Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/VVpAzv19hL745VpCgv6IlYpMmY4.roa
File: VVpAzv19hL745VpCgv6IlYpMmY4.roa (raw, json)
Hash identifier: U+RVdTydhqBaZ4+N/RRe22pIy1oLpDvwS2dqogfLyDU=
Subject key identifier: 55:5A:40:CE:FD:7D:84:BE:F8:E5:5A:42:82:FE:88:95:8A:4C:99:8E
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018D9351CB2C766660D6956DBE46A7E653A7
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/VVpAzv19hL745VpCgv6IlYpMmY4.roa
Signing time: Sat 10 Feb 2024 14:00:27 +0000
ROA not before: Sat 10 Feb 2024 14:00:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211619
IP address blocks: 185.230.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 16:41:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:93:51:cb:2c:76:66:60:d6:95:6d:be:46:a7:e6:53:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Feb 10 14:00:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=555a40cefd7d84bef8e55a4282fe88958a4c998e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:bf:47:e1:3e:a1:eb:0d:bb:1e:13:79:40:a5:
73:14:71:01:90:f7:8c:6c:b7:69:12:8f:8a:25:f0:
d1:8d:89:bc:b4:b3:1c:3a:75:4d:86:9d:87:2c:a4:
cc:81:a5:ff:ad:0f:db:ac:50:b1:f8:8d:6e:50:38:
2d:81:a7:3a:82:15:4c:98:85:3a:a3:54:86:ee:ff:
17:d5:f6:7c:e8:8d:c4:b3:94:0a:d0:54:74:3d:06:
5a:58:b7:ec:d9:e9:d2:5b:c3:49:d9:a2:db:b5:a4:
23:0d:ea:b2:96:cb:7a:72:76:57:eb:4b:09:45:8e:
7c:b4:a4:0c:cd:67:2f:4f:31:ca:a4:d8:d9:0a:ae:
a7:90:d4:bf:49:47:5d:92:61:2c:fe:1c:da:1c:8c:
b9:24:c4:43:37:67:25:33:69:28:53:97:b9:77:40:
86:f4:ce:be:a2:bf:94:ec:ea:b7:2e:72:cd:a0:fc:
5f:6c:a6:49:d5:45:b8:5f:a8:39:cd:2b:f1:e2:b0:
db:41:74:4b:20:0e:75:7d:17:34:a1:b7:07:80:8e:
47:f5:86:96:96:1a:96:5c:cb:7e:46:8a:22:9c:f2:
15:92:ab:8f:42:0d:a4:66:93:9a:d5:80:d3:fa:f7:
93:d3:84:6c:fe:39:13:cb:cf:ee:ed:88:67:2f:b7:
bf:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5A:40:CE:FD:7D:84:BE:F8:E5:5A:42:82:FE:88:95:8A:4C:99:8E
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/VVpAzv19hL745VpCgv6IlYpMmY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.13.0/24
Signature Algorithm: sha256WithRSAEncryption
22:51:3a:de:2a:61:73:53:08:1e:87:06:e5:34:77:ff:94:c3:
15:9c:02:9e:1e:71:7d:00:fd:0d:e4:84:73:05:c8:4e:c3:cd:
5b:91:d3:71:6e:38:b6:ab:b2:df:c8:b1:f4:63:79:9b:f3:fb:
68:ac:77:fa:12:3a:b7:92:b1:18:53:bd:5e:3b:e5:d2:51:27:
d9:12:17:7d:87:38:9f:ad:bc:a2:1f:79:97:fe:25:e1:e6:9b:
9f:e0:0e:b1:92:2f:28:9c:e4:00:2a:f5:54:70:1a:4e:fe:a2:
dd:ab:ae:0a:fe:ce:5a:6c:4d:5c:e4:c7:1f:2e:02:6b:eb:c8:
a3:49:00:e9:05:68:86:88:9e:bc:7a:cd:ab:7e:cf:ff:1c:ad:
5b:f5:97:b7:93:2c:58:25:fa:8e:3c:63:61:c9:3f:60:f5:5a:
25:f7:39:15:d7:c4:db:ae:9d:9a:ba:a8:db:d8:a6:f1:80:46:
98:60:98:f9:ab:4a:3d:87:d9:f9:b9:24:78:d2:ff:98:5c:4d:
77:58:86:a8:93:49:0d:c2:f6:69:e2:5f:b4:12:f4:47:e8:f6:
1b:6e:9b:90:25:32:0c:74:6e:03:e0:df:e4:ca:2a:91:e3:cf:
9f:7a:47:28:c7:b8:4b:94:76:71:a0:c4:3b:79:af:45:47:dc:
6f:80:74:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2TUcssdmZg1pVtvkan5lOnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNDc2ZTEyZTg5ODdlNWIzMDJjZGMyNGJkZDlkYjNmZTgz
Yzg0NDkwHhcNMjQwMjEwMTQwMDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTVhNDBjZWZkN2Q4NGJlZjhlNTVhNDI4MmZlODg5NThhNGM5OThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9L9H4T6h6w27HhN5QKVzFHEBkPeM
bLdpEo+KJfDRjYm8tLMcOnVNhp2HLKTMgaX/rQ/brFCx+I1uUDgtgac6ghVMmIU6
o1SG7v8X1fZ86I3Es5QK0FR0PQZaWLfs2enSW8NJ2aLbtaQjDeqylst6cnZX60sJ
RY58tKQMzWcvTzHKpNjZCq6nkNS/SUddkmEs/hzaHIy5JMRDN2clM2koU5e5d0CG
9M6+or+U7Oq3LnLNoPxfbKZJ1UW4X6g5zSvx4rDbQXRLIA51fRc0obcHgI5H9YaW
lhqWXMt+RooinPIVkquPQg2kZpOa1YDT+veT04Rs/jkTy8/u7YhnL7e/YwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFVaQM79fYS++OVaQoL+iJWKTJmOMB8GA1UdIwQY
MBaAFDtHbhLomH5bMCzcJL3Z2z/oPIRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMt
NmNiZmYzYzRkYTAxLzEvVlZwQXp2MTloTDc0NVZwQ2d2NklsWXBNbVk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMtNmNiZmYzYzRkYTAx
LzEvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueYNMA0G
CSqGSIb3DQEBCwUAA4IBAQAiUTreKmFzUwgehwblNHf/lMMVnAKeHnF9AP0N5IRz
BchOw81bkdNxbji2q7LfyLH0Y3mb8/torHf6Ejq3krEYU71eO+XSUSfZEhd9hzif
rbyiH3mX/iXh5puf4A6xki8onOQAKvVUcBpO/qLdq64K/s5abE1c5McfLgJr68ij
SQDpBWiGiJ68es2rfs//HK1b9Ze3kyxYJfqOPGNhyT9g9Vol9zkV18Tbrp2auqjb
2KbxgEaYYJj5q0o9h9n5uSR40v+YXE13WIaok0kNwvZp4l+0EvRH6PYbbpuQJTIM
dG4D4N/kyiqR48+fekcox7hLlHZxoMQ7ea9FR9xvgHSf
-----END CERTIFICATE-----
Generated at Tue Feb 13 20:34:24 2024 by rpki-client on console-fra.rpki-client.org