Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/cTO5j5HPfqCyqn_7J3OcXoNmmIE.roa
File: cTO5j5HPfqCyqn_7J3OcXoNmmIE.roa (raw, json)
Hash identifier: 4kZKzSILubjHf2ZXhF+jJtSq5bCcF1tQKBTRfx+xUjw=
Subject key identifier: 71:33:B9:8F:91:CF:7E:A0:B2:AA:7F:FB:27:73:9C:5E:83:66:98:81
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 01856D4AD160901EB3E4418AD84B475FDB76
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/cTO5j5HPfqCyqn_7J3OcXoNmmIE.roa
Signing time: Sun 01 Jan 2023 12:24:57 +0000
ROA not before: Sun 01 Jan 2023 12:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48412
IP address blocks: 185.126.156.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:d1:60:90:1e:b3:e4:41:8a:d8:4b:47:5f:db:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jan 1 12:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7133b98f91cf7ea0b2aa7ffb27739c5e83669881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:02:36:f5:0a:b0:ac:30:fc:65:eb:06:16:9f:
9e:c5:ae:0b:5c:a0:98:7e:9d:cf:90:83:9e:ea:76:
df:f0:02:38:0d:cc:dc:de:e1:73:ca:8c:d5:59:b2:
f8:01:96:90:3e:ed:54:54:7f:59:b5:87:a1:23:c3:
f6:a0:70:02:4e:39:01:28:fa:3d:9c:d9:f2:24:26:
34:fe:4a:f2:6a:13:63:ab:24:7c:fc:a3:3d:11:e4:
b2:68:b3:1e:61:ce:83:7e:a1:90:57:55:d8:c2:a0:
80:b5:c0:a7:c9:df:49:d1:a9:db:eb:fa:02:7d:7b:
0a:4f:d3:e2:97:6f:f4:2b:b2:33:5b:01:b8:2b:59:
35:11:c3:9e:fb:0d:5a:d4:13:30:96:c3:f8:ae:99:
0c:c8:6e:3a:9b:d2:1f:4f:1d:b2:0c:01:44:7c:c0:
1c:e5:c5:91:db:18:f3:70:26:cc:fe:dc:12:b2:79:
a4:65:4a:0a:10:3b:ce:e1:6f:5a:f2:7b:c1:14:84:
d7:25:0a:ec:2b:52:d9:f6:d0:60:67:21:bc:9c:d1:
31:74:9f:65:7a:0f:08:fc:5a:5c:a6:49:8b:bc:68:
74:d5:b4:e3:b7:e0:af:d7:5e:e6:2a:ee:08:ed:1b:
91:9b:5b:17:f4:57:7a:96:74:00:b2:59:78:d9:09:
15:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:33:B9:8F:91:CF:7E:A0:B2:AA:7F:FB:27:73:9C:5E:83:66:98:81
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/cTO5j5HPfqCyqn_7J3OcXoNmmIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.156.0/23
Signature Algorithm: sha256WithRSAEncryption
30:ac:c1:f2:36:a1:57:8d:c6:a1:98:95:0e:ca:ca:a4:83:f0:
bc:b4:ea:7e:61:41:d5:63:04:7d:22:2e:29:bb:db:cc:06:73:
92:bc:f9:57:08:a3:70:7b:9f:ba:ae:8b:ce:d0:51:8c:13:95:
84:d0:1c:1f:1a:f4:61:25:b1:36:1c:c7:6f:34:6b:c1:bd:0c:
44:72:92:9a:ae:63:c2:91:eb:2c:cb:a5:b5:1f:05:a7:53:de:
6d:74:6e:ab:8e:4c:e6:cc:91:97:9a:5f:66:a3:1b:bf:6b:cc:
c4:76:43:9c:1a:af:f6:84:aa:35:33:e4:8f:0b:0a:69:7c:0d:
ec:e0:c3:30:fb:22:15:75:fc:b4:9c:75:c3:7c:df:76:b6:ba:
a5:21:db:a7:55:7a:a3:45:e9:3a:a5:69:46:62:b6:69:c0:06:
16:bc:80:88:13:f8:45:63:7b:7b:4d:bc:b6:b1:90:12:d8:25:
e5:9a:5c:73:01:09:a4:5d:ab:be:da:dc:58:7f:94:13:4e:42:
87:7d:38:e5:f4:eb:dc:81:03:9f:be:95:a8:bb:d9:c0:ad:ae:
de:ba:00:9f:87:53:52:14:4b:7e:bb:98:8e:a9:3f:8e:4e:44:
a6:9b:48:43:ae:bf:cb:19:f1:87:ff:dc:8a:b3:4d:6e:c5:fa:
83:4c:37:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtStFgkB6z5EGK2EtHX9t2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl
MmExY2EwHhcNMjMwMTAxMTIyNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTMzYjk4ZjkxY2Y3ZWEwYjJhYTdmZmIyNzczOWM1ZTgzNjY5ODgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgI29QqwrDD8ZesGFp+exa4LXKCY
fp3PkIOe6nbf8AI4Dczc3uFzyozVWbL4AZaQPu1UVH9ZtYehI8P2oHACTjkBKPo9
nNnyJCY0/kryahNjqyR8/KM9EeSyaLMeYc6DfqGQV1XYwqCAtcCnyd9J0anb6/oC
fXsKT9Pil2/0K7IzWwG4K1k1EcOe+w1a1BMwlsP4rpkMyG46m9IfTx2yDAFEfMAc
5cWR2xjzcCbM/twSsnmkZUoKEDvO4W9a8nvBFITXJQrsK1LZ9tBgZyG8nNExdJ9l
eg8I/FpcpkmLvGh01bTjt+Cv117mKu4I7RuRm1sX9Fd6lnQAsll42QkVKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHEzuY+Rz36gsqp/+ydznF6DZpiBMB8GA1UdIwQY
MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt
YTZjYTQ1NGRiMmQ3LzEvY1RPNWo1SFBmcUN5cW5fN0ozT2NYb05tbUlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3
LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuX6cMA0G
CSqGSIb3DQEBCwUAA4IBAQAwrMHyNqFXjcahmJUOysqkg/C8tOp+YUHVYwR9Ii4p
u9vMBnOSvPlXCKNwe5+6rovO0FGME5WE0BwfGvRhJbE2HMdvNGvBvQxEcpKarmPC
kessy6W1HwWnU95tdG6rjkzmzJGXml9moxu/a8zEdkOcGq/2hKo1M+SPCwppfA3s
4MMw+yIVdfy0nHXDfN92trqlIdunVXqjRek6pWlGYrZpwAYWvICIE/hFY3t7Tby2
sZAS2CXlmlxzAQmkXau+2txYf5QTTkKHfTjl9OvcgQOfvpWou9nAra7eugCfh1NS
FEt+u5iOqT+OTkSmm0hDrr/LGfGH/9yKs01uxfqDTDch
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org