Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/l1AJxp0Qcda_ImA699uz2wOTzAw.roa
File: l1AJxp0Qcda_ImA699uz2wOTzAw.roa (raw, json)
Hash identifier: RaNLZYnaXntPU/Wk/Nr1lXZA6dNvor7w//WCILquT04=
Subject key identifier: 97:50:09:C6:9D:10:71:D6:BF:22:60:3A:F7:DB:B3:DB:03:93:CC:0C
Certificate issuer: /CN=cf40fdd82a0fdf3b70be18221eeba60d801ed7bf
Certificate serial: 018572CCC816C0FEC216898CF59C4E5738F9
Authority key identifier: CF:40:FD:D8:2A:0F:DF:3B:70:BE:18:22:1E:EB:A6:0D:80:1E:D7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0D92CoP3ztwvhgiHuumDYAe178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/l1AJxp0Qcda_ImA699uz2wOTzAw.roa
Signing time: Mon 02 Jan 2023 14:05:01 +0000
ROA not before: Mon 02 Jan 2023 14:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206804
IP address blocks: 185.51.134.0/24 maxlen: 24
2001:1548:206::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:c8:16:c0:fe:c2:16:89:8c:f5:9c:4e:57:38:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40fdd82a0fdf3b70be18221eeba60d801ed7bf
Validity
Not Before: Jan 2 14:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=975009c69d1071d6bf22603af7dbb3db0393cc0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:14:4e:42:98:f1:dd:7f:96:3f:ec:7b:b7:2d:
c7:cb:5b:9b:08:ed:73:36:69:a9:70:79:30:8f:91:
47:9f:9a:ff:12:79:d2:5e:a7:e1:79:fe:2a:06:1c:
ef:89:98:85:87:f3:0e:f7:9f:f8:72:b4:81:e6:bc:
d4:8e:8a:30:06:8a:31:b4:7d:32:ef:fe:3a:55:b5:
7c:58:2b:7f:bc:33:ba:7d:7b:de:8c:74:f6:68:fa:
8e:97:90:cb:35:02:04:d1:b8:fc:da:57:a0:6c:52:
1e:3e:1e:dd:fc:71:83:f2:76:b7:f9:18:36:49:f4:
79:6c:df:88:ac:fa:72:94:62:a1:4c:ca:3f:b9:c8:
79:8b:62:27:f1:52:f7:32:d7:72:43:cb:d4:28:6a:
71:61:63:b0:b5:fe:3a:02:a4:e9:26:b9:54:87:ec:
8b:30:af:fc:58:03:92:fe:ff:67:b5:ae:fe:23:cf:
f8:58:ce:a2:9b:a9:5f:71:a8:ed:dd:ae:4b:89:63:
ef:a2:51:7f:eb:ae:df:e0:4d:3e:81:e2:a1:35:46:
fd:18:8c:18:9e:61:16:6f:c4:20:81:3b:fe:81:c5:
51:b1:91:f7:2d:11:d8:07:a9:88:9d:c6:bf:86:00:
69:d0:ff:4b:c6:d5:2b:30:b5:0b:55:b3:ef:69:47:
5f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:50:09:C6:9D:10:71:D6:BF:22:60:3A:F7:DB:B3:DB:03:93:CC:0C
X509v3 Authority Key Identifier:
keyid:CF:40:FD:D8:2A:0F:DF:3B:70:BE:18:22:1E:EB:A6:0D:80:1E:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0D92CoP3ztwvhgiHuumDYAe178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/l1AJxp0Qcda_ImA699uz2wOTzAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/z0D92CoP3ztwvhgiHuumDYAe178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.134.0/24
IPv6:
2001:1548:206::/48
Signature Algorithm: sha256WithRSAEncryption
