Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/dTlRjdKqEiRNRxaaATPJ5tdMafY.roa
File: dTlRjdKqEiRNRxaaATPJ5tdMafY.roa (raw, json)
Hash identifier: IQpDUUgYmHgf3zo8RoHj5IIU6F8qja6R5V+wVT5iVMc=
Subject key identifier: 75:39:51:8D:D2:AA:12:24:4D:47:16:9A:01:33:C9:E6:D7:4C:69:F6
Certificate issuer: /CN=60a851d59356ca95d4ae78fa6936ba1b8a2b1c7a
Certificate serial: 0193B52F17307C2A8A00898BE1C00DB91E0C
Authority key identifier: 60:A8:51:D5:93:56:CA:95:D4:AE:78:FA:69:36:BA:1B:8A:2B:1C:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKhR1ZNWypXUrnj6aTa6G4orHHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/dTlRjdKqEiRNRxaaATPJ5tdMafY.roa
Signing time: Wed 11 Dec 2024 10:06:22 +0000
ROA not before: Wed 11 Dec 2024 10:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59474
IP address blocks: 185.253.110.0/24 maxlen: 24
2a10:adc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:2f:17:30:7c:2a:8a:00:89:8b:e1:c0:0d:b9:1e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60a851d59356ca95d4ae78fa6936ba1b8a2b1c7a
Validity
Not Before: Dec 11 10:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7539518dd2aa12244d47169a0133c9e6d74c69f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f3:e2:f7:e8:12:d6:32:9f:0c:11:8d:64:ff:
c3:05:8b:02:24:77:53:44:13:c0:5c:f6:9c:5e:42:
47:d9:9e:07:40:de:53:e1:e6:42:95:20:43:86:97:
93:04:14:a4:0c:b8:ef:82:65:8c:be:7a:44:67:76:
52:c7:f9:ab:a0:fd:9e:88:e3:5b:a7:ab:1a:02:ac:
95:6a:66:a7:82:16:f3:cf:0f:19:ac:a9:78:8d:92:
84:10:01:14:1a:9a:51:7b:6c:cd:5b:e4:0f:0c:44:
a2:20:ea:71:ff:d9:1a:05:19:85:6c:e8:a6:5b:4e:
90:86:0c:97:84:1d:78:e5:9f:c5:5f:ee:ef:54:de:
6c:2c:48:d3:a7:71:3f:f7:98:03:4f:f8:20:85:96:
49:3c:f8:e6:75:c6:48:4d:cb:72:26:c5:67:00:4d:
a0:b3:af:93:1a:5b:c0:f4:c4:b6:cf:bf:93:93:07:
35:2c:7e:79:aa:95:7d:26:fd:a0:78:f8:ef:28:2a:
97:99:61:fb:a9:67:85:15:31:df:ce:19:24:4d:65:
d0:9c:af:76:bd:5d:2d:91:e3:3f:c1:d9:ff:5e:e1:
e0:6d:b3:66:32:00:81:7a:d4:a6:04:ca:37:c8:94:
21:ed:e4:86:2e:25:60:ad:e5:29:be:9f:7c:79:8a:
78:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:39:51:8D:D2:AA:12:24:4D:47:16:9A:01:33:C9:E6:D7:4C:69:F6
X509v3 Authority Key Identifier:
keyid:60:A8:51:D5:93:56:CA:95:D4:AE:78:FA:69:36:BA:1B:8A:2B:1C:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKhR1ZNWypXUrnj6aTa6G4orHHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/dTlRjdKqEiRNRxaaATPJ5tdMafY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/YKhR1ZNWypXUrnj6aTa6G4orHHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.110.0/24
IPv6:
2a10:adc0::/29
