Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/pSXfoUiYAoU1FWRdp_uMD_d4DNU.roa
File: pSXfoUiYAoU1FWRdp_uMD_d4DNU.roa (raw, json)
Hash identifier: 53xPGlGD80UemYSqiHk52sT+YxOmMEQrkYBLzE009+I=
Subject key identifier: A5:25:DF:A1:48:98:02:85:35:15:64:5D:A7:FB:8C:0F:F7:78:0C:D5
Certificate issuer: /CN=572bc93f1580fc95274d983940f3efaede304ae5
Certificate serial: 018AD3B805C14306200B463D98533EC2DCE4
Authority key identifier: 57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/pSXfoUiYAoU1FWRdp_uMD_d4DNU.roa
Signing time: Tue 26 Sep 2023 22:59:27 +0000
ROA not before: Tue 26 Sep 2023 22:59:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200887
IP address blocks: 185.244.236.0/24 maxlen: 24
2a13:1580::/29 maxlen: 29
2a13:1584::/30 maxlen: 30
Validation: Failed, certificate revoked on Wed 27 Sep 2023 08:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d3:b8:05:c1:43:06:20:0b:46:3d:98:53:3e:c2:dc:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572bc93f1580fc95274d983940f3efaede304ae5
Validity
Not Before: Sep 26 22:59:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a525dfa1489802853515645da7fb8c0ff7780cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:27:5b:c9:6f:7e:6a:3b:77:2f:08:5e:f4:aa:
7f:9f:24:2e:36:8d:e5:3d:2d:05:6e:5f:5f:0b:5d:
ce:f1:cc:6e:b2:d3:dc:7a:ed:9e:8d:80:37:f7:fb:
3a:69:f5:d0:2b:36:96:d6:0b:48:90:ec:f8:30:7e:
be:44:6c:b6:45:4c:bd:1d:a8:bd:65:dc:7a:6d:c7:
98:bd:5d:db:86:1b:7a:7d:25:cb:ed:8e:06:8a:b2:
02:f6:c1:b5:81:ae:f6:48:76:9e:76:d7:63:2f:bd:
06:43:34:96:40:c9:a2:3e:88:f1:df:4b:61:4b:8f:
e4:71:13:0b:8c:0f:39:6a:ea:f6:b0:ed:7e:70:ff:
2a:0b:b3:6e:03:f0:67:b1:0a:ac:bb:7b:c1:53:99:
51:8c:af:04:a8:81:c4:b4:60:15:b9:68:32:ce:16:
81:f7:2d:e2:37:30:1e:5f:3b:1d:98:b0:ca:72:d1:
99:a8:9a:5f:31:a3:48:8b:71:28:51:b1:bb:12:37:
a8:ff:ae:3c:ff:5d:82:78:54:c7:a8:32:ad:66:2c:
3c:c9:1d:ea:64:c0:63:1e:08:f3:aa:66:ff:ce:bf:
44:08:7f:a6:72:f0:df:3b:82:4f:19:61:99:c2:b0:
90:3c:10:66:b5:c8:63:f5:a1:c4:1f:aa:d6:f3:50:
d6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:25:DF:A1:48:98:02:85:35:15:64:5D:A7:FB:8C:0F:F7:78:0C:D5
X509v3 Authority Key Identifier:
keyid:57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/pSXfoUiYAoU1FWRdp_uMD_d4DNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/VyvJPxWA_JUnTZg5QPPvrt4wSuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.236.0/24
IPv6:
2a13:1580::/29
Signature Algorithm: sha256WithRSAEncryption
ac:83:d7:64:7d:2a:d6:5b:d2:a3:2d:23:92:e5:71:0d:8d:51:
