Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/6444d1-5f00-4e50-8019-1b6f750cf9a2/1/l-ADdW8OuwqqsRuks42n0nBc_Gk.roa
File: l-ADdW8OuwqqsRuks42n0nBc_Gk.roa (raw, json)
Hash identifier: DSfKy2ZfO+EhNnaywEjqW95EJajUKTrJt9OkNL0XWOg=
Subject key identifier: 97:E0:03:75:6F:0E:BB:0A:AA:B1:1B:A4:B3:8D:A7:D2:70:5C:FC:69
Certificate issuer: /CN=a865bae25778beed8880c08df2d3f37fc37abc1e
Certificate serial: 0186D268DDA8F4910370A3EC7E48005B50DE
Authority key identifier: A8:65:BA:E2:57:78:BE:ED:88:80:C0:8D:F2:D3:F3:7F:C3:7A:BC:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGW64ld4vu2IgMCN8tPzf8N6vB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/6444d1-5f00-4e50-8019-1b6f750cf9a2/1/l-ADdW8OuwqqsRuks42n0nBc_Gk.roa
Signing time: Sat 11 Mar 2023 20:42:13 +0000
ROA not before: Sat 11 Mar 2023 20:42:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31685
IP address blocks: 185.126.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Jun 2023 10:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d2:68:dd:a8:f4:91:03:70:a3:ec:7e:48:00:5b:50:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a865bae25778beed8880c08df2d3f37fc37abc1e
Validity
Not Before: Mar 11 20:42:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97e003756f0ebb0aaab11ba4b38da7d2705cfc69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:73:af:bb:57:3c:bc:e3:71:5b:07:4a:29:ab:
58:73:99:80:9f:d5:39:b5:55:b1:13:ef:58:7e:7c:
9e:b4:94:96:43:1d:a3:aa:84:6a:75:93:57:f2:cc:
07:38:42:76:6e:95:cc:42:4a:b9:c7:f1:f0:97:19:
53:06:38:2a:ea:56:0c:20:a6:2d:b2:3d:05:07:5e:
c1:79:19:d3:f4:f8:9d:c8:e6:a0:ca:b8:89:ba:4f:
59:47:0d:b5:ee:a0:25:6a:3f:80:29:bc:83:be:53:
29:b6:43:7c:2c:90:20:34:97:d1:18:3a:73:a9:4f:
0a:c2:49:70:5b:85:90:bc:5f:ad:1f:8c:74:12:99:
3d:a4:5b:51:55:f7:81:15:36:1a:de:fb:70:3c:0e:
d8:1d:f4:4e:09:dc:b7:e1:82:ec:ea:2a:5c:b8:f1:
c5:45:e5:3d:77:c4:c2:1b:94:31:98:dd:ce:f1:16:
77:1c:c9:18:3a:55:84:2c:96:0e:d2:ff:c7:02:73:
02:00:20:e0:f8:24:2d:2f:0b:54:dc:74:7a:05:bc:
33:b2:39:87:31:eb:ac:d7:1c:e9:a7:61:ae:9c:42:
42:b7:17:74:2c:4f:9e:96:02:11:ab:d5:38:7f:a7:
c3:fc:90:e9:8b:f0:c5:21:f5:81:ea:91:56:55:c8:
ee:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E0:03:75:6F:0E:BB:0A:AA:B1:1B:A4:B3:8D:A7:D2:70:5C:FC:69
X509v3 Authority Key Identifier:
keyid:A8:65:BA:E2:57:78:BE:ED:88:80:C0:8D:F2:D3:F3:7F:C3:7A:BC:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGW64ld4vu2IgMCN8tPzf8N6vB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/6444d1-5f00-4e50-8019-1b6f750cf9a2/1/l-ADdW8OuwqqsRuks42n0nBc_Gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/6444d1-5f00-4e50-8019-1b6f750cf9a2/1/qGW64ld4vu2IgMCN8tPzf8N6vB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.255.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a9:7a:c7:2e:3c:cc:94:30:65:39:ed:5c:e4:69:31:0f:d4:
