jan 2023 13:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38337
IP address blocks: 85.158.149.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:94:11:56:ff:61:33:b4:4d:0b:93:a1:65:5f:91:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 1 13:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=818a69b53f116bd7517bc39fc04b0ce6436fbdbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:2a:f2:00:43:cb:c8:0f:eb:82:73:d0:17:c7:
17:61:95:69:02:1b:02:27:95:72:17:12:85:c3:71:
24:14:88:e7:73:00:c7:39:7e:15:96:2f:ff:8c:ab:
34:8b:3a:d5:d4:af:2b:3d:e5:61:d9:6d:8e:83:d9:
b5:db:d8:71:d5:b2:87:eb:4e:35:8e:0e:fe:24:a1:
49:eb:b0:e3:4c:dd:6d:6d:16:a2:26:c2:cd:d0:18:
20:ca:27:12:cf:9a:97:f8:2c:f7:a7:89:ca:c6:e6:
ce:06:a5:3e:2c:b9:dd:5a:1b:4f:c7:77:cd:81:58:
dd:58:d6:7e:24:a8:c7:2c:08:42:34:f4:99:dd:9e:
56:47:32:bd:8f:bb:d5:42:2f:5e:6e:db:da:f2:6b:
0b:14:2e:10:26:68:13:ce:16:c2:28:6c:61:aa:e2:
2d:47:52:93:22:4b:50:1d:3d:34:14:65:c1:e2:d2:
f0:99:fa:92:72:58:af:41:fb:7d:0a:a0:df:66:a9:
01:fa:0f:b7:00:be:17:f2:c6:2b:61:38:c4:f0:34:
93:78:9b:42:b6:84:01:94:8d:f0:78:05:b7:00:35:
6b:fc:a8:bc:62:0e:bb:a9:a6:13:7e:a5:a1:33:4c:
c8:42:58:f6:f2:02:69:ef:64:04:8e:26:7b:1c:0f:
b8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8A:69:B5:3F:11:6B:D7:51:7B:C3:9F:C0:4B:0C:E6:43:6F:BD:BE
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/gYpptT8Ra9dRe8OfwEsM5kNvvb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.149.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:ad:b3:bd:8f:44:f2:e8:e1:dc:6c:90:5f:17:09:b2:f2:de:
9f:f8:5b:10:2b:f1:10:af:fd:fd:27:ac:96:c1:24:0a:5e:a3:
93:28:02:78:ee:75:17:1b:80:f4:6a:0f:af:76:73:43:62:bc:
be:1f:3e:2f:c9:ad:b5:dc:d9:43:f2:06:90:cc:3e:89:22:89:
1c:a7:d3:29:25:67:30:1c:c8:3b:f9:a1:63:9d:ea:fd:f2:9c:
4e:16:39:ff:cb:a7:2a:a7:a6:72:bc:d2:ef:5b:9c:73:28:61:
ff:9e:b9:97:69:19:b1:ea:77:90:d5:e7:31:78:54:8c:59:eb:
f7:ad:79:ca:08:66:33:f7:8d:59:df:67:a0:94:2a:4b:6d:84:
26:bf:52:41:65:dc:ee:55:d9:22:52:15:5f:99:c9:69:d6:aa:
38:3f:37:c8:9c:60:1d:79:5a:a6:69:bc:7e:b9:15:16:0e:79:
87:63:48:69:3c:17:79:52:fe:f6:d3:30:06:6d:fb:d0:46:85:
38:e5:43:31:46:3b:7e:6c:d6:f3:e3:c0:c3:c6:ae:a0:a3:b4:
28:3e:ee:92:01:8d:42:a0:f4:b0:bf:38:e0:e6:9e:03:8f:f5:
56:ef:60:ae:66:9a:3e:de:14:d6:83:9d:aa:f6:1a:4c:10:0e:
76:f1:f4:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtlBFW/2EztE0Lk6FlX5HxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjMwMTAxMTM0NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MThhNjliNTNmMTE2YmQ3NTE3YmMzOWZjMDRiMGNlNjQzNmZiZGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjCryAEPLyA/rgnPQF8cXYZVpAhsC
J5VyFxKFw3EkFIjncwDHOX4Vli//jKs0izrV1K8rPeVh2W2Og9m129hx1bKH6041
jg7+JKFJ67DjTN1tbRaiJsLN0BggyicSz5qX+Cz3p4nKxubOBqU+LLndWhtPx3fN
gVjdWNZ+JKjHLAhCNPSZ3Z5WRzK9j7vVQi9ebtva8msLFC4QJmgTzhbCKGxhquIt
R1KTIktQHT00FGXB4tLwmfqSclivQft9CqDfZqkB+g+3AL4X8sYrYTjE8DSTeJtC
toQBlI3weAW3ADVr/Ki8Yg67qaYTfqWhM0zIQlj28gJp72QEjiZ7HA+4CwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIGKabU/EWvXUXvDn8BLDOZDb72+MB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvZ1lwcHRUOFJhOWRSZThPZndFc001a052dmI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVZ6VMA0G
CSqGSIb3DQEBCwUAA4IBAQB8rbO9j0Ty6OHcbJBfFwmy8t6f+FsQK/EQr/39J6yW
wSQKXqOTKAJ47nUXG4D0ag+vdnNDYry+Hz4vya213NlD8gaQzD6JIokcp9MpJWcw
HMg7+aFjner98pxOFjn/y6cqp6ZyvNLvW5xzKGH/nrmXaRmx6neQ1ecxeFSMWev3
rXnKCGYz941Z32eglCpLbYQmv1JBZdzuVdkiUhVfmclp1qo4PzfInGAdeVqmabx+
uRUWDnmHY0hpPBd5Uv720zAGbfvQRoU45UMxRjt+bNbz48DDxq6go7QoPu6SAY1C
oPSwvzjg5p4Dj/VW72CuZpo+3hTWg52q9hpMEA528fRh
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:01 2023 by rpki-client on console-fra.rpki-client.org