Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/3D27bsMNkMkaYCB__TfU4UjkzvQ.roa
File: 3D27bsMNkMkaYCB__TfU4UjkzvQ.roa (raw, json)
Hash identifier: RjtJgmwKmhRlkZKTERJnXnfKm1O4lUv3R25VIzyOl8E=
Subject key identifier: DC:3D:BB:6E:C3:0D:90:C9:1A:60:20:7F:FD:37:D4:E1:48:E4:CE:F4
Certificate issuer: /CN=85db83a8365a604476f282d24d327ad1ef0fde52
Certificate serial: 018570FBB22BB4992824D74FFDE9AB76E0BE
Authority key identifier: 85:DB:83:A8:36:5A:60:44:76:F2:82:D2:4D:32:7A:D1:EF:0F:DE:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hduDqDZaYER28oLSTTJ60e8P3lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/3D27bsMNkMkaYCB__TfU4UjkzvQ.roa
Signing time: Mon 02 Jan 2023 05:37:01 +0000
ROA not before: Mon 02 Jan 2023 05:37:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43366
IP address blocks: 91.215.4.0/22 maxlen: 24
194.140.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:b2:2b:b4:99:28:24:d7:4f:fd:e9:ab:76:e0:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85db83a8365a604476f282d24d327ad1ef0fde52
Validity
Not Before: Jan 2 05:37:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc3dbb6ec30d90c91a60207ffd37d4e148e4cef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:82:cf:ad:8b:80:09:90:3c:45:82:2f:ae:72:
30:3b:d9:10:50:20:23:70:18:b2:38:fb:25:4c:e8:
c8:8d:8d:38:44:cc:5e:ec:f6:5a:b4:0f:4a:89:15:
10:5f:62:db:ae:42:8b:39:55:56:5c:96:0b:cd:18:
dc:27:56:b8:79:f6:a8:57:5c:92:9a:46:3c:af:c3:
70:05:e8:34:e9:a7:f8:a9:1c:41:69:4b:bc:19:9b:
2d:ed:1d:83:bb:17:c4:66:04:3c:96:2b:db:b8:11:
41:a0:15:f6:05:6a:a8:73:ff:62:ec:f1:93:2f:b5:
8b:b3:d1:aa:40:1d:e8:f4:03:a9:a3:ad:d6:2e:0d:
13:04:6f:ad:a2:36:5d:81:ad:22:c2:78:b0:b1:c4:
cf:37:ef:8c:62:c1:8b:24:1c:a5:88:3a:bc:1b:30:
cd:d3:f7:9f:0d:89:5e:2b:ff:e5:20:07:6b:b1:70:
c0:ff:b0:03:03:25:77:27:f6:e1:d0:99:e8:cb:fb:
82:fa:5d:13:7b:71:05:04:70:8e:e4:3d:4b:79:21:
70:9b:8d:b9:f9:3a:a9:42:a1:72:b7:55:b0:7d:03:
09:3d:b3:a2:05:05:6b:42:f3:32:84:2f:98:20:29:
94:22:50:6b:f9:bc:a6:94:8e:77:fa:91:aa:13:9f:
09:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:3D:BB:6E:C3:0D:90:C9:1A:60:20:7F:FD:37:D4:E1:48:E4:CE:F4
X509v3 Authority Key Identifier:
keyid:85:DB:83:A8:36:5A:60:44:76:F2:82:D2:4D:32:7A:D1:EF:0F:DE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hduDqDZaYER28oLSTTJ60e8P3lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/3D27bsMNkMkaYCB__TfU4UjkzvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/hduDqDZaYER28oLSTTJ60e8P3lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.215.4.0/22
194.140.246.0/24
Signature Algorithm: sha256WithRSAEncryption
