Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/LuhT6-sHyCyhuet7_CdSN1fXXvY.roa
File: LuhT6-sHyCyhuet7_CdSN1fXXvY.roa (raw, json)
Hash identifier: M1IuEXPBjIFCf2v3ABHiFfG1P0UCfAdjYSwqfzE0b+4=
Subject key identifier: 2E:E8:53:EB:EB:07:C8:2C:A1:B9:EB:7B:FC:27:52:37:57:D7:5E:F6
Certificate issuer: /CN=46c98b2e4a3e060def45abc62c0e345faa80b5ec
Certificate serial: 0189CB37311BA96BE5630C6E061CBFAB5511
Authority key identifier: 46:C9:8B:2E:4A:3E:06:0D:EF:45:AB:C6:2C:0E:34:5F:AA:80:B5:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RsmLLko-Bg3vRavGLA40X6qAtew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/LuhT6-sHyCyhuet7_CdSN1fXXvY.roa
Signing time: Sun 06 Aug 2023 14:18:59 +0000
ROA not before: Sun 06 Aug 2023 14:18:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56504
IP address blocks: 185.61.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cb:37:31:1b:a9:6b:e5:63:0c:6e:06:1c:bf:ab:55:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46c98b2e4a3e060def45abc62c0e345faa80b5ec
Validity
Not Before: Aug 6 14:18:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ee853ebeb07c82ca1b9eb7bfc27523757d75ef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fc:3f:a4:ab:c7:64:a1:d4:c2:6a:48:4b:6c:
09:9d:1a:e5:62:15:02:c1:d8:ac:26:70:5e:26:92:
c0:01:0f:ee:fe:1f:51:0e:e7:8e:a1:4e:2f:e7:cd:
e5:bb:74:b7:1e:1c:a9:80:a8:79:6e:f4:01:4a:71:
e9:68:17:cf:9c:68:fc:4d:a4:97:62:f8:21:3f:56:
00:a9:6f:56:21:ca:6d:f7:ee:e7:28:7e:0b:c4:22:
36:2d:22:66:8d:19:92:a5:7f:a5:38:9b:f8:67:c9:
0b:c4:92:81:1c:69:21:7f:8a:a4:af:64:1b:a4:94:
e0:1a:c9:0c:42:68:a6:03:ce:8c:06:ab:a8:48:9b:
3a:51:d2:d4:c3:3e:c8:49:dd:4a:a3:87:9c:7c:a8:
87:34:40:c9:88:8d:1b:0c:37:35:c0:eb:b8:fa:5f:
03:3a:f6:c2:36:f6:63:7e:be:18:23:c9:59:de:7f:
0f:a9:9a:46:c9:e3:8a:d0:e9:88:2a:39:f9:e8:bb:
40:3c:7c:15:bb:b9:5f:7e:93:29:87:30:67:31:6f:
16:e9:e0:a9:54:7a:36:78:30:87:73:3f:51:dd:1b:
94:21:95:0e:54:2c:e3:5a:af:06:f7:ab:bc:9a:8a:
5e:38:22:68:b2:ca:c2:37:42:91:33:6a:0c:04:a2:
7c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E8:53:EB:EB:07:C8:2C:A1:B9:EB:7B:FC:27:52:37:57:D7:5E:F6
X509v3 Authority Key Identifier:
keyid:46:C9:8B:2E:4A:3E:06:0D:EF:45:AB:C6:2C:0E:34:5F:AA:80:B5:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RsmLLko-Bg3vRavGLA40X6qAtew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/LuhT6-sHyCyhuet7_CdSN1fXXvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/RsmLLko-Bg3vRavGLA40X6qAtew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.136.0/24
Signature Algorithm: sha256WithRSAEncryption
