Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/81aa49-8b4a-4c28-a578-a605717d34ae/1/dHsMt9y-UczyW0MfeV_DMvNDr2M.roa
File: dHsMt9y-UczyW0MfeV_DMvNDr2M.roa (raw, json)
Hash identifier: kQk+rHOWesLJ6YdVJOBVz8G8C1UrlNUWY6b7hY4B1SM=
Subject key identifier: 74:7B:0C:B7:DC:BE:51:CC:F2:5B:43:1F:79:5F:C3:32:F3:43:AF:63
Certificate issuer: /CN=b05a0604e76876fa03e6ad8687fa1db6c63d3908
Certificate serial: 01856B8A230503D48ADE2B38AAE6B18E5EE3
Authority key identifier: B0:5A:06:04:E7:68:76:FA:03:E6:AD:86:87:FA:1D:B6:C6:3D:39:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFoGBOdodvoD5q2Gh_odtsY9OQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/81aa49-8b4a-4c28-a578-a605717d34ae/1/dHsMt9y-UczyW0MfeV_DMvNDr2M.roa
Signing time: Sun 01 Jan 2023 04:14:53 +0000
ROA not before: Sun 01 Jan 2023 04:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209093
IP address blocks: 185.243.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:23:05:03:d4:8a:de:2b:38:aa:e6:b1:8e:5e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05a0604e76876fa03e6ad8687fa1db6c63d3908
Validity
Not Before: Jan 1 04:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=747b0cb7dcbe51ccf25b431f795fc332f343af63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6c:fc:cf:17:22:39:4b:3d:88:23:51:fc:bd:
59:ff:17:eb:66:40:61:c0:32:e5:fc:83:f2:68:a8:
50:c9:1c:57:9c:2e:ae:21:66:a8:5b:7c:af:74:9a:
dc:7c:59:f7:40:ea:71:c2:e8:7d:91:9b:9b:ea:64:
5b:ae:3a:e1:0e:24:67:7d:23:66:09:8f:ef:d0:9d:
70:c1:7b:28:39:fb:ba:73:f8:03:99:73:ca:b2:ef:
b9:3b:af:60:bf:4b:34:54:1f:4c:70:cb:1c:41:55:
ee:63:5c:52:f1:9e:7e:ee:21:dc:b4:f3:a7:27:0e:
b4:99:95:bc:97:9f:f8:a5:63:b0:1c:34:25:45:c3:
47:af:78:d7:4c:b7:a4:16:86:7d:b3:b2:7c:85:08:
39:b5:db:b5:a3:8d:ee:d8:dd:56:15:8f:c2:45:9e:
83:b3:87:27:6b:3c:58:60:54:62:00:13:20:af:54:
b7:8c:6d:0a:7a:cc:a0:65:97:7d:bc:45:fd:1e:ec:
b6:a2:a4:bb:d3:fb:0a:d0:81:61:b2:5e:b3:01:e8:
9c:04:fb:91:e5:0b:7c:7b:b1:49:6a:b1:4a:25:70:
86:68:63:ca:78:15:4a:66:b4:1a:d7:12:b2:67:9d:
18:fd:38:a4:7a:87:a1:00:37:fe:b7:b8:2d:4c:59:
53:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7B:0C:B7:DC:BE:51:CC:F2:5B:43:1F:79:5F:C3:32:F3:43:AF:63
X509v3 Authority Key Identifier:
keyid:B0:5A:06:04:E7:68:76:FA:03:E6:AD:86:87:FA:1D:B6:C6:3D:39:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFoGBOdodvoD5q2Gh_odtsY9OQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/81aa49-8b4a-4c28-a578-a605717d34ae/1/dHsMt9y-UczyW0MfeV_DMvNDr2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/81aa49-8b4a-4c28-a578-a605717d34ae/1/sFoGBOdodvoD5q2Gh_odtsY9OQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.21.0/24
