Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/975e4f-6c26-44bb-9ada-2fc6d17f8b58/1/3zogav7UdVXbbiUR1hMm06_65iQ.roa
File: 3zogav7UdVXbbiUR1hMm06_65iQ.roa (raw, json)
Hash identifier: kf+MA/ytbl/PyMN/dSW8d00e8uWibciJWQ0VmvtHwAM=
Subject key identifier: DF:3A:20:6A:FE:D4:75:55:DB:6E:25:11:D6:13:26:D3:AF:FA:E6:24
Certificate issuer: /CN=cd394757e1416202a4022956dbf48d707458520c
Certificate serial: 01856E38C2BC74CF4D301259B9B83517847E
Authority key identifier: CD:39:47:57:E1:41:62:02:A4:02:29:56:DB:F4:8D:70:74:58:52:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTlHV-FBYgKkAilW2_SNcHRYUgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/975e4f-6c26-44bb-9ada-2fc6d17f8b58/1/3zogav7UdVXbbiUR1hMm06_65iQ.roa
Signing time: Sun 01 Jan 2023 16:44:51 +0000
ROA not before: Sun 01 Jan 2023 16:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.39.10.0/24 maxlen: 24
2a12:1b80::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:c2:bc:74:cf:4d:30:12:59:b9:b8:35:17:84:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd394757e1416202a4022956dbf48d707458520c
Validity
Not Before: Jan 1 16:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df3a206afed47555db6e2511d61326d3affae624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:81:0c:85:6e:27:bf:d7:c9:5d:77:c3:e7:6a:
cf:f7:0c:74:39:3e:96:97:c7:e8:7f:c5:4d:79:0a:
27:58:2d:75:f3:19:f5:21:68:49:eb:f1:0e:57:f6:
ff:a9:ef:de:9e:16:2f:a6:84:87:08:01:33:ee:61:
3e:df:01:d6:9e:71:09:0f:5f:19:cb:b1:bb:15:a9:
bd:b1:4e:b2:3b:53:74:c4:5a:e6:cf:b8:5e:2f:54:
6c:4a:2b:f0:cf:b7:4a:59:c1:b2:e8:41:69:8f:5c:
2e:c3:5f:bc:2e:92:a5:59:c6:2f:34:b9:09:81:05:
71:dd:2a:51:bb:d0:ac:e1:27:45:a3:3d:12:1c:16:
f1:62:b1:42:75:74:6c:44:47:0f:30:1c:4b:ca:e5:
77:ee:03:58:8c:7e:8a:4f:62:15:e4:ea:71:b2:df:
dc:ba:28:fa:87:c6:0b:e6:39:80:5a:59:8d:8b:c8:
60:af:b3:52:dd:c6:1c:5a:80:f3:f0:3a:84:bd:39:
95:05:f1:23:ad:55:bb:48:80:bc:ed:39:3a:85:da:
5b:3a:e9:8a:29:df:a9:2c:c7:53:ae:6f:1b:de:4e:
66:51:e2:9a:03:9d:8a:bf:6f:74:ee:a5:6c:6e:8d:
cc:a9:01:62:05:fe:6d:b1:b1:cc:60:65:5b:53:67:
f4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:3A:20:6A:FE:D4:75:55:DB:6E:25:11:D6:13:26:D3:AF:FA:E6:24
X509v3 Authority Key Identifier:
keyid:CD:39:47:57:E1:41:62:02:A4:02:29:56:DB:F4:8D:70:74:58:52:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTlHV-FBYgKkAilW2_SNcHRYUgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/975e4f-6c26-44bb-9ada-2fc6d17f8b58/1/3zogav7UdVXbbiUR1hMm06_65iQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/975e4f-6c26-44bb-9ada-2fc6d17f8b58/1/zTlHV-FBYgKkAilW2_SNcHRYUgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.10.0/24
