Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9b240c-0d28-4690-89b4-1a8a4a38a805/1/_njyfzgT8hKmxMC-z9gqbbPPmFs.roa
File: _njyfzgT8hKmxMC-z9gqbbPPmFs.roa (raw, json)
Hash identifier: l6fci3By7dbh2AU9Qmjzm7wuM/seFyXdIsLxo8/WJ1w=
Subject key identifier: FE:78:F2:7F:38:13:F2:12:A6:C4:C0:BE:CF:D8:2A:6D:B3:CF:98:5B
Certificate issuer: /CN=747c2e3a51489f1b01b4371758099bc85dd90f07
Certificate serial: 018571BA2485E6357D8B4E06F0BE26FB89B4
Authority key identifier: 74:7C:2E:3A:51:48:9F:1B:01:B4:37:17:58:09:9B:C8:5D:D9:0F:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHwuOlFInxsBtDcXWAmbyF3ZDwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9b240c-0d28-4690-89b4-1a8a4a38a805/1/_njyfzgT8hKmxMC-z9gqbbPPmFs.roa
Signing time: Mon 02 Jan 2023 09:05:02 +0000
ROA not before: Mon 02 Jan 2023 09:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135330
IP address blocks: 185.74.222.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:24:85:e6:35:7d:8b:4e:06:f0:be:26:fb:89:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=747c2e3a51489f1b01b4371758099bc85dd90f07
Validity
Not Before: Jan 2 09:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe78f27f3813f212a6c4c0becfd82a6db3cf985b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c5:f2:7e:ce:23:3c:25:a5:4a:3e:4e:0f:5e:
49:df:39:bf:89:38:4a:a2:69:9c:b6:ae:35:77:80:
4c:65:f9:25:f0:2a:3c:15:49:df:cf:3d:cc:ea:dd:
15:fe:7c:6b:86:6a:6d:9c:d9:76:c7:e7:e8:87:4e:
25:32:5d:00:e9:5a:94:68:da:6d:1a:25:a5:df:00:
a0:6e:3c:7e:f7:d9:21:f5:da:24:94:05:b4:67:fa:
23:4c:d9:dc:17:32:25:c9:e7:8d:dd:86:0f:16:13:
c0:bb:22:88:55:ac:c7:68:ca:f1:af:df:16:14:97:
12:8c:98:bd:88:6b:64:88:dd:90:c7:5f:ac:63:c4:
55:24:4a:95:e8:6b:d2:66:bf:f1:cd:82:0d:a5:a9:
f3:80:46:fa:fc:0f:5e:1d:7e:af:fe:c1:e5:49:79:
af:8e:a2:14:b5:4d:24:7b:a0:cc:75:c9:a0:df:1a:
66:2c:f2:18:01:8d:47:5b:08:ca:8b:2a:f3:26:a3:
c7:fb:b4:32:3e:be:21:fe:6f:94:1a:61:aa:5c:49:
32:e2:4b:da:9c:dc:fa:d0:f9:0d:c7:f5:6e:2b:c4:
eb:89:d3:72:ac:08:e0:cd:59:37:95:0b:15:2d:37:
0c:1d:e8:82:33:78:70:55:59:ea:8a:d8:ad:2f:3e:
29:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:78:F2:7F:38:13:F2:12:A6:C4:C0:BE:CF:D8:2A:6D:B3:CF:98:5B
X509v3 Authority Key Identifier:
keyid:74:7C:2E:3A:51:48:9F:1B:01:B4:37:17:58:09:9B:C8:5D:D9:0F:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHwuOlFInxsBtDcXWAmbyF3ZDwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9b240c-0d28-4690-89b4-1a8a4a38a805/1/_njyfzgT8hKmxMC-z9gqbbPPmFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9b240c-0d28-4690-89b4-1a8a4a38a805/1/dHwuOlFInxsBtDcXWAmbyF3ZDwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.222.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:f6:3b:a5:98:2a:7f:86:f8:1b:ed:d2:56:58:f7:4e:e1:35:
