Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/dK-HcuAFde81_l-IdAyAsBRQQCk.roa
File: dK-HcuAFde81_l-IdAyAsBRQQCk.roa (raw, json)
Hash identifier: fXXtiWhGFaPJvvxqzttwIgxHQVidxWOl57715W6WVNA=
Subject key identifier: 74:AF:87:72:E0:05:75:EF:35:FE:5F:88:74:0C:80:B0:14:50:40:29
Certificate issuer: /CN=1bfe6b9a0e6898a7a2e9d84d3dbf6327b453e662
Certificate serial: 01856CCAC226AB0C27D9423BF8E72697161C
Authority key identifier: 1B:FE:6B:9A:0E:68:98:A7:A2:E9:D8:4D:3D:BF:63:27:B4:53:E6:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_5rmg5omKei6dhNPb9jJ7RT5mI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/dK-HcuAFde81_l-IdAyAsBRQQCk.roa
Signing time: Sun 01 Jan 2023 10:05:05 +0000
ROA not before: Sun 01 Jan 2023 10:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45031
IP address blocks: 185.133.26.0/23 maxlen: 23
2a00:6700::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Mar 2023 13:10:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:c2:26:ab:0c:27:d9:42:3b:f8:e7:26:97:16:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bfe6b9a0e6898a7a2e9d84d3dbf6327b453e662
Validity
Not Before: Jan 1 10:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74af8772e00575ef35fe5f88740c80b014504029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:63:9c:10:80:43:39:01:2a:96:a4:e7:e4:65:
60:c8:88:f7:99:fd:08:14:72:40:77:65:3f:91:cf:
c5:93:08:4f:29:33:72:a6:68:39:8c:ce:70:13:d9:
9e:0b:db:16:2c:75:4c:c3:58:0c:19:2a:df:6b:fd:
59:cd:11:ae:18:b9:4e:c6:49:60:ad:a7:7e:95:e2:
76:8f:e7:c0:fc:22:97:d6:b6:cf:54:5e:e4:40:6e:
ac:1f:32:14:1e:56:56:91:63:ef:93:4a:f7:bc:da:
aa:b9:7f:a2:31:74:fb:cb:5d:42:8b:94:9b:e4:3d:
5c:60:69:36:20:3f:21:20:c3:3d:77:7d:36:55:af:
72:10:a5:62:95:c6:ca:53:c9:e1:1b:6c:3c:8a:25:
be:88:9d:bf:15:4f:28:9c:fa:8e:70:91:e5:a7:0c:
07:37:f2:1a:fa:df:b2:c0:1d:17:35:db:bc:f7:1d:
b3:57:33:20:6a:d0:2a:39:20:c8:14:61:b4:c9:86:
3f:c8:6c:4e:5d:cc:95:5a:c6:f4:98:aa:7b:e4:e4:
af:22:73:82:8e:1b:28:58:5c:d1:6b:fe:0c:3b:d7:
3e:34:3c:97:9c:3b:28:30:ef:87:80:88:2a:07:0d:
81:db:f9:66:ec:6e:36:e4:d2:58:4d:02:60:01:4a:
10:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AF:87:72:E0:05:75:EF:35:FE:5F:88:74:0C:80:B0:14:50:40:29
X509v3 Authority Key Identifier:
keyid:1B:FE:6B:9A:0E:68:98:A7:A2:E9:D8:4D:3D:BF:63:27:B4:53:E6:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_5rmg5omKei6dhNPb9jJ7RT5mI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/dK-HcuAFde81_l-IdAyAsBRQQCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/G_5rmg5omKei6dhNPb9jJ7RT5mI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.26.0/23
