Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/dS9cjGVimfsqsYi0jOhLlJ4rcic.roa
File: dS9cjGVimfsqsYi0jOhLlJ4rcic.roa (raw, json)
Hash identifier: cTCFwhSmMZEVtnxdAQX/mmSk6aR2n908dQzVD7+yP3w=
Subject key identifier: 75:2F:5C:8C:65:62:99:FB:2A:B1:88:B4:8C:E8:4B:94:9E:2B:72:27
Certificate issuer: /CN=d09a7f7fdd54a17ce5e12a4182eb652479f9d758
Certificate serial: 0185720C55FF80CA9D2CBD5B614962731A81
Authority key identifier: D0:9A:7F:7F:DD:54:A1:7C:E5:E1:2A:41:82:EB:65:24:79:F9:D7:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Jp_f91UoXzl4SpBgutlJHn511g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/dS9cjGVimfsqsYi0jOhLlJ4rcic.roa
Signing time: Mon 02 Jan 2023 10:34:48 +0000
ROA not before: Mon 02 Jan 2023 10:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203734
IP address blocks: 185.69.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:55:ff:80:ca:9d:2c:bd:5b:61:49:62:73:1a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d09a7f7fdd54a17ce5e12a4182eb652479f9d758
Validity
Not Before: Jan 2 10:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=752f5c8c656299fb2ab188b48ce84b949e2b7227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1e:cc:01:00:c5:b2:f3:6b:b7:a2:a5:68:dd:
5a:77:4b:a3:98:5c:e9:24:4d:34:bf:9a:e7:d2:7c:
50:e2:8f:78:26:37:ca:f7:72:77:35:7b:63:79:7b:
e0:6b:7f:1b:5a:85:99:4b:af:06:38:d6:09:a0:ea:
0a:b8:b2:67:c1:4c:c9:b0:c6:78:cb:62:7d:13:38:
0e:57:ee:ee:21:ee:3b:a5:b4:96:55:c3:66:6d:fc:
e8:30:4e:8e:e6:22:fd:1d:ce:39:6c:f2:f9:b9:cb:
c0:d4:85:f7:cf:5b:ce:50:ff:e1:0b:81:d4:ba:1c:
82:79:ca:56:9e:6d:14:72:e3:34:89:5f:f6:03:be:
8c:ff:fb:b8:ae:3a:b8:bc:0b:8e:08:ca:a4:3e:90:
7d:ea:65:81:dc:f0:3e:c4:c5:02:94:44:aa:f5:82:
1e:ce:f0:3e:92:f8:ed:a9:54:35:c4:d1:0f:c6:c9:
2c:45:4c:28:16:f9:b9:e9:e9:5c:84:bb:28:1b:83:
e7:06:78:cc:37:14:f2:e2:19:1a:cb:30:f8:93:0d:
00:7a:83:59:57:18:60:be:ef:cf:7d:70:2a:4f:c6:
dd:80:07:fe:a4:a5:29:23:bb:c4:ae:02:51:5d:0a:
b5:ed:34:78:33:06:6e:2f:83:e2:fb:35:92:60:43:
78:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2F:5C:8C:65:62:99:FB:2A:B1:88:B4:8C:E8:4B:94:9E:2B:72:27
X509v3 Authority Key Identifier:
keyid:D0:9A:7F:7F:DD:54:A1:7C:E5:E1:2A:41:82:EB:65:24:79:F9:D7:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Jp_f91UoXzl4SpBgutlJHn511g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/dS9cjGVimfsqsYi0jOhLlJ4rcic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/0Jp_f91UoXzl4SpBgutlJHn511g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.251.0/24
Signature Algorithm: sha256WithRSAEncryption
