Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/CFY6Xd_dP6gln-o7UH9Ed3TLMmM.roa
File: CFY6Xd_dP6gln-o7UH9Ed3TLMmM.roa (raw, json)
Hash identifier: XgOqbppEN+l61LcKGUklb+tyQHMHFSDJZv+G/hQ9t0g=
Subject key identifier: 08:56:3A:5D:DF:DD:3F:A8:25:9F:EA:3B:50:7F:44:77:74:CB:32:63
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018571D7D52903A5C81FC0AE7F68C63EC052
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/CFY6Xd_dP6gln-o7UH9Ed3TLMmM.roa
Signing time: Mon 02 Jan 2023 09:37:28 +0000
ROA not before: Mon 02 Jan 2023 09:37:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55720
IP address blocks: 93.186.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:d5:29:03:a5:c8:1f:c0:ae:7f:68:c6:3e:c0:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 09:37:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08563a5ddfdd3fa8259fea3b507f447774cb3263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1a:6c:f4:e7:d5:2c:bb:d6:70:e2:32:90:7a:
4f:63:c5:27:42:0d:d8:82:99:14:42:5b:fc:7f:f7:
97:47:b1:98:1f:50:7c:1a:fd:cb:25:69:98:2f:e1:
f1:3d:72:d6:83:f8:07:af:4a:0f:df:64:22:ef:42:
96:d3:6a:77:1d:cf:89:46:a2:2e:5e:ba:52:0e:f2:
02:0a:c5:5c:fd:b0:98:a4:82:dd:b4:ad:89:fc:bc:
a6:0d:e3:31:f9:21:e7:cd:49:93:29:61:c4:a2:01:
e5:74:69:39:a7:32:2f:52:0f:3a:c5:93:c9:56:c8:
f4:17:08:86:31:93:80:5f:11:90:a7:32:38:0c:2e:
d4:4a:86:55:8c:62:e9:c6:d0:9a:bc:da:c2:91:e6:
86:b2:fc:fe:ed:d3:ff:17:03:fe:67:d7:48:50:0a:
89:a6:7b:8d:9b:e9:c1:81:6b:f9:3f:20:6d:91:7d:
af:d7:67:32:2d:98:73:91:e3:de:af:a5:cc:cf:1e:
dd:ed:49:40:38:f0:81:7a:16:75:9a:21:79:7c:2f:
1d:f1:fc:1d:0b:d7:17:39:e3:41:cf:fe:c9:b4:2f:
7a:ed:e2:b1:a8:1b:12:42:9e:dd:26:14:44:8b:f6:
8d:2c:7d:c0:be:1b:a5:bd:34:ac:9e:35:c7:64:ce:
6b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:56:3A:5D:DF:DD:3F:A8:25:9F:EA:3B:50:7F:44:77:74:CB:32:63
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/CFY6Xd_dP6gln-o7UH9Ed3TLMmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.186.68.0/24
Signature Algorithm: sha256WithRSAEncryption
36:c2:0c:a8:95:ed:57:ee:8d:44:1b:ac:a1:fe:27:23:9b:fb:
10:7d:e2:41:6d:d2:47:76:7f:93:f6:4c:ee:54:28:b3:ca:42:
44:1c:c4:a1:ba:f4:89:b9:62:e6:73:b1:91:f9:43:71:01:b8:
c9:06:d2:eb:37:20:68:f0:0d:5a:b2:12:2d:f3:8b:42:63:ee:
38:8d:45:11:f9:c1:7b:64:d5:73:13:fd:2b:60:49:cc:ca:bc:
cb:9d:ca:c6:d2:3d:c2:25:05:ed:9d:66:f0:0b:12:f6:c3:5e:
be:09:57:5a:23:8b:b9:27:e2:7f:bf:8c:49:f6:f4:63:0c:69:
be:91:67:2a:d6:fc:29:87:74:e3:b1:f1:13:37:2f:c4:35:7a:
04:64:2a:ed:00:8a:0c:06:67:02:45:0b:6c:5e:b3:07:d3:77:
e5:1b:cd:a1:f3:22:56:72:b7:3b:24:c3:0e:84:9a:a7:e4:46:
1a:65:01:7f:b9:23:c3:77:44:00:95:53:55:34:4b:6a:bc:65:
4c:14:fb:c8:3c:a4:3d:6c:a0:57:fb:ea:8a:81:44:29:e0:33:
c4:4b:82:34:94:bf:90:53:62:55:0e:a4:7e:7a:9d:e4:27:12:
aa:ac:2b:11:fa:a2:90:e8:d0:2a:02:b7:f9:3e:85:bf:9a:b1:
bd:c9:ff:11
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx19UpA6XIH8Cuf2jGPsBSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjMwMTAyMDkzNzI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODU2M2E1ZGRmZGQzZmE4MjU5ZmVhM2I1MDdmNDQ3Nzc0Y2IzMjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihps9OfVLLvWcOIykHpPY8UnQg3Y
gpkUQlv8f/eXR7GYH1B8Gv3LJWmYL+HxPXLWg/gHr0oP32Qi70KW02p3Hc+JRqIu
XrpSDvICCsVc/bCYpILdtK2J/LymDeMx+SHnzUmTKWHEogHldGk5pzIvUg86xZPJ
Vsj0FwiGMZOAXxGQpzI4DC7USoZVjGLpxtCavNrCkeaGsvz+7dP/FwP+Z9dIUAqJ
pnuNm+nBgWv5PyBtkX2v12cyLZhzkePer6XMzx7d7UlAOPCBehZ1miF5fC8d8fwd
C9cXOeNBz/7JtC967eKxqBsSQp7dJhREi/aNLH3AvhulvTSsnjXHZM5rJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAhWOl3f3T+oJZ/qO1B/RHd0yzJjMB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvQ0ZZNlhkX2RQNmdsbi1vN1VIOUVkM1RMTW1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXbpEMA0G
CSqGSIb3DQEBCwUAA4IBAQA2wgyole1X7o1EG6yh/icjm/sQfeJBbdJHdn+T9kzu
VCizykJEHMShuvSJuWLmc7GR+UNxAbjJBtLrNyBo8A1ashIt84tCY+44jUUR+cF7
ZNVzE/0rYEnMyrzLncrG0j3CJQXtnWbwCxL2w16+CVdaI4u5J+J/v4xJ9vRjDGm+
kWcq1vwph3TjsfETNy/ENXoEZCrtAIoMBmcCRQtsXrMH03flG82h8yJWcrc7JMMO
hJqn5EYaZQF/uSPDd0QAlVNVNEtqvGVMFPvIPKQ9bKBX++qKgUQp4DPES4I0lL+Q
U2JVDqR+ep3kJxKqrCsR+qKQ6NAqArf5PoW/mrG9yf8R
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:25 2024 by rpki-client on console-fra.rpki-client.org