Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/tr1vGQYKFGnrfT2s5xssLx8DQLw.roa
File: tr1vGQYKFGnrfT2s5xssLx8DQLw.roa (raw, json)
Hash identifier: S6mHQC/8IX03ny5iPsCgfcGdwjc0aIIoMINGayz69Ig=
Subject key identifier: B6:BD:6F:19:06:0A:14:69:EB:7D:3D:AC:E7:1B:2C:2F:1F:03:40:BC
Certificate issuer: /CN=7d32deda31fe8eafcdad6e2a06fde236e7d11d61
Certificate serial: 018AD559C040E9D6CE5E0BBA479017E4AB37
Authority key identifier: 7D:32:DE:DA:31:FE:8E:AF:CD:AD:6E:2A:06:FD:E2:36:E7:D1:1D:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fTLe2jH-jq_NrW4qBv3iNufRHWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/tr1vGQYKFGnrfT2s5xssLx8DQLw.roa
Signing time: Wed 27 Sep 2023 06:35:43 +0000
ROA not before: Wed 27 Sep 2023 06:35:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 185.113.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Sep 2023 17:09:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d5:59:c0:40:e9:d6:ce:5e:0b:ba:47:90:17:e4:ab:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d32deda31fe8eafcdad6e2a06fde236e7d11d61
Validity
Not Before: Sep 27 06:35:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6bd6f19060a1469eb7d3dace71b2c2f1f0340bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1e:f6:c5:21:50:48:4c:98:1a:ec:d2:6b:03:
a0:69:c5:36:25:86:ec:84:fd:22:f2:48:73:a4:d8:
c6:fb:25:d1:2c:57:03:bd:8c:ae:ae:15:01:d9:5c:
ce:e1:40:12:73:65:da:a9:31:2e:f4:7b:01:b3:4e:
f9:cc:f3:d9:ec:cf:8b:ba:f0:db:18:33:64:1e:46:
ea:2c:92:5f:d7:30:3a:de:2b:cf:03:89:66:c9:97:
13:20:89:3c:22:6e:79:48:3f:a3:5e:9c:5f:cb:04:
f4:9a:3e:df:5e:d5:f4:6c:e5:31:11:0a:16:51:1d:
d8:1e:68:02:28:aa:9d:ff:d6:02:4d:e1:bc:ae:4e:
4a:66:b0:13:f2:f3:ef:55:72:41:d0:b3:56:97:5d:
f4:da:84:e6:e2:05:4f:5b:40:d6:a0:c1:06:0f:3c:
67:e7:2a:19:f0:ba:86:44:fa:df:7a:23:42:5b:f4:
71:a6:a1:bd:34:35:f2:9c:0a:10:e6:95:e7:82:55:
00:6a:2b:7a:e5:10:fc:d4:6f:b8:2d:39:58:1a:90:
8c:91:65:b0:93:b3:cb:48:96:50:d5:ae:b2:3d:ef:
3e:32:79:f2:3e:c8:ad:16:b4:3a:e1:47:16:82:2a:
88:39:db:01:86:c9:4e:cc:f2:b7:a9:f8:39:ae:1a:
0c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:BD:6F:19:06:0A:14:69:EB:7D:3D:AC:E7:1B:2C:2F:1F:03:40:BC
X509v3 Authority Key Identifier:
keyid:7D:32:DE:DA:31:FE:8E:AF:CD:AD:6E:2A:06:FD:E2:36:E7:D1:1D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fTLe2jH-jq_NrW4qBv3iNufRHWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/tr1vGQYKFGnrfT2s5xssLx8DQLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/fTLe2jH-jq_NrW4qBv3iNufRHWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.223.0/24