31:0c:f7:a9:73:36:65:2e:95:43:c0:df:cf:9d:de:ee:e9:c0:
8e:e6:ee:f5:51:4f:3b:29:dc:ae:ee:8a:18:48:79:ad:b3:da:
73:74:93:21:5b:ec:95:46:96:d8:f6:0a:d5:78:13:69:9e:c3:
9e:96:2c:5b:02:ae:43:aa:fe:cd:d5:ae:27:af:0f:5e:81:c4:
cd:bd:4f:02:fd:97:4f:4e:98:e1:67:e5:74:4d:ae:76:14:75:
72:4b:28:84:72:29:87:34:11:6d:36:10:e7:51:75:f1:7a:61:
a2:d4:2c:cf:7d:95:a4:db:1c:f6:ed:73:ed:7c:d3:08:80:b8:
9d:34:ae:05:05:10:f0:85:9d:81:02:e0:cc:2d:ae:5a:82:34:
d0:ec:b0:3c:1e:47:bc:5b:ed:97:37:46:03:4c:ba:78:9b:37:
2d:2e:c8:1d:50:b1:c1:8f:04:5f:19:ad:a1:3b:99:71:d0:29:
55:20:60:e8:b7:07:1c:87:ed:5b:a7:19:2e:11:b9:3a:d1:e3:
30:c1:7e:d2:1a:6b:f1:f6:cf:ac:61:08:f8:aa:03:18:a4:de:
5b:58:11:b9:59:62:94:7f:57:8f:af:11:65:a5:20:af:15:66:
4f:76:26:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbSaN2o9JEDcKPsfkgAW1DeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4NjViYWUyNTc3OGJlZWQ4ODgwYzA4ZGYyZDNmMzdmYzM3
YWJjMWUwHhcNMjMwMzExMjA0MjEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5N2UwMDM3NTZmMGViYjBhYWFiMTFiYTRiMzhkYTdkMjcwNWNmYzY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHOvu1c8vONxWwdKKatYc5mAn9U5
tVWxE+9YfnyetJSWQx2jqoRqdZNX8swHOEJ2bpXMQkq5x/HwlxlTBjgq6lYMIKYt
sj0FB17BeRnT9PidyOagyriJuk9ZRw217qAlaj+AKbyDvlMptkN8LJAgNJfRGDpz
qU8KwklwW4WQvF+tH4x0Epk9pFtRVfeBFTYa3vtwPA7YHfROCdy34YLs6ipcuPHF
ReU9d8TCG5QxmN3O8RZ3HMkYOlWELJYO0v/HAnMCACDg+CQtLwtU3HR6BbwzsjmH
Meus1xzpp2GunEJCtxd0LE+elgIRq9U4f6fD/JDpi/DFIfWB6pFWVcjuEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJfgA3VvDrsKqrEbpLONp9JwXPxpMB8GA1UdIwQY
MBaAFKhluuJXeL7tiIDAjfLT83/DerweMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUdXNjRsZDR2dTJJZ01DTjh0UHpmOE42dkI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi82NDQ0ZDEtNWYwMC00ZTUwLTgwMTkt
MWI2Zjc1MGNmOWEyLzEvbC1BRGRXOE91d3Fxc1J1a3M0Mm4wbkJjX0drLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi82NDQ0ZDEtNWYwMC00ZTUwLTgwMTktMWI2Zjc1MGNmOWEy
LzEvcUdXNjRsZDR2dTJJZ01DTjh0UHpmOE42dkI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuX7/MA0G
CSqGSIb3DQEBCwUAA4IBAQB9qXrHLjzMlDBlOe1c5GkxD9QxDPepczZlLpVDwN/P
nd7u6cCO5u71UU87Kdyu7ooYSHmts9pzdJMhW+yVRpbY9grVeBNpnsOelixbAq5D
qv7N1a4nrw9egcTNvU8C/ZdPTpjhZ+V0Ta52FHVySyiEcimHNBFtNhDnUXXxemGi
1CzPfZWk2xz27XPtfNMIgLidNK4FBRDwhZ2BAuDMLa5agjTQ7LA8Hke8W+2XN0YD
TLp4mzctLsgdULHBjwRfGa2hO5lx0ClVIGDotwcch+1bpxkuEbk60eMwwX7SGmvx
9s+sYQj4qgMYpN5bWBG5WWKUf1ePrxFlpSCvFWZPdiZ5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:14 2024 by rpki-client on console-ams.rpki-client.org