Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/3zJMPxnKCpfLG5mw6cH6Ylk9vS8.roa
File: 3zJMPxnKCpfLG5mw6cH6Ylk9vS8.roa (raw, json)
Hash identifier: QJMws7XdMcryTFdmnSj+/z1fLVBq3Vy8BmdPrIVNbr8=
Subject key identifier: DF:32:4C:3F:19:CA:0A:97:CB:1B:99:B0:E9:C1:FA:62:59:3D:BD:2F
Certificate issuer: /CN=3b637ccf393f52e0b56fb58ee35af54411daf644
Certificate serial: 018732A395CC22A880A5A5CA0F81907F7101
Authority key identifier: 3B:63:7C:CF:39:3F:52:E0:B5:6F:B5:8E:E3:5A:F5:44:11:DA:F6:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2N8zzk_UuC1b7WO41r1RBHa9kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/3zJMPxnKCpfLG5mw6cH6Ylk9vS8.roa
Signing time: Thu 30 Mar 2023 13:09:54 +0000
ROA not before: Thu 30 Mar 2023 13:09:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201821
IP address blocks: 185.63.75.0/24 maxlen: 24
185.63.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:32:a3:95:cc:22:a8:80:a5:a5:ca:0f:81:90:7f:71:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b637ccf393f52e0b56fb58ee35af54411daf644
Validity
Not Before: Mar 30 13:09:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df324c3f19ca0a97cb1b99b0e9c1fa62593dbd2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6f:46:6c:82:c5:d1:a2:1d:4f:4a:e8:a1:2c:
e6:60:27:30:fc:c5:54:71:13:be:16:ac:67:6d:70:
d8:49:ed:fb:7e:e5:59:ff:42:89:69:9d:e0:14:f8:
50:80:0f:4b:80:8d:9e:1c:00:a6:13:52:1b:b4:45:
84:86:ec:bc:ac:68:c0:03:f6:2c:8f:72:db:83:a1:
43:2a:10:30:50:8b:a5:63:d3:c0:30:9a:71:5d:0c:
51:f5:d0:b7:26:0f:e6:c8:d1:90:30:00:40:48:10:
5c:48:29:b8:9c:d2:d0:f9:b9:21:05:5c:c5:48:28:
7e:77:3c:8d:d7:15:6d:be:13:25:79:34:98:4a:b7:
af:10:11:25:f8:c2:43:b6:bd:d8:b8:d3:aa:7f:42:
4c:ba:7c:48:7e:19:01:e9:3c:a4:0d:00:12:6f:a2:
44:75:44:c2:0c:73:d8:b6:4a:66:ab:f3:ad:1d:88:
de:b0:ca:93:49:42:7d:7d:51:0b:28:b8:04:91:72:
b2:35:88:06:93:82:93:98:73:93:6d:54:ea:37:b8:
9f:27:65:8e:d5:a3:6c:d8:fa:1b:14:2c:88:91:90:
4d:4a:3b:79:a4:a7:52:d2:c1:e1:36:bd:7e:18:96:
7a:01:a4:8b:65:d7:7d:45:f4:48:53:2e:66:46:c9:
ba:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:32:4C:3F:19:CA:0A:97:CB:1B:99:B0:E9:C1:FA:62:59:3D:BD:2F
X509v3 Authority Key Identifier:
keyid:3B:63:7C:CF:39:3F:52:E0:B5:6F:B5:8E:E3:5A:F5:44:11:DA:F6:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2N8zzk_UuC1b7WO41r1RBHa9kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/3zJMPxnKCpfLG5mw6cH6Ylk9vS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/O2N8zzk_UuC1b7WO41r1RBHa9kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.73.0/24
185.63.75.0/24
Signature Algorithm: sha256WithRSAEncryption
