Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/02cb5f-c669-4fb0-92e5-4836bad61ba2/1/6C1yAVEkHbt3_5ZzDahAWnzbTUU.roa
File: 6C1yAVEkHbt3_5ZzDahAWnzbTUU.roa (raw, json)
Hash identifier: Afk2e21UcSMLn0IuD+9E9tcXOyIkWCxW83rSrS3Exhw=
Subject key identifier: E8:2D:72:01:51:24:1D:BB:77:FF:96:73:0D:A8:40:5A:7C:DB:4D:45
Certificate issuer: /CN=caf44942a29fac612cd44f83ad317a1c0f5b8eea
Certificate serial: 0188192537EA87148C5672E0233EC4C560DF
Authority key identifier: CA:F4:49:42:A2:9F:AC:61:2C:D4:4F:83:AD:31:7A:1C:0F:5B:8E:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yvRJQqKfrGEs1E-DrTF6HA9bjuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/02cb5f-c669-4fb0-92e5-4836bad61ba2/1/6C1yAVEkHbt3_5ZzDahAWnzbTUU.roa
Signing time: Sun 14 May 2023 07:24:09 +0000
ROA not before: Sun 14 May 2023 07:24:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34412
IP address blocks: 185.136.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:19:25:37:ea:87:14:8c:56:72:e0:23:3e:c4:c5:60:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caf44942a29fac612cd44f83ad317a1c0f5b8eea
Validity
Not Before: May 14 07:24:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e82d720151241dbb77ff96730da8405a7cdb4d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:75:f7:1f:ee:70:0a:b1:d2:64:bc:d9:a6:96:
59:af:49:6b:d9:1f:9b:3a:e9:bd:ef:2c:f7:4b:db:
12:24:64:cd:37:a1:d9:24:3e:f7:59:7d:49:e6:10:
6a:75:63:1a:71:ea:2e:fd:cb:5b:7c:fe:09:72:d8:
d9:49:82:f3:ce:01:db:b3:b3:17:b1:f1:5d:bf:03:
71:f4:eb:8a:f0:4d:3e:b7:88:b2:1d:95:21:99:c7:
ed:6c:0e:1c:a3:85:af:17:f9:26:9c:c5:66:dc:0a:
aa:c6:d6:d2:ef:64:2b:6b:d4:63:48:a1:d3:d1:65:
69:f2:c8:54:4f:42:f4:fb:c1:c5:76:4f:2c:40:7d:
a0:3c:b6:5f:e0:b5:74:89:1b:c5:b1:d5:af:4e:59:
97:0a:96:01:a3:b5:b6:2d:71:5e:fa:e5:e7:72:8c:
dc:cc:bc:57:14:6a:9a:19:23:fc:ef:71:d7:3c:3c:
a0:8d:c1:f2:67:37:40:7b:52:e3:08:a5:17:46:eb:
c5:4d:72:60:aa:2d:27:e0:cc:9c:d8:d2:22:a3:4b:
18:5a:35:e2:08:b7:92:03:f6:76:1a:67:65:9d:78:
55:80:f6:cd:a5:4e:21:c5:8d:4d:05:02:75:de:ce:
6b:65:fc:e7:dc:36:54:bb:04:6a:c4:f4:fa:d2:2d:
4a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:2D:72:01:51:24:1D:BB:77:FF:96:73:0D:A8:40:5A:7C:DB:4D:45
X509v3 Authority Key Identifier:
keyid:CA:F4:49:42:A2:9F:AC:61:2C:D4:4F:83:AD:31:7A:1C:0F:5B:8E:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yvRJQqKfrGEs1E-DrTF6HA9bjuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/02cb5f-c669-4fb0-92e5-4836bad61ba2/1/6C1yAVEkHbt3_5ZzDahAWnzbTUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/02cb5f-c669-4fb0-92e5-4836bad61ba2/1/yvRJQqKfrGEs1E-DrTF6HA9bjuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.135.0/24
