Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/dbrtIF4XqkDehET3paRt5FacOL8.roa
File: dbrtIF4XqkDehET3paRt5FacOL8.roa (raw, json)
Hash identifier: +kgWj4arnM/yNFN12JhbZhYFrUd9j5CpjHo0gmxDqI4=
Subject key identifier: 75:BA:ED:20:5E:17:AA:40:DE:84:44:F7:A5:A4:6D:E4:56:9C:38:BF
Certificate issuer: /CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Certificate serial: 018A649DD8AAE19A15B9A3E310B0F15D0B9B
Authority key identifier: CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/dbrtIF4XqkDehET3paRt5FacOL8.roa
Signing time: Tue 05 Sep 2023 09:13:00 +0000
ROA not before: Tue 05 Sep 2023 09:13:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61157
IP address blocks: 185.5.24.0/24 maxlen: 24
185.5.25.0/24 maxlen: 24
185.5.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:9d:d8:aa:e1:9a:15:b9:a3:e3:10:b0:f1:5d:0b:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Validity
Not Before: Sep 5 09:13:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75baed205e17aa40de8444f7a5a46de4569c38bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6f:d0:5d:06:33:5e:2e:82:07:01:c2:3d:87:
17:49:66:4b:f3:18:a5:ba:82:30:a5:e0:50:3e:81:
7e:b8:67:13:b3:08:ed:8e:61:87:ee:a8:3c:c1:de:
7c:cc:d1:9c:ee:72:16:a2:80:81:03:ae:fe:6f:66:
85:2c:36:ae:83:7c:0e:91:b2:ec:b5:e0:e5:da:63:
e1:49:0b:5a:fd:63:7a:27:d0:57:51:cf:f5:53:aa:
6f:53:6d:04:ee:4d:77:d6:b6:71:96:fd:6e:23:66:
c9:dd:d3:a4:6e:61:91:7c:2c:c3:51:e9:7b:51:f1:
13:93:93:87:94:e8:a9:cd:98:57:51:3a:2d:53:6b:
d1:9b:37:70:11:66:35:f0:db:48:6c:23:b9:97:4c:
1e:61:8f:58:91:e4:8b:40:e2:18:67:4f:a0:b5:b7:
b2:0a:63:f5:df:a4:2d:de:97:eb:ad:b2:22:34:4d:
aa:28:14:e4:0d:f0:49:70:6f:e0:10:b3:a6:4c:a8:
f6:52:b9:4f:9f:9b:cb:e2:c5:7c:e1:95:d6:89:0b:
a8:fa:08:07:dc:b3:17:4a:76:d3:d0:0b:a6:09:e2:
a1:21:45:72:0a:7c:12:57:aa:51:11:b1:2d:28:e8:
58:8f:6b:b0:a7:56:1b:f1:87:31:95:d1:4a:4b:b0:
54:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:BA:ED:20:5E:17:AA:40:DE:84:44:F7:A5:A4:6D:E4:56:9C:38:BF
X509v3 Authority Key Identifier:
keyid:CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/dbrtIF4XqkDehET3paRt5FacOL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.24.0/23
185.5.27.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:82:be:82:41:fb:ea:37:94:cf:3d:37:46:98:6b:f0:6e:86:
a2:de:00:47:17:cc:6c:0a:0d:45:d1:02:73:e6:9e:d3:99:f3:
6f:34:e7:85:11:6f:99:bd:d6:13:34:1b:21:e4:da:f2:71:fc:
1b:c6:87:c7:93:89:55:71:48:89:6e:1f:53:bd:e9:15:11:25:
57:9e:ff:2e:4d:a7:bc:fb:51:4a:33:8d:76:53:e4:57:06:85:
ed:9a:87:bb:6b:fd:31:5c:07:57:0e:e4:0b:8f:36:6e:54:3c:
42:49:75:6e:7c:48:d3:ce:e7:60:55:76:15:30:9c:cf:15:2a:
ad:15:98:6e:7a:18:bd:22:40:bc:fe:ac:98:c2:e4:47:94:23:
6e:35:91:61:b1:26:37:56:d2:41:cc:87:3b:f9:6d:2d:c1:6e:
b3:cc:35:0e:d8:e8:e2:e5:16:e2:b4:31:9e:a5:82:0c:ad:ea:
e1:37:9c:3c:f7:8f:d4:08:7e:29:f6:ec:31:20:7e:a7:42:b5:
c0:61:11:de:27:73:99:3e:38:9b:80:db:f3:33:70:70:c8:99:
21:be:01:33:a4:bb:88:c9:66:4c:94:0b:32:9b:a4:66:aa:04:
ab:22:58:3c:56:17:07:4e:05:7e:c7:ed:f3:8f:5b:f8:bb:fa:
5e:9c:c4:d0
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYpkndiq4ZoVuaPjELDxXQubMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTIyMGU1M2U0ZjgxY2EyNThjY2ZlYTE4NzI4MDI4MGY1
ZjYyMWEwHhcNMjMwOTA1MDkxMzAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWJhZWQyMDVlMTdhYTQwZGU4NDQ0ZjdhNWE0NmRlNDU2OWMzOGJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtW/QXQYzXi6CBwHCPYcXSWZL8xil
uoIwpeBQPoF+uGcTswjtjmGH7qg8wd58zNGc7nIWooCBA67+b2aFLDaug3wOkbLs
teDl2mPhSQta/WN6J9BXUc/1U6pvU20E7k131rZxlv1uI2bJ3dOkbmGRfCzDUel7
UfETk5OHlOipzZhXUTotU2vRmzdwEWY18NtIbCO5l0weYY9YkeSLQOIYZ0+gtbey
CmP136Qt3pfrrbIiNE2qKBTkDfBJcG/gELOmTKj2UrlPn5vL4sV84ZXWiQuo+ggH
3LMXSnbT0AumCeKhIUVyCnwSV6pREbEtKOhYj2uwp1Yb8YcxldFKS7BUhwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHW67SBeF6pA3oRE96WkbeRWnDi/MB8GA1UdIwQY
MBaAFMpSIOU+T4HKJYzP6hhygCgPX2IaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny80MjQ5NDctMWM2YS00OGU5LWIyODkt
ZjIzYzVhNTMxODIzLzEvZGJydElGNFhxa0RlaEVUM3BhUnQ1RmFjT0w4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny80MjQ5NDctMWM2YS00OGU5LWIyODktZjIzYzVhNTMxODIz
LzEveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBuQUYAwQA
uQUbMA0GCSqGSIb3DQEBCwUAA4IBAQCNgr6CQfvqN5TPPTdGmGvwboai3gBHF8xs
Cg1F0QJz5p7TmfNvNOeFEW+ZvdYTNBsh5NrycfwbxofHk4lVcUiJbh9TvekVESVX
nv8uTae8+1FKM412U+RXBoXtmoe7a/0xXAdXDuQLjzZuVDxCSXVufEjTzudgVXYV
MJzPFSqtFZhuehi9IkC8/qyYwuRHlCNuNZFhsSY3VtJBzIc7+W0twW6zzDUO2Oji
5RbitDGepYIMrerhN5w894/UCH4p9uwxIH6nQrXAYRHeJ3OZPjibgNvzM3BwyJkh
vgEzpLuIyWZMlAsym6RmqgSrIlg8VhcHTgV+x+3zj1v4u/penMTQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:45 2024 by rpki-client on console-fra.rpki-client.org