IPv6:
2a00:6700::/48
Signature Algorithm: sha256WithRSAEncryption
82:17:e5:67:a7:1c:98:9a:42:6d:04:3a:19:ae:95:16:df:6f:
4d:f6:a7:06:56:68:df:86:e4:31:1e:23:84:bc:eb:60:10:2f:
02:1e:e8:ce:d7:cf:0f:a4:b8:19:15:ac:1f:05:5e:38:77:06:
b7:c3:5f:64:75:24:0e:81:c5:e4:39:45:4a:90:3d:77:01:66:
7a:14:96:8c:91:fc:7f:9d:bf:e9:5d:af:78:86:4a:36:ff:6f:
d5:d3:17:28:4d:eb:3e:95:d2:08:50:2b:77:40:91:61:16:34:
32:42:45:c5:47:55:16:fe:68:64:05:f0:74:43:61:00:ef:af:
74:25:b7:05:8b:ca:8e:a9:38:e7:2c:32:f9:49:74:03:72:ba:
50:e7:3f:2e:fb:62:60:52:d6:67:9a:45:e1:78:f9:2c:4a:e7:
19:26:f5:d2:79:08:59:89:b3:4d:37:43:89:57:09:85:50:c6:
8b:c4:11:f1:64:4e:e6:6e:51:58:bb:2d:39:5f:7e:c8:d3:46:
70:02:1a:59:3d:d1:a4:7f:d5:10:70:f0:3f:0a:bf:c8:8d:79:
54:e8:f2:e3:42:d9:11:5a:75:3e:cf:9a:b0:84:62:a9:a3:66:
dc:cf:60:40:eb:42:b8:d0:f9:82:26:6d:84:5f:51:17:5b:c5:
d0:76:54:d4
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVsysImqwwn2UI7+OcmlxYcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiZmU2YjlhMGU2ODk4YTdhMmU5ZDg0ZDNkYmY2MzI3YjQ1
M2U2NjIwHhcNMjMwMTAxMTAwNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NGFmODc3MmUwMDU3NWVmMzVmZTVmODg3NDBjODBiMDE0NTA0MDI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgGOcEIBDOQEqlqTn5GVgyIj3mf0I
FHJAd2U/kc/FkwhPKTNypmg5jM5wE9meC9sWLHVMw1gMGSrfa/1ZzRGuGLlOxklg
rad+leJ2j+fA/CKX1rbPVF7kQG6sHzIUHlZWkWPvk0r3vNqquX+iMXT7y11Ci5Sb
5D1cYGk2ID8hIMM9d302Va9yEKVilcbKU8nhG2w8iiW+iJ2/FU8onPqOcJHlpwwH
N/Ia+t+ywB0XNdu89x2zVzMgatAqOSDIFGG0yYY/yGxOXcyVWsb0mKp75OSvInOC
jhsoWFzRa/4MO9c+NDyXnDsoMO+HgIgqBw2B2/lm7G425NJYTQJgAUoQ/QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHSvh3LgBXXvNf5fiHQMgLAUUEApMB8GA1UdIwQY
MBaAFBv+a5oOaJinounYTT2/Yye0U+ZiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR181cm1nNW9tS2VpNmRoTlBiOWpKN1JUNW1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hNTY3MjMtZDM3Yy00MTdiLWE4YTEt
NmUyMmJmNDM2MzA0LzEvZEstSGN1QUZkZTgxX2wtSWRBeUFzQlJRUUNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hNTY3MjMtZDM3Yy00MTdiLWE4YTEtNmUyMmJmNDM2MzA0
LzEvR181cm1nNW9tS2VpNmRoTlBiOWpKN1JUNW1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBuYUaMA8E
AgACMAkDBwAqAGcAAAAwDQYJKoZIhvcNAQELBQADggEBAIIX5WenHJiaQm0EOhmu
lRbfb032pwZWaN+G5DEeI4S862AQLwIe6M7Xzw+kuBkVrB8FXjh3BrfDX2R1JA6B
xeQ5RUqQPXcBZnoUloyR/H+dv+ldr3iGSjb/b9XTFyhN6z6V0ghQK3dAkWEWNDJC
RcVHVRb+aGQF8HRDYQDvr3QltwWLyo6pOOcsMvlJdANyulDnPy77YmBS1meaReF4
+SxK5xkm9dJ5CFmJs003Q4lXCYVQxovEEfFkTuZuUVi7LTlffsjTRnACGlk90aR/
1RBw8D8Kv8iNeVTo8uNC2RFadT7PmrCEYqmjZtzPYEDrQrjQ+YImbYRfURdbxdB2
VNQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org