Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/dQvhAtgXhcEMrl6An2MpTO_Nm0A.roa
File: dQvhAtgXhcEMrl6An2MpTO_Nm0A.roa (raw, json)
Hash identifier: EBZPl7MJx+vgKJBcfNx+GNQNgx0Y1WsjDu3r+6Zi2hw=
Subject key identifier: 75:0B:E1:02:D8:17:85:C1:0C:AE:5E:80:9F:63:29:4C:EF:CD:9B:40
Certificate issuer: /CN=0747a36d7768a7b30a4eecbb6964c8c237d74401
Certificate serial: 01856CB82D428E65D1FBFD6FC947AF262900
Authority key identifier: 07:47:A3:6D:77:68:A7:B3:0A:4E:EC:BB:69:64:C8:C2:37:D7:44:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B0ejbXdop7MKTuy7aWTIwjfXRAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/dQvhAtgXhcEMrl6An2MpTO_Nm0A.roa
Signing time: Sun 01 Jan 2023 09:44:47 +0000
ROA not before: Sun 01 Jan 2023 09:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48325
IP address blocks: 185.126.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:2d:42:8e:65:d1:fb:fd:6f:c9:47:af:26:29:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0747a36d7768a7b30a4eecbb6964c8c237d74401
Validity
Not Before: Jan 1 09:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=750be102d81785c10cae5e809f63294cefcd9b40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:26:4c:f4:fd:6c:31:d7:49:06:97:1d:e7:b8:
ef:e0:ba:62:ea:76:12:28:2d:7e:39:17:e5:87:6b:
33:17:fa:f2:09:82:ca:7a:76:f5:b3:4c:e7:74:30:
44:08:a1:76:d0:c7:d6:9e:07:f7:de:f7:8c:32:80:
36:95:d2:0f:19:0c:9d:d3:22:9f:77:e4:5a:b2:14:
2a:d9:47:44:01:00:84:bc:dd:73:68:77:71:98:f4:
65:1f:b3:2c:20:0e:a0:1d:73:a6:da:90:60:21:71:
c1:b1:7d:ce:15:22:3a:89:3c:0b:4e:2d:32:60:e0:
ee:7d:de:65:d0:f3:31:7d:b4:68:9a:18:a8:30:0d:
a3:80:29:1b:e5:c8:e6:1a:54:36:ed:48:60:b8:15:
d3:ed:ae:4e:51:22:b9:f4:88:04:9e:66:1e:de:1f:
66:74:7e:89:9a:d4:e5:24:70:44:7b:20:d9:08:b4:
00:19:9c:8b:13:72:4e:f9:51:c8:00:73:9d:ef:4c:
7f:d4:7e:a6:25:ef:69:fd:35:44:70:ea:ae:a9:b4:
89:38:f4:d5:c2:b2:6f:f7:dd:ce:5e:0f:0d:40:e8:
0a:b2:cb:2f:93:be:63:41:e6:7e:f0:ac:1f:3e:12:
ec:91:4e:2f:6a:73:48:3c:c2:23:d1:fc:af:61:03:
52:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0B:E1:02:D8:17:85:C1:0C:AE:5E:80:9F:63:29:4C:EF:CD:9B:40
X509v3 Authority Key Identifier:
keyid:07:47:A3:6D:77:68:A7:B3:0A:4E:EC:BB:69:64:C8:C2:37:D7:44:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B0ejbXdop7MKTuy7aWTIwjfXRAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/dQvhAtgXhcEMrl6An2MpTO_Nm0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/B0ejbXdop7MKTuy7aWTIwjfXRAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.173.0/24
Signature Algorithm: sha256WithRSAEncryption
