Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/244a71-e6af-4905-bf65-dfe3c4c5288c/1/2-TY9sJlB-GBeVgpBeONzXAJFB8.roa
File: 2-TY9sJlB-GBeVgpBeONzXAJFB8.roa (raw, json)
Hash identifier: LQOiE24rgOBJmmcym6DiKOSPH3yXszD61EpJH8TCEdk=
Subject key identifier: DB:E4:D8:F6:C2:65:07:E1:81:79:58:29:05:E3:8D:CD:70:09:14:1F
Certificate issuer: /CN=f691ab3245ff895a72dd6ff0743c377b6f0f89a6
Certificate serial: 018A8E5464C1D18B641845C801CC5FBEA981
Authority key identifier: F6:91:AB:32:45:FF:89:5A:72:DD:6F:F0:74:3C:37:7B:6F:0F:89:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9pGrMkX_iVpy3W_wdDw3e28PiaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/244a71-e6af-4905-bf65-dfe3c4c5288c/1/2-TY9sJlB-GBeVgpBeONzXAJFB8.roa
Signing time: Wed 13 Sep 2023 11:36:50 +0000
ROA not before: Wed 13 Sep 2023 11:36:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31673
IP address blocks: 185.185.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8e:54:64:c1:d1:8b:64:18:45:c8:01:cc:5f:be:a9:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f691ab3245ff895a72dd6ff0743c377b6f0f89a6
Validity
Not Before: Sep 13 11:36:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbe4d8f6c26507e18179582905e38dcd7009141f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8d:84:dd:00:bb:0a:ab:da:38:a9:9f:93:25:
7c:26:34:b9:52:bf:ff:57:59:0a:b3:a6:5a:18:66:
b3:e5:ff:9b:6d:b7:24:f6:42:d6:d0:74:77:da:1e:
d9:4a:64:2f:39:55:92:6e:10:82:43:96:29:cb:93:
09:90:26:52:48:7f:a5:68:84:7b:f8:6f:d0:0b:eb:
f7:c9:ed:05:78:97:b7:36:b1:e3:b4:c4:25:65:39:
92:ed:a0:97:31:57:9e:27:d5:fc:aa:27:5f:4e:c1:
0a:53:29:74:3a:c5:e7:88:7a:b6:aa:42:35:fa:14:
77:ad:20:b4:65:d2:5e:5e:d8:8e:e4:02:31:c5:4b:
ed:98:65:5c:6b:81:58:24:37:bd:01:b5:05:f5:98:
ae:52:1e:8f:a5:13:9b:b7:7a:0b:b6:dc:03:55:2e:
12:ea:63:8b:e6:ba:2d:dc:80:2e:bd:59:4f:a9:77:
59:0b:59:50:fa:58:d6:5a:e3:13:9f:f5:1d:a8:aa:
59:c5:5c:e2:b4:f9:50:3a:b0:1a:3f:fc:ef:a0:0e:
b7:6a:37:09:7b:a0:bd:18:6d:4f:15:45:b3:53:e6:
08:39:53:14:0c:1c:d0:8a:18:15:df:53:d7:a1:70:
67:46:78:27:ca:8c:24:18:a3:ae:a0:24:a2:ba:63:
58:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:E4:D8:F6:C2:65:07:E1:81:79:58:29:05:E3:8D:CD:70:09:14:1F
X509v3 Authority Key Identifier:
keyid:F6:91:AB:32:45:FF:89:5A:72:DD:6F:F0:74:3C:37:7B:6F:0F:89:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9pGrMkX_iVpy3W_wdDw3e28PiaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/244a71-e6af-4905-bf65-dfe3c4c5288c/1/2-TY9sJlB-GBeVgpBeONzXAJFB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/244a71-e6af-4905-bf65-dfe3c4c5288c/1/9pGrMkX_iVpy3W_wdDw3e28PiaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.164.0/22
