Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/0n7C5Aifi4ocWoNujRJ_uCi0POc.roa
File: 0n7C5Aifi4ocWoNujRJ_uCi0POc.roa (raw, json)
Hash identifier: TGhg6hU9TMiBHCUhHUkvKnI9YPqg05OQ6LOWKJbLOtM=
Subject key identifier: D2:7E:C2:E4:08:9F:8B:8A:1C:5A:83:6E:8D:12:7F:B8:28:B4:3C:E7
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 0185C85FCCC4582E2D73A6B20CF49CDCC0E6
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/0n7C5Aifi4ocWoNujRJ_uCi0POc.roa
Signing time: Thu 19 Jan 2023 04:53:19 +0000
ROA not before: Thu 19 Jan 2023 04:53:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 188.240.83.0/24 maxlen: 24
176.223.190.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c8:5f:cc:c4:58:2e:2d:73:a6:b2:0c:f4:9c:dc:c0:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jan 19 04:53:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d27ec2e4089f8b8a1c5a836e8d127fb828b43ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2d:c1:51:c6:10:72:c9:a5:0b:87:56:8e:df:
2c:80:c4:83:d9:7a:6b:fb:72:43:3f:d5:93:3b:63:
4e:db:d3:d1:cb:65:36:d8:cd:91:9b:a8:77:47:3c:
4d:2d:32:45:b9:01:79:d9:26:ba:fe:5f:b4:93:ab:
60:94:17:99:39:3e:fc:4d:9d:9d:5d:e9:c4:49:fa:
d2:20:24:eb:b3:17:d8:b8:bd:41:91:af:92:27:d9:
0b:b9:aa:7f:4d:dd:61:a4:24:84:55:6c:27:61:08:
cd:a4:33:4b:bf:ac:6f:29:92:e7:b4:6f:de:ba:83:
83:96:04:c3:50:05:61:cd:7d:e9:b3:88:51:b6:f6:
ea:44:eb:f8:7b:73:d4:74:4b:8d:da:69:a6:8b:65:
39:26:92:6e:ed:99:32:52:68:60:50:e9:e0:78:e0:
36:b4:ad:19:b7:52:07:f3:8c:07:2a:9b:76:a1:3f:
c0:42:cf:48:73:02:5c:21:45:2a:9d:73:6f:62:61:
e7:b7:8c:a8:f6:4c:8e:5b:66:ec:0b:f1:0b:a3:c6:
79:a6:52:12:20:05:fd:57:6c:e6:18:22:ba:ad:43:
3d:29:2a:65:0e:5f:1a:bb:c2:59:eb:e6:fd:ba:68:
be:4b:cc:55:73:1a:61:c2:80:2e:e1:f6:ad:cc:04:
27:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7E:C2:E4:08:9F:8B:8A:1C:5A:83:6E:8D:12:7F:B8:28:B4:3C:E7
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/0n7C5Aifi4ocWoNujRJ_uCi0POc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.223.190.0/24
188.240.83.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:e8:da:e7:ec:0a:ea:2e:94:ca:3e:67:8d:e7:4e:cf:07:d5:
b8:39:a0:49:93:88:fd:5f:ab:f1:88:df:4c:d3:1c:4e:8a:d4:
1a:6e:4e:b2:af:df:19:96:2c:4a:70:9b:d5:4e:58:c4:b5:82:
79:c1:46:78:73:53:6c:4e:83:28:1e:46:4f:2b:fd:e1:09:40:
f1:41:3c:35:21:8a:fb:49:bd:f3:cb:b1:76:e2:9b:85:0b:02:
b1:70:1b:25:34:8d:1d:18:01:bb:8a:2d:2d:45:1d:f7:44:e7:
37:21:84:d0:9d:04:37:53:50:af:97:13:26:cd:0a:69:0b:aa:
43:86:b5:ae:6d:9e:2f:7b:67:47:bd:fc:13:c4:1d:3b:23:a1:
f0:e1:59:d4:c8:34:03:85:e0:88:c0:6b:54:ce:c2:83:00:7f:
89:b0:f3:6c:dc:67:15:fb:b5:8b:55:a1:1a:fb:46:88:de:6b:
2e:a4:58:f8:1a:6f:27:c2:ba:09:b3:03:e0:4f:1e:ae:00:70:
dc:d8:5b:2e:6c:6c:0a:77:9b:47:87:df:ea:d2:db:7c:52:74:
a0:3d:9d:19:5b:8c:16:72:ce:30:e7:25:9f:89:95:30:9c:3b:
02:28:e4:68:3b:c6:75:d7:b1:3e:78:a1:98:7c:22:f7:6d:d7:
b9:5e:61:06
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYXIX8zEWC4tc6ayDPSc3MDmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDBlOTgxOTUzMDYxOTcyYzg5NmJkNmQyNzczOGQwODNh
YWRiMGUwHhcNMjMwMTE5MDQ1MzE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjdlYzJlNDA4OWY4YjhhMWM1YTgzNmU4ZDEyN2ZiODI4YjQzY2U3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnC3BUcYQcsmlC4dWjt8sgMSD2Xpr
+3JDP9WTO2NO29PRy2U22M2Rm6h3RzxNLTJFuQF52Sa6/l+0k6tglBeZOT78TZ2d
XenESfrSICTrsxfYuL1Bka+SJ9kLuap/Td1hpCSEVWwnYQjNpDNLv6xvKZLntG/e
uoODlgTDUAVhzX3ps4hRtvbqROv4e3PUdEuN2mmmi2U5JpJu7ZkyUmhgUOngeOA2
tK0Zt1IH84wHKpt2oT/AQs9IcwJcIUUqnXNvYmHnt4yo9kyOW2bsC/ELo8Z5plIS
IAX9V2zmGCK6rUM9KSplDl8au8JZ6+b9umi+S8xVcxphwoAu4fatzAQnsQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNJ+wuQIn4uKHFqDbo0Sf7gotDznMB8GA1UdIwQY
MBaAFNoA6YGVMGGXLIlr1tJ3ONCDqtsOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAt
OWE0OGVjZjllMTVlLzEvMG43QzVBaWZpNG9jV29OdWpSSl91Q2kwUE9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAtOWE0OGVjZjllMTVl
LzEvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsN++AwQA
vPBTMA0GCSqGSIb3DQEBCwUAA4IBAQAq6Nrn7ArqLpTKPmeN507PB9W4OaBJk4j9
X6vxiN9M0xxOitQabk6yr98ZlixKcJvVTljEtYJ5wUZ4c1NsToMoHkZPK/3hCUDx
QTw1IYr7Sb3zy7F24puFCwKxcBslNI0dGAG7ii0tRR33ROc3IYTQnQQ3U1CvlxMm
zQppC6pDhrWubZ4ve2dHvfwTxB07I6Hw4VnUyDQDheCIwGtUzsKDAH+JsPNs3GcV
+7WLVaEa+0aI3msupFj4Gm8nwroJswPgTx6uAHDc2FsubGwKd5tHh9/q0tt8UnSg
PZ0ZW4wWcs4w5yWfiZUwnDsCKORoO8Z117E+eKGYfCL3bde5XmEG
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:55 2023 by rpki-client on console-ams.rpki-client.org