Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/0WK_smt1k0dhxkOYwe3gL-JQBKM.roa
File: 0WK_smt1k0dhxkOYwe3gL-JQBKM.roa (raw, json)
Hash identifier: 6LK2A0ur+K7NkWBXFA0ezeziUXsJKNfi0yoSc91pFPY=
Subject key identifier: D1:62:BF:B2:6B:75:93:47:61:C6:43:98:C1:ED:E0:2F:E2:50:04:A3
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14FC3C290AA088D0417D35866617A3
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/0WK_smt1k0dhxkOYwe3gL-JQBKM.roa
Signing time: Sun 01 Jan 2023 20:45:24 +0000
ROA not before: Sun 01 Jan 2023 20:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43315
IP address blocks: 85.121.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:fc:3c:29:0a:a0:88:d0:41:7d:35:86:66:17:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d162bfb26b75934761c64398c1ede02fe25004a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7f:65:4b:0c:25:68:40:ac:49:e3:18:97:c9:
d0:a6:6c:88:51:ce:87:6b:8d:ee:26:01:74:f0:a2:
72:db:82:ee:18:91:8a:0b:31:4a:a0:f5:de:f8:ed:
ec:e4:52:72:b7:ee:5c:d0:ed:74:3e:b5:eb:dd:a1:
b8:93:24:a4:95:9d:b4:cd:0b:00:f4:7b:b8:21:33:
0e:67:3b:1d:97:5a:44:5b:86:91:bb:d0:ce:d5:4e:
56:6d:ee:72:d7:d6:75:98:33:c7:5c:6f:97:3d:0b:
a1:f5:6f:a8:0e:8a:e3:f4:2d:6f:a8:05:10:e1:61:
78:61:f1:f9:e7:27:ed:8d:90:b1:bd:8d:41:18:d7:
7b:bc:5c:d2:84:b8:b6:0f:03:5a:79:f9:a4:22:ef:
62:c6:51:24:e4:b5:37:29:16:64:2a:96:2b:a2:48:
6a:91:4a:50:f5:ad:e2:4e:dd:91:d5:60:27:0b:f3:
2f:d0:48:d7:db:01:ed:73:e0:7b:85:36:db:24:28:
87:c9:cf:67:01:2e:6f:d0:30:c8:3b:cc:c7:f0:22:
36:0f:b3:2f:d2:c4:f7:da:bf:02:e8:db:37:ea:d9:
49:b1:7a:1d:f3:c4:7e:6a:80:49:7f:88:85:ac:f1:
e1:e6:f6:08:34:9d:3c:99:16:04:e7:ed:a7:44:59:
be:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:62:BF:B2:6B:75:93:47:61:C6:43:98:C1:ED:E0:2F:E2:50:04:A3
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/0WK_smt1k0dhxkOYwe3gL-JQBKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.121.138.0/24
Signature Algorithm: sha256WithRSAEncryption
93:1f:5b:0f:eb:f4:08:eb:ae:90:dd:10:cf:06:80:43:cf:fb:
66:9f:a3:27:2b:7c:a1:82:5d:fa:bc:e8:62:fc:8e:29:b5:3b:
01:46:99:12:f8:f3:99:52:5b:d4:5b:f7:6f:e6:27:b4:a9:7a:
f7:e3:46:24:46:64:6c:3b:ff:e5:c0:21:48:02:07:0d:f3:87:
af:ab:54:59:9f:54:4f:31:fd:5e:30:7e:86:84:23:a1:ce:f1:
54:93:93:42:b6:6d:1d:f9:50:05:8a:cf:88:6f:b5:4d:c6:b2:
78:e0:7e:47:ce:4b:5c:ae:45:e2:18:b5:bf:fa:2d:eb:58:6c:
2d:32:78:e5:ae:fb:cf:8e:19:8c:29:d3:52:83:22:44:41:a5:
1e:84:bc:f3:46:f5:e5:d5:c7:e4:83:94:37:86:4f:07:76:eb:
f0:db:63:06:cc:80:ed:8a:53:26:cb:f9:93:95:74:d1:6f:8b:
56:59:fc:79:40:2b:04:29:ff:19:57:52:b2:92:2a:de:ec:11:
12:3a:4e:2c:35:a7:1a:9c:53:37:f1:e5:1d:a7:6e:93:e1:fb:
94:c6:8a:38:1f:9e:73:78:68:26:4e:bb:83:60:56:31:b8:58:
16:aa:a1:f2:83:68:72:4a:d0:ea:f7:09:96:93:c9:aa:6e:be:
0c:ff:36:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFPw8KQqgiNBBfTWGZhejMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjMwMTAxMjA0NTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTYyYmZiMjZiNzU5MzQ3NjFjNjQzOThjMWVkZTAyZmUyNTAwNGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoH9lSwwlaECsSeMYl8nQpmyIUc6H
a43uJgF08KJy24LuGJGKCzFKoPXe+O3s5FJyt+5c0O10PrXr3aG4kySklZ20zQsA
9Hu4ITMOZzsdl1pEW4aRu9DO1U5Wbe5y19Z1mDPHXG+XPQuh9W+oDorj9C1vqAUQ
4WF4YfH55yftjZCxvY1BGNd7vFzShLi2DwNaefmkIu9ixlEk5LU3KRZkKpYrokhq
kUpQ9a3iTt2R1WAnC/Mv0EjX2wHtc+B7hTbbJCiHyc9nAS5v0DDIO8zH8CI2D7Mv
0sT32r8C6Ns36tlJsXod88R+aoBJf4iFrPHh5vYINJ08mRYE5+2nRFm+RwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNFiv7JrdZNHYcZDmMHt4C/iUASjMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvMFdLX3NtdDFrMGRoeGtPWXdlM2dMLUpRQktNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVXmKMA0G
CSqGSIb3DQEBCwUAA4IBAQCTH1sP6/QI666Q3RDPBoBDz/tmn6MnK3yhgl36vOhi
/I4ptTsBRpkS+POZUlvUW/dv5ie0qXr340YkRmRsO//lwCFIAgcN84evq1RZn1RP
Mf1eMH6GhCOhzvFUk5NCtm0d+VAFis+Ib7VNxrJ44H5HzktcrkXiGLW/+i3rWGwt
MnjlrvvPjhmMKdNSgyJEQaUehLzzRvXl1cfkg5Q3hk8Hduvw22MGzIDtilMmy/mT
lXTRb4tWWfx5QCsEKf8ZV1Kykire7BESOk4sNacanFM38eUdp26T4fuUxoo4H55z
eGgmTruDYFYxuFgWqqHyg2hyStDq9wmWk8mqbr4M/zbs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org