12:23:64:81:2c:75:06:2f:3c:5d:7e:83:13:9b:88:49:87:e0:
dc:1c:a6:ca:cb:e4:18:3f:8a:54:3a:14:7f:e9:73:ce:63:11:
f4:f8:5d:4c:45:7c:45:8d:6c:24:86:7d:6d:e6:75:61:24:9a:
24:20:8e:2e:bb:09:7b:fe:6e:09:7f:7a:4d:3c:02:b6:46:ca:
3c:5e:4e:7b:24:1f:c2:80:78:0d:59:08:58:dd:d7:2c:72:d3:
ef:c9:84:c7:d0:3e:2e:bd:84:97:16:a9:27:ef:93:38:ed:7a:
69:cb:e9:44:c5:7d:35:76:18:60:af:d8:18:32:3a:72:1c:b8:
44:9c:13:fd:54:23:ab:45:ba:12:54:4d:cd:00:6d:0e:8c:77:
89:d2:1c:09:8c:a3:87:ae:af:18:3c:a7:ba:1c:0c:ef:14:57:
c4:c6:b7:69:fe:64:a2:0e:be:2b:14:ab:5f:06:5f:56:5a:98:
68:a6:8c:d3:01:ad:6f:06:5b:d3:56:d2:04:e6:a4:be:76:31:
91:1c:79:52:bc:ce:a2:8b:c3:11:03:d4:93:15:8e:5c:36:83:
d9:34:0a:a7:fd:46:d8:ce:cd:9e:18:69:04:66:99:27:72:66:
d9:50:2f:2c
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYrTuAXBQwYgC0Y9mFM+wtzkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3MmJjOTNmMTU4MGZjOTUyNzRkOTgzOTQwZjNlZmFlZGUz
MDRhZTUwHhcNMjMwOTI2MjI1OTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTI1ZGZhMTQ4OTgwMjg1MzUxNTY0NWRhN2ZiOGMwZmY3NzgwY2Q1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhCdbyW9+ajt3Lwhe9Kp/nyQuNo3l
PS0Fbl9fC13O8cxustPceu2ejYA39/s6afXQKzaW1gtIkOz4MH6+RGy2RUy9Hai9
Zdx6bceYvV3bhht6fSXL7Y4GirIC9sG1ga72SHaedtdjL70GQzSWQMmiPojx30th
S4/kcRMLjA85aur2sO1+cP8qC7NuA/BnsQqsu3vBU5lRjK8EqIHEtGAVuWgyzhaB
9y3iNzAeXzsdmLDKctGZqJpfMaNIi3EoUbG7Ejeo/648/12CeFTHqDKtZiw8yR3q
ZMBjHgjzqmb/zr9ECH+mcvDfO4JPGWGZwrCQPBBmtchj9aHEH6rW81DWKwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFKUl36FImAKFNRVkXaf7jA/3eAzVMB8GA1UdIwQY
MBaAFFcryT8VgPyVJ02YOUDz767eMErlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnl2SlB4V0FfSlVuVFpnNVFQUHZydDR3U3VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8yOWY1NWMtNjAzMi00MWMyLWJhYTQt
MTA4MGU4NjVlYzZjLzEvcFNYZm9VaVlBb1UxRldSZHBfdU1EX2Q0RE5VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8yOWY1NWMtNjAzMi00MWMyLWJhYTQtMTA4MGU4NjVlYzZj
LzEvVnl2SlB4V0FfSlVuVFpnNVFQUHZydDR3U3VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAufTsMA0E
AgACMAcDBQMqExWAMA0GCSqGSIb3DQEBCwUAA4IBAQCsg9dkfSrWW9KjLSOS5XEN
jVESI2SBLHUGLzxdfoMTm4hJh+DcHKbKy+QYP4pUOhR/6XPOYxH0+F1MRXxFjWwk
hn1t5nVhJJokII4uuwl7/m4Jf3pNPAK2Rso8Xk57JB/CgHgNWQhY3dcsctPvyYTH
0D4uvYSXFqkn75M47Xppy+lExX01dhhgr9gYMjpyHLhEnBP9VCOrRboSVE3NAG0O
jHeJ0hwJjKOHrq8YPKe6HAzvFFfExrdp/mSiDr4rFKtfBl9WWphopozTAa1vBlvT
VtIE5qS+djGRHHlSvM6ii8MRA9STFY5cNoPZNAqn/UbYzs2eGGkEZpkncmbZUC8s
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org