28:3b:71:ec:1e:ba:5b:24:60:6e:ee:59:14:f5:11:c6:9d:18:
6a:20:61:f2:4b:66:35:c4:36:31:f2:84:35:46:9b:18:40:d1:
01:35:04:86:31:a8:1d:a5:2a:59:3e:19:56:86:96:a2:56:a7:
1d:71:3b:20:5a:dd:33:c2:89:50:5d:84:22:c8:5f:21:62:8c:
b9:cc:fd:80:90:ed:1d:0e:a3:65:c5:b4:f6:d2:22:d4:9f:7e:
9e:36:31:8e:f4:e2:a4:bd:0d:85:4e:66:05:1d:79:5b:77:26:
7e:85:36:a9:05:f2:e6:e9:cd:90:68:8d:dd:3e:e5:3d:48:5d:
1e:5c:a0:58:b5:a6:dd:06:80:4d:5c:4a:8a:ed:27:ff:c0:ba:
9b:0b:ee:20:72:7e:67:d1:f2:6a:04:9b:8c:95:38:85:8a:c4:
06:4a:f1:a2:3b:4a:94:be:4a:62:59:00:11:1b:0c:c9:21:d8:
8b:3a:aa:40:ac:39:9b:2c:59:57:67:10:73:c4:5a:90:a8:b1:
0d:bf:45:4d:f9:ee:78:2a:84:d8:dd:b2:86:cd:eb:ba:65:81:
68:c1:e7:82:fa:57:fa:9e:20:67:fa:c2:0a:e7:0b:25:39:7c:
c4:67:f6:c5:e0:68:a3:83:59:fa:88:80:3c:0d:93:22:84:68:
10:2d:df:dc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsuC1CjmXR+/1vyUevJikAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3NDdhMzZkNzc2OGE3YjMwYTRlZWNiYjY5NjRjOGMyMzdk
NzQ0MDEwHhcNMjMwMTAxMDk0NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTBiZTEwMmQ4MTc4NWMxMGNhZTVlODA5ZjYzMjk0Y2VmY2Q5YjQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryZM9P1sMddJBpcd57jv4Lpi6nYS
KC1+ORflh2szF/ryCYLKenb1s0zndDBECKF20MfWngf33veMMoA2ldIPGQyd0yKf
d+RashQq2UdEAQCEvN1zaHdxmPRlH7MsIA6gHXOm2pBgIXHBsX3OFSI6iTwLTi0y
YODufd5l0PMxfbRomhioMA2jgCkb5cjmGlQ27UhguBXT7a5OUSK59IgEnmYe3h9m
dH6JmtTlJHBEeyDZCLQAGZyLE3JO+VHIAHOd70x/1H6mJe9p/TVEcOquqbSJOPTV
wrJv993OXg8NQOgKsssvk75jQeZ+8KwfPhLskU4vanNIPMIj0fyvYQNSrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHUL4QLYF4XBDK5egJ9jKUzvzZtAMB8GA1UdIwQY
MBaAFAdHo213aKezCk7su2lkyMI310QBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjBlamJYZG9wN01LVHV5N2FXVEl3amZYUkFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi85ZWFmMWUtYzllYy00NjZkLTgzNzEt
YWFiYWRkMDcxOWJhLzEvZFF2aEF0Z1hoY0VNcmw2QW4yTXBUT19ObTBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi85ZWFmMWUtYzllYy00NjZkLTgzNzEtYWFiYWRkMDcxOWJh
LzEvQjBlamJYZG9wN01LVHV5N2FXVEl3amZYUkFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuX6tMA0G
CSqGSIb3DQEBCwUAA4IBAQAoO3HsHrpbJGBu7lkU9RHGnRhqIGHyS2Y1xDYx8oQ1
RpsYQNEBNQSGMagdpSpZPhlWhpaiVqcdcTsgWt0zwolQXYQiyF8hYoy5zP2AkO0d
DqNlxbT20iLUn36eNjGO9OKkvQ2FTmYFHXlbdyZ+hTapBfLm6c2QaI3dPuU9SF0e
XKBYtabdBoBNXEqK7Sf/wLqbC+4gcn5n0fJqBJuMlTiFisQGSvGiO0qUvkpiWQAR
GwzJIdiLOqpArDmbLFlXZxBzxFqQqLENv0VN+e54KoTY3bKGzeu6ZYFoweeC+lf6
niBn+sIK5wslOXzEZ/bF4Gijg1n6iIA8DZMihGgQLd/c
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:49 2024 by rpki-client on console-ams.rpki-client.org