Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/t5vn6h4wxQg7yvdk3WKkfRlmU0U.roa
File: t5vn6h4wxQg7yvdk3WKkfRlmU0U.roa (raw, json)
Hash identifier: 01IKhfFb2pdkHli7ZeYnapUZcvAleYcZ0KJ6uC+qNk8=
Subject key identifier: B7:9B:E7:EA:1E:30:C5:08:3B:CA:F7:64:DD:62:A4:7D:19:66:53:45
Certificate issuer: /CN=3aa9e9832ed25de78c3ce0501208261066281f51
Certificate serial: 018570D54559905996DB138C5B1D6F6E4718
Authority key identifier: 3A:A9:E9:83:2E:D2:5D:E7:8C:3C:E0:50:12:08:26:10:66:28:1F:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/t5vn6h4wxQg7yvdk3WKkfRlmU0U.roa
Signing time: Mon 02 Jan 2023 04:55:03 +0000
ROA not before: Mon 02 Jan 2023 04:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212280
IP address blocks: 185.217.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:45:59:90:59:96:db:13:8c:5b:1d:6f:6e:47:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aa9e9832ed25de78c3ce0501208261066281f51
Validity
Not Before: Jan 2 04:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b79be7ea1e30c5083bcaf764dd62a47d19665345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:46:3d:45:5a:31:88:13:8f:fc:21:7a:71:98:
ed:42:4a:17:9a:0c:47:c5:9b:87:b3:ea:54:e0:d3:
79:fc:65:62:bf:1f:0a:f2:fa:ab:b3:a3:2b:29:7b:
45:0b:42:15:3d:37:3e:85:2c:b7:06:f7:26:e1:d4:
7a:1d:0d:04:96:78:6f:12:55:75:6f:87:80:18:2e:
ed:bc:6f:fa:f7:59:f5:8e:9c:4f:55:11:95:29:05:
6e:c4:32:6e:3c:13:03:0e:be:f4:14:3c:b0:94:4f:
17:6a:7e:c0:d9:5a:9f:cf:c1:0e:57:c8:b6:8f:79:
61:0c:64:1a:4f:20:92:77:67:dc:91:51:43:2c:bb:
0c:d4:33:d1:c6:e6:cb:2b:2c:1e:23:4c:b5:ab:36:
89:1e:d4:83:f5:86:74:0b:e0:28:0d:57:3a:d9:b8:
52:ab:06:7f:96:d6:f6:a9:03:cb:a1:bc:b1:b3:21:
9f:d2:7d:6b:2f:f6:f6:ba:6b:ec:bf:01:93:7b:6d:
5f:c0:c2:66:d4:2c:db:e4:3e:32:a6:38:77:52:20:
ca:cb:6f:2c:da:18:d1:9c:98:3a:98:e9:1a:91:4f:
1e:fc:59:70:c8:e7:e1:3f:34:0b:38:8f:37:d8:dd:
6f:9c:93:c9:37:0c:06:39:cd:b7:39:8b:8a:9a:3b:
f9:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:9B:E7:EA:1E:30:C5:08:3B:CA:F7:64:DD:62:A4:7D:19:66:53:45
X509v3 Authority Key Identifier:
keyid:3A:A9:E9:83:2E:D2:5D:E7:8C:3C:E0:50:12:08:26:10:66:28:1F:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/t5vn6h4wxQg7yvdk3WKkfRlmU0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.61.0/24
Signature Algorithm: sha256WithRSAEncryption
60:29:4f:a5:95:98:61:8b:1a:a9:1c:25:00:89:c7:54:fa:e6:
38:91:87:85:c8:35:f4:34:de:02:67:1f:29:c3:82:4a:5c:d2:
