Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/fd5f04-1d26-4451-a6ae-9867642c2f10/1/3vSAu8vab6Qu-pk4e1L7ApfFpAo.roa
File: 3vSAu8vab6Qu-pk4e1L7ApfFpAo.roa (raw, json)
Hash identifier: yTImDDEEvYBLV6wk6T1iPP7uBHbR5l0YrRqq8BdUliU=
Subject key identifier: DE:F4:80:BB:CB:DA:6F:A4:2E:FA:99:38:7B:52:FB:02:97:C5:A4:0A
Certificate issuer: /CN=51e140495bd06c2e8efacb7ed0a31516db1f405f
Certificate serial: 01856CAF3FF515B78A0A44530B58F5899663
Authority key identifier: 51:E1:40:49:5B:D0:6C:2E:8E:FA:CB:7E:D0:A3:15:16:DB:1F:40:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeFASVvQbC6O-st-0KMVFtsfQF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/fd5f04-1d26-4451-a6ae-9867642c2f10/1/3vSAu8vab6Qu-pk4e1L7ApfFpAo.roa
Signing time: Sun 01 Jan 2023 09:35:02 +0000
ROA not before: Sun 01 Jan 2023 09:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 185.234.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:3f:f5:15:b7:8a:0a:44:53:0b:58:f5:89:96:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e140495bd06c2e8efacb7ed0a31516db1f405f
Validity
Not Before: Jan 1 09:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=def480bbcbda6fa42efa99387b52fb0297c5a40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:33:60:9c:b6:ed:37:ae:84:eb:c6:98:3f:5a:
81:3f:9e:94:28:32:b0:e5:1d:cf:0c:d1:ed:29:b9:
b3:03:6d:59:13:a0:f0:7e:2e:d7:b3:6f:e4:de:d5:
57:11:27:25:33:4a:1c:65:02:24:db:b8:2e:bd:dc:
06:46:d7:b7:34:51:d2:78:f3:22:d9:34:de:ae:af:
61:d0:a1:68:31:06:1c:53:88:0a:af:e5:bc:23:73:
b4:55:39:60:e2:6e:d7:14:90:0c:bb:5f:6d:bd:0a:
94:14:97:2a:fa:12:3e:f1:38:9c:94:18:d7:a8:b8:
7f:c8:73:8b:04:df:aa:a3:a3:c9:e2:a1:49:91:29:
5b:e2:17:d0:97:d8:e6:47:04:c7:6f:b6:a8:67:94:
ab:bf:c1:1e:99:84:2f:65:cd:58:13:87:38:02:49:
bc:78:6e:37:8e:c7:9c:15:97:8d:a5:35:35:39:7a:
f9:d2:fb:67:18:00:29:83:f4:b7:e6:e3:65:18:78:
d4:39:cb:42:58:53:8b:ce:04:57:e4:77:36:7c:a9:
f1:85:95:fe:17:a0:5f:53:37:34:9b:2b:79:48:ff:
3d:d3:34:f2:51:36:b2:5a:2e:45:ed:fa:aa:a8:fb:
d9:ae:b8:a2:15:a1:33:98:be:50:a2:6d:6e:9e:e5:
36:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F4:80:BB:CB:DA:6F:A4:2E:FA:99:38:7B:52:FB:02:97:C5:A4:0A
X509v3 Authority Key Identifier:
keyid:51:E1:40:49:5B:D0:6C:2E:8E:FA:CB:7E:D0:A3:15:16:DB:1F:40:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeFASVvQbC6O-st-0KMVFtsfQF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/fd5f04-1d26-4451-a6ae-9867642c2f10/1/3vSAu8vab6Qu-pk4e1L7ApfFpAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/fd5f04-1d26-4451-a6ae-9867642c2f10/1/UeFASVvQbC6O-st-0KMVFtsfQF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.136.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:c4:f9:f3:f7:f3:21:51:70:7f:29:4b:dc:c2:75:1b:5b:41:
9e:5c:fb:c6:f4:bc:8e:9d:bc:af:f7:89:7c:a7:fb:25:70:9e:
25:9f:6b:91:b2:e7:8b:45:ff:a8:8e:6b:7b:e1:5b:73:79:d7:
e7:d0:a4:aa:b8:10:ea:e0:08:32:3e:8c:a6:9e:98:8a:73:fc:
33:cb:02:cc:e9:e0:6b:fe:77:6f:8b:8c:5a:1c:88:3f:19:aa:
ae:fb:6f:c1:51:23:d4:30:ac:30:c2:9c:f9:9a:25:8b:d3:55:
5e:bd:51:4e:f9:bd:0b:8f:14:d1:fb:dd:60:30:93:4e:33:d9:
48:e3:07:5e:fe:dd:19:e2:96:5a:f6:84:6b:52:6d:c9:24:e8:
bd:58:f0:8d:98:92:23:e8:c3:96:76:3c:60:de:f2:38:12:f3:
b7:ca:06:24:fc:0d:5b:c9:05:2f:a8:2b:7c:8d:0e:47:e7:2f:
5f:89:42:54:fb:da:d3:85:19:95:06:29:99:02:08:52:ef:04:
7e:de:77:11:a7:8e:2d:43:6b:6e:14:8c:e5:b1:ff:35:b9:1b:
90:30:b9:7d:bb:5e:38:48:ae:8a:b8:d1:78:40:e4:9a:2a:e5:
ec:57:92:3b:73:e4:26:c5:d9:9a:a3:05:eb:4b:bd:90:81:b9:
86:7a:73:23
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsrz/1FbeKCkRTC1j1iZZjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxZTE0MDQ5NWJkMDZjMmU4ZWZhY2I3ZWQwYTMxNTE2ZGIx
ZjQwNWYwHhcNMjMwMTAxMDkzNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZWY0ODBiYmNiZGE2ZmE0MmVmYTk5Mzg3YjUyZmIwMjk3YzVhNDBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjNgnLbtN66E68aYP1qBP56UKDKw
5R3PDNHtKbmzA21ZE6Dwfi7Xs2/k3tVXESclM0ocZQIk27guvdwGRte3NFHSePMi
2TTerq9h0KFoMQYcU4gKr+W8I3O0VTlg4m7XFJAMu19tvQqUFJcq+hI+8TiclBjX
qLh/yHOLBN+qo6PJ4qFJkSlb4hfQl9jmRwTHb7aoZ5Srv8EemYQvZc1YE4c4Akm8
eG43jsecFZeNpTU1OXr50vtnGAApg/S35uNlGHjUOctCWFOLzgRX5Hc2fKnxhZX+
F6BfUzc0myt5SP890zTyUTayWi5F7fqqqPvZrriiFaEzmL5Qom1unuU2tQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN70gLvL2m+kLvqZOHtS+wKXxaQKMB8GA1UdIwQY
MBaAFFHhQElb0GwujvrLftCjFRbbH0BfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWVGQVNWdlFiQzZPLXN0LTBLTVZGdHNmUUY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9mZDVmMDQtMWQyNi00NDUxLWE2YWUt
OTg2NzY0MmMyZjEwLzEvM3ZTQXU4dmFiNlF1LXBrNGUxTDdBcGZGcEFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9mZDVmMDQtMWQyNi00NDUxLWE2YWUtOTg2NzY0MmMyZjEw
LzEvVWVGQVNWdlFiQzZPLXN0LTBLTVZGdHNmUUY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueqIMA0G
CSqGSIb3DQEBCwUAA4IBAQCKxPnz9/MhUXB/KUvcwnUbW0GeXPvG9LyOnbyv94l8
p/slcJ4ln2uRsueLRf+ojmt74Vtzedfn0KSquBDq4AgyPoymnpiKc/wzywLM6eBr
/ndvi4xaHIg/Gaqu+2/BUSPUMKwwwpz5miWL01VevVFO+b0LjxTR+91gMJNOM9lI
4wde/t0Z4pZa9oRrUm3JJOi9WPCNmJIj6MOWdjxg3vI4EvO3ygYk/A1byQUvqCt8
jQ5H5y9fiUJU+9rThRmVBimZAghS7wR+3ncRp44tQ2tuFIzlsf81uRuQMLl9u144
SK6KuNF4QOSaKuXsV5I7c+QmxdmaowXrS72QgbmGenMj
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:26 2024 by rpki-client on console-ams.rpki-client.org