Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/idSRzcKosRDVJVzCch0TEAPWkLw.roa
File: idSRzcKosRDVJVzCch0TEAPWkLw.roa (raw, json)
Hash identifier: x+mlxccqwPQ4fmtjDS0fVishiXMdqZy/3ZXhvKeeWUE=
Subject key identifier: 89:D4:91:CD:C2:A8:B1:10:D5:25:5C:C2:72:1D:13:10:03:D6:90:BC
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0187606CE74627F89CE2890294E05BEE1ACC
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/idSRzcKosRDVJVzCch0TEAPWkLw.roa
Signing time: Sat 08 Apr 2023 10:32:42 +0000
ROA not before: Sat 08 Apr 2023 10:32:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211059
IP address blocks: 5.178.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:60:6c:e7:46:27:f8:9c:e2:89:02:94:e0:5b:ee:1a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Apr 8 10:32:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89d491cdc2a8b110d5255cc2721d131003d690bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e8:f5:b0:98:da:ce:5f:30:3d:2d:9d:55:c0:
68:da:f4:01:90:7a:9b:5a:99:f9:39:2d:25:64:68:
cb:64:65:f5:5d:4e:3c:91:85:2d:cc:9e:45:42:7b:
82:f9:43:bd:58:91:3e:a9:40:d0:d0:c4:85:fe:c9:
6b:2c:0f:41:62:e1:31:fb:f6:36:7f:cc:d3:b9:65:
e3:f1:d3:70:f6:1f:5a:b5:cd:a7:bf:7d:65:1c:6e:
08:41:f6:52:c0:40:00:46:43:f1:2e:e5:60:91:2c:
c1:f5:c4:f8:90:5e:33:3b:2a:84:d8:be:fa:6f:60:
af:56:2d:22:c3:e3:20:2f:00:ba:c0:17:2b:bc:90:
2a:7d:1e:64:59:4f:db:91:98:f5:29:d5:7f:15:c8:
05:88:61:b6:c7:64:03:ac:b7:ef:03:ab:0b:76:c9:
61:f6:68:70:e7:46:66:ae:ab:8e:75:da:9d:ec:33:
2f:8d:d2:15:78:be:c0:b2:30:02:4f:82:54:d1:d8:
3b:53:c1:bb:dc:d3:c7:e4:86:cd:bc:5b:a4:b4:3e:
e5:d8:d3:54:38:61:7e:11:13:70:5c:bd:c6:f5:84:
24:15:80:4d:bc:43:6e:2b:03:7a:24:f9:c4:f5:c2:
04:0a:b6:c3:35:9d:5b:a6:61:bd:96:5a:71:fa:e0:
2d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D4:91:CD:C2:A8:B1:10:D5:25:5C:C2:72:1D:13:10:03:D6:90:BC
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/idSRzcKosRDVJVzCch0TEAPWkLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.1.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:95:ec:37:23:2d:18:8e:b2:30:da:b4:25:e7:7c:d3:bb:e4:
a4:1d:5b:29:53:58:0e:15:43:60:ea:fc:a9:72:a3:73:7b:c9:
ae:c3:b0:4e:7c:34:e1:f7:85:f0:d3:09:11:31:94:b0:a6:33:
28:8c:d8:46:b1:d7:b0:59:70:94:7e:86:cb:f2:a6:3e:68:dc:
3f:2d:64:47:41:97:33:9f:ea:b2:ed:df:4a:5c:25:52:8f:73:
fe:f9:36:f8:38:d4:ad:80:b5:4c:24:1a:73:f1:eb:14:0d:4a:
ea:a6:52:38:b6:7e:0a:fe:49:88:ef:14:73:a4:40:bd:d3:8c:
98:c8:da:9d:e9:35:c4:18:22:36:3f:77:38:30:9d:62:16:0b:
83:38:c4:ca:5b:1f:14:41:77:37:d8:f3:84:28:19:9d:11:c2:
db:0e:e9:86:cc:77:07:70:34:a7:ce:ef:73:52:a2:ba:95:d7:
c5:3a:40:3a:cf:68:91:21:c3:95:22:e9:68:e4:17:ac:27:d7:
28:37:eb:7b:81:0f:a2:e5:e9:9c:d3:79:ea:87:fc:9e:7a:7a:
69:b8:2e:81:55:19:52:ed:f1:ef:28:8a:25:6c:7d:12:40:7e:
ad:7c:4d:98:b2:4b:c2:83:a7:b2:28:9b:3f:f7:27:f0:6a:46:
f2:7d:9d:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdgbOdGJ/ic4okClOBb7hrMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjMwNDA4MTAzMjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWQ0OTFjZGMyYThiMTEwZDUyNTVjYzI3MjFkMTMxMDAzZDY5MGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh+j1sJjazl8wPS2dVcBo2vQBkHqb
Wpn5OS0lZGjLZGX1XU48kYUtzJ5FQnuC+UO9WJE+qUDQ0MSF/slrLA9BYuEx+/Y2
f8zTuWXj8dNw9h9atc2nv31lHG4IQfZSwEAARkPxLuVgkSzB9cT4kF4zOyqE2L76
b2CvVi0iw+MgLwC6wBcrvJAqfR5kWU/bkZj1KdV/FcgFiGG2x2QDrLfvA6sLdslh
9mhw50ZmrquOddqd7DMvjdIVeL7AsjACT4JU0dg7U8G73NPH5IbNvFuktD7l2NNU
OGF+ERNwXL3G9YQkFYBNvENuKwN6JPnE9cIECrbDNZ1bpmG9llpx+uAtVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFInUkc3CqLEQ1SVcwnIdExAD1pC8MB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvaWRTUnpjS29zUkRWSlZ6Q2NoMFRFQVBXa0x3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbIBMA0G
CSqGSIb3DQEBCwUAA4IBAQBulew3Iy0YjrIw2rQl53zTu+SkHVspU1gOFUNg6vyp
cqNze8muw7BOfDTh94Xw0wkRMZSwpjMojNhGsdewWXCUfobL8qY+aNw/LWRHQZcz
n+qy7d9KXCVSj3P++Tb4ONStgLVMJBpz8esUDUrqplI4tn4K/kmI7xRzpEC904yY
yNqd6TXEGCI2P3c4MJ1iFguDOMTKWx8UQXc32POEKBmdEcLbDumGzHcHcDSnzu9z
UqK6ldfFOkA6z2iRIcOVIulo5BesJ9coN+t7gQ+i5emc03nqh/yeenppuC6BVRlS
7fHvKIolbH0SQH6tfE2YskvCg6eyKJs/9yfwakbyfZ1S
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:01 2023 by rpki-client on console-fra.rpki-client.org