Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3bd7c1-81fa-4553-8505-bccd32af97fe/1/6vjfHVst2ApSn6ENljR48-KwQ_E.roa
File: 6vjfHVst2ApSn6ENljR48-KwQ_E.roa (raw, json)
Hash identifier: 4ELs6xXKHZCIWMiKuIGjaaBThyYATlooYc6iH+KZaK4=
Subject key identifier: EA:F8:DF:1D:5B:2D:D8:0A:52:9F:A1:0D:96:34:78:F3:E2:B0:43:F1
Certificate issuer: /CN=a65046d85ecf201fbef51e8bea1c4ed33f95b268
Certificate serial: 01856D13DB7ED89F028109FBEFA9B790DE40
Authority key identifier: A6:50:46:D8:5E:CF:20:1F:BE:F5:1E:8B:EA:1C:4E:D3:3F:95:B2:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/plBG2F7PIB--9R6L6hxO0z-Vsmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3bd7c1-81fa-4553-8505-bccd32af97fe/1/6vjfHVst2ApSn6ENljR48-KwQ_E.roa
Signing time: Sun 01 Jan 2023 11:24:55 +0000
ROA not before: Sun 01 Jan 2023 11:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 194.35.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Sep 2023 15:51:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:db:7e:d8:9f:02:81:09:fb:ef:a9:b7:90:de:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a65046d85ecf201fbef51e8bea1c4ed33f95b268
Validity
Not Before: Jan 1 11:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eaf8df1d5b2dd80a529fa10d963478f3e2b043f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c7:02:03:0d:d8:27:28:ce:1a:22:23:f0:37:
98:d0:dd:65:03:a7:89:27:ca:18:2d:0c:cc:6c:9f:
a2:a3:9e:a5:7d:98:f3:75:9b:3e:e4:e3:51:cd:d4:
45:ab:96:b4:02:51:61:d6:66:66:a2:df:fa:54:e8:
c4:25:f1:50:76:b7:e2:5b:14:e2:31:ff:ed:ea:6d:
65:a8:b6:91:c6:f2:b5:a8:fc:92:66:ff:70:c3:a9:
0f:52:b4:b8:e0:a8:d8:4a:1f:71:fd:52:af:6d:17:
a1:0c:74:be:52:4f:ce:2a:7d:71:66:6b:dc:3e:5a:
0d:f7:17:7d:cf:c4:dc:c0:f7:8c:ca:1e:8f:1d:4d:
08:4b:f4:4b:d7:32:59:2d:74:31:ff:00:d5:25:b6:
a5:d3:95:ef:ae:d2:f4:27:47:76:fd:4d:03:35:92:
d3:a8:5f:81:db:af:a6:64:0c:69:22:c7:45:f5:23:
bb:62:73:c5:dd:ff:cb:19:7a:9b:52:ff:df:84:f4:
97:92:7c:49:34:0a:2d:b6:bd:86:98:fe:74:aa:1a:
96:9d:5e:f2:1c:39:ba:0b:e6:64:2d:a2:7f:1d:f3:
9c:d8:1f:5a:57:51:a1:63:af:7c:1e:f5:23:3b:52:
11:8f:64:70:53:2a:4c:99:f6:cc:40:8e:2b:cd:1a:
56:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F8:DF:1D:5B:2D:D8:0A:52:9F:A1:0D:96:34:78:F3:E2:B0:43:F1
X509v3 Authority Key Identifier:
keyid:A6:50:46:D8:5E:CF:20:1F:BE:F5:1E:8B:EA:1C:4E:D3:3F:95:B2:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/plBG2F7PIB--9R6L6hxO0z-Vsmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3bd7c1