60:26:c5:17:73:14:7e:44:d2:f7:ef:9e:69:2f:43:0d:f9:fc:
46:2e:cb:8a:eb:4f:bd:44:5f:ee:e8:a5:eb:fb:fa:2b:3b:10:
53:29:80:6c:ff:e0:a5:25:cf:64:e9:4f:dc:33:99:3b:d7:9c:
65:2a:dd:dd:95:f4:38:a5:ed:17:f0:fd:50:6d:c2:e1:22:b3:
3d:f7:ed:b2:89:0c:32:94:c9:c3:63:0f:a7:5d:28:cc:fa:61:
04:bc:fa:0a:d4:63:de:53:3b:ad:2b:1b:1f:f2:88:9c:6b:e2:
5d:65:59:de:27:dd:1e:e2:d3:72:b6:28:d1:be:fc:1e:2b:6f:
4e:e9:7e:cc:ae:ec:25:6d:40:d0:41:85:a7:8a:3f:cc:1c:b5:
cf:8e:54:fe:3c:81:2f:96:f6:8e:3d:62:cf:80:86:45:95:30:
ab:6d:84:63:fd:ad:ca:46:41:eb:92:ab:62:7d:dc:0b:65:ad:
64:f3:c7:45:4a:8a:90:16:2d:ee:fe:10:ad:d0:94:d0:6b:f1:
ad:15:ce:a1:fc:f3:43:68:59:7f:d7:5c:e1:d5:7e:4d:b8:43:
74:7c:26:bc:92:34:a8:61:d7:05:80:eb:1a:f4:cd:44:53:c1:
4e:23:db:77:26:ad:98:ac:04:97:6a:04:8e:23:59:e3:71:2c:
61:47:46:79
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVw+7IrtJkoJNdP/emrduC+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZGI4M2E4MzY1YTYwNDQ3NmYyODJkMjRkMzI3YWQxZWYw
ZmRlNTIwHhcNMjMwMTAyMDUzNzAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzNkYmI2ZWMzMGQ5MGM5MWE2MDIwN2ZmZDM3ZDRlMTQ4ZTRjZWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4LPrYuACZA8RYIvrnIwO9kQUCAj
cBiyOPslTOjIjY04RMxe7PZatA9KiRUQX2LbrkKLOVVWXJYLzRjcJ1a4efaoV1yS
mkY8r8NwBeg06af4qRxBaUu8GZst7R2DuxfEZgQ8livbuBFBoBX2BWqoc/9i7PGT
L7WLs9GqQB3o9AOpo63WLg0TBG+tojZdga0iwniwscTPN++MYsGLJByliDq8GzDN
0/efDYleK//lIAdrsXDA/7ADAyV3J/bh0Jnoy/uC+l0Te3EFBHCO5D1LeSFwm425
+TqpQqFyt1WwfQMJPbOiBQVrQvMyhC+YICmUIlBr+bymlI53+pGqE58JYQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNw9u27DDZDJGmAgf/031OFI5M70MB8GA1UdIwQY
MBaAFIXbg6g2WmBEdvKC0k0yetHvD95SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGR1RHFEWmFZRVIyOG9MU1RUSjYwZThQM2xJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yYzhmMDgtZTU5OS00NGYzLWJiYzEt
OGNiZWY5MTNlMzQyLzEvM0QyN2JzTU5rTWthWUNCX19UZlU0VWprenZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8yYzhmMDgtZTU5OS00NGYzLWJiYzEtOGNiZWY5MTNlMzQy
LzEvaGR1RHFEWmFZRVIyOG9MU1RUSjYwZThQM2xJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW9cEAwQA
woz2MA0GCSqGSIb3DQEBCwUAA4IBAQBgJsUXcxR+RNL3755pL0MN+fxGLsuK60+9
RF/u6KXr+/orOxBTKYBs/+ClJc9k6U/cM5k715xlKt3dlfQ4pe0X8P1QbcLhIrM9
9+2yiQwylMnDYw+nXSjM+mEEvPoK1GPeUzutKxsf8oica+JdZVneJ90e4tNytijR
vvweK29O6X7MruwlbUDQQYWnij/MHLXPjlT+PIEvlvaOPWLPgIZFlTCrbYRj/a3K
RkHrkqtifdwLZa1k88dFSoqQFi3u/hCt0JTQa/GtFc6h/PNDaFl/11zh1X5NuEN0
fCa8kjSoYdcFgOsa9M1EU8FOI9t3Jq2YrASXagSOI1njcSxhR0Z5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:51 2024 by rpki-client on console-fra.rpki-client.org