a2:bc:00:58:76:08:bb:85:fd:9d:ad:48:5c:81:e6:4c:4c:1d:
ac:84:a4:c2:a6:f9:da:2c:58:84:46:75:e5:b8:00:85:93:60:
68:4c:f2:87:f3:87:b1:d0:34:ed:28:49:3c:f8:7a:1d:9e:3f:
fa:53:07:ee:22:8b:eb:42:64:25:fb:5b:7c:84:85:35:8d:db:
1a:16:71:0d:fc:d7:90:bd:9e:67:0d:dc:73:b9:d1:cf:24:7f:
aa:ba:5f:b8:52:1b:f3:3e:01:f1:4e:ca:6c:a2:25:04:f7:90:
46:26:54:e8:d8:56:bb:50:b1:63:b9:89:f5:2d:f1:07:70:1e:
f5:82:80:12:a6:da:5c:c3:31:75:a2:aa:05:f8:16:8c:85:f6:
03:14:1f:53:eb:13:3c:7e:9d:7d:df:ab:63:b2:52:55:64:fc:
96:91:72:50:cb:40:24:a6:dd:7e:7a:9f:2e:be:0e:e4:3e:65:
3e:d0:bc:48:da:dc:eb:b1:bb:56:2d:cc:92:dd:83:72:47:e9:
b4:5e:39:fe:d3:71:0c:67:19:8e:04:2a:90:e7:17:d7:ed:4f:
9b:66:60:94:59:66:a5:a6:e5:56:d9:21:b0:86:38:22:b3:c1:
3c:bc:fe:95
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxuiSF5jV9i04G8L4m+4m0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0N2MyZTNhNTE0ODlmMWIwMWI0MzcxNzU4MDk5YmM4NWRk
OTBmMDcwHhcNMjMwMTAyMDkwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTc4ZjI3ZjM4MTNmMjEyYTZjNGMwYmVjZmQ4MmE2ZGIzY2Y5ODViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmMXyfs4jPCWlSj5OD15J3zm/iThK
ommctq41d4BMZfkl8Co8FUnfzz3M6t0V/nxrhmptnNl2x+foh04lMl0A6VqUaNpt
GiWl3wCgbjx+99kh9doklAW0Z/ojTNncFzIlyeeN3YYPFhPAuyKIVazHaMrxr98W
FJcSjJi9iGtkiN2Qx1+sY8RVJEqV6GvSZr/xzYINpanzgEb6/A9eHX6v/sHlSXmv
jqIUtU0ke6DMdcmg3xpmLPIYAY1HWwjKiyrzJqPH+7QyPr4h/m+UGmGqXEky4kva
nNz60PkNx/VuK8TridNyrAjgzVk3lQsVLTcMHeiCM3hwVVnqititLz4p0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP548n84E/ISpsTAvs/YKm2zz5hbMB8GA1UdIwQY
MBaAFHR8LjpRSJ8bAbQ3F1gJm8hd2Q8HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEh3dU9sRklueHNCdERjWFdBbWJ5RjNaRHdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85YjI0MGMtMGQyOC00NjkwLTg5YjQt
MWE4YTRhMzhhODA1LzEvX25qeWZ6Z1Q4aEtteE1DLXo5Z3FiYlBQbUZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85YjI0MGMtMGQyOC00NjkwLTg5YjQtMWE4YTRhMzhhODA1
LzEvZEh3dU9sRklueHNCdERjWFdBbWJ5RjNaRHdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUreMA0G
CSqGSIb3DQEBCwUAA4IBAQCu9julmCp/hvgb7dJWWPdO4TWivABYdgi7hf2drUhc
geZMTB2shKTCpvnaLFiERnXluACFk2BoTPKH84ex0DTtKEk8+Hodnj/6UwfuIovr
QmQl+1t8hIU1jdsaFnEN/NeQvZ5nDdxzudHPJH+qul+4UhvzPgHxTspsoiUE95BG
JlTo2Fa7ULFjuYn1LfEHcB71goASptpcwzF1oqoF+BaMhfYDFB9T6xM8fp1936tj
slJVZPyWkXJQy0Akpt1+ep8uvg7kPmU+0LxI2tzrsbtWLcyS3YNyR+m0Xjn+03EM
ZxmOBCqQ5xfX7U+bZmCUWWalpuVW2SGwhjgis8E8vP6V
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:22 2024 by rpki-client on console-fra.rpki-client.org