Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/d097bf-b0f5-43e1-86a2-cfb8da549067/1/DCPt48de1w1cLXRUkX8gdUdeK8k.roa
File: DCPt48de1w1cLXRUkX8gdUdeK8k.roa (raw, json)
Hash identifier: M83U5lLybSFBGdRvWHYDZblvut9qGIPRFejuWIYJyl0=
Subject key identifier: 0C:23:ED:E3:C7:5E:D7:0D:5C:2D:74:54:91:7F:20:75:47:5E:2B:C9
Certificate issuer: /CN=2a1e65f8083c859bcd0d2c52a1e061eb5131f5f1
Certificate serial: 018945351CDF711D1F8EFE7256B776062526
Authority key identifier: 2A:1E:65:F8:08:3C:85:9B:CD:0D:2C:52:A1:E0:61:EB:51:31:F5:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kh5l-Ag8hZvNDSxSoeBh61Ex9fE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/d097bf-b0f5-43e1-86a2-cfb8da549067/1/DCPt48de1w1cLXRUkX8gdUdeK8k.roa
Signing time: Tue 11 Jul 2023 13:47:35 +0000
ROA not before: Tue 11 Jul 2023 13:47:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198405
IP address blocks: 185.156.97.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:45:35:1c:df:71:1d:1f:8e:fe:72:56:b7:76:06:25:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a1e65f8083c859bcd0d2c52a1e061eb5131f5f1
Validity
Not Before: Jul 11 13:47:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c23ede3c75ed70d5c2d7454917f2075475e2bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c4:00:64:7c:a1:a5:07:6c:6f:ed:b5:71:eb:
db:91:bf:95:d2:54:dc:fc:36:90:5d:71:c4:aa:ca:
78:07:54:6b:c9:7c:d4:71:a2:26:fa:0c:7a:cb:e9:
35:9b:0e:32:d2:81:b0:be:28:2d:ec:3c:da:dd:15:
af:9f:46:0d:01:bb:1b:68:0c:ec:b2:bf:82:67:21:
67:27:20:bb:09:df:ea:ad:26:46:72:92:18:ff:91:
2e:12:ec:41:11:c6:29:60:73:e6:c1:46:f6:c5:5c:
13:f2:cf:6b:4f:19:6b:17:1d:2f:f8:a1:e3:10:a7:
0c:b6:bd:3a:a5:13:ce:4c:78:7c:6c:2f:f2:39:c9:
b8:8f:c1:f8:2e:cb:8b:f1:f3:60:a6:5c:7a:fc:83:
2e:74:e9:66:8a:8c:23:dd:20:4c:30:89:bb:8e:b5:
3b:7d:13:c2:b1:d7:69:51:18:fb:93:d1:a0:49:63:
3e:b1:a4:97:76:1a:b9:d1:02:49:f5:29:d7:0d:62:
f1:f8:61:72:b3:2a:19:fb:88:54:aa:98:4b:c1:f0:
0c:9e:8b:4d:80:ad:01:d3:ae:87:68:d3:fb:00:e8:
20:04:ad:d3:1c:df:d7:ab:79:5f:97:b3:30:11:60:
64:fd:64:63:7f:68:73:a6:32:a1:c1:4a:a3:ed:35:
94:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:23:ED:E3:C7:5E:D7:0D:5C:2D:74:54:91:7F:20:75:47:5E:2B:C9
X509v3 Authority Key Identifier:
keyid:2A:1E:65:F8:08:3C:85:9B:CD:0D:2C:52:A1:E0:61:EB:51:31:F5:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kh5l-Ag8hZvNDSxSoeBh61Ex9fE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/d097bf-b0f5-43e1-86a2-cfb8da549067/1/DCPt48de1w1cLXRUkX8gdUdeK8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/d097bf-b0f5-43e1-86a2-cfb8da549067/1/Kh5l-Ag8hZvNDSxSoeBh61Ex9fE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.97.0/24