Signature Algorithm: sha256WithRSAEncryption
11:5e:71:6b:b6:75:85:42:13:71:30:7c:45:1b:62:99:64:ac:
2c:c9:29:09:42:39:0e:a2:cb:84:37:3b:c8:8f:17:70:f8:68:
27:ec:97:ec:5a:9a:f2:54:93:2d:47:b1:00:16:3f:f8:82:07:
67:8c:c2:b1:ae:5f:e3:db:2c:66:7f:b1:aa:93:3f:d5:8c:0c:
ea:03:ad:3e:a3:a3:79:29:ab:a9:34:6e:52:95:86:0e:ec:ed:
02:6d:99:dd:02:16:c6:2a:3f:38:b5:09:8f:10:ba:31:82:3a:
3a:40:f6:e2:9d:92:74:49:32:4d:31:54:dc:a1:0e:9d:03:19:
04:6c:9b:13:b3:7f:fd:28:81:3d:82:50:fa:49:de:02:36:3a:
5e:42:0a:50:70:90:dd:40:59:fe:15:4f:dd:da:c7:d6:89:ea:
41:eb:48:9e:43:6c:0f:e5:ff:e4:b2:b0:e0:f4:d2:6c:66:8d:
ab:ae:f6:21:a3:d3:d2:73:47:4c:00:8b:63:a6:30:e2:41:3e:
57:d1:4a:84:45:28:61:74:c5:87:d5:c2:e3:3c:d1:2e:9f:bf:
36:d8:c6:be:92:ef:e3:c2:cf:85:24:d1:75:ea:e3:9a:af:e0:
fb:ed:b5:5c:e0:cc:9d:88:3d:dd:a9:cc:6b:e2:59:ce:50:cf:
c0:9d:5a:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrVWcBA6dbOXgu6R5AX5Ks3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMzJkZWRhMzFmZThlYWZjZGFkNmUyYTA2ZmRlMjM2ZTdk
MTFkNjEwHhcNMjMwOTI3MDYzNTQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmJkNmYxOTA2MGExNDY5ZWI3ZDNkYWNlNzFiMmMyZjFmMDM0MGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkx72xSFQSEyYGuzSawOgacU2JYbs
hP0i8khzpNjG+yXRLFcDvYyurhUB2VzO4UASc2XaqTEu9HsBs075zPPZ7M+LuvDb
GDNkHkbqLJJf1zA63ivPA4lmyZcTIIk8Im55SD+jXpxfywT0mj7fXtX0bOUxEQoW
UR3YHmgCKKqd/9YCTeG8rk5KZrAT8vPvVXJB0LNWl1302oTm4gVPW0DWoMEGDzxn
5yoZ8LqGRPrfeiNCW/RxpqG9NDXynAoQ5pXnglUAait65RD81G+4LTlYGpCMkWWw
k7PLSJZQ1a6yPe8+MnnyPsitFrQ64UcWgiqIOdsBhslOzPK3qfg5rhoM/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLa9bxkGChRp6309rOcbLC8fA0C8MB8GA1UdIwQY
MBaAFH0y3tox/o6vza1uKgb94jbn0R1hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlRMZTJqSC1qcV9Oclc0cUJ2M2lOdWZSSFdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9jNDNlZDItNzBiMy00NWQ4LWFhMjgt
NTNmYjAxOGE4YzBlLzEvdHIxdkdRWUtGR25yZlQyczV4c3NMeDhEUUx3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9jNDNlZDItNzBiMy00NWQ4LWFhMjgtNTNmYjAxOGE4YzBl
LzEvZlRMZTJqSC1qcV9Oclc0cUJ2M2lOdWZSSFdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXHfMA0G
CSqGSIb3DQEBCwUAA4IBAQARXnFrtnWFQhNxMHxFG2KZZKwsySkJQjkOosuENzvI
jxdw+Ggn7JfsWpryVJMtR7EAFj/4ggdnjMKxrl/j2yxmf7Gqkz/VjAzqA60+o6N5
KaupNG5SlYYO7O0CbZndAhbGKj84tQmPELoxgjo6QPbinZJ0STJNMVTcoQ6dAxkE
bJsTs3/9KIE9glD6Sd4CNjpeQgpQcJDdQFn+FU/d2sfWiepB60ieQ2wP5f/ksrDg
9NJsZo2rrvYho9PSc0dMAItjpjDiQT5X0UqERShhdMWH1cLjPNEun7822Ma+ku/j
ws+FJNF16uOar+D77bVc4MydiD3dqcxr4lnOUM/AnVo4
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:11 2024 by rpki-client on console-fra.rpki-client.org