Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/41eaf9-656d-40d9-9f7a-334de3d76fe5/1/P3D0sxBwUT-uSkfH0roLeXVE1nA.roa
File: P3D0sxBwUT-uSkfH0roLeXVE1nA.roa (raw, json)
Hash identifier: Dk1De37hfvfWUaAffW6BhNJZS4jtE1tDqwbgdvnav80=
Subject key identifier: 3F:70:F4:B3:10:70:51:3F:AE:4A:47:C7:D2:BA:0B:79:75:44:D6:70
Certificate issuer: /CN=a6bb3045aea78e8fa7648129714fb736068dc37b
Certificate serial: 018BECB316ABC0B3AB6A211970E198F5474B
Authority key identifier: A6:BB:30:45:AE:A7:8E:8F:A7:64:81:29:71:4F:B7:36:06:8D:C3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prswRa6njo-nZIEpcU-3NgaNw3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/41eaf9-656d-40d9-9f7a-334de3d76fe5/1/P3D0sxBwUT-uSkfH0roLeXVE1nA.roa
Signing time: Mon 20 Nov 2023 12:27:21 +0000
ROA not before: Mon 20 Nov 2023 12:27:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 185.184.176.0/22 maxlen: 22
77.111.232.0/22 maxlen: 22
188.227.200.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:b3:16:ab:c0:b3:ab:6a:21:19:70:e1:98:f5:47:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6bb3045aea78e8fa7648129714fb736068dc37b
Validity
Not Before: Nov 20 12:27:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f70f4b31070513fae4a47c7d2ba0b797544d670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ed:4b:05:25:4f:f1:4d:46:17:09:8a:cd:1f:
e1:57:cd:60:58:39:03:0c:ce:4f:19:96:a8:de:d7:
ad:ec:5e:89:dd:b6:51:35:2e:9b:af:1e:e4:86:71:
ae:7f:95:07:71:cb:a9:88:7e:d3:88:fe:66:03:bb:
6d:15:5d:71:bc:d1:62:c6:fa:a3:d2:c0:c2:02:1f:
f5:5e:81:9e:e4:5d:89:4e:5c:a2:c8:da:3a:7c:a4:
02:5b:1e:d3:57:a9:56:9a:0c:30:20:c0:75:7f:d4:
9d:3a:3f:a2:64:96:1d:d9:26:2b:35:92:f1:ce:1d:
a3:e4:f9:bd:21:66:3b:ea:89:13:a0:6d:a5:eb:1f:
8c:2b:b8:8c:54:1f:83:75:07:8b:35:bb:28:e6:de:
42:23:a6:36:bc:c2:7f:57:35:c3:d1:a6:ef:bb:67:
f5:4d:35:d7:18:81:e9:01:38:a9:55:e2:94:d9:df:
20:a0:b4:e8:d8:6b:ca:6a:94:70:a1:df:50:31:a8:
2b:37:a5:0a:ab:6d:4f:ac:3f:f3:26:68:ec:b9:22:
d8:6b:45:95:78:8e:db:bb:91:0b:3a:69:03:89:f4:
58:59:60:b1:97:4f:74:05:10:ab:d0:54:0f:ee:37:
db:a0:d7:86:72:54:4b:3c:e7:74:6c:78:c3:f3:dd:
3d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:70:F4:B3:10:70:51:3F:AE:4A:47:C7:D2:BA:0B:79:75:44:D6:70
X509v3 Authority Key Identifier:
keyid:A6:BB:30:45:AE:A7:8E:8F:A7:64:81:29:71:4F:B7:36:06:8D:C3:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prswRa6njo-nZIEpcU-3NgaNw3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/41eaf9-656d-40d9-9f7a-334de3d76fe5/1/P3D0sxBwUT-uSkfH0roLeXVE1nA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/41eaf9-656d-40d9-9f7a-334de3d76fe5/1/prswRa6njo-nZIEpcU-3NgaNw3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.232.0/22
