Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/b3yg1ToUiNMI6UiXqATmVXxbD68.roa
File: b3yg1ToUiNMI6UiXqATmVXxbD68.roa (raw, json)
Hash identifier: 5qpAOgSEAQbqFHT9ogwZn9sAfHbxRQg50B6PrPFV+Es=
Subject key identifier: 6F:7C:A0:D5:3A:14:88:D3:08:E9:48:97:A8:04:E6:55:7C:5B:0F:AF
Certificate issuer: /CN=123c3de61011de07101e14dc0727395171cb03ab
Certificate serial: 01856D9D16A53A7BC31DAD18A72CBE0D72DD
Authority key identifier: 12:3C:3D:E6:10:11:DE:07:10:1E:14:DC:07:27:39:51:71:CB:03:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ejw95hAR3gcQHhTcByc5UXHLA6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/b3yg1ToUiNMI6UiXqATmVXxbD68.roa
Signing time: Sun 01 Jan 2023 13:54:49 +0000
ROA not before: Sun 01 Jan 2023 13:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198589
IP address blocks: 185.122.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:16:a5:3a:7b:c3:1d:ad:18:a7:2c:be:0d:72:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=123c3de61011de07101e14dc0727395171cb03ab
Validity
Not Before: Jan 1 13:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f7ca0d53a1488d308e94897a804e6557c5b0faf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:27:d6:fa:39:89:22:ee:a1:80:31:6c:cd:ec:
e7:c0:43:cf:57:3d:cc:6a:e9:53:9e:a4:64:3a:d7:
5a:32:f8:c8:0c:34:e7:84:ea:87:dd:c4:17:e5:71:
d2:05:71:d1:df:3b:d8:c9:32:6d:c6:d2:20:c9:ba:
6f:c4:57:cc:71:db:29:83:08:a5:37:98:39:f7:de:
d9:bb:6d:dc:02:c2:05:75:d4:8c:c1:cc:9d:c3:5a:
be:26:05:48:18:c3:98:d5:3f:05:3a:0b:a7:b2:8a:
f9:2a:d3:c9:bb:7e:b5:e1:1d:b4:19:ad:34:6a:06:
42:9e:9b:79:ab:12:92:10:1b:eb:cd:14:a9:aa:0c:
9a:6f:68:d4:af:70:f9:43:5b:11:05:4a:c2:f9:2a:
6a:dc:13:00:c1:2a:e1:78:45:ab:b2:41:3b:20:2c:
bd:fc:5d:8d:f6:06:04:fb:e1:ff:80:38:0e:c2:a1:
e1:24:c7:a5:80:a0:19:e5:be:d1:56:14:26:14:e1:
a1:ea:89:e5:ba:d4:0d:c3:ff:ec:0d:ca:ca:82:0c:
b7:1c:c3:7e:3d:33:53:73:b7:ba:58:f7:20:c7:03:
d3:9d:b0:39:33:a1:98:f2:60:cc:e0:ac:c2:6b:2e:
97:cc:01:96:ae:31:dd:5a:bb:0c:3b:98:1c:fb:e4:
39:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7C:A0:D5:3A:14:88:D3:08:E9:48:97:A8:04:E6:55:7C:5B:0F:AF
X509v3 Authority Key Identifier:
keyid:12:3C:3D:E6:10:11:DE:07:10:1E:14:DC:07:27:39:51:71:CB:03:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ejw95hAR3gcQHhTcByc5UXHLA6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/b3yg1ToUiNMI6UiXqATmVXxbD68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/Ejw95hAR3gcQHhTcByc5UXHLA6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.253.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:e3:84:6a:da:74:88:c8:77:4c:d2:0a:52:65:cd:0a:95:17:
29:6a:7e:d5:c8:1b:73:cc:1b:0c:3f:fa:ec:df:36:1e:f9:c5:
7a:27:e3:27:00:df:f8:ac:2b:2e:1d:64:05:c7:fb:a5:98:e5:
61:37:8a:b5:ec:1f:80:9a:95:a5:f6:ce:1d:65:fa:15:8c:2c:
5d:38:1e:ea:40:2a:85:01:e8:8a:9f:81:b5:35:a6:fd:d8:93:
81:9f:45:7d:d9:77:a3:77:7f:1f:01:db:85:26:00:e4:f0:f3:
99:9d:40:a2:68:cd:b9:de:78:e6:9e:94:56:a0:0f:cf:17:b0:
8a:4f:fa:02:ce:71:69:91:52:51:5a:61:5b:14:09:02:07:23:
67:ba:82:7c:6e:52:72:f8:e1:7f:04:9b:5e:92:cd:3b:02:6c:
a2:99:f3:6a:ce:60:b0:9b:8f:35:ab:93:f7:a6:cb:68:09:08:
ac:45:96:bb:31:49:c2:08:3f:6a:cd:59:b5:17:f8:4b:78:7b:
5e:49:d7:4a:5f:a8:dc:a3:b5:9e:f3:ef:cf:14:6f:b7:aa:6d:
de:81:06:7e:48:02:4b:dd:55:5e:f1:14:86:4f:ad:07:13:c4:
34:45:e1:4d:16:15:2b:d2:bc:2f:a4:23:3d:95:b3:fb:9e:8d:
43:dd:d8:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtnRalOnvDHa0Ypyy+DXLdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyM2MzZGU2MTAxMWRlMDcxMDFlMTRkYzA3MjczOTUxNzFj
YjAzYWIwHhcNMjMwMTAxMTM1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZjdjYTBkNTNhMTQ4OGQzMDhlOTQ4OTdhODA0ZTY1NTdjNWIwZmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoSfW+jmJIu6hgDFszeznwEPPVz3M
aulTnqRkOtdaMvjIDDTnhOqH3cQX5XHSBXHR3zvYyTJtxtIgybpvxFfMcdspgwil
N5g5997Zu23cAsIFddSMwcydw1q+JgVIGMOY1T8FOgunsor5KtPJu3614R20Ga00
agZCnpt5qxKSEBvrzRSpqgyab2jUr3D5Q1sRBUrC+Spq3BMAwSrheEWrskE7ICy9
/F2N9gYE++H/gDgOwqHhJMelgKAZ5b7RVhQmFOGh6onlutQNw//sDcrKggy3HMN+
PTNTc7e6WPcgxwPTnbA5M6GY8mDM4KzCay6XzAGWrjHdWrsMO5gc++Q5wwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG98oNU6FIjTCOlIl6gE5lV8Ww+vMB8GA1UdIwQY
MBaAFBI8PeYQEd4HEB4U3AcnOVFxywOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWp3OTVoQVIzZ2NRSGhUY0J5YzVVWEhMQTZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yMjk2NTAtOGEwMS00MzcwLTk5MWUt
YjUwNGM5YWU5YmJjLzEvYjN5ZzFUb1VpTk1JNlVpWHFBVG1WWHhiRDY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8yMjk2NTAtOGEwMS00MzcwLTk5MWUtYjUwNGM5YWU5YmJj
LzEvRWp3OTVoQVIzZ2NRSGhUY0J5YzVVWEhMQTZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXr9MA0G
CSqGSIb3DQEBCwUAA4IBAQCP44Rq2nSIyHdM0gpSZc0KlRcpan7VyBtzzBsMP/rs
3zYe+cV6J+MnAN/4rCsuHWQFx/ulmOVhN4q17B+AmpWl9s4dZfoVjCxdOB7qQCqF
AeiKn4G1Nab92JOBn0V92Xejd38fAduFJgDk8POZnUCiaM253njmnpRWoA/PF7CK
T/oCznFpkVJRWmFbFAkCByNnuoJ8blJy+OF/BJteks07AmyimfNqzmCwm481q5P3
pstoCQisRZa7MUnCCD9qzVm1F/hLeHteSddKX6jco7We8+/PFG+3qm3egQZ+SAJL
3VVe8RSGT60HE8Q0ReFNFhUr0rwvpCM9lbP7no1D3dhP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:38 2024 by rpki-client on console-fra.rpki-client.org