Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/l9fuzFfqvkIQYIwir0M056PzVto.roa
File: l9fuzFfqvkIQYIwir0M056PzVto.roa (raw, json)
Hash identifier: BGI97cCvJYDQ1IDlB39m+qJRJPMVBapeDB6KQ2d+yOA=
Subject key identifier: 97:D7:EE:CC:57:EA:BE:42:10:60:8C:22:AF:43:34:E7:A3:F3:56:DA
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 018CC348AB4A7AE2E84A8F39F9689F8DDF72
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/l9fuzFfqvkIQYIwir0M056PzVto.roa
Signing time: Mon 01 Jan 2024 04:29:28 +0000
ROA not before: Mon 01 Jan 2024 04:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59790
IP address blocks: 185.104.40.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 26 Mar 2024 13:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ab:4a:7a:e2:e8:4a:8f:39:f9:68:9f:8d:df:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Jan 1 04:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97d7eecc57eabe4210608c22af4334e7a3f356da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:51:59:c2:6e:7e:d4:9d:2d:48:e2:e6:25:c8:
5f:c5:a7:0f:47:e8:e2:33:54:1a:69:62:62:47:56:
67:4f:ea:0f:66:06:f8:41:cf:dd:9e:9a:35:36:17:
6c:11:d2:59:45:c5:7c:4d:87:68:05:26:a5:a1:ee:
aa:08:ce:83:30:54:06:dd:e7:02:b5:c6:74:29:69:
fa:7a:43:88:04:e0:d4:8f:60:84:27:96:f3:10:7d:
00:bf:b6:68:cd:08:a3:4a:c3:0c:7e:94:cb:c2:34:
d8:47:e5:48:ce:85:8f:b2:53:8d:d8:76:59:1d:ba:
21:54:b5:44:48:d4:fb:b0:c9:5c:79:b1:67:96:05:
d1:5f:75:67:be:a9:71:74:36:90:20:99:1d:6f:a1:
88:ae:f2:39:91:64:81:b2:a0:cb:83:a8:68:b6:39:
61:27:49:92:a0:63:85:2e:de:17:50:f1:4a:7e:f7:
06:8b:48:7c:39:55:17:cc:88:43:60:3a:b7:fe:4f:
c2:9b:81:2f:85:46:87:aa:66:d0:7b:5b:b8:db:d2:
c5:ed:ed:d6:61:9a:ec:e3:e4:cc:cb:7b:26:07:30:
9c:c7:55:9e:fd:22:77:54:af:e8:d4:49:57:0e:e9:
9f:e1:c8:ef:da:70:3b:e6:64:65:29:b9:b0:22:6c:
e5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D7:EE:CC:57:EA:BE:42:10:60:8C:22:AF:43:34:E7:A3:F3:56:DA
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/l9fuzFfqvkIQYIwir0M056PzVto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.40.0/22
Signature Algorithm: sha256WithRSAEncryption
49:a1:c5:d7:cb:b5:42:21:2d:0a:cd:1e:f4:c7:02:cd:62:31:
f3:02:cd:d7:36:b7:7f:82:37:39:69:35:7b:24:7c:14:48:e7:
36:3c:3d:79:43:81:76:86:5e:1b:19:f6:fa:5c:4e:4a:87:30:
bc:9f:5e:13:dc:2f:d2:cc:5a:4b:31:91:ba:dc:6c:46:18:4a:
ca:7a:b1:b0:c9:05:2d:42:11:c2:5f:12:02:f6:2c:8d:3d:2e:
a5:75:3a:e1:bb:35:d8:ae:ca:4e:1a:bc:20:6e:1f:d8:a5:ae:
7d:e7:ce:14:27:b2:9c:d8:b0:14:90:1f:29:e8:0e:33:0d:97:
bf:26:62:b9:85:67:d6:95:c9:7f:cd:94:7d:b7:f1:d8:bb:32:
7d:03:63:ee:8b:fb:13:15:8d:8d:89:b7:9a:56:fc:a8:16:ac:
37:a6:d8:84:f7:b6:d3:79:7e:67:e4:48:69:c6:fb:93:11:0b:
0a:30:30:26:3e:f0:8f:44:57:f2:06:f1:37:c6:fa:60:c1:d4:
49:79:6d:c8:71:d1:fa:b3:f9:50:d1:79:f0:8b:28:a2:07:17:
20:c8:9e:4c:e4:9b:8d:26:34:d1:d9:7c:c4:4d:33:c4:ba:08:
6d:b9:24:b6:fa:3c:f2:88:f1:f9:4f:d5:54:52:60:c6:3e:6c:
d1:fd:c9:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDSKtKeuLoSo85+Wifjd9yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxYjcyMDJjOTIzMGMyODk0NTBlZDVhNjJiMTczNjlhMDY1
OWJjNmIwHhcNMjQwMTAxMDQyOTI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5N2Q3ZWVjYzU3ZWFiZTQyMTA2MDhjMjJhZjQzMzRlN2EzZjM1NmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqlFZwm5+1J0tSOLmJchfxacPR+ji
M1QaaWJiR1ZnT+oPZgb4Qc/dnpo1NhdsEdJZRcV8TYdoBSaloe6qCM6DMFQG3ecC
tcZ0KWn6ekOIBODUj2CEJ5bzEH0Av7ZozQijSsMMfpTLwjTYR+VIzoWPslON2HZZ
HbohVLVESNT7sMlcebFnlgXRX3VnvqlxdDaQIJkdb6GIrvI5kWSBsqDLg6hotjlh
J0mSoGOFLt4XUPFKfvcGi0h8OVUXzIhDYDq3/k/Cm4EvhUaHqmbQe1u429LF7e3W
YZrs4+TMy3smBzCcx1We/SJ3VK/o1ElXDumf4cjv2nA75mRlKbmwImzl7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJfX7sxX6r5CEGCMIq9DNOej81baMB8GA1UdIwQY
MBaAFGG3ICySMMKJRQ7VpisXNpoGWbxrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDkt
MjE1ZmMzOTBiZmU0LzEvbDlmdXpGZnF2a0lRWUl3aXIwTTA1NlB6VnRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDktMjE1ZmMzOTBiZmU0
LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuWgoMA0G
CSqGSIb3DQEBCwUAA4IBAQBJocXXy7VCIS0KzR70xwLNYjHzAs3XNrd/gjc5aTV7
JHwUSOc2PD15Q4F2hl4bGfb6XE5KhzC8n14T3C/SzFpLMZG63GxGGErKerGwyQUt
QhHCXxIC9iyNPS6ldTrhuzXYrspOGrwgbh/Ypa59584UJ7Kc2LAUkB8p6A4zDZe/
JmK5hWfWlcl/zZR9t/HYuzJ9A2Pui/sTFY2NibeaVvyoFqw3ptiE97bTeX5n5Ehp
xvuTEQsKMDAmPvCPRFfyBvE3xvpgwdRJeW3IcdH6s/lQ0XnwiyiiBxcgyJ5M5JuN
JjTR2XzETTPEughtuSS2+jzyiPH5T9VUUmDGPmzR/cm1
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:04 2024 by rpki-client on console-fra.rpki-client.org