Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/TXNxhRHRt1GrNJnpbR1nTVLRtvg.roa
File: TXNxhRHRt1GrNJnpbR1nTVLRtvg.roa (raw, json)
Hash identifier: 76mneh55PMy24qVxNUueBAI941lbdFS5opApyuECVlQ=
Subject key identifier: 4D:73:71:85:11:D1:B7:51:AB:34:99:E9:6D:1D:67:4D:52:D1:B6:F8
Certificate issuer: /CN=572bc93f1580fc95274d983940f3efaede304ae5
Certificate serial: 018AD5ABE637E593E904BFF1DBF8045F70D5
Authority key identifier: 57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/TXNxhRHRt1GrNJnpbR1nTVLRtvg.roa
Signing time: Wed 27 Sep 2023 08:05:27 +0000
ROA not before: Wed 27 Sep 2023 08:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200887
IP address blocks: 185.244.236.0/24 maxlen: 24
2a13:1580::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d5:ab:e6:37:e5:93:e9:04:bf:f1:db:f8:04:5f:70:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572bc93f1580fc95274d983940f3efaede304ae5
Validity
Not Before: Sep 27 08:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d73718511d1b751ab3499e96d1d674d52d1b6f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3e:ec:5c:c9:fd:b8:cd:46:81:ff:5f:c7:95:
0c:ff:17:d5:a4:d7:f2:21:4f:b2:22:14:bf:7d:99:
b7:bf:da:77:49:5c:72:3d:1d:13:d9:3c:31:6c:73:
de:07:c6:a9:e6:da:11:af:9f:15:5d:0b:6c:6a:31:
ba:a2:75:d0:a4:aa:95:55:95:4d:23:4d:96:4f:85:
da:5a:30:fa:7d:00:38:99:45:51:d3:23:13:96:e1:
84:81:c9:1f:67:97:97:ec:87:f8:97:b3:19:9d:af:
7a:74:7c:98:1f:72:35:c9:58:81:a3:bc:5f:5a:11:
52:75:6b:e8:8c:bb:1f:98:0f:59:30:e9:74:7f:43:
cd:98:51:36:dc:29:3a:01:7b:2f:96:4e:7e:0f:ce:
a1:20:2f:88:1b:56:a8:09:2a:31:a9:b7:e2:8a:58:
64:c4:a3:22:a1:2a:4e:3a:9e:5e:14:4f:1e:d4:3b:
a7:49:00:04:51:e8:0f:82:c4:58:81:e0:70:d7:ee:
14:1a:dd:51:1f:0e:e2:73:39:a7:f7:97:5a:1f:9c:
e1:c0:69:ae:fc:45:37:49:dd:f9:e0:7f:96:0e:71:
99:6d:db:c9:ff:38:83:61:52:9f:1e:19:a1:56:c3:
ca:f5:f6:8c:60:1a:9d:a1:07:cc:18:1c:56:df:40:
35:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:73:71:85:11:D1:B7:51:AB:34:99:E9:6D:1D:67:4D:52:D1:B6:F8
X509v3 Authority Key Identifier:
keyid:57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/TXNxhRHRt1GrNJnpbR1nTVLRtvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/VyvJPxWA_JUnTZg5QPPvrt4wSuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.236.0/24
IPv6:
2a13:1580::/29
Signature Algorithm: sha256WithRSAEncryption
61:c9:f2:b2:7b:72:fe:77:ae:ab:d5:d8:c3:67:d6:60:4c:e9:
62:36:e6:a6:a7:1b:30:27:c0:34:9c:bd:c0:6f:fc:c2:e9:00:
