Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/abdzl432OY34OTKdiv0KWJQV8c8.roa
File: abdzl432OY34OTKdiv0KWJQV8c8.roa (raw, json)
Hash identifier: QCHZ+3VADt0VKog+/l8l8EcdxOvysnMMZso2cUkC0Bo=
Subject key identifier: 69:B7:73:97:8D:F6:39:8D:F8:39:32:9D:8A:FD:0A:58:94:15:F1:CF
Certificate issuer: /CN=4f4da09fbbe90fb79f0f08b207f835f0f0da29fe
Certificate serial: 018CC4935E5D48362E7A57FD559A34E1F61A
Authority key identifier: 4F:4D:A0:9F:BB:E9:0F:B7:9F:0F:08:B2:07:F8:35:F0:F0:DA:29:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T02gn7vpD7efDwiyB_g18PDaKf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/abdzl432OY34OTKdiv0KWJQV8c8.roa
Signing time: Mon 01 Jan 2024 10:30:41 +0000
ROA not before: Mon 01 Jan 2024 10:30:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15576
IP address blocks: 185.75.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 10:47:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:5e:5d:48:36:2e:7a:57:fd:55:9a:34:e1:f6:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4da09fbbe90fb79f0f08b207f835f0f0da29fe
Validity
Not Before: Jan 1 10:30:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69b773978df6398df839329d8afd0a589415f1cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a7:ad:f4:61:d5:eb:7b:c1:88:68:1a:21:5f:
26:94:20:01:90:7b:30:9b:51:42:ed:4a:37:e4:4a:
f8:96:47:68:15:88:c0:e2:35:fe:ef:cd:75:a2:c8:
57:b5:7d:11:30:d8:a5:81:15:25:44:d3:ad:c6:5a:
59:1d:c4:8f:a4:98:f9:77:3b:dd:52:7e:41:a3:75:
d3:08:3b:b9:52:28:89:45:3e:f9:d5:ea:91:11:d8:
31:b9:a1:b8:7f:69:82:79:d1:74:9b:e7:04:4c:c1:
29:0d:e6:47:47:6b:48:af:c7:b8:80:47:ff:2d:13:
83:9c:18:c0:75:b6:ec:92:cc:69:ea:2e:59:24:6f:
bf:78:e8:37:08:5d:87:bd:d9:0a:52:8e:52:e7:4f:
48:30:ed:7e:bd:c6:11:8e:0b:8c:59:0d:b6:5e:3f:
27:72:e2:6f:72:71:ab:84:55:b2:cf:6f:dd:57:15:
48:7a:43:1c:bb:f8:b7:6c:be:47:60:ff:f0:fe:c0:
43:87:27:42:0f:16:bb:aa:72:85:06:a6:5b:76:30:
75:71:e3:ea:92:84:37:8d:a5:a0:da:75:30:71:bf:
78:5c:8e:5a:7d:f0:2f:f2:e9:43:82:00:77:9e:af:
92:0c:92:62:33:d5:bd:ab:cb:e0:89:b6:82:26:b6:
97:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B7:73:97:8D:F6:39:8D:F8:39:32:9D:8A:FD:0A:58:94:15:F1:CF
X509v3 Authority Key Identifier:
keyid:4F:4D:A0:9F:BB:E9:0F:B7:9F:0F:08:B2:07:F8:35:F0:F0:DA:29:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T02gn7vpD7efDwiyB_g18PDaKf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/abdzl432OY34OTKdiv0KWJQV8c8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/T02gn7vpD7efDwiyB_g18PDaKf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.153.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:9b:fa:dd:52:f0:4e:af:6b:37:bf:8a:0e:c5:89:67:b0:3f:
ff:8c:b2:00:cd:4c:30:a2:fb:f5:29:cc:df:fa:bf:88:07:00:
23:4e:b5:ea:bd:83:e1:80:72:b1:c7:9f:d6:04:97:fa:b5:26:
8d:94:24:02:2c:ba:0f:ce:23:b0:7e:b6:03:69:1c:40:fb:27:
52:4c:26:79:e8:34:68:44:31:f4:2f:f2:77:80:61:f5:4d:3c:
3c:87:f2:2f:96:97:9b:b2:70:0a:84:ed:f5:47:c5:9c:78:1b:
30:31:eb:e1:89:bc:d8:cd:3b:e0:01:39:f4:5f:05:0d:a3:91:
ae:74:9c:8e:e2:1e:98:3d:99:83:c2:d3:ff:7e:a3:be:71:cd:
86:c9:e9:26:38:90:33:1c:ca:31:20:21:ba:80:79:d6:cb:cf:
cf:fb:77:df:8a:6d:97:1f:a1:42:b2:33:ba:76:ba:2c:09:62:
bd:77:c3:c8:cc:76:e9:d9:29:98:72:5e:c4:de:03:4c:60:28:
b5:f0:fd:de:3e:3e:0b:c6:95:43:5b:7d:78:83:4b:c5:4e:ed:
b1:80:ec:2f:39:d2:62:5f:f6:fd:c3:b2:d9:4f:28:fc:8d:b8:
c2:e1:ab:c4:b6:dd:d1:ce:2c:e1:54:24:98:86:e9:92:4b:73:
c9:db:1e:95
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEk15dSDYuelf9VZo04fYaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmNGRhMDlmYmJlOTBmYjc5ZjBmMDhiMjA3ZjgzNWYwZjBk
YTI5ZmUwHhcNMjQwMTAxMTAzMDQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OWI3NzM5NzhkZjYzOThkZjgzOTMyOWQ4YWZkMGE1ODk0MTVmMWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKet9GHV63vBiGgaIV8mlCABkHsw
m1FC7Uo35Er4lkdoFYjA4jX+7811oshXtX0RMNilgRUlRNOtxlpZHcSPpJj5dzvd
Un5Bo3XTCDu5UiiJRT751eqREdgxuaG4f2mCedF0m+cETMEpDeZHR2tIr8e4gEf/
LRODnBjAdbbsksxp6i5ZJG+/eOg3CF2HvdkKUo5S509IMO1+vcYRjguMWQ22Xj8n
cuJvcnGrhFWyz2/dVxVIekMcu/i3bL5HYP/w/sBDhydCDxa7qnKFBqZbdjB1cePq
koQ3jaWg2nUwcb94XI5affAv8ulDggB3nq+SDJJiM9W9q8vgibaCJraX1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGm3c5eN9jmN+DkynYr9CliUFfHPMB8GA1UdIwQY
MBaAFE9NoJ+76Q+3nw8Isgf4NfDw2in+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDAyZ243dnBEN2VmRHdpeUJfZzE4UERhS2Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My82NmJkM2EtNTEyMS00OTBkLThjOTIt
NmVhOTRhOTYxZDRjLzEvYWJkemw0MzJPWTM0T1RLZGl2MEtXSlFWOGM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My82NmJkM2EtNTEyMS00OTBkLThjOTItNmVhOTRhOTYxZDRj
LzEvVDAyZ243dnBEN2VmRHdpeUJfZzE4UERhS2Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUuZMA0G
CSqGSIb3DQEBCwUAA4IBAQB8m/rdUvBOr2s3v4oOxYlnsD//jLIAzUwwovv1Kczf
+r+IBwAjTrXqvYPhgHKxx5/WBJf6tSaNlCQCLLoPziOwfrYDaRxA+ydSTCZ56DRo
RDH0L/J3gGH1TTw8h/IvlpebsnAKhO31R8WceBswMevhibzYzTvgATn0XwUNo5Gu
dJyO4h6YPZmDwtP/fqO+cc2GyekmOJAzHMoxICG6gHnWy8/P+3ffim2XH6FCsjO6
drosCWK9d8PIzHbp2SmYcl7E3gNMYCi18P3ePj4LxpVDW314g0vFTu2xgOwvOdJi
X/b9w7LZTyj8jbjC4avEtt3RzizhVCSYhumSS3PJ2x6V
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:03 2024 by rpki-client on console-ams.rpki-client.org