01:04:e6:34:45:4d:fe:9d:ac:28:b9:a3:4e:cf:66:f0:c6:6e:
81:2d:83:45:4d:24:d6:a1:95:b3:bc:ed:71:ae:36:f6:1f:fa:
5a:91:f0:8d:9a:bf:1b:f1:bb:30:f7:1a:88:a5:69:80:2f:7b:
99:72:46:44:b2:72:c5:f8:44:7c:95:f2:8f:17:fd:96:d6:0b:
07:69:cc:fa:d1:39:a8:6c:52:5d:ab:38:ab:31:8e:0d:b3:09:
43:9a:3d:b3:19:0c:40:94:b5:cb:ca:fd:fd:d9:99:4f:dd:72:
06:83:64:7f:25:a6:48:88:37:ec:b5:84:9e:fc:45:39:97:d7:
c5:2b:7d:fb:ea:40:1a:61:09:7c:d4:8c:10:94:50:e8:60:d7:
57:af:bd:be:f4:3f:3d:01:8a:4a:a6:ec:5e:60:03:19:fc:65:
8e:7b:4e:65:9f:d6:06:4a:eb:8b:1e:61:37:d1:ac:ec:0f:74:
25:b9:a4:82:85:56:ed:4d:3a:06:a4:a4:2b:19:c1:aa:5e:93:
f3:b4:b7:bb:68:05:99:e4:d3:96:1a:d7:3f:43:1d:a1:80:17:
67:ce:0d:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw1UVZkFmW2xOMWx1vbkcYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhYTllOTgzMmVkMjVkZTc4YzNjZTA1MDEyMDgyNjEwNjYy
ODFmNTEwHhcNMjMwMTAyMDQ1NTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzliZTdlYTFlMzBjNTA4M2JjYWY3NjRkZDYyYTQ3ZDE5NjY1MzQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA20Y9RVoxiBOP/CF6cZjtQkoXmgxH
xZuHs+pU4NN5/GVivx8K8vqrs6MrKXtFC0IVPTc+hSy3Bvcm4dR6HQ0ElnhvElV1
b4eAGC7tvG/691n1jpxPVRGVKQVuxDJuPBMDDr70FDywlE8Xan7A2Vqfz8EOV8i2
j3lhDGQaTyCSd2fckVFDLLsM1DPRxubLKyweI0y1qzaJHtSD9YZ0C+AoDVc62bhS
qwZ/ltb2qQPLobyxsyGf0n1rL/b2umvsvwGTe21fwMJm1Czb5D4ypjh3UiDKy28s
2hjRnJg6mOkakU8e/FlwyOfhPzQLOI832N1vnJPJNwwGOc23OYuKmjv5mwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLeb5+oeMMUIO8r3ZN1ipH0ZZlNFMB8GA1UdIwQY
MBaAFDqp6YMu0l3njDzgUBIIJhBmKB9RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3FucGd5N1NYZWVNUE9CUUVnZ21FR1lvSDFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy81ZmQyNzMtZjNhOS00NzU1LWIyM2Et
M2JiZDg4N2QwNWMyLzEvdDV2bjZoNHd4UWc3eXZkazNXS2tmUmxtVTBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy81ZmQyNzMtZjNhOS00NzU1LWIyM2EtM2JiZDg4N2QwNWMy
LzEvT3FucGd5N1NYZWVNUE9CUUVnZ21FR1lvSDFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudk9MA0G
CSqGSIb3DQEBCwUAA4IBAQBgKU+llZhhixqpHCUAicdU+uY4kYeFyDX0NN4CZx8p
w4JKXNIBBOY0RU3+nawouaNOz2bwxm6BLYNFTSTWoZWzvO1xrjb2H/pakfCNmr8b
8bsw9xqIpWmAL3uZckZEsnLF+ER8lfKPF/2W1gsHacz60TmobFJdqzirMY4NswlD
mj2zGQxAlLXLyv392ZlP3XIGg2R/JaZIiDfstYSe/EU5l9fFK3376kAaYQl81IwQ
lFDoYNdXr72+9D89AYpKpuxeYAMZ/GWOe05ln9YGSuuLHmE30azsD3QluaSChVbt
TToGpKQrGcGqXpPztLe7aAWZ5NOWGtc/Qx2hgBdnzg2w
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:50 2024 by rpki-client on console-fra.rpki-client.org