Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/DybPulQNhsK4BCOThPLeNTX7Keo.roa
File: DybPulQNhsK4BCOThPLeNTX7Keo.roa (raw, json)
Hash identifier: 7uJ7aMvHPiKSs/d6m2Cp7zFOdRylSDj+fx6IpvBW1BI=
Subject key identifier: 0F:26:CF:BA:54:0D:86:C2:B8:04:23:93:84:F2:DE:35:35:FB:29:EA
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 018B20588C444D918FB229C77E0C6CC12193
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/DybPulQNhsK4BCOThPLeNTX7Keo.roa
Signing time: Wed 11 Oct 2023 20:05:55 +0000
ROA not before: Wed 11 Oct 2023 20:05:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204174
IP address blocks: 185.99.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:20:58:8c:44:4d:91:8f:b2:29:c7:7e:0c:6c:c1:21:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Oct 11 20:05:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f26cfba540d86c2b804239384f2de3535fb29ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a3:fb:74:af:49:92:cc:da:75:be:0d:35:f0:
6e:02:a5:ef:9a:2a:9e:17:9b:a4:61:5e:a1:ce:05:
ce:f8:c6:62:6b:f3:30:5f:ae:2f:67:b6:4a:a9:39:
5e:b8:16:49:5c:8f:ea:3a:5f:f8:af:59:71:de:50:
7a:5a:ed:c8:2a:bb:35:c8:03:95:37:b8:05:31:ca:
53:72:97:f9:a6:53:c2:fb:f8:17:e6:f0:2b:77:1a:
9f:d8:9c:41:80:eb:24:52:bf:a0:eb:9c:82:83:dd:
39:a6:2b:6e:55:39:fc:4a:6e:e2:e6:51:46:d8:e2:
19:1c:57:93:99:86:ab:ed:a8:d2:e9:39:ad:62:a1:
2a:21:db:d8:1b:de:4b:ef:be:18:7e:f7:91:c8:54:
56:1d:9e:ba:89:2f:b2:7f:9d:7c:32:13:3f:50:98:
f1:20:06:1f:4b:6f:48:f2:c5:fc:b9:23:4e:85:8b:
6c:cb:af:8b:c6:78:fa:c0:28:ac:22:ac:ae:ae:e0:
5f:bf:6a:82:19:3b:22:a3:7a:6e:34:47:ae:51:74:
ae:7d:27:17:22:46:a4:5e:2c:52:b1:50:22:56:0c:
e4:1e:a0:a2:cc:c7:47:e1:47:0a:75:89:54:48:b9:
42:9a:1c:11:4b:5d:a5:a8:34:62:d6:f8:8a:d6:ea:
65:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:26:CF:BA:54:0D:86:C2:B8:04:23:93:84:F2:DE:35:35:FB:29:EA
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/DybPulQNhsK4BCOThPLeNTX7Keo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.20.0/24
Signature Algorithm: sha256WithRSAEncryption
61:72:11:4a:e2:e3:99:ea:9d:d9:cb:14:d6:86:63:2b:bf:fa:
9a:2b:f7:30:2c:37:34:03:06:9e:65:45:98:c1:43:2b:56:e1:
56:e8:62:2a:0f:bc:2e:f4:51:3f:ab:c9:19:86:77:f3:3f:bf:
78:97:84:92:37:7b:5d:38:d6:39:47:a2:9f:f0:e7:c6:d5:23:
4b:25:14:67:94:4f:41:b1:3a:32:a8:1d:0d:8c:db:41:4f:0b:
da:b2:22:d0:16:fd:00:38:d5:26:09:86:9d:21:1c:df:5b:c6:
5f:98:56:c4:e7:b4:4e:bd:7c:ba:f2:48:d3:d0:1b:4a:c7:5b:
87:74:05:64:0d:43:d9:dc:8e:bd:0b:47:9c:d1:d3:b0:52:84:
b3:95:61:0c:6d:cd:7e:13:64:15:5e:56:00:98:3f:e7:69:06:
44:41:c7:23:b7:ec:64:4c:4c:6a:13:e0:19:dc:f6:51:1d:ee:
38:21:23:60:1f:40:8b:4e:ab:07:e2:39:f3:93:72:9b:a3:ae:
83:8e:fd:05:42:1f:1e:34:94:78:ea:30:8a:e5:64:5a:f5:b2:
5a:5b:cb:8e:c1:1d:46:cc:d1:b4:0c:02:af:e7:9f:42:82:e5:
e1:d6:cc:c0:ee:91:6b:d5:0a:b0:ca:d4:52:e0:03:48:88:30:
97:36:b7:e7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsgWIxETZGPsinHfgxswSGTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMTMxMDMwMjAxOGEzODdjNjkyMTQ2YTM1ZWZkMzNhNmVk
NmIxZWYwHhcNMjMxMDExMjAwNTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjI2Y2ZiYTU0MGQ4NmMyYjgwNDIzOTM4NGYyZGUzNTM1ZmIyOWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2aP7dK9Jkszadb4NNfBuAqXvmiqe
F5ukYV6hzgXO+MZia/MwX64vZ7ZKqTleuBZJXI/qOl/4r1lx3lB6Wu3IKrs1yAOV
N7gFMcpTcpf5plPC+/gX5vArdxqf2JxBgOskUr+g65yCg905pituVTn8Sm7i5lFG
2OIZHFeTmYar7ajS6TmtYqEqIdvYG95L774YfveRyFRWHZ66iS+yf518MhM/UJjx
IAYfS29I8sX8uSNOhYtsy6+Lxnj6wCisIqyuruBfv2qCGTsio3puNEeuUXSufScX
IkakXixSsVAiVgzkHqCizMdH4UcKdYlUSLlCmhwRS12lqDRi1viK1uplXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA8mz7pUDYbCuAQjk4Ty3jU1+ynqMB8GA1UdIwQY
MBaAFGITEDAgGKOHxpIUajXv0zpu1rHvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9mNThhYzgtNTNlOS00Y2E2LWFjYjIt
YmU1N2Q3ZGZhMGRlLzEvRHliUHVsUU5oc0s0QkNPVGhQTGVOVFg3S2VvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9mNThhYzgtNTNlOS00Y2E2LWFjYjItYmU1N2Q3ZGZhMGRl
LzEvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWMUMA0G
CSqGSIb3DQEBCwUAA4IBAQBhchFK4uOZ6p3ZyxTWhmMrv/qaK/cwLDc0AwaeZUWY
wUMrVuFW6GIqD7wu9FE/q8kZhnfzP794l4SSN3tdONY5R6Kf8OfG1SNLJRRnlE9B
sToyqB0NjNtBTwvasiLQFv0AONUmCYadIRzfW8ZfmFbE57ROvXy68kjT0BtKx1uH
dAVkDUPZ3I69C0ec0dOwUoSzlWEMbc1+E2QVXlYAmD/naQZEQccjt+xkTExqE+AZ
3PZRHe44ISNgH0CLTqsH4jnzk3Kbo66Djv0FQh8eNJR46jCK5WRa9bJaW8uOwR1G
zNG0DAKv559CguXh1szA7pFr1QqwytRS4ANIiDCXNrfn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org