00:91:ca:3b:aa:2b:9a:2a:d8:6b:a6:b7:44:46:18:ca:f8:7e:
3f:3a:d7:39:ff:aa:17:90:48:fb:a4:f8:d5:db:50:59:1a:7d:
1d:20:7e:20:e0:b5:43:e4:da:38:6a:e4:b7:ea:55:b6:ac:47:
25:06:f2:8c:46:92:8d:67:06:62:ab:c4:b9:83:59:a1:d3:1a:
f1:2b:63:6c:73:ad:b4:7a:eb:4b:43:d3:b9:52:7a:d7:9f:58:
38:73:4a:28:ce:97:91:ac:e4:55:76:2d:c3:37:5d:28:40:b4:
de:6f:e4:1e:50:c8:a5:2f:0f:8d:84:1f:08:f7:af:40:3a:88:
4f:8d:5f:3a:0b:4a:49:bd:90:62:f1:93:73:c4:2c:16:72:3f:
08:1f:a3:d0:f7:e1:45:6e:00:ea:03:cf:38:99:4d:70:6e:85:
46:e4:90:b8:34:36:e8:ec:1e:8e:65:80:03:3d:71:e5:e1:00:
b8:c0:02:f5:71:a8:cb:c5:2b:c1:6b:40:98:93:e4:24:5a:65:
3b:72:74:88:6b:2e:6e:96:00:15:b2:6a:17:a1:f0:a6:40:91:
d5:38:0b:18:b7:8b:da:67:94:ef:ab:6c:5c:60:e3:ce:b0:74:
b8:97:63:69:04:b9:53:6b:0a:17:be:fc:33:19:30:08:08:25:
6f:57:6f:a1
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYcyo5XMIqiApaXKD4GQf3EBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNjM3Y2NmMzkzZjUyZTBiNTZmYjU4ZWUzNWFmNTQ0MTFk
YWY2NDQwHhcNMjMwMzMwMTMwOTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjMyNGMzZjE5Y2EwYTk3Y2IxYjk5YjBlOWMxZmE2MjU5M2RiZDJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjW9GbILF0aIdT0rooSzmYCcw/MVU
cRO+FqxnbXDYSe37fuVZ/0KJaZ3gFPhQgA9LgI2eHACmE1IbtEWEhuy8rGjAA/Ys
j3Lbg6FDKhAwUIulY9PAMJpxXQxR9dC3Jg/myNGQMABASBBcSCm4nNLQ+bkhBVzF
SCh+dzyN1xVtvhMleTSYSrevEBEl+MJDtr3YuNOqf0JMunxIfhkB6TykDQASb6JE
dUTCDHPYtkpmq/OtHYjesMqTSUJ9fVELKLgEkXKyNYgGk4KTmHOTbVTqN7ifJ2WO
1aNs2PobFCyIkZBNSjt5pKdS0sHhNr1+GJZ6AaSLZdd9RfRIUy5mRsm6BwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFN8yTD8ZygqXyxuZsOnB+mJZPb0vMB8GA1UdIwQY
MBaAFDtjfM85P1LgtW+1juNa9UQR2vZEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzJOOHp6a19VdUMxYjdXTzQxcjFSQkhhOWtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85YzVjMWYtZjRiNi00NWE4LTljOWYt
MzA3MzNkMzcwZGYzLzEvM3pKTVB4bktDcGZMRzVtdzZjSDZZbGs5dlM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85YzVjMWYtZjRiNi00NWE4LTljOWYtMzA3MzNkMzcwZGYz
LzEvTzJOOHp6a19VdUMxYjdXTzQxcjFSQkhhOWtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuT9JAwQA
uT9LMA0GCSqGSIb3DQEBCwUAA4IBAQAAkco7qiuaKthrprdERhjK+H4/Otc5/6oX
kEj7pPjV21BZGn0dIH4g4LVD5No4auS36lW2rEclBvKMRpKNZwZiq8S5g1mh0xrx
K2Nsc620eutLQ9O5UnrXn1g4c0oozpeRrORVdi3DN10oQLTeb+QeUMilLw+NhB8I
969AOohPjV86C0pJvZBi8ZNzxCwWcj8IH6PQ9+FFbgDqA884mU1wboVG5JC4NDbo
7B6OZYADPXHl4QC4wAL1cajLxSvBa0CYk+QkWmU7cnSIay5ulgAVsmoXofCmQJHV
OAsYt4vaZ5Tvq2xcYOPOsHS4l2NpBLlTawoXvvwzGTAICCVvV2+h
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:24 2024 by rpki-client on console-fra.rpki-client.org