Signature Algorithm: sha256WithRSAEncryption
62:7d:a6:22:96:44:05:25:9d:d4:00:37:3c:10:fb:7a:d2:8c:
0e:44:7b:3e:ae:85:dc:75:d8:cf:c9:60:2c:ad:e6:e8:dd:35:
e5:12:88:88:f0:e4:00:ab:34:c3:33:5c:e9:1a:ed:37:ac:79:
a4:9d:9c:40:65:8c:90:6b:10:1f:a1:79:eb:ee:e2:07:3b:4c:
19:e4:2e:8d:0d:15:29:02:64:88:e1:18:25:6d:86:ee:69:8b:
54:a6:b1:17:66:d2:84:47:60:06:1f:d6:35:82:94:ef:5a:e2:
68:bf:d5:9f:49:fc:f1:e0:a6:bc:44:18:9f:f9:86:4d:e0:91:
9b:94:6a:7c:c8:14:7c:3c:9e:5b:c7:fc:28:06:80:36:fb:6e:
d1:af:5f:1b:20:47:ee:97:9b:7e:95:6e:14:03:bb:47:92:ab:
d7:62:05:3b:0a:4c:c7:5e:e1:14:b0:6d:3f:b1:8d:97:c4:9e:
df:db:bf:65:b9:4c:0e:86:e2:02:5b:c8:34:b8:c2:a6:4c:e6:
d2:b6:06:dd:10:a2:0b:cf:11:34:e0:f2:a8:14:30:8f:94:25:
5d:f9:18:b4:b7:9b:aa:d1:01:64:1f:ae:00:45:6d:79:58:74:
a8:4d:34:0e:a6:4b:07:63:b0:37:bf:90:37:5e:36:9f:ff:1d:
f1:16:09:f7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlFNRzfcR0fjv5yVrd2BiUmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMWU2NWY4MDgzYzg1OWJjZDBkMmM1MmExZTA2MWViNTEz
MWY1ZjEwHhcNMjMwNzExMTM0NzM1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzIzZWRlM2M3NWVkNzBkNWMyZDc0NTQ5MTdmMjA3NTQ3NWUyYmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8QAZHyhpQdsb+21cevbkb+V0lTc
/DaQXXHEqsp4B1RryXzUcaIm+gx6y+k1mw4y0oGwvigt7Dza3RWvn0YNAbsbaAzs
sr+CZyFnJyC7Cd/qrSZGcpIY/5EuEuxBEcYpYHPmwUb2xVwT8s9rTxlrFx0v+KHj
EKcMtr06pRPOTHh8bC/yOcm4j8H4LsuL8fNgplx6/IMudOlmiowj3SBMMIm7jrU7
fRPCsddpURj7k9GgSWM+saSXdhq50QJJ9SnXDWLx+GFysyoZ+4hUqphLwfAMnotN
gK0B066HaNP7AOggBK3THN/Xq3lfl7MwEWBk/WRjf2hzpjKhwUqj7TWU9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAwj7ePHXtcNXC10VJF/IHVHXivJMB8GA1UdIwQY
MBaAFCoeZfgIPIWbzQ0sUqHgYetRMfXxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2g1bC1BZzhoWnZORFN4U29lQmg2MUV4OWZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9kMDk3YmYtYjBmNS00M2UxLTg2YTIt
Y2ZiOGRhNTQ5MDY3LzEvRENQdDQ4ZGUxdzFjTFhSVWtYOGdkVWRlSzhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS9kMDk3YmYtYjBmNS00M2UxLTg2YTItY2ZiOGRhNTQ5MDY3
LzEvS2g1bC1BZzhoWnZORFN4U29lQmg2MUV4OWZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZxhMA0G
CSqGSIb3DQEBCwUAA4IBAQBifaYilkQFJZ3UADc8EPt60owORHs+roXcddjPyWAs
rebo3TXlEoiI8OQAqzTDM1zpGu03rHmknZxAZYyQaxAfoXnr7uIHO0wZ5C6NDRUp
AmSI4RglbYbuaYtUprEXZtKER2AGH9Y1gpTvWuJov9WfSfzx4Ka8RBif+YZN4JGb
lGp8yBR8PJ5bx/woBoA2+27Rr18bIEful5t+lW4UA7tHkqvXYgU7CkzHXuEUsG0/
sY2XxJ7f279luUwOhuICW8g0uMKmTObStgbdEKILzxE04PKoFDCPlCVd+Ri0t5uq
0QFkH64ARW15WHSoTTQOpksHY7A3v5A3Xjaf/x3xFgn3
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:22 2024 by rpki-client on console-fra.rpki-client.org