83:7a:55:f9:14:15:5c:aa:66:7f:2c:16:09:d3:89:51:68:a4:
bf:f3:a7:4f:e5:27:88:f1:18:9c:8b:9c:f7:f9:b7:e4:cc:5b:
c3:16:c5:58:25:46:3d:ae:1e:ed:86:ea:d0:4e:bb:d0:eb:65:
26:78:c4:b1:2c:b9:14:fa:b8:e2:a7:bb:a5:5a:3f:97:30:06:
80:f7:90:a4:4a:b3:b8:14:bd:0b:fd:a9:7b:63:e9:4a:4c:09:
a1:7c:3d:3f:a3:65:7d:d3:31:13:88:e9:c2:76:e6:80:4b:15:
59:9f:91:35:10:c5:79:86:75:d7:8e:f7:c9:0a:5a:43:18:05:
08:1d:93:f7:e2:f6:96:f0:70:d4:af:88:84:a8:ed:e9:55:19:
4f:38:21:5b:fe:65:a0:d4:93:a7:d7:47:85:58:a9:14:c1:ce:
48:f9:49:ea:2d:b3:03:e7:43:e6:fd:4f:5e:88:7a:2b:83:32:
3c:fa:4a:be:fe:81:37:ac:5e:91:f9:db:8e:08:ca:74:b9:f0:
9d:1d:a3:0b:6c:cc:c2:e7:c3:af:ce:1e:fd:d5:47:57:19:53:
43:5e:e8:7b:08:4d:2d:79:80:e3:2b:0a:4d:43:62:37:2e:21:
e1:ac:20:ea:dd:a3:bb:c1:df:b7:26:34:b5:b3:ba:68:8a:e3:
a9:6f:bf:75
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyDFX/gMqdLL1bYUlicxqBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwOWE3ZjdmZGQ1NGExN2NlNWUxMmE0MTgyZWI2NTI0Nzlm
OWQ3NTgwHhcNMjMwMTAyMTAzNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTJmNWM4YzY1NjI5OWZiMmFiMTg4YjQ4Y2U4NGI5NDllMmI3MjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlB7MAQDFsvNrt6KlaN1ad0ujmFzp
JE00v5rn0nxQ4o94JjfK93J3NXtjeXvga38bWoWZS68GONYJoOoKuLJnwUzJsMZ4
y2J9EzgOV+7uIe47pbSWVcNmbfzoME6O5iL9Hc45bPL5ucvA1IX3z1vOUP/hC4HU
uhyCecpWnm0UcuM0iV/2A76M//u4rjq4vAuOCMqkPpB96mWB3PA+xMUClESq9YIe
zvA+kvjtqVQ1xNEPxsksRUwoFvm56elchLsoG4PnBnjMNxTy4hkayzD4kw0AeoNZ
Vxhgvu/PfXAqT8bdgAf+pKUpI7vErgJRXQq17TR4MwZuL4Pi+zWSYEN4gwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHUvXIxlYpn7KrGItIzoS5SeK3InMB8GA1UdIwQY
MBaAFNCaf3/dVKF85eEqQYLrZSR5+ddYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEpwX2Y5MVVvWHpsNFNwQmd1dGxKSG41MTFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iM2Q5N2UtNWNjMi00NjY5LWIzNzgt
NTg3NWE0NDg5ZGJhLzEvZFM5Y2pHVmltZnNxc1lpMGpPaExsSjRyY2ljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9iM2Q5N2UtNWNjMi00NjY5LWIzNzgtNTg3NWE0NDg5ZGJh
LzEvMEpwX2Y5MVVvWHpsNFNwQmd1dGxKSG41MTFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUX7MA0G
CSqGSIb3DQEBCwUAA4IBAQCDelX5FBVcqmZ/LBYJ04lRaKS/86dP5SeI8Rici5z3
+bfkzFvDFsVYJUY9rh7thurQTrvQ62UmeMSxLLkU+rjip7ulWj+XMAaA95CkSrO4
FL0L/al7Y+lKTAmhfD0/o2V90zETiOnCduaASxVZn5E1EMV5hnXXjvfJClpDGAUI
HZP34vaW8HDUr4iEqO3pVRlPOCFb/mWg1JOn10eFWKkUwc5I+UnqLbMD50Pm/U9e
iHorgzI8+kq+/oE3rF6R+duOCMp0ufCdHaMLbMzC58Ovzh791UdXGVNDXuh7CE0t
eYDjKwpNQ2I3LiHhrCDq3aO7wd+3JjS1s7poiuOpb791
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:46 2024 by rpki-client on console-fra.rpki-client.org