4e:da:a2:a7:81:c3:cc:69:cc:0c:c2:c9:e6:19:52:b7:c0:16:
01:9d:97:f2:e4:5c:7c:b5:c8:5e:26:f4:6e:5d:1b:da:6e:54:
ee:36:3e:f6:46:ad:00:fb:3d:07:af:08:34:9f:98:28:88:ca:
bd:4b:3b:48:d4:83:be:be:9b:7d:ce:f7:dd:23:77:3c:41:16:
fd:2e:cc:a7:2c:f8:40:08:87:5e:0e:f5:eb:9e:a2:b2:f4:7b:
24:5f:f9:d7:ca:58:18:91:30:64:82:7f:cd:5a:ea:6e:0a:8a:
cb:16:8c:da:e9:17:a7:73:18:fe:89:e5:12:76:8c:4d:ef:c4:
f2:39:15:89:f9:b2:a6:69:6e:f5:8d:0e:4a:6f:50:43:96:7f:
78:85:a3:4d:26:8b:98:af:99:c8:1c:97:48:5a:df:6c:88:b7:
52:dd:6f:95:4c:22:33:e2:cb:ad:00:e6:83:39:fd:ff:75:4a:
78:34:1c:eb:87:25:dc:49:b0:73:67:9c:2a:b2:32:20:17:56:
28:a6:f2:cb:58:ab:25:a9:11:79:f3:38:2b:8f:4f:04:1c:be:
92:d1:cd:2c
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYrVq+Y35ZPpBL/x2/gEX3DVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3MmJjOTNmMTU4MGZjOTUyNzRkOTgzOTQwZjNlZmFlZGUz
MDRhZTUwHhcNMjMwOTI3MDgwNTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDczNzE4NTExZDFiNzUxYWIzNDk5ZTk2ZDFkNjc0ZDUyZDFiNmY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1T7sXMn9uM1Ggf9fx5UM/xfVpNfy
IU+yIhS/fZm3v9p3SVxyPR0T2TwxbHPeB8ap5toRr58VXQtsajG6onXQpKqVVZVN
I02WT4XaWjD6fQA4mUVR0yMTluGEgckfZ5eX7If4l7MZna96dHyYH3I1yViBo7xf
WhFSdWvojLsfmA9ZMOl0f0PNmFE23Ck6AXsvlk5+D86hIC+IG1aoCSoxqbfiilhk
xKMioSpOOp5eFE8e1DunSQAEUegPgsRYgeBw1+4UGt1RHw7iczmn95daH5zhwGmu
/EU3Sd354H+WDnGZbdvJ/ziDYVKfHhmhVsPK9faMYBqdoQfMGBxW30A1VwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFE1zcYUR0bdRqzSZ6W0dZ01S0bb4MB8GA1UdIwQY
MBaAFFcryT8VgPyVJ02YOUDz767eMErlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnl2SlB4V0FfSlVuVFpnNVFQUHZydDR3U3VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8yOWY1NWMtNjAzMi00MWMyLWJhYTQt
MTA4MGU4NjVlYzZjLzEvVFhOeGhSSFJ0MUdyTkpucGJSMW5UVkxSdHZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8yOWY1NWMtNjAzMi00MWMyLWJhYTQtMTA4MGU4NjVlYzZj
LzEvVnl2SlB4V0FfSlVuVFpnNVFQUHZydDR3U3VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAufTsMA0E
AgACMAcDBQMqExWAMA0GCSqGSIb3DQEBCwUAA4IBAQBhyfKye3L+d66r1djDZ9Zg
TOliNuampxswJ8A0nL3Ab/zC6QBO2qKngcPMacwMwsnmGVK3wBYBnZfy5Fx8tche
JvRuXRvablTuNj72Rq0A+z0Hrwg0n5goiMq9SztI1IO+vpt9zvfdI3c8QRb9Lsyn
LPhACIdeDvXrnqKy9HskX/nXylgYkTBkgn/NWupuCorLFoza6Rencxj+ieUSdoxN
78TyORWJ+bKmaW71jQ5Kb1BDln94haNNJouYr5nIHJdIWt9siLdS3W+VTCIz4sut
AOaDOf3/dUp4NBzrhyXcSbBzZ5wqsjIgF1YopvLLWKslqRF58zgrj08EHL6S0c0s
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org