Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/DbWQ6-YF-szwr1L6ZpF-5ZpuO0w.roa
File: DbWQ6-YF-szwr1L6ZpF-5ZpuO0w.roa (raw, json)
Hash identifier: fL2HqoPXoKHE/sW/NXJp5+EQyMA4V3LlyWxzH9lPdM0=
Subject key identifier: 0D:B5:90:EB:E6:05:FA:CC:F0:AF:52:FA:66:91:7E:E5:9A:6E:3B:4C
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 01857246C7A383830A923EE45A5680B94C44
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/DbWQ6-YF-szwr1L6ZpF-5ZpuO0w.roa
Signing time: Mon 02 Jan 2023 11:38:39 +0000
ROA not before: Mon 02 Jan 2023 11:38:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211440
IP address blocks: 82.115.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c7:a3:83:83:0a:92:3e:e4:5a:56:80:b9:4c:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Jan 2 11:38:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0db590ebe605faccf0af52fa66917ee59a6e3b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fb:34:61:28:dd:34:88:09:fe:16:85:08:99:
42:b1:18:f3:9c:6b:b6:5a:9e:f7:bc:76:37:44:dd:
f7:da:ce:d0:ec:69:4b:98:27:55:44:8b:95:d7:a2:
0a:36:12:e2:bc:d9:e9:a0:1c:5c:9c:69:c4:2a:0d:
9d:eb:76:60:77:0f:c9:33:6a:e4:96:d5:44:1e:c3:
07:3f:d2:29:ef:8a:cc:3c:76:e7:a5:db:0b:09:10:
21:2b:da:0a:58:60:1a:23:be:cc:33:3c:9c:24:87:
b4:22:54:cf:36:67:09:a9:18:3c:15:0c:f0:9b:ff:
8e:68:00:a7:1b:bb:e0:86:e9:df:ca:10:83:ac:82:
9f:f7:4d:7c:28:7b:e8:48:6d:aa:49:e0:dd:ab:35:
6b:36:12:f1:cb:02:95:7f:9a:15:8b:10:30:92:03:
2a:6b:6c:dc:09:9b:25:c1:71:f2:90:a1:8b:29:ea:
f6:b1:b0:a9:17:78:b3:98:27:8b:15:30:79:40:06:
5c:fa:47:e2:80:7c:e5:e1:dd:32:3c:5f:3f:0e:c9:
aa:ab:d4:24:5c:d2:21:31:2c:48:3d:ad:b8:aa:f2:
2c:82:eb:b6:52:8b:a3:8d:fb:63:5c:11:b6:6c:94:
43:ec:26:8e:43:2d:79:15:47:e2:4a:0f:cf:f7:c4:
20:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B5:90:EB:E6:05:FA:CC:F0:AF:52:FA:66:91:7E:E5:9A:6E:3B:4C
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/DbWQ6-YF-szwr1L6ZpF-5ZpuO0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.217.0/24
Signature Algorithm: sha256WithRSAEncryption
29:5c:d8:42:ad:42:7b:3b:b1:cf:48:fd:4a:10:39:2d:42:f1:
af:f0:8c:3e:8e:60:1a:c3:57:2a:ec:3a:04:df:0d:e4:ca:e4:
00:81:25:f0:87:54:d4:df:6c:b6:a3:1c:6c:59:5c:a0:33:04:
b3:c1:1e:0f:6b:11:2a:58:c7:1b:3e:9a:fc:2b:b8:05:6a:84:
de:5a:41:96:29:25:d2:d5:55:25:bd:95:00:8a:37:83:1d:84:
e9:c9:c1:f3:33:be:38:a3:a7:7d:63:14:f1:de:4a:de:d8:bb:
12:11:10:6d:f1:96:c0:13:39:34:26:ea:d2:ad:ed:3f:17:6f:
70:12:38:2a:91:42:a2:01:e6:96:56:59:e3:73:5a:36:3f:4f:
b8:3a:6e:8c:a4:6d:1a:90:8e:60:75:31:ed:f8:97:ef:9d:32:
2a:f4:ec:2d:92:c2:ff:d5:bd:54:9e:45:da:83:90:0d:75:fb:
03:b5:79:b8:f4:a6:a0:20:98:12:a9:bb:bc:49:76:cf:4b:d7:
c4:3d:bc:9b:9a:9b:e7:14:07:b5:8f:ce:20:ed:40:dd:16:e2:
83:36:05:fb:2e:8c:62:81:a6:6d:12:81:84:0e:ca:08:4c:1e:
ef:4e:2e:7d:69:9a:6f:9e:67:bb:f8:49:81:47:f2:28:f4:19:
97:c0:cf:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyRsejg4MKkj7kWlaAuUxEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2OGM2NWU2OTliNTc2YWIxMTNhNzliZTg4Mjg5NDhmMWU2
Y2MyNjAwHhcNMjMwMTAyMTEzODM5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZGI1OTBlYmU2MDVmYWNjZjBhZjUyZmE2NjkxN2VlNTlhNmUzYjRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfs0YSjdNIgJ/haFCJlCsRjznGu2
Wp73vHY3RN332s7Q7GlLmCdVRIuV16IKNhLivNnpoBxcnGnEKg2d63Zgdw/JM2rk
ltVEHsMHP9Ip74rMPHbnpdsLCRAhK9oKWGAaI77MMzycJIe0IlTPNmcJqRg8FQzw
m/+OaACnG7vghunfyhCDrIKf9018KHvoSG2qSeDdqzVrNhLxywKVf5oVixAwkgMq
a2zcCZslwXHykKGLKer2sbCpF3izmCeLFTB5QAZc+kfigHzl4d0yPF8/Dsmqq9Qk
XNIhMSxIPa24qvIsguu2UoujjftjXBG2bJRD7CaOQy15FUfiSg/P98QgZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA21kOvmBfrM8K9S+maRfuWabjtMMB8GA1UdIwQY
MBaAFMaMZeaZtXarETp5vogolI8ebMJgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYt
NjA3ZDRmMzdmNTlmLzEvRGJXUTYtWUYtc3p3cjFMNlpwRi01WnB1TzB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYtNjA3ZDRmMzdmNTlm
LzEveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUnPZMA0G
CSqGSIb3DQEBCwUAA4IBAQApXNhCrUJ7O7HPSP1KEDktQvGv8Iw+jmAaw1cq7DoE
3w3kyuQAgSXwh1TU32y2oxxsWVygMwSzwR4PaxEqWMcbPpr8K7gFaoTeWkGWKSXS
1VUlvZUAijeDHYTpycHzM744o6d9YxTx3kre2LsSERBt8ZbAEzk0JurSre0/F29w
EjgqkUKiAeaWVlnjc1o2P0+4Om6MpG0akI5gdTHt+JfvnTIq9OwtksL/1b1UnkXa
g5ANdfsDtXm49KagIJgSqbu8SXbPS9fEPbybmpvnFAe1j84g7UDdFuKDNgX7Loxi
gaZtEoGEDsoITB7vTi59aZpvnme7+EmBR/Io9BmXwM9l
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:56 2024 by rpki-client on console-ams.rpki-client.org