Signature Algorithm: sha256WithRSAEncryption
23:60:f6:64:ec:4a:80:6f:59:56:63:ce:30:df:39:d4:69:fc:
c2:68:73:f8:1a:77:9a:7c:2a:73:a5:a1:5b:87:e7:27:bb:14:
5e:54:25:3f:7a:18:6d:84:bf:ba:1f:27:5e:db:23:df:99:db:
f6:db:47:cd:75:55:b5:7c:5c:22:38:78:2f:be:6a:8e:30:17:
09:04:3d:cd:c5:d0:3f:19:7b:07:da:30:1c:17:18:db:3f:a3:
07:d8:9e:f5:22:e3:38:6e:a7:7a:1a:0c:39:88:ca:bd:5a:93:
64:57:2a:93:27:f2:7e:4d:d9:a1:b3:4c:c4:72:66:8f:74:84:
ba:ad:5b:eb:30:95:66:97:27:32:7a:8a:d0:c2:0b:2e:5c:46:
22:3f:86:0d:ad:a2:77:26:be:bc:8c:54:c4:fa:f1:41:19:c3:
0f:67:1c:7e:e5:40:a8:05:cd:b2:f6:06:89:46:98:35:b1:9a:
df:20:d8:1b:30:d6:e2:1e:ac:58:28:c1:41:14:a6:5a:c4:13:
61:16:91:71:ee:77:48:9e:9f:3a:74:83:54:09:c5:66:b0:f6:
7d:02:58:52:42:50:ea:3a:b3:ab:a6:6a:99:94:3f:36:ca:bb:
e4:41:3d:39:0d:0d:04:e2:2d:b2:87:ec:08:20:38:6e:a7:70:
cf:9c:00:99
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgZJTfqhxSMVnLgIz7ExWDfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhZjQ0OTQyYTI5ZmFjNjEyY2Q0NGY4M2FkMzE3YTFjMGY1
YjhlZWEwHhcNMjMwNTE0MDcyNDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlODJkNzIwMTUxMjQxZGJiNzdmZjk2NzMwZGE4NDA1YTdjZGI0ZDQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3X3H+5wCrHSZLzZppZZr0lr2R+b
Oum97yz3S9sSJGTNN6HZJD73WX1J5hBqdWMaceou/ctbfP4JctjZSYLzzgHbs7MX
sfFdvwNx9OuK8E0+t4iyHZUhmcftbA4co4WvF/kmnMVm3AqqxtbS72Qra9RjSKHT
0WVp8shUT0L0+8HFdk8sQH2gPLZf4LV0iRvFsdWvTlmXCpYBo7W2LXFe+uXncozc
zLxXFGqaGSP873HXPDygjcHyZzdAe1LjCKUXRuvFTXJgqi0n4Myc2NIio0sYWjXi
CLeSA/Z2GmdlnXhVgPbNpU4hxY1NBQJ13s5rZfzn3DZUuwRqxPT60i1KjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOgtcgFRJB27d/+Wcw2oQFp8201FMB8GA1UdIwQY
MBaAFMr0SUKin6xhLNRPg60xehwPW47qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXZSSlFxS2ZyR0VzMUUtRHJURjZIQTlianVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8wMmNiNWYtYzY2OS00ZmIwLTkyZTUt
NDgzNmJhZDYxYmEyLzEvNkMxeUFWRWtIYnQzXzVaekRhaEFXbnpiVFVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8wMmNiNWYtYzY2OS00ZmIwLTkyZTUtNDgzNmJhZDYxYmEy
LzEveXZSSlFxS2ZyR0VzMUUtRHJURjZIQTlianVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYiHMA0G
CSqGSIb3DQEBCwUAA4IBAQAjYPZk7EqAb1lWY84w3znUafzCaHP4GneafCpzpaFb
h+cnuxReVCU/ehhthL+6Hyde2yPfmdv220fNdVW1fFwiOHgvvmqOMBcJBD3NxdA/
GXsH2jAcFxjbP6MH2J71IuM4bqd6Ggw5iMq9WpNkVyqTJ/J+Tdmhs0zEcmaPdIS6
rVvrMJVmlycyeorQwgsuXEYiP4YNraJ3Jr68jFTE+vFBGcMPZxx+5UCoBc2y9gaJ
Rpg1sZrfINgbMNbiHqxYKMFBFKZaxBNhFpFx7ndInp86dINUCcVmsPZ9AlhSQlDq
OrOrpmqZlD82yrvkQT05DQ0E4i2yh+wIIDhup3DPnACZ
-----END CERTIFICATE-----
Generated at Tue Dec 5 11:14:54 2023 by rpki-client on console-fra.rpki-client.org