Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/6ec66d-d6b6-430f-8fcb-e70a911a1c7b/1/Er5nDxNC9hr-BArbMDSEGjMN4gA.roa
File: Er5nDxNC9hr-BArbMDSEGjMN4gA.roa (raw, json)
Hash identifier: QZh0JHgduG9CtPCfYGWZ0IPUk6fNTEeYQt35kSoqnRg=
Subject key identifier: 12:BE:67:0F:13:42:F6:1A:FE:04:0A:DB:30:34:84:1A:33:0D:E2:00
Certificate issuer: /CN=c3dcb23dea58f97fad5a797b457741d5bfe6b1b0
Certificate serial: 018570D530A621C406A1026205D5BDCDF96B
Authority key identifier: C3:DC:B2:3D:EA:58:F9:7F:AD:5A:79:7B:45:77:41:D5:BF:E6:B1:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w9yyPepY-X-tWnl7RXdB1b_msbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/6ec66d-d6b6-430f-8fcb-e70a911a1c7b/1/Er5nDxNC9hr-BArbMDSEGjMN4gA.roa
Signing time: Mon 02 Jan 2023 04:54:57 +0000
ROA not before: Mon 02 Jan 2023 04:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204570
IP address blocks: 185.246.148.0/22 maxlen: 24
2a0d:8680::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:30:a6:21:c4:06:a1:02:62:05:d5:bd:cd:f9:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3dcb23dea58f97fad5a797b457741d5bfe6b1b0
Validity
Not Before: Jan 2 04:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12be670f1342f61afe040adb3034841a330de200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:71:9d:67:48:e6:9f:c7:e8:52:51:35:0e:4f:
d8:5f:72:03:93:54:f2:c4:6c:ca:80:d5:f3:0e:0a:
72:db:5c:89:2b:5a:fb:85:e1:58:fc:14:06:71:52:
86:15:d8:75:2e:5f:9c:64:ed:57:5c:cb:98:48:71:
bf:e5:a6:cb:06:0f:1e:22:02:5e:25:79:76:db:3d:
ed:4b:36:77:be:58:3a:22:5c:97:ca:b6:7a:94:de:
b7:9c:69:f3:64:33:43:4a:66:33:dd:4f:ea:d5:70:
9a:ad:21:62:dd:11:f2:f4:37:9e:a5:10:11:d1:a8:
bd:68:af:f3:d8:07:5c:b5:1b:bb:d7:37:5f:c3:6a:
04:f2:28:a2:f6:3f:e7:4a:58:b7:93:31:83:0a:e2:
72:b7:75:ae:0a:32:db:c1:de:db:29:15:29:23:56:
47:bc:af:40:2f:c1:73:df:d0:18:ac:6b:3f:19:6f:
43:8e:fc:64:e3:42:20:87:53:62:cc:1f:db:bf:52:
f1:6d:c3:5d:b4:e3:7d:54:02:ac:a3:ae:7f:0b:54:
04:9d:52:fb:51:fa:a5:75:2f:e3:16:a1:68:9d:3a:
7b:42:ff:f2:b5:22:d6:a7:20:1c:fc:3f:16:f9:33:
15:bc:00:b1:bb:05:0a:3d:7a:21:52:d4:65:63:c5:
77:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:BE:67:0F:13:42:F6:1A:FE:04:0A:DB:30:34:84:1A:33:0D:E2:00
X509v3 Authority Key Identifier:
keyid:C3:DC:B2:3D:EA:58:F9:7F:AD:5A:79:7B:45:77:41:D5:BF:E6:B1:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w9yyPepY-X-tWnl7RXdB1b_msbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6ec66d-d6b6-430f-8fcb-e70a911a1c7b/1/Er5nDxNC9hr-BArbMDSEGjMN4gA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6ec66d-d6b6-430f-8fcb-e70a911a1c7b/1/w9yyPepY-X-tWnl7RXdB1b_msbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.148.0/22