Signature Algorithm: sha256WithRSAEncryption
75:4a:74:8c:64:70:5b:22:66:f8:f0:b1:4c:2d:c9:ea:d2:31:
4b:74:a1:37:39:0f:89:82:22:5f:d8:20:ec:8a:3d:0d:21:f7:
a2:3d:4a:27:54:ff:b6:5d:2b:86:2f:69:05:40:bf:40:56:8a:
4f:3f:9a:94:a6:26:c6:a9:cb:d0:ae:93:ca:07:78:9e:8e:1d:
46:4b:58:0d:31:e7:14:a5:f5:77:29:44:0a:39:07:ab:70:9c:
93:ea:bb:68:e3:f3:b4:4e:b2:0c:5b:f1:38:e7:0a:58:cc:ae:
cc:59:00:e0:e3:83:ee:fe:0a:8f:af:5a:8c:fe:6a:d5:28:4e:
7a:52:69:94:dd:10:0a:28:68:40:44:99:41:ba:34:0a:e9:b1:
41:53:94:28:c0:34:7b:2c:8a:1a:25:cb:8c:dc:4c:17:56:30:
01:7e:6e:59:86:30:28:7b:eb:21:5e:f2:68:d9:18:d6:d2:63:
74:64:93:5f:25:bf:2c:f4:f0:3c:51:95:64:e9:eb:da:09:33:
c4:ec:f1:c4:7b:8d:f1:a1:a8:6c:8b:ae:7b:fe:a2:b2:3f:ea:
07:7e:4e:94:99:1e:79:a9:f4:07:ed:65:4b:ba:86:b7:3c:df:
0b:15:95:1c:67:71:7f:d8:b4:25:10:9b:81:70:88:86:20:3a:
76:b7:66:0d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZO1LxcwfCqKAImL4cANuR4MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwYTg1MWQ1OTM1NmNhOTVkNGFlNzhmYTY5MzZiYTFiOGEy
YjFjN2EwHhcNMjQxMjExMTAwNjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTM5NTE4ZGQyYWExMjI0NGQ0NzE2OWEwMTMzYzllNmQ3NGM2OWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0/Pi9+gS1jKfDBGNZP/DBYsCJHdT
RBPAXPacXkJH2Z4HQN5T4eZClSBDhpeTBBSkDLjvgmWMvnpEZ3ZSx/mroP2eiONb
p6saAqyVamanghbzzw8ZrKl4jZKEEAEUGppRe2zNW+QPDESiIOpx/9kaBRmFbOim
W06QhgyXhB145Z/FX+7vVN5sLEjTp3E/95gDT/gghZZJPPjmdcZITctyJsVnAE2g
s6+TGlvA9MS2z7+Tkwc1LH55qpV9Jv2gePjvKCqXmWH7qWeFFTHfzhkkTWXQnK92
vV0tkeM/wdn/XuHgbbNmMgCBetSmBMo3yJQh7eSGLiVgreUpvp98eYp4EQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFHU5UY3SqhIkTUcWmgEzyebXTGn2MB8GA1UdIwQY
MBaAFGCoUdWTVsqV1K54+mk2uhuKKxx6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUtoUjFaTld5cFhVcm5qNmFUYTZHNG9ySEhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9jOTc4OTgtNWU3Mi00NTRhLWJlMmYt
NTQ4ZTdiN2ZhNGUxLzEvZFRsUmpkS3FFaVJOUnhhYUFUUEo1dGRNYWZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9jOTc4OTgtNWU3Mi00NTRhLWJlMmYtNTQ4ZTdiN2ZhNGUx
LzEvWUtoUjFaTld5cFhVcm5qNmFUYTZHNG9ySEhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuf1uMA0E
AgACMAcDBQMqEK3AMA0GCSqGSIb3DQEBCwUAA4IBAQB1SnSMZHBbImb48LFMLcnq
0jFLdKE3OQ+JgiJf2CDsij0NIfeiPUonVP+2XSuGL2kFQL9AVopPP5qUpibGqcvQ
rpPKB3iejh1GS1gNMecUpfV3KUQKOQercJyT6rto4/O0TrIMW/E45wpYzK7MWQDg
44Pu/gqPr1qM/mrVKE56UmmU3RAKKGhARJlBujQK6bFBU5QowDR7LIoaJcuM3EwX
VjABfm5ZhjAoe+shXvJo2RjW0mN0ZJNfJb8s9PA8UZVk6evaCTPE7PHEe43xoahs
i657/qKyP+oHfk6UmR55qfQH7WVLuoa3PN8LFZUcZ3F/2LQlEJuBcIiGIDp2t2YN
-----END CERTIFICATE-----
Generated at Tue Apr 15 16:31:46 2025 by rpki-client