Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/5b92a7-2837-469e-8214-e811e23c1804/1/tKBPeiI4UsLBdo5NE9kDmBEp8T8.roa
File: tKBPeiI4UsLBdo5NE9kDmBEp8T8.roa (raw, json)
Hash identifier: K1H6xl9STEMdDARTQlsuIF/I4wHFXgXhIxm2aEJJmus=
Subject key identifier: B4:A0:4F:7A:22:38:52:C2:C1:76:8E:4D:13:D9:03:98:11:29:F1:3F
Certificate issuer: /CN=918901662a8ec5ff4d3f48d29099230a0575ec8a
Certificate serial: 018B76B06EDD7103FD4CF026A2A959EE2004
Authority key identifier: 91:89:01:66:2A:8E:C5:FF:4D:3F:48:D2:90:99:23:0A:05:75:EC:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYkBZiqOxf9NP0jSkJkjCgV17Io.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/5b92a7-2837-469e-8214-e811e23c1804/1/tKBPeiI4UsLBdo5NE9kDmBEp8T8.roa
Signing time: Sat 28 Oct 2023 14:29:16 +0000
ROA not before: Sat 28 Oct 2023 14:29:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39402
IP address blocks: 185.128.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:76:b0:6e:dd:71:03:fd:4c:f0:26:a2:a9:59:ee:20:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918901662a8ec5ff4d3f48d29099230a0575ec8a
Validity
Not Before: Oct 28 14:29:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4a04f7a223852c2c1768e4d13d903981129f13f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a0:7e:1e:3b:0f:a2:0b:6c:c0:84:9f:d3:20:
62:67:97:01:c1:66:8a:ce:12:da:2a:8c:96:72:65:
58:76:9f:2b:ec:b3:49:8a:f1:36:82:33:d8:e9:b2:
2f:87:98:9b:19:4e:f4:23:7a:01:70:9a:9f:5f:a4:
5d:18:f0:44:f1:bc:df:53:a2:72:d7:0c:9d:9c:61:
1f:13:74:e7:ce:83:74:ce:b5:8f:99:13:a0:b8:84:
c9:ed:23:1c:67:de:14:d1:98:0f:b5:3f:1f:77:49:
c0:75:37:60:b1:4e:24:07:bb:74:67:93:0a:dd:95:
b1:d4:b9:ab:e0:69:ef:16:ca:7e:dd:e2:0d:cc:7f:
dc:5a:46:2f:b5:e9:f4:64:8f:69:14:a7:82:82:eb:
53:53:fc:ff:9f:58:61:8e:81:c8:43:48:eb:cf:08:
87:91:7c:f1:5b:ab:43:97:4c:ce:a7:0e:91:8e:b3:
5b:65:33:0e:2a:d5:7c:43:53:2c:bb:a2:ad:53:10:
e1:e7:a1:18:17:88:2d:96:86:fa:38:24:c9:53:b1:
8c:4b:b4:25:dd:f3:34:a1:71:a7:7c:52:fd:f7:da:
ec:3e:97:28:14:d3:f9:00:be:4f:44:33:af:af:4b:
f1:92:71:af:7e:ef:ea:65:cc:6a:1c:be:15:9f:32:
7d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A0:4F:7A:22:38:52:C2:C1:76:8E:4D:13:D9:03:98:11:29:F1:3F
X509v3 Authority Key Identifier:
keyid:91:89:01:66:2A:8E:C5:FF:4D:3F:48:D2:90:99:23:0A:05:75:EC:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYkBZiqOxf9NP0jSkJkjCgV17Io.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/5b92a7-2837-469e-8214-e811e23c1804/1/tKBPeiI4UsLBdo5NE9kDmBEp8T8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/5b92a7-2837-469e-8214-e811e23c1804/1/kYkBZiqOxf9NP0jSkJkjCgV17Io.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.124.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:77:ec:70:b7:d8:06:91:93:b8:d7:29:b6:9e:1d:35:ff:c6:
1e:63:ab:fd:04:1b:6b:0a:aa:f4:bb:4a:92:6b:6f:65:69:ff:
43:11:dd:b1:9f:e6:97:4f:aa:aa:0b:be:d4:ff:aa:58:63:90:
01:37:68:53:65:0e:ea:3a:2d:39:b0:55:73:9e:34:17:4c:89:
cf:56:24:65:99:b3:67:30:31:25:33:79:82:ac:4b:11:08:a5:
21:54:91:ab:0e:55:f7:65:6e:99:e6:84:92:07:5f:a9:80:a5:
4f:1d:91:18:fe:38:d8:ad:39:36:ae:45:5c:9e:ab:66:50:70:
83:7a:29:a3:5f:ac:51:15:a9:e2:01:f1:2e:2e:64:5c:94:b6:
2a:9f:ad:09:09:aa:ca:31:7e:c1:f5:3c:da:3d:1e:db:59:b6:
2d:5d:52:f9:e0:f8:88:1b:ae:47:2e:0a:5f:ed:ec:c8:5b:d4:
ae:bf:e6:df:e9:45:ea:0d:2e:66:99:4f:90:21:65:78:9f:0c:
09:93:f2:2f:ff:02:34:4f:1a:45:9b:b3:df:20:cf:82:b3:7c:
79:26:0a:48:f8:9e:62:5d:cb:76:9d:14:d2:b8:cb:ff:97:d4:
5e:8b:82:3c:1c:11:4b:26:b2:32:9b:8b:56:78:2a:bd:12:b6:
9b:8f:68:86
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYt2sG7dcQP9TPAmoqlZ7iAEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxODkwMTY2MmE4ZWM1ZmY0ZDNmNDhkMjkwOTkyMzBhMDU3
NWVjOGEwHhcNMjMxMDI4MTQyOTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNGEwNGY3YTIyMzg1MmMyYzE3NjhlNGQxM2Q5MDM5ODExMjlmMTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvaB+HjsPogtswISf0yBiZ5cBwWaK
zhLaKoyWcmVYdp8r7LNJivE2gjPY6bIvh5ibGU70I3oBcJqfX6RdGPBE8bzfU6Jy
1wydnGEfE3TnzoN0zrWPmROguITJ7SMcZ94U0ZgPtT8fd0nAdTdgsU4kB7t0Z5MK
3ZWx1Lmr4GnvFsp+3eINzH/cWkYvten0ZI9pFKeCgutTU/z/n1hhjoHIQ0jrzwiH
kXzxW6tDl0zOpw6RjrNbZTMOKtV8Q1Msu6KtUxDh56EYF4gtlob6OCTJU7GMS7Ql
3fM0oXGnfFL999rsPpcoFNP5AL5PRDOvr0vxknGvfu/qZcxqHL4VnzJ9owIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLSgT3oiOFLCwXaOTRPZA5gRKfE/MB8GA1UdIwQY
MBaAFJGJAWYqjsX/TT9I0pCZIwoFdeyKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1lrQlppcU94ZjlOUDBqU2tKa2pDZ1YxN0lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC81YjkyYTctMjgzNy00NjllLTgyMTQt
ZTgxMWUyM2MxODA0LzEvdEtCUGVpSTRVc0xCZG81TkU5a0RtQkVwOFQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC81YjkyYTctMjgzNy00NjllLTgyMTQtZTgxMWUyM2MxODA0
LzEva1lrQlppcU94ZjlOUDBqU2tKa2pDZ1YxN0lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYB8MA0G
CSqGSIb3DQEBCwUAA4IBAQBdd+xwt9gGkZO41ym2nh01/8YeY6v9BBtrCqr0u0qS
a29laf9DEd2xn+aXT6qqC77U/6pYY5ABN2hTZQ7qOi05sFVznjQXTInPViRlmbNn
MDElM3mCrEsRCKUhVJGrDlX3ZW6Z5oSSB1+pgKVPHZEY/jjYrTk2rkVcnqtmUHCD
eimjX6xRFaniAfEuLmRclLYqn60JCarKMX7B9TzaPR7bWbYtXVL54PiIG65HLgpf
7ezIW9Suv+bf6UXqDS5mmU+QIWV4nwwJk/Iv/wI0TxpFm7PfIM+Cs3x5JgpI+J5i
Xct2nRTSuMv/l9Rei4I8HBFLJrIym4tWeCq9Erabj2iG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:14 2024 by rpki-client on console-fra.rpki-client.org