Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/DIN2B9ueN4HplErcs0xe-eN2p3k.roa
File: DIN2B9ueN4HplErcs0xe-eN2p3k.roa (raw, json)
Hash identifier: 8VNQCySv1MGucN7UDwZOaGRTazYdXehPKfviwnh3NAI=
Subject key identifier: 0C:83:76:07:DB:9E:37:81:E9:94:4A:DC:B3:4C:5E:F9:E3:76:A7:79
Certificate issuer: /CN=6ba26b56cee97f6020941bb17c6a7c6cea0f814a
Certificate serial: 01863E9F8914B55EBFC82156601FC6C07E45
Authority key identifier: 6B:A2:6B:56:CE:E9:7F:60:20:94:1B:B1:7C:6A:7C:6C:EA:0F:81:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6JrVs7pf2AglBuxfGp8bOoPgUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/DIN2B9ueN4HplErcs0xe-eN2p3k.roa
Signing time: Sat 11 Feb 2023 03:58:08 +0000
ROA not before: Sat 11 Feb 2023 03:58:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62068
IP address blocks: 176.105.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Feb 2023 06:06:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3e:9f:89:14:b5:5e:bf:c8:21:56:60:1f:c6:c0:7e:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba26b56cee97f6020941bb17c6a7c6cea0f814a
Validity
Not Before: Feb 11 03:58:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c837607db9e3781e9944adcb34c5ef9e376a779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0b:76:ed:8a:50:8b:ba:c5:be:c6:60:e3:6f:
87:d4:9d:ee:f2:30:53:26:08:bf:d4:76:bb:ef:0a:
ea:3a:84:53:d6:34:70:fe:b3:fe:7b:39:d7:6e:cd:
ed:5b:4d:e5:e0:a4:5d:40:92:98:4c:4a:17:36:5e:
34:a5:89:8a:df:81:4a:84:b7:d8:f8:95:ba:bd:4a:
86:cd:b2:4d:3a:5d:13:e1:9c:80:27:51:2b:c9:19:
de:f6:7c:7b:bf:1e:b1:99:96:78:9c:4a:0a:e0:38:
ba:18:d1:db:26:26:37:2e:71:14:2c:60:82:df:50:
b0:27:7f:c3:0e:f3:4a:6b:cc:7a:e0:8c:55:32:0a:
bc:92:fe:8a:8d:4d:85:38:37:ba:a6:99:4e:d0:bf:
e7:e0:94:20:69:fe:dd:b2:8b:e6:ca:bc:d0:e7:fc:
e7:bd:34:f7:4a:d8:c3:1f:c6:8f:33:d9:f4:c4:36:
bc:d9:1b:a6:25:5f:23:7a:c8:cd:21:a6:72:94:be:
1f:ac:49:01:2f:d5:f6:24:75:ca:18:3b:2a:7f:8d:
dd:dd:a7:3d:96:ab:9a:0c:ca:c2:ed:5d:ba:04:bd:
62:ac:77:92:6d:26:a6:bb:ee:68:cc:a3:dd:23:24:
18:e7:06:e9:03:83:2d:ba:b3:14:f4:9f:aa:e4:05:
dd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:83:76:07:DB:9E:37:81:E9:94:4A:DC:B3:4C:5E:F9:E3:76:A7:79
X509v3 Authority Key Identifier:
keyid:6B:A2:6B:56:CE:E9:7F:60:20:94:1B:B1:7C:6A:7C:6C:EA:0F:81:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6JrVs7pf2AglBuxfGp8bOoPgUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/DIN2B9ueN4HplErcs0xe-eN2p3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/a6JrVs7pf2AglBuxfGp8bOoPgUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.255.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:a5:62:e8:71:60:5e:77:31:ba:da:a5:9a:1e:27:5c:32:00:
39:c1:df:f0:fd:86:ac:08:2a:d6:4c:53:db:b1:72:28:07:d1:
f5:3d:b3:32:f5:db:d0:54:1b:5a:0d:60:f3:25:e4:3d:8d:0c:
1b:22:2c:e1:ab:62:ed:7f:88:0c:6a:c7:ef:26:e9:2d:cd:15:
83:67:ea:d5:5b:1d:f8:60:3a:40:c5:ec:38:34:e7:5b:50:ab:
62:9e:d6:e0:53:b9:a4:7c:11:c9:1a:29:6a:7e:7f:9a:bf:38:
8d:66:54:83:08:43:de:8b:ba:6b:91:b7:3d:6d:db:78:f5:98:
b1:ee:61:0f:e6:f4:8a:94:1c:79:b8:b8:fd:5d:49:1d:ed:8e:
7c:75:b4:2a:0b:a3:e1:f8:db:c6:1b:cd:40:11:ab:e7:b3:98:
d4:cd:ac:71:b5:3d:da:5e:27:eb:b4:ba:10:1e:47:c0:98:b3:
10:86:ea:6b:4e:eb:df:5a:53:5a:51:56:b2:75:db:64:04:28:
3a:be:ec:0b:26:a0:3d:42:f4:45:c8:5a:20:bc:b0:6a:f8:d8:
9a:ce:22:cc:fe:a3:0e:54:8c:cb:57:23:99:8e:90:64:29:99:
08:70:10:4d:f7:b2:10:8c:79:17:ea:ee:0c:65:3a:71:21:2f:
64:5e:35:8e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYY+n4kUtV6/yCFWYB/GwH5FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiYTI2YjU2Y2VlOTdmNjAyMDk0MWJiMTdjNmE3YzZjZWEw
ZjgxNGEwHhcNMjMwMjExMDM1ODA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzgzNzYwN2RiOWUzNzgxZTk5NDRhZGNiMzRjNWVmOWUzNzZhNzc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwt27YpQi7rFvsZg42+H1J3u8jBT
Jgi/1Ha77wrqOoRT1jRw/rP+eznXbs3tW03l4KRdQJKYTEoXNl40pYmK34FKhLfY
+JW6vUqGzbJNOl0T4ZyAJ1EryRne9nx7vx6xmZZ4nEoK4Di6GNHbJiY3LnEULGCC
31CwJ3/DDvNKa8x64IxVMgq8kv6KjU2FODe6pplO0L/n4JQgaf7dsovmyrzQ5/zn
vTT3StjDH8aPM9n0xDa82RumJV8jesjNIaZylL4frEkBL9X2JHXKGDsqf43d3ac9
lquaDMrC7V26BL1irHeSbSamu+5ozKPdIyQY5wbpA4MturMU9J+q5AXdrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAyDdgfbnjeB6ZRK3LNMXvnjdqd5MB8GA1UdIwQY
MBaAFGuia1bO6X9gIJQbsXxqfGzqD4FKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTZKclZzN3BmMkFnbEJ1eGZHcDhiT29QZ1VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9iOTAzZTktNmQwOS00ZTIwLWI5MjYt
MzY5MmY5NmUzM2E5LzEvRElOMkI5dWVONEhwbEVyY3MweGUtZU4ycDNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9iOTAzZTktNmQwOS00ZTIwLWI5MjYtMzY5MmY5NmUzM2E5
LzEvYTZKclZzN3BmMkFnbEJ1eGZHcDhiT29QZ1VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGn/MA0G
CSqGSIb3DQEBCwUAA4IBAQBrpWLocWBedzG62qWaHidcMgA5wd/w/YasCCrWTFPb
sXIoB9H1PbMy9dvQVBtaDWDzJeQ9jQwbIizhq2Ltf4gMasfvJuktzRWDZ+rVWx34
YDpAxew4NOdbUKtintbgU7mkfBHJGilqfn+avziNZlSDCEPei7prkbc9bdt49Zix
7mEP5vSKlBx5uLj9XUkd7Y58dbQqC6Ph+NvGG81AEavns5jUzaxxtT3aXifrtLoQ
HkfAmLMQhuprTuvfWlNaUVayddtkBCg6vuwLJqA9QvRFyFogvLBq+NiaziLM/qMO
VIzLVyOZjpBkKZkIcBBN97IQjHkX6u4MZTpxIS9kXjWO
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:07 2024 by rpki-client on console-fra.rpki-client.org