Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/jDqzmsPhOdNR1Yiyyq0byfyDEm4.roa
File: jDqzmsPhOdNR1Yiyyq0byfyDEm4.roa (raw, json)
Hash identifier: JtDzSCRkfwWXbvY2KyrPwJPQK2ekYIPg6ScdPyEFWAg=
Subject key identifier: 8C:3A:B3:9A:C3:E1:39:D3:51:D5:88:B2:CA:AD:1B:C9:FC:83:12:6E
Certificate issuer: /CN=65cb4f6cd8489fddd173970a0ef44d4e1547a405
Certificate serial: 0190E4BB17E138BDD47A642A82B1B91C0EAD
Authority key identifier: 65:CB:4F:6C:D8:48:9F:DD:D1:73:97:0A:0E:F4:4D:4E:15:47:A4:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZctPbNhIn93Rc5cKDvRNThVHpAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/jDqzmsPhOdNR1Yiyyq0byfyDEm4.roa
Signing time: Wed 24 Jul 2024 12:33:04 +0000
ROA not before: Wed 24 Jul 2024 12:33:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28730
IP address blocks: 185.176.44.0/24 maxlen: 24
185.176.45.0/24 maxlen: 24
185.176.46.0/24 maxlen: 24
185.176.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 14:43:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e4:bb:17:e1:38:bd:d4:7a:64:2a:82:b1:b9:1c:0e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65cb4f6cd8489fddd173970a0ef44d4e1547a405
Validity
Not Before: Jul 24 12:33:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c3ab39ac3e139d351d588b2caad1bc9fc83126e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0a:a7:31:02:b9:75:8e:69:40:55:c4:c4:1b:
ca:4a:6f:7b:65:2b:12:7e:7b:ab:45:d7:f5:05:ef:
30:98:a4:39:e0:56:db:19:9c:af:4f:c3:30:6c:e6:
8f:9b:0e:a7:e2:9b:80:cd:0b:0f:d4:4f:52:bc:58:
ea:5c:3a:07:51:b7:c6:ec:6c:95:74:90:a1:88:03:
46:c3:ac:a0:e5:b5:de:ad:a7:81:29:29:d4:5b:f1:
28:98:60:24:1a:3e:96:41:77:40:a6:fb:90:f1:40:
1c:f4:d1:8e:00:b2:1d:2d:7a:4e:9e:55:48:51:c0:
87:0a:db:cd:b2:d9:d6:04:ed:12:a5:9b:35:68:d4:
e4:08:c5:b2:c8:f8:e2:58:36:94:a5:f1:96:6c:a2:
1f:61:39:87:66:61:e3:85:40:a6:9b:90:1c:f8:21:
62:3a:f7:df:f1:13:88:45:29:0a:39:fb:b8:ea:81:
5f:17:76:5a:0c:dd:44:43:55:9a:ae:ae:a5:1b:58:
6d:28:4d:c3:14:81:6f:15:36:15:90:5b:cc:74:e2:
77:a8:32:51:94:dd:e4:15:60:05:55:a6:d6:9b:e0:
d9:6d:06:aa:60:53:7b:01:03:9e:8b:86:98:c5:27:
21:77:2d:5a:db:e9:de:ef:a1:35:a2:50:bb:17:28:
89:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:3A:B3:9A:C3:E1:39:D3:51:D5:88:B2:CA:AD:1B:C9:FC:83:12:6E
X509v3 Authority Key Identifier:
keyid:65:CB:4F:6C:D8:48:9F:DD:D1:73:97:0A:0E:F4:4D:4E:15:47:A4:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZctPbNhIn93Rc5cKDvRNThVHpAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/jDqzmsPhOdNR1Yiyyq0byfyDEm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/ZctPbNhIn93Rc5cKDvRNThVHpAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.44.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:58:5f:2d:23:78:2e:28:79:98:98:59:73:af:6d:94:c4:f8:
68:cf:7b:8b:62:eb:88:13:94:4e:d6:b6:24:ed:2d:de:55:67:
38:49:e7:80:bd:f6:86:0d:62:49:b0:0a:7e:c4:10:88:47:13:
5f:9c:46:73:c7:ea:fd:14:3e:1d:0e:34:0e:ea:34:b7:f0:69:
b5:95:ee:b1:6e:70:fc:d0:53:c4:3a:c7:f0:5f:ec:5a:9e:22:
de:ab:da:84:35:63:8d:0c:d5:36:eb:9e:09:9e:3f:68:06:46:
d0:d9:8c:9f:0e:01:0e:7e:2e:ee:06:8a:25:da:a6:0d:95:e3:
9e:c3:19:e7:7d:cc:10:ac:80:eb:7b:27:5d:74:8f:9d:1a:f5:
4b:13:4b:7e:e7:4b:ac:a9:cd:8e:ae:4e:7b:a6:11:36:19:c3:
a8:04:23:1e:0e:00:c9:5b:c2:d7:c3:31:ab:dd:61:97:b6:39:
dd:4e:29:e9:1d:f6:9a:9a:b3:d5:fe:2f:f3:30:2f:d8:fd:2c:
c2:1c:9c:5a:76:4a:1f:2b:f8:26:0e:23:5d:f5:9a:1c:3e:71:
20:ae:a5:69:62:ec:0b:66:1a:25:2c:9c:71:ac:e4:39:7c:ee:
89:ff:81:53:fe:eb:30:6d:01:db:5f:2f:7b:51:0e:ff:45:b4:
60:81:46:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZDkuxfhOL3UemQqgrG5HA6tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1Y2I0ZjZjZDg0ODlmZGRkMTczOTcwYTBlZjQ0ZDRlMTU0
N2E0MDUwHhcNMjQwNzI0MTIzMzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YzNhYjM5YWMzZTEzOWQzNTFkNTg4YjJjYWFkMWJjOWZjODMxMjZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6QqnMQK5dY5pQFXExBvKSm97ZSsS
fnurRdf1Be8wmKQ54FbbGZyvT8MwbOaPmw6n4puAzQsP1E9SvFjqXDoHUbfG7GyV
dJChiANGw6yg5bXeraeBKSnUW/EomGAkGj6WQXdApvuQ8UAc9NGOALIdLXpOnlVI
UcCHCtvNstnWBO0SpZs1aNTkCMWyyPjiWDaUpfGWbKIfYTmHZmHjhUCmm5Ac+CFi
Ovff8ROIRSkKOfu46oFfF3ZaDN1EQ1Warq6lG1htKE3DFIFvFTYVkFvMdOJ3qDJR
lN3kFWAFVabWm+DZbQaqYFN7AQOei4aYxSchdy1a2+ne76E1olC7FyiJ6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIw6s5rD4TnTUdWIssqtG8n8gxJuMB8GA1UdIwQY
MBaAFGXLT2zYSJ/d0XOXCg70TU4VR6QFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmN0UGJOaEluOTNSYzVjS0R2Uk5UaFZIcEFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS83MzZhNGEtMzllMC00MTE5LWI0Y2It
MDgyZDkyNGMyZjMzLzEvakRxem1zUGhPZE5SMVlpeXlxMGJ5ZnlERW00LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS83MzZhNGEtMzllMC00MTE5LWI0Y2ItMDgyZDkyNGMyZjMz
LzEvWmN0UGJOaEluOTNSYzVjS0R2Uk5UaFZIcEFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubAsMA0G
CSqGSIb3DQEBCwUAA4IBAQAqWF8tI3guKHmYmFlzr22UxPhoz3uLYuuIE5RO1rYk
7S3eVWc4SeeAvfaGDWJJsAp+xBCIRxNfnEZzx+r9FD4dDjQO6jS38Gm1le6xbnD8
0FPEOsfwX+xaniLeq9qENWONDNU2654Jnj9oBkbQ2YyfDgEOfi7uBool2qYNleOe
wxnnfcwQrIDreydddI+dGvVLE0t+50usqc2Ork57phE2GcOoBCMeDgDJW8LXwzGr
3WGXtjndTinpHfaamrPV/i/zMC/Y/SzCHJxadkofK/gmDiNd9ZocPnEgrqVpYuwL
ZholLJxxrOQ5fO6J/4FT/uswbQHbXy97UQ7/RbRggUbM
-----END CERTIFICATE-----
Generated at Mon Jul 29 17:07:30 2024 by rpki-client on console-ams.rpki-client.org