IPv6:
2a12:1b80::/32
Signature Algorithm: sha256WithRSAEncryption
71:cd:ed:6c:03:13:14:69:87:71:5a:ab:af:3b:21:9b:89:ac:
74:b1:c3:df:10:0b:92:b8:df:1f:df:09:73:54:06:ef:a1:8b:
16:29:67:dc:ac:34:fa:59:ff:e6:16:47:8f:35:fc:12:94:96:
6f:62:f2:87:6c:e4:88:09:3b:ff:f8:d7:a1:a8:f6:6d:df:37:
06:e3:fe:7c:ce:c7:f8:16:f9:58:f5:ee:c3:20:cc:97:00:66:
aa:0a:b8:0a:31:24:3d:d7:4b:48:20:ac:a8:bd:bc:91:5a:32:
70:fe:9d:2a:06:30:8b:7a:48:60:a5:48:30:1e:ef:e5:f5:19:
7f:46:8d:ef:88:be:74:d4:35:27:b2:e3:cb:e6:e4:97:a0:c9:
57:8c:61:79:c2:b4:0e:85:03:11:f1:44:4e:c2:34:da:20:1f:
5c:e2:62:f7:06:fa:28:3d:a8:98:f8:37:2f:2a:81:32:f3:1b:
c3:fe:1a:c7:f1:60:8b:53:6e:e2:32:d9:ce:28:c4:0e:b2:b1:
c8:33:f3:4b:68:fe:75:15:29:13:49:5b:37:88:05:8b:0c:5a:
92:18:8d:40:99:09:c9:73:ae:31:09:7d:5a:13:8b:a1:e9:e8:
4e:3e:c6:d1:fa:fe:31:55:11:63:3d:2f:60:80:f8:7e:69:bd:
1c:0a:3e:e2
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVuOMK8dM9NMBJZubg1F4R+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkMzk0NzU3ZTE0MTYyMDJhNDAyMjk1NmRiZjQ4ZDcwNzQ1
ODUyMGMwHhcNMjMwMTAxMTY0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjNhMjA2YWZlZDQ3NTU1ZGI2ZTI1MTFkNjEzMjZkM2FmZmFlNjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIEMhW4nv9fJXXfD52rP9wx0OT6W
l8fof8VNeQonWC118xn1IWhJ6/EOV/b/qe/enhYvpoSHCAEz7mE+3wHWnnEJD18Z
y7G7Fam9sU6yO1N0xFrmz7heL1RsSivwz7dKWcGy6EFpj1wuw1+8LpKlWcYvNLkJ
gQVx3SpRu9Cs4SdFoz0SHBbxYrFCdXRsREcPMBxLyuV37gNYjH6KT2IV5Opxst/c
uij6h8YL5jmAWlmNi8hgr7NS3cYcWoDz8DqEvTmVBfEjrVW7SIC87Tk6hdpbOumK
Kd+pLMdTrm8b3k5mUeKaA52Kv2907qVsbo3MqQFiBf5tsbHMYGVbU2f04QIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFN86IGr+1HVV224lEdYTJtOv+uYkMB8GA1UdIwQY
MBaAFM05R1fhQWICpAIpVtv0jXB0WFIMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelRsSFYtRkJZZ0trQWlsVzJfU05jSFJZVWd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi85NzVlNGYtNmMyNi00NGJiLTlhZGEt
MmZjNmQxN2Y4YjU4LzEvM3pvZ2F2N1VkVlhiYmlVUjFoTW0wNl82NWlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi85NzVlNGYtNmMyNi00NGJiLTlhZGEtMmZjNmQxN2Y4YjU4
LzEvelRsSFYtRkJZZ0trQWlsVzJfU05jSFJZVWd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuScKMA0E
AgACMAcDBQAqEhuAMA0GCSqGSIb3DQEBCwUAA4IBAQBxze1sAxMUaYdxWquvOyGb
iax0scPfEAuSuN8f3wlzVAbvoYsWKWfcrDT6Wf/mFkePNfwSlJZvYvKHbOSICTv/
+NehqPZt3zcG4/58zsf4FvlY9e7DIMyXAGaqCrgKMSQ910tIIKyovbyRWjJw/p0q
BjCLekhgpUgwHu/l9Rl/Ro3viL501DUnsuPL5uSXoMlXjGF5wrQOhQMR8UROwjTa
IB9c4mL3BvooPaiY+DcvKoEy8xvD/hrH8WCLU27iMtnOKMQOsrHIM/NLaP51FSkT
SVs3iAWLDFqSGI1AmQnJc64xCX1aE4uh6ehOPsbR+v4xVRFjPS9ggPh+ab0cCj7i
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:51 2024 by rpki-client on console-fra.rpki-client.org