185.184.176.0/22
188.227.200.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:b5:1c:ca:26:77:48:bf:2a:ef:41:46:be:48:1c:6b:94:27:
b7:6f:d2:a0:44:19:6c:3e:a5:28:c1:e0:e4:08:37:bf:00:c3:
6b:20:f6:2b:2e:8d:f0:e6:1a:f2:18:75:7c:e2:34:93:19:70:
ae:03:aa:c4:93:e2:d8:fb:c7:c6:3b:f8:33:86:10:c1:42:11:
d7:8e:c8:31:af:57:b2:08:2e:f6:70:72:62:65:ae:f3:62:b0:
e6:9e:ec:b3:76:46:32:43:8c:7d:32:b0:89:58:de:0c:54:8e:
a1:98:5a:c1:03:1a:d5:dc:87:f9:91:6e:c2:58:2b:88:4a:c2:
4f:ab:a4:bb:13:81:16:82:00:ce:8b:75:d1:99:c1:ba:06:e6:
f3:d2:bc:20:42:ae:40:23:0e:c4:ac:2f:e2:0a:b8:b5:20:22:
fc:95:25:81:cb:73:65:ad:64:45:30:ab:fb:ca:fd:e0:85:1b:
fe:a8:1c:2a:cc:39:dc:3d:cd:2e:5f:4c:b7:98:92:53:31:3d:
25:c1:68:60:a8:b1:fa:d0:f7:fa:48:a4:0d:b1:20:5e:f9:84:
61:ab:a6:ec:5c:10:fc:ae:a1:10:f0:64:5b:42:f2:a9:6a:17:
9f:3f:dd:f7:c1:dc:ce:5c:79:19:5d:cf:28:5d:dc:13:7d:90:
c6:59:75:c7
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYvssxarwLOraiEZcOGY9UdLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2YmIzMDQ1YWVhNzhlOGZhNzY0ODEyOTcxNGZiNzM2MDY4
ZGMzN2IwHhcNMjMxMTIwMTIyNzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZjcwZjRiMzEwNzA1MTNmYWU0YTQ3YzdkMmJhMGI3OTc1NDRkNjcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAue1LBSVP8U1GFwmKzR/hV81gWDkD
DM5PGZao3tet7F6J3bZRNS6brx7khnGuf5UHccupiH7TiP5mA7ttFV1xvNFixvqj
0sDCAh/1XoGe5F2JTlyiyNo6fKQCWx7TV6lWmgwwIMB1f9SdOj+iZJYd2SYrNZLx
zh2j5Pm9IWY76okToG2l6x+MK7iMVB+DdQeLNbso5t5CI6Y2vMJ/VzXD0abvu2f1
TTXXGIHpATipVeKU2d8goLTo2GvKapRwod9QMagrN6UKq21PrD/zJmjsuSLYa0WV
eI7bu5ELOmkDifRYWWCxl090BRCr0FQP7jfboNeGclRLPOd0bHjD8909owIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFD9w9LMQcFE/rkpHx9K6C3l1RNZwMB8GA1UdIwQY
MBaAFKa7MEWup46Pp2SBKXFPtzYGjcN7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHJzd1JhNm5qby1uWklFcGNVLTNOZ2FOdzNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80MWVhZjktNjU2ZC00MGQ5LTlmN2Et
MzM0ZGUzZDc2ZmU1LzEvUDNEMHN4QndVVC11U2tmSDByb0xlWFZFMW5BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80MWVhZjktNjU2ZC00MGQ5LTlmN2EtMzM0ZGUzZDc2ZmU1
LzEvcHJzd1JhNm5qby1uWklFcGNVLTNOZ2FOdzNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCTW/oAwQC
ubiwAwQCvOPIMA0GCSqGSIb3DQEBCwUAA4IBAQA+tRzKJndIvyrvQUa+SBxrlCe3
b9KgRBlsPqUoweDkCDe/AMNrIPYrLo3w5hryGHV84jSTGXCuA6rEk+LY+8fGO/gz
hhDBQhHXjsgxr1eyCC72cHJiZa7zYrDmnuyzdkYyQ4x9MrCJWN4MVI6hmFrBAxrV
3If5kW7CWCuISsJPq6S7E4EWggDOi3XRmcG6Bubz0rwgQq5AIw7ErC/iCri1ICL8
lSWBy3NlrWRFMKv7yv3ghRv+qBwqzDncPc0uX0y3mJJTMT0lwWhgqLH60Pf6SKQN
sSBe+YRhq6bsXBD8rqEQ8GRbQvKpahefP933wdzOXHkZXc8oXdwTfZDGWXXH
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:05 2024 by rpki-client on console-fra.rpki-client.org