Signature Algorithm: sha256WithRSAEncryption
93:26:8c:45:72:8d:97:af:ca:c2:dc:a5:e1:73:9c:51:5a:69:
3c:f1:a0:1b:7a:1e:78:3c:fa:b8:de:fc:8f:91:d8:40:2b:ac:
c6:74:10:8c:fc:ea:bd:f0:54:59:d3:9c:ac:79:0c:0d:67:57:
19:ae:69:b1:19:60:b0:98:e7:ff:0a:5b:bf:42:53:73:f0:d9:
60:1b:a6:aa:84:1a:4d:b5:8e:0a:98:c1:47:bb:a1:51:20:e3:
c5:d7:1b:e9:94:0f:59:1f:cd:47:b6:50:e2:0b:c7:40:71:cf:
cb:e4:78:bb:3f:2a:f9:8d:92:62:6b:71:d2:12:85:44:2f:f4:
eb:20:14:ed:05:06:fb:8b:56:8f:20:1b:fb:05:66:42:88:2c:
d4:9a:9d:50:2d:00:14:bd:28:20:78:b4:19:72:11:ce:a6:82:
47:db:9b:33:8a:c5:36:fb:cb:f9:eb:c0:7b:25:be:98:61:fd:
2b:3c:12:af:8c:e6:2a:96:62:3d:31:9a:52:c5:d7:a0:4a:b4:
64:e7:69:49:6c:58:78:1f:85:59:f4:37:09:f2:4c:09:00:d5:
7d:30:2a:c0:db:25:f2:fa:f8:95:dd:6e:4a:a4:26:83:bf:ad:
c3:ee:d3:57:64:d9:b3:8d:05:dd:fd:fa:a1:71:86:1f:56:6e:
43:9c:d1:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqOVGTB0YtkGEXIAcxfvqmBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2OTFhYjMyNDVmZjg5NWE3MmRkNmZmMDc0M2MzNzdiNmYw
Zjg5YTYwHhcNMjMwOTEzMTEzNjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYmU0ZDhmNmMyNjUwN2UxODE3OTU4MjkwNWUzOGRjZDcwMDkxNDFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApo2E3QC7CqvaOKmfkyV8JjS5Ur//
V1kKs6ZaGGaz5f+bbbck9kLW0HR32h7ZSmQvOVWSbhCCQ5Ypy5MJkCZSSH+laIR7
+G/QC+v3ye0FeJe3NrHjtMQlZTmS7aCXMVeeJ9X8qidfTsEKUyl0OsXniHq2qkI1
+hR3rSC0ZdJeXtiO5AIxxUvtmGVca4FYJDe9AbUF9ZiuUh6PpRObt3oLttwDVS4S
6mOL5rot3IAuvVlPqXdZC1lQ+ljWWuMTn/UdqKpZxVzitPlQOrAaP/zvoA63ajcJ
e6C9GG1PFUWzU+YIOVMUDBzQihgV31PXoXBnRngnyowkGKOuoCSiumNYuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNvk2PbCZQfhgXlYKQXjjc1wCRQfMB8GA1UdIwQY
MBaAFPaRqzJF/4lact1v8HQ8N3tvD4mmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOXBHck1rWF9pVnB5M1dfd2REdzNlMjhQaWFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8yNDRhNzEtZTZhZi00OTA1LWJmNjUt
ZGZlM2M0YzUyODhjLzEvMi1UWTlzSmxCLUdCZVZncEJlT056WEFKRkI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS8yNDRhNzEtZTZhZi00OTA1LWJmNjUtZGZlM2M0YzUyODhj
LzEvOXBHck1rWF9pVnB5M1dfd2REdzNlMjhQaWFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubmkMA0G
CSqGSIb3DQEBCwUAA4IBAQCTJoxFco2Xr8rC3KXhc5xRWmk88aAbeh54PPq43vyP
kdhAK6zGdBCM/Oq98FRZ05yseQwNZ1cZrmmxGWCwmOf/Clu/QlNz8NlgG6aqhBpN
tY4KmMFHu6FRIOPF1xvplA9ZH81HtlDiC8dAcc/L5Hi7Pyr5jZJia3HSEoVEL/Tr
IBTtBQb7i1aPIBv7BWZCiCzUmp1QLQAUvSggeLQZchHOpoJH25szisU2+8v568B7
Jb6YYf0rPBKvjOYqlmI9MZpSxdegSrRk52lJbFh4H4VZ9DcJ8kwJANV9MCrA2yXy
+viV3W5KpCaDv63D7tNXZNmzjQXd/fqhcYYfVm5DnNEW
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:14 2024 by rpki-client on console-ams.rpki-client.org