IPv6:
2a0d:8680::/32
Signature Algorithm: sha256WithRSAEncryption
19:9c:06:ec:82:05:a8:63:91:8b:3e:d1:18:eb:7b:8e:3b:b4:
fa:c6:81:5e:11:a1:86:e9:83:da:2e:82:44:41:e8:cd:b6:76:
ae:be:53:93:91:11:dc:5a:c4:51:3d:87:66:40:4c:44:6e:f1:
69:e1:b4:99:47:25:d7:e1:52:d5:d7:2c:fd:10:40:79:02:a6:
ea:95:45:2e:e4:bf:9e:75:a3:c0:0d:51:6a:dd:fc:07:bc:32:
19:6f:70:d5:17:32:87:e3:c3:10:ca:86:63:5d:aa:25:19:7b:
b1:d4:55:b1:b4:34:44:e8:38:51:00:0a:71:68:a7:84:d2:09:
24:f4:16:16:0a:32:54:82:75:2e:55:be:f1:83:cb:51:70:74:
37:f9:47:e2:a4:c1:34:64:6d:92:3c:8b:6f:19:c4:2a:ce:07:
f7:16:fd:ce:26:8d:a2:1c:c4:5b:04:36:68:66:9b:67:5d:a2:
37:59:be:dd:ef:9f:7d:db:4d:1a:44:02:b6:33:78:67:ea:3d:
2c:de:b4:71:a2:78:81:d1:11:fd:a0:86:cf:a6:48:57:15:79:
37:1a:15:b7:ff:22:c7:78:de:59:67:95:6c:a8:d6:49:fa:f0:
a1:47:7f:6b:dc:73:10:df:a7:5b:dc:62:8a:c1:af:e7:e9:2f:
dc:50:92:5d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVw1TCmIcQGoQJiBdW9zflrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzZGNiMjNkZWE1OGY5N2ZhZDVhNzk3YjQ1Nzc0MWQ1YmZl
NmIxYjAwHhcNMjMwMTAyMDQ1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMmJlNjcwZjEzNDJmNjFhZmUwNDBhZGIzMDM0ODQxYTMzMGRlMjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHGdZ0jmn8foUlE1Dk/YX3IDk1Ty
xGzKgNXzDgpy21yJK1r7heFY/BQGcVKGFdh1Ll+cZO1XXMuYSHG/5abLBg8eIgJe
JXl22z3tSzZ3vlg6IlyXyrZ6lN63nGnzZDNDSmYz3U/q1XCarSFi3RHy9DeepRAR
0ai9aK/z2AdctRu71zdfw2oE8iii9j/nSli3kzGDCuJyt3WuCjLbwd7bKRUpI1ZH
vK9AL8Fz39AYrGs/GW9Djvxk40Igh1NizB/bv1LxbcNdtON9VAKso65/C1QEnVL7
UfqldS/jFqFonTp7Qv/ytSLWpyAc/D8W+TMVvACxuwUKPXohUtRlY8V3+wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBK+Zw8TQvYa/gQK2zA0hBozDeIAMB8GA1UdIwQY
MBaAFMPcsj3qWPl/rVp5e0V3QdW/5rGwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzl5eVBlcFktWC10V25sN1JYZEIxYl9tc2JBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy82ZWM2NmQtZDZiNi00MzBmLThmY2It
ZTcwYTkxMWExYzdiLzEvRXI1bkR4TkM5aHItQkFyYk1EU0VHak1ONGdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy82ZWM2NmQtZDZiNi00MzBmLThmY2ItZTcwYTkxMWExYzdi
LzEvdzl5eVBlcFktWC10V25sN1JYZEIxYl9tc2JBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCufaUMA0E
AgACMAcDBQAqDYaAMA0GCSqGSIb3DQEBCwUAA4IBAQAZnAbsggWoY5GLPtEY63uO
O7T6xoFeEaGG6YPaLoJEQejNtnauvlOTkRHcWsRRPYdmQExEbvFp4bSZRyXX4VLV
1yz9EEB5AqbqlUUu5L+edaPADVFq3fwHvDIZb3DVFzKH48MQyoZjXaolGXux1FWx
tDRE6DhRAApxaKeE0gkk9BYWCjJUgnUuVb7xg8tRcHQ3+UfipME0ZG2SPItvGcQq
zgf3Fv3OJo2iHMRbBDZoZptnXaI3Wb7d7599200aRAK2M3hn6j0s3rRxoniB0RH9
oIbPpkhXFXk3GhW3/yLHeN5ZZ5VsqNZJ+vChR39r3HMQ36db3GKKwa/n6S/cUJJd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:30 2024 by rpki-client on console-fra.rpki-client.org