Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/IUbw85ZkmDG_5A-F9ktuxYTGd64.roa
File: IUbw85ZkmDG_5A-F9ktuxYTGd64.roa (raw, json)
Hash identifier: gLpCbtr2NPlDhHN5wo0qob5Cd8MYx0M1jAueCw2JENc=
Subject key identifier: 21:46:F0:F3:96:64:98:31:BF:E4:0F:85:F6:4B:6E:C5:84:C6:77:AE
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 01856BDC84C7C3CBF94C6355220C7C40EEA4
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/IUbw85ZkmDG_5A-F9ktuxYTGd64.roa
Signing time: Sun 01 Jan 2023 05:44:51 +0000
ROA not before: Sun 01 Jan 2023 05:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203988
IP address blocks: 185.65.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:84:c7:c3:cb:f9:4c:63:55:22:0c:7c:40:ee:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Jan 1 05:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2146f0f396649831bfe40f85f64b6ec584c677ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c0:eb:84:38:1b:ba:8a:dc:0d:4d:ad:e6:25:
db:ce:63:5c:76:4a:5c:c0:9d:f4:8a:0f:c7:d7:f8:
a4:e8:30:18:28:2c:f7:a7:45:0e:13:53:1a:1f:a0:
01:0e:a0:24:dd:34:6f:47:6e:82:2c:b2:fc:69:e8:
b4:8d:38:a0:5f:fb:9a:d8:43:2c:6f:7f:63:be:40:
ad:02:98:08:81:2d:71:50:0b:da:cd:c5:ed:4d:e1:
2b:60:60:55:9b:69:82:c1:63:ab:55:c9:29:ff:6b:
82:c2:ad:22:a2:8a:d3:3d:5f:82:6c:85:10:c6:17:
fe:51:6f:28:02:b5:f9:58:67:25:38:48:67:55:c9:
ff:8e:e8:62:c3:e5:1c:62:0f:94:08:5c:68:bb:87:
cb:6b:6c:5b:c0:7b:87:ec:a8:d3:ae:3e:c8:5d:65:
c6:2d:74:f0:0a:62:e0:ac:14:da:d4:65:9b:e0:a9:
b4:2e:93:d3:56:27:d0:9b:66:22:64:c6:a8:1d:51:
d8:c8:ae:90:a1:44:e6:a0:25:8c:36:1d:a8:7b:7e:
ae:ce:d1:89:e1:e8:b6:4e:56:80:92:2c:d7:a7:0c:
32:8d:0a:f0:e8:b5:14:f9:03:fc:1d:cf:d1:8a:71:
e9:68:25:12:95:4b:46:53:3a:63:53:6b:dd:40:1d:
41:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:46:F0:F3:96:64:98:31:BF:E4:0F:85:F6:4B:6E:C5:84:C6:77:AE
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/IUbw85ZkmDG_5A-F9ktuxYTGd64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.136.0/24
Signature Algorithm: sha256WithRSAEncryption
03:97:27:e4:67:32:34:3c:2e:df:11:98:9b:bd:8d:33:59:c8:
26:cc:5f:7d:93:ae:2f:d7:eb:b2:32:6d:e3:b7:9a:0b:9f:c6:
3f:82:ae:db:a3:e4:c0:44:d2:cb:cb:54:19:64:36:9e:af:a6:
7e:8e:fe:51:9d:1e:7d:7d:53:8d:fd:73:cf:16:9a:9d:2d:5b:
a1:9f:b9:91:08:9a:05:0c:18:1f:b3:06:fc:be:c6:30:31:a1:
56:cc:0e:98:b6:86:b5:a1:3e:68:79:0e:e6:b9:a4:05:bf:01:
32:7f:1b:59:d2:02:0d:ab:54:85:48:f2:b6:5c:21:8b:7d:04:
86:31:63:3f:21:38:5f:b5:e9:88:88:2a:43:ad:f4:4e:77:a1:
1f:7a:d9:84:86:dd:d1:83:59:fb:9a:9f:11:8f:ad:d4:ef:7b:
03:1e:88:0b:c5:ac:56:2a:67:68:44:cd:90:ae:e5:c8:f8:ee:
de:c1:6f:af:5d:3a:a5:ac:75:5e:f1:49:76:e5:10:00:05:46:
4b:5f:ee:61:b0:87:21:87:71:90:91:33:7a:2d:4a:c4:47:e8:
4f:fd:f8:aa:4c:f4:f8:26:47:c6:38:99:96:2f:cd:d5:fb:29:
1e:47:ac:7c:97:00:a4:a4:64:80:5e:95:5c:eb:ea:2e:04:03:
b0:8d:56:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr3ITHw8v5TGNVIgx8QO6kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDFmNTAxOWE5NzBiYTViZTBjNzU0ZDIwZjc4NjcxODE4
ZjRhMmUwHhcNMjMwMTAxMDU0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTQ2ZjBmMzk2NjQ5ODMxYmZlNDBmODVmNjRiNmVjNTg0YzY3N2FlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlsDrhDgbuorcDU2t5iXbzmNcdkpc
wJ30ig/H1/ik6DAYKCz3p0UOE1MaH6ABDqAk3TRvR26CLLL8aei0jTigX/ua2EMs
b39jvkCtApgIgS1xUAvazcXtTeErYGBVm2mCwWOrVckp/2uCwq0ioorTPV+CbIUQ
xhf+UW8oArX5WGclOEhnVcn/juhiw+UcYg+UCFxou4fLa2xbwHuH7KjTrj7IXWXG
LXTwCmLgrBTa1GWb4Km0LpPTVifQm2YiZMaoHVHYyK6QoUTmoCWMNh2oe36uztGJ
4ei2TlaAkizXpwwyjQrw6LUU+QP8Hc/RinHpaCUSlUtGUzpjU2vdQB1BMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCFG8POWZJgxv+QPhfZLbsWExneuMB8GA1UdIwQY
MBaAFCkB9QGalwulvgx1TSD3hnGBj0ouMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUt
MmIyZjJiODkwOGNjLzEvSVVidzg1WmttREdfNUEtRjlrdHV4WVRHZDY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUtMmIyZjJiODkwOGNj
LzEvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUGIMA0G
CSqGSIb3DQEBCwUAA4IBAQADlyfkZzI0PC7fEZibvY0zWcgmzF99k64v1+uyMm3j
t5oLn8Y/gq7bo+TARNLLy1QZZDaer6Z+jv5RnR59fVON/XPPFpqdLVuhn7mRCJoF
DBgfswb8vsYwMaFWzA6Ytoa1oT5oeQ7muaQFvwEyfxtZ0gINq1SFSPK2XCGLfQSG
MWM/IThftemIiCpDrfROd6EfetmEht3Rg1n7mp8Rj63U73sDHogLxaxWKmdoRM2Q
ruXI+O7ewW+vXTqlrHVe8Ul25RAABUZLX+5hsIchh3GQkTN6LUrER+hP/fiqTPT4
JkfGOJmWL83V+ykeR6x8lwCkpGSAXpVc6+ouBAOwjVb8
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:41 2024 by rpki-client on console-ams.rpki-client.org