Signature Algorithm: sha256WithRSAEncryption
68:13:0b:46:cf:fc:fc:90:e3:92:23:75:98:b7:5b:bf:1c:a6:
68:2d:86:95:3c:a9:9c:60:69:df:17:47:16:24:e1:c6:08:3b:
47:e3:8f:50:8e:46:19:c3:86:97:d2:0a:ec:12:fb:b4:57:79:
e9:e2:cf:e8:93:a2:ad:10:98:96:0b:d6:3f:8d:48:ba:73:d2:
65:db:e0:51:20:d2:0f:7e:0c:30:e4:0b:4f:f1:25:c9:d6:01:
d0:63:60:da:79:b6:cc:52:ea:c6:81:a3:07:44:81:7f:d3:8d:
38:ee:e8:aa:47:8f:0d:cb:1e:19:87:bc:1f:0c:3e:89:9b:82:
49:50:97:87:ea:4d:9f:d8:51:35:b9:d3:d9:10:ab:ec:a3:f0:
65:76:9e:e0:1b:47:21:26:fe:7b:78:30:74:76:14:73:51:94:
86:fa:d0:ed:5b:f1:21:ad:ff:67:e9:5f:63:b7:34:4d:9a:05:
2b:9b:46:62:c8:d4:57:83:7b:49:5c:f9:4a:eb:bb:a1:44:e9:
0c:aa:4f:d1:02:de:3b:95:7d:82:6f:25:17:9b:b0:dc:60:b1:
bd:39:bf:71:a0:1c:50:3a:45:39:a6:0c:f1:c5:36:37:03:c4:
6e:10:20:b7:42:9a:ee:40:4d:a8:a3:41:eb:66:b6:ad:38:32:
ef:47:f1:5c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVriiMFA9SK3is4quaxjl7jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwNWEwNjA0ZTc2ODc2ZmEwM2U2YWQ4Njg3ZmExZGI2YzYz
ZDM5MDgwHhcNMjMwMTAxMDQxNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDdiMGNiN2RjYmU1MWNjZjI1YjQzMWY3OTVmYzMzMmYzNDNhZjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgWz8zxciOUs9iCNR/L1Z/xfrZkBh
wDLl/IPyaKhQyRxXnC6uIWaoW3yvdJrcfFn3QOpxwuh9kZub6mRbrjrhDiRnfSNm
CY/v0J1wwXsoOfu6c/gDmXPKsu+5O69gv0s0VB9McMscQVXuY1xS8Z5+7iHctPOn
Jw60mZW8l5/4pWOwHDQlRcNHr3jXTLekFoZ9s7J8hQg5tdu1o43u2N1WFY/CRZ6D
s4cnazxYYFRiABMgr1S3jG0KesygZZd9vEX9Huy2oqS70/sK0IFhsl6zAeicBPuR
5Qt8e7FJarFKJXCGaGPKeBVKZrQa1xKyZ50Y/TikeoehADf+t7gtTFlTdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHR7DLfcvlHM8ltDH3lfwzLzQ69jMB8GA1UdIwQY
MBaAFLBaBgTnaHb6A+athof6HbbGPTkIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0ZvR0JPZG9kdm9ENXEyR2hfb2R0c1k5T1FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi84MWFhNDktOGI0YS00YzI4LWE1Nzgt
YTYwNTcxN2QzNGFlLzEvZEhzTXQ5eS1VY3p5VzBNZmVWX0RNdk5EcjJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi84MWFhNDktOGI0YS00YzI4LWE1NzgtYTYwNTcxN2QzNGFl
LzEvc0ZvR0JPZG9kdm9ENXEyR2hfb2R0c1k5T1FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufMVMA0G
CSqGSIb3DQEBCwUAA4IBAQBoEwtGz/z8kOOSI3WYt1u/HKZoLYaVPKmcYGnfF0cW
JOHGCDtH449QjkYZw4aX0grsEvu0V3np4s/ok6KtEJiWC9Y/jUi6c9Jl2+BRINIP
fgww5AtP8SXJ1gHQY2DaebbMUurGgaMHRIF/04047uiqR48Nyx4Zh7wfDD6Jm4JJ
UJeH6k2f2FE1udPZEKvso/Bldp7gG0chJv57eDB0dhRzUZSG+tDtW/Ehrf9n6V9j
tzRNmgUrm0ZiyNRXg3tJXPlK67uhROkMqk/RAt47lX2CbyUXm7DcYLG9Ob9xoBxQ
OkU5pgzxxTY3A8RuECC3QpruQE2oo0HrZratODLvR/Fc
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:51 2024 by rpki-client on console-ams.rpki-client.org