88:06:fa:0f:5c:d9:b6:1f:70:fe:b5:cb:7a:72:2f:5f:f9:b2:
d0:ee:e1:2c:2d:4f:5e:65:05:f4:82:b0:4c:20:b0:30:fa:4e:
a3:da:13:e3:de:43:a6:36:27:17:f2:5c:31:58:e5:3a:49:13:
22:b6:a4:14:10:f6:d8:94:ed:92:dd:49:69:bb:dc:f4:80:98:
43:44:a6:94:a0:1a:a5:8d:d7:f6:dc:72:aa:a1:34:a3:96:93:
9c:22:36:6f:3d:1d:2d:18:7e:c7:c8:4c:af:4a:d0:d6:00:df:
d2:35:aa:7a:43:a7:2a:2d:82:e2:cb:05:ae:a0:e4:16:5c:49:
dd:72:e5:11:35:88:14:88:d5:ba:0b:77:20:e5:2d:36:44:ac:
26:19:7c:3b:30:aa:53:2b:76:e2:c8:aa:09:c1:5f:e8:ed:b5:
11:6e:11:4d:3f:78:63:5a:99:b7:00:22:9e:c9:a8:5f:96:91:
26:e1:c1:97:12:c5:de:bf:ce:a9:5c:da:ff:ce:5f:58:77:2c:
54:ba:e3:81:88:4b:c3:27:75:d0:cd:28:74:db:3b:2c:88:ed:
ff:e1:d4:a9:dd:61:55:0c:e0:23:05:d9:56:a5:d6:cc:bb:db:
78:cd:de:77:44:78:2e:34:8d:f3:09:9f:91:7a:ec:d1:37:97:
51:4b:89:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnLNzEbqWvlYwxuBhy/q1URMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2Yzk4YjJlNGEzZTA2MGRlZjQ1YWJjNjJjMGUzNDVmYWE4
MGI1ZWMwHhcNMjMwODA2MTQxODU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZWU4NTNlYmViMDdjODJjYTFiOWViN2JmYzI3NTIzNzU3ZDc1ZWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAivw/pKvHZKHUwmpIS2wJnRrlYhUC
wdisJnBeJpLAAQ/u/h9RDueOoU4v583lu3S3HhypgKh5bvQBSnHpaBfPnGj8TaSX
YvghP1YAqW9WIcpt9+7nKH4LxCI2LSJmjRmSpX+lOJv4Z8kLxJKBHGkhf4qkr2Qb
pJTgGskMQmimA86MBquoSJs6UdLUwz7ISd1Ko4ecfKiHNEDJiI0bDDc1wOu4+l8D
OvbCNvZjfr4YI8lZ3n8PqZpGyeOK0OmIKjn56LtAPHwVu7lffpMphzBnMW8W6eCp
VHo2eDCHcz9R3RuUIZUOVCzjWq8G96u8mopeOCJossrCN0KRM2oMBKJ8cwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC7oU+vrB8gsobnre/wnUjdX1172MB8GA1UdIwQY
MBaAFEbJiy5KPgYN70WrxiwONF+qgLXsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnNtTExrby1CZzN2UmF2R0xBNDBYNnFBdGV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8yYWE4ZDEtY2I3MS00OTA0LWE1OTEt
MzQ0OTUyMjcxMGU3LzEvTHVoVDYtc0h5Q3lodWV0N19DZFNOMWZYWHZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8yYWE4ZDEtY2I3MS00OTA0LWE1OTEtMzQ0OTUyMjcxMGU3
LzEvUnNtTExrby1CZzN2UmF2R0xBNDBYNnFBdGV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuT2IMA0G
CSqGSIb3DQEBCwUAA4IBAQCIBvoPXNm2H3D+tct6ci9f+bLQ7uEsLU9eZQX0grBM
ILAw+k6j2hPj3kOmNicX8lwxWOU6SRMitqQUEPbYlO2S3Ulpu9z0gJhDRKaUoBql
jdf23HKqoTSjlpOcIjZvPR0tGH7HyEyvStDWAN/SNap6Q6cqLYLiywWuoOQWXEnd
cuURNYgUiNW6C3cg5S02RKwmGXw7MKpTK3biyKoJwV/o7bURbhFNP3hjWpm3ACKe
yahflpEm4cGXEsXev86pXNr/zl9YdyxUuuOBiEvDJ3XQzSh02zssiO3/4dSp3WFV
DOAjBdlWpdbMu9t4zd53RHguNI3zCZ+ReuzRN5dRS4mW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:32 2024 by rpki-client on console-fra.rpki-client.org