Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/3AdSB74kKMtuvJSSWlRu6jy38Pc.roa
File: 3AdSB74kKMtuvJSSWlRu6jy38Pc.roa (raw, json)
Hash identifier: Ks2NrVaK9aGdtiQsk/27wdutXulvAW/r6MK2CpLHHy8=
Subject key identifier: DC:07:52:07:BE:24:28:CB:6E:BC:94:92:5A:54:6E:EA:3C:B7:F0:F7
Certificate issuer: /CN=845c58752f3336422ff0ee1726474591e7a41e5f
Certificate serial: 01906E1046C5A18866BFD59CC69730F52B0E
Authority key identifier: 84:5C:58:75:2F:33:36:42:2F:F0:EE:17:26:47:45:91:E7:A4:1E:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFxYdS8zNkIv8O4XJkdFkeekHl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/3AdSB74kKMtuvJSSWlRu6jy38Pc.roa
Signing time: Mon 01 Jul 2024 11:31:18 +0000
ROA not before: Mon 01 Jul 2024 11:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215547
IP address blocks: 185.91.24.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 10:42:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6e:10:46:c5:a1:88:66:bf:d5:9c:c6:97:30:f5:2b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845c58752f3336422ff0ee1726474591e7a41e5f
Validity
Not Before: Jul 1 11:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc075207be2428cb6ebc94925a546eea3cb7f0f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f4:bb:e5:49:2b:71:08:2d:53:aa:91:76:e9:
8f:66:c2:92:d3:d1:0a:9e:58:75:fe:3c:30:88:fa:
9f:29:75:d4:91:d6:57:36:9b:3b:f0:41:64:fd:b2:
d7:cf:a8:36:59:61:2e:9c:44:88:43:4d:bf:c7:ce:
2c:8a:91:0a:91:5a:d5:07:2c:b1:ab:74:9a:34:7c:
b2:23:0d:7a:ab:7f:b1:16:51:17:9b:26:f9:2d:40:
f3:11:c7:4c:1a:bf:74:8f:6d:a0:c4:09:de:82:51:
80:fc:9f:07:0c:ac:30:63:71:14:85:89:59:99:90:
ca:eb:52:7f:92:4e:85:e3:8b:1d:3e:ef:54:bc:a1:
7a:34:e0:86:94:eb:0b:fc:0f:9e:9a:df:85:ab:64:
85:15:37:31:f0:8d:e2:17:b1:fb:f6:a5:40:6c:cd:
67:8d:3c:0b:84:8f:6e:85:d6:fb:99:89:37:95:58:
d4:d6:9a:8f:b8:76:b1:f5:eb:d8:54:08:be:40:1a:
71:c7:4b:99:7d:46:ca:61:a7:33:f7:22:8d:dd:0f:
ca:bd:4d:b3:66:2d:dd:08:d7:ee:94:e7:c7:cd:77:
40:16:e5:c9:01:2c:77:58:f1:8b:57:72:bd:e2:cf:
a0:ba:b4:90:79:3f:fa:d5:72:81:30:ee:e1:2c:8a:
85:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:07:52:07:BE:24:28:CB:6E:BC:94:92:5A:54:6E:EA:3C:B7:F0:F7
X509v3 Authority Key Identifier:
keyid:84:5C:58:75:2F:33:36:42:2F:F0:EE:17:26:47:45:91:E7:A4:1E:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFxYdS8zNkIv8O4XJkdFkeekHl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/3AdSB74kKMtuvJSSWlRu6jy38Pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/hFxYdS8zNkIv8O4XJkdFkeekHl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.24.0/22