40:89:7f:c5:94:5e:a6:e5:30:0e:e7:13:11:86:2b:ff:fb:5b:
0d:85:9f:14:6f:08:39:51:b9:ac:02:49:36:0d:8d:95:50:a8:
84:d7:7c:05:de:3d:6a:b6:74:65:a7:47:7b:8a:c2:7f:1d:03:
69:f5:db:37:d5:b1:92:d2:62:4c:dc:49:69:2e:3b:d0:a5:74:
8a:8e:0e:28:20:22:ca:60:92:b1:ab:08:cc:5b:2d:8d:f0:67:
b4:8f:f3:c7:2c:b4:3c:72:c3:4e:2a:12:35:03:7a:d2:14:b4:
fc:74:5f:59:31:f1:10:42:f8:bc:7d:d2:c9:b1:2c:60:f9:17:
a6:9a:3f:ea:9f:c2:cd:ee:e5:1f:29:ce:d6:59:fc:0d:7e:ef:
79:3a:f9:73:98:fe:15:79:c4:26:25:03:c1:05:31:e9:5f:fb:
66:35:30:34:95:40:45:d1:38:00:ad:c5:97:c1:3a:b4:e5:a3:
6d:d0:a2:de:b2:8a:4d:86:f4:94:68:66:fa:f6:d0:e8:bb:d6:
b0:46:4c:0a:54:43:1a:c2:ef:bf:9d:48:ac:38:db:1d:93:26:
c6:77:1d:eb:0f:e1:b3:c6:e0:5a:50:47:75:06:ec:8d:09:29:
fa:bb:f5:c2:28:9c:cb:3e:13:e5:49:ff:e2:97:e4:cf:aa:d3:
35:eb:c2:12
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVyzMgWwP7CFomM9ZxOVzj5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNDBmZGQ4MmEwZmRmM2I3MGJlMTgyMjFlZWJhNjBkODAx
ZWQ3YmYwHhcNMjMwMTAyMTQwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NzUwMDljNjlkMTA3MWQ2YmYyMjYwM2FmN2RiYjNkYjAzOTNjYzBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihROQpjx3X+WP+x7ty3Hy1ubCO1z
NmmpcHkwj5FHn5r/EnnSXqfhef4qBhzviZiFh/MO95/4crSB5rzUjoowBooxtH0y
7/46VbV8WCt/vDO6fXvejHT2aPqOl5DLNQIE0bj82legbFIePh7d/HGD8na3+Rg2
SfR5bN+IrPpylGKhTMo/uch5i2In8VL3MtdyQ8vUKGpxYWOwtf46AqTpJrlUh+yL
MK/8WAOS/v9nta7+I8/4WM6im6lfcajt3a5LiWPvolF/667f4E0+geKhNUb9GIwY
nmEWb8QggTv+gcVRsZH3LRHYB6mInca/hgBp0P9LxtUrMLULVbPvaUdfOQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJdQCcadEHHWvyJgOvfbs9sDk8wMMB8GA1UdIwQY
MBaAFM9A/dgqD987cL4YIh7rpg2AHte/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejBEOTJDb1AzenR3dmhnaUh1dW1EWUFlMTc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS83OTI3MzctNmEwMi00MjRiLTgyY2It
YTI5Y2U3ZGExMGZkLzEvbDFBSnhwMFFjZGFfSW1BNjk5dXoyd09UekF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS83OTI3MzctNmEwMi00MjRiLTgyY2ItYTI5Y2U3ZGExMGZk
LzEvejBEOTJDb1AzenR3dmhnaUh1dW1EWUFlMTc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuTOGMA8E
AgACMAkDBwAgARVIAgYwDQYJKoZIhvcNAQELBQADggEBAECJf8WUXqblMA7nExGG
K//7Ww2FnxRvCDlRuawCSTYNjZVQqITXfAXePWq2dGWnR3uKwn8dA2n12zfVsZLS
YkzcSWkuO9CldIqODiggIspgkrGrCMxbLY3wZ7SP88cstDxyw04qEjUDetIUtPx0
X1kx8RBC+Lx90smxLGD5F6aaP+qfws3u5R8pztZZ/A1+73k6+XOY/hV5xCYlA8EF
Melf+2Y1MDSVQEXROACtxZfBOrTlo23Qot6yik2G9JRoZvr20Oi71rBGTApUQxrC
77+dSKw42x2TJsZ3HesP4bPG4FpQR3UG7I0JKfq79cIonMs+E+VJ/+KX5M+q0zXr
whI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:14 2024 by rpki-client on console-ams.rpki-client.org