Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/6b5064-8d5e-4c94-b5bd-050204532286/1/JS2sWI5cv3S5wVBciAqCD6m0UP8.roa
File: JS2sWI5cv3S5wVBciAqCD6m0UP8.roa (raw, json)
Hash identifier: kt6iIXOO+dMKwkbI8E40cmlu0iKvvPPtdrFaNt/Sn3w=
Subject key identifier: 25:2D:AC:58:8E:5C:BF:74:B9:C1:50:5C:88:0A:82:0F:A9:B4:50:FF
Certificate issuer: /CN=391975ad57ceb765ad948be5eb4c382dc74844c0
Certificate serial: 01856F3013DDE37CB93AF94E31B5990957B8
Authority key identifier: 39:19:75:AD:57:CE:B7:65:AD:94:8B:E5:EB:4C:38:2D:C7:48:44:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORl1rVfOt2WtlIvl60w4LcdIRMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/6b5064-8d5e-4c94-b5bd-050204532286/1/JS2sWI5cv3S5wVBciAqCD6m0UP8.roa
Signing time: Sun 01 Jan 2023 21:14:59 +0000
ROA not before: Sun 01 Jan 2023 21:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.243.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:13:dd:e3:7c:b9:3a:f9:4e:31:b5:99:09:57:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391975ad57ceb765ad948be5eb4c382dc74844c0
Validity
Not Before: Jan 1 21:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=252dac588e5cbf74b9c1505c880a820fa9b450ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9f:f6:ca:bb:7b:b3:3b:b8:4b:af:fe:a0:92:
33:bb:17:26:b2:cf:03:f8:b3:2c:7f:33:7f:16:81:
a0:de:53:81:8d:39:96:77:41:99:6c:9d:a2:ea:68:
ee:f5:08:f5:81:64:bc:1e:02:65:9a:80:2a:2e:f9:
de:26:27:85:f0:35:ec:92:83:b6:94:67:86:5c:99:
64:3a:a0:a2:ae:6d:8e:eb:95:de:a6:d5:c6:03:ab:
b3:f5:a8:76:79:79:a4:4c:e1:a8:4a:2d:1b:ac:26:
b2:03:a9:71:59:37:57:e8:87:0e:b4:65:12:10:b5:
89:70:bb:db:44:7c:c4:89:cc:89:c7:50:a9:e4:5d:
a9:6b:7a:d7:be:1b:cf:0d:48:1d:fa:81:19:5b:8f:
3d:bd:52:1f:2e:f1:cc:71:d6:2d:b0:6c:de:a1:2f:
53:01:25:a9:a8:74:cf:98:7c:b0:97:36:c6:67:09:
17:96:5c:df:ea:3e:b8:3b:14:e0:59:dc:d6:6b:1b:
53:07:fc:b8:60:17:79:46:f6:97:41:90:82:82:a7:
60:0a:a8:c9:4e:27:46:f8:40:c7:71:e1:3f:1e:5d:
34:54:61:06:7a:be:f3:53:a5:a6:a6:7d:a1:dd:d9:
4c:0c:7e:92:51:1c:41:a0:c6:0d:ce:e2:92:e6:d4:
cf:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:2D:AC:58:8E:5C:BF:74:B9:C1:50:5C:88:0A:82:0F:A9:B4:50:FF
X509v3 Authority Key Identifier:
keyid:39:19:75:AD:57:CE:B7:65:AD:94:8B:E5:EB:4C:38:2D:C7:48:44:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORl1rVfOt2WtlIvl60w4LcdIRMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6b5064-8d5e-4c94-b5bd-050204532286/1/JS2sWI5cv3S5wVBciAqCD6m0UP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6b5064-8d5e-4c94-b5bd-050204532286/1/ORl1rVfOt2WtlIvl60w4LcdIRMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.24.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:bd:32:4e:61:d2:5c:b4:2b:dc:05:9d:b5:e6:b5:a0:14:0b:
86:94:f2:95:38:4e:25:46:ad:a9:ff:38:a8:ae:e2:cd:e2:16:
e8:8c:38:d5:c8:e0:2c:09:87:54:ac:da:6c:e6:58:b2:7d:f3:
12:ff:68:39:0e:b3:a6:e9:d7:b9:cf:f8:74:d8:24:cd:b3:dc:
0a:27:59:ec:56:f6:88:eb:6f:d9:e0:cc:71:c9:35:ef:ac:1f:
d2:26:7d:80:39:38:fb:52:d3:e2:1b:75:a9:48:ee:8d:bc:bf:
47:7f:32:64:a7:02:66:11:a9:62:1b:9a:21:d0:c8:dd:2e:96:
aa:ff:7f:6b:2e:5f:ad:7b:88:97:a7:8c:d4:3e:68:63:8c:26:
b9:22:52:f4:8a:98:35:d1:e9:3d:cc:0b:ac:7e:3a:56:1c:50:
62:c3:1f:aa:7a:a8:36:13:ba:0d:c9:3b:ef:48:84:dd:de:92:
e2:82:c6:30:41:da:f1:f9:a8:78:df:32:5c:c1:46:ad:bb:e6:
6b:e6:0f:7a:eb:20:83:f9:18:16:2b:a0:e2:c6:09:d3:8a:ad:
45:68:c6:81:4e:99:4c:78:ce:59:54:8a:8b:7a:63:34:be:a9:
46:c2:b6:88:c2:f0:62:a8:41:e3:e1:d4:ff:f1:27:84:3a:a5:
56:ec:8d:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvMBPd43y5OvlOMbWZCVe4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MTk3NWFkNTdjZWI3NjVhZDk0OGJlNWViNGMzODJkYzc0
ODQ0YzAwHhcNMjMwMTAxMjExNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTJkYWM1ODhlNWNiZjc0YjljMTUwNWM4ODBhODIwZmE5YjQ1MGZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJ/2yrt7szu4S6/+oJIzuxcmss8D
+LMsfzN/FoGg3lOBjTmWd0GZbJ2i6mju9Qj1gWS8HgJlmoAqLvneJieF8DXskoO2
lGeGXJlkOqCirm2O65XeptXGA6uz9ah2eXmkTOGoSi0brCayA6lxWTdX6IcOtGUS
ELWJcLvbRHzEicyJx1Cp5F2pa3rXvhvPDUgd+oEZW489vVIfLvHMcdYtsGzeoS9T
ASWpqHTPmHywlzbGZwkXllzf6j64OxTgWdzWaxtTB/y4YBd5RvaXQZCCgqdgCqjJ
TidG+EDHceE/Hl00VGEGer7zU6Wmpn2h3dlMDH6SURxBoMYNzuKS5tTPswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCUtrFiOXL90ucFQXIgKgg+ptFD/MB8GA1UdIwQY
MBaAFDkZda1XzrdlrZSL5etMOC3HSETAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1JsMXJWZk90Mld0bEl2bDYwdzRMY2RJUk1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy82YjUwNjQtOGQ1ZS00Yzk0LWI1YmQt
MDUwMjA0NTMyMjg2LzEvSlMyc1dJNWN2M1M1d1ZCY2lBcUNENm0wVVA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy82YjUwNjQtOGQ1ZS00Yzk0LWI1YmQtMDUwMjA0NTMyMjg2
LzEvT1JsMXJWZk90Mld0bEl2bDYwdzRMY2RJUk1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufMYMA0G
CSqGSIb3DQEBCwUAA4IBAQAevTJOYdJctCvcBZ215rWgFAuGlPKVOE4lRq2p/zio
ruLN4hbojDjVyOAsCYdUrNps5liyffMS/2g5DrOm6de5z/h02CTNs9wKJ1nsVvaI
62/Z4MxxyTXvrB/SJn2AOTj7UtPiG3WpSO6NvL9HfzJkpwJmEaliG5oh0MjdLpaq
/39rLl+te4iXp4zUPmhjjCa5IlL0ipg10ek9zAusfjpWHFBiwx+qeqg2E7oNyTvv
SITd3pLigsYwQdrx+ah43zJcwUatu+Zr5g966yCD+RgWK6DixgnTiq1FaMaBTplM
eM5ZVIqLemM0vqlGwraIwvBiqEHj4dT/8SeEOqVW7I0q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:45 2024 by rpki-client on console-fra.rpki-client.org