Signature Algorithm: sha256WithRSAEncryption
51:91:1a:83:22:50:58:ec:ea:0e:f7:8f:06:d5:e9:f8:ac:92:
05:14:d4:24:66:a5:75:90:48:5c:af:67:f3:25:29:7f:5b:c2:
43:40:bc:98:a0:fc:3e:1f:0f:f2:28:ba:54:01:b5:a9:08:6e:
71:4e:2a:95:46:b3:b3:ee:ed:d6:8c:9f:4b:94:65:32:3b:a5:
47:da:4d:20:82:c8:c2:8e:d2:f2:89:65:60:04:ae:dd:54:f9:
69:ea:d6:0e:36:32:55:0a:46:9d:66:61:0e:6c:02:15:0a:9a:
5f:7b:91:2a:69:af:ae:8c:ec:16:e5:53:d7:b9:21:5f:62:61:
76:9b:7f:7c:54:32:dc:53:15:8f:6d:b5:3d:fc:57:d9:c1:30:
48:26:74:a6:80:0c:f9:42:c7:20:11:fa:56:1e:6f:3b:b0:27:
8b:8a:3a:11:0f:a4:37:ed:99:b3:ef:10:6f:72:6d:ba:b8:fb:
43:91:cd:96:3b:67:80:21:9c:0e:cd:d1:ce:10:c1:f2:f4:18:
c5:50:60:38:6c:12:89:4f:02:80:bf:3a:85:d9:cc:79:39:af:
0d:13:d8:e7:2d:82:6a:8b:90:5c:e2:a6:6c:c5:a8:0d:11:0e:
93:33:ad:64:e0:dc:f7:f9:08:3b:72:c4:21:c4:e6:14:7e:cd:
3e:60:47:c9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBuEEbFoYhmv9Wcxpcw9SsOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NWM1ODc1MmYzMzM2NDIyZmYwZWUxNzI2NDc0NTkxZTdh
NDFlNWYwHhcNMjQwNzAxMTEzMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzA3NTIwN2JlMjQyOGNiNmViYzk0OTI1YTU0NmVlYTNjYjdmMGY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfS75UkrcQgtU6qRdumPZsKS09EK
nlh1/jwwiPqfKXXUkdZXNps78EFk/bLXz6g2WWEunESIQ02/x84sipEKkVrVByyx
q3SaNHyyIw16q3+xFlEXmyb5LUDzEcdMGr90j22gxAneglGA/J8HDKwwY3EUhYlZ
mZDK61J/kk6F44sdPu9UvKF6NOCGlOsL/A+emt+Fq2SFFTcx8I3iF7H79qVAbM1n
jTwLhI9uhdb7mYk3lVjU1pqPuHax9evYVAi+QBpxx0uZfUbKYacz9yKN3Q/KvU2z
Zi3dCNfulOfHzXdAFuXJASx3WPGLV3K94s+gurSQeT/61XKBMO7hLIqFAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNwHUge+JCjLbryUklpUbuo8t/D3MB8GA1UdIwQY
MBaAFIRcWHUvMzZCL/DuFyZHRZHnpB5fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEZ4WWRTOHpOa0l2OE80WEprZEZrZWVrSGw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS82NGUzYWItMjI4Yy00YTIzLTkyMTYt
ZjEzNGU1MWNjMDViLzEvM0FkU0I3NGtLTXR1dkpTU1dsUnU2ankzOFBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS82NGUzYWItMjI4Yy00YTIzLTkyMTYtZjEzNGU1MWNjMDVi
LzEvaEZ4WWRTOHpOa0l2OE80WEprZEZrZWVrSGw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVsYMA0G
CSqGSIb3DQEBCwUAA4IBAQBRkRqDIlBY7OoO948G1en4rJIFFNQkZqV1kEhcr2fz
JSl/W8JDQLyYoPw+Hw/yKLpUAbWpCG5xTiqVRrOz7u3WjJ9LlGUyO6VH2k0ggsjC
jtLyiWVgBK7dVPlp6tYONjJVCkadZmEObAIVCppfe5Eqaa+ujOwW5VPXuSFfYmF2
m398VDLcUxWPbbU9/FfZwTBIJnSmgAz5QscgEfpWHm87sCeLijoRD6Q37Zmz7xBv
cm26uPtDkc2WO2eAIZwOzdHOEMHy9BjFUGA4bBKJTwKAvzqF2cx5Oa8NE9jnLYJq
i5Bc4qZsxagNEQ6TM61k4Nz3+Qg7csQhxOYUfs0+YEfJ
-----END CERTIFICATE-----
Generated at Wed Jul 3 12:43:04 2024 by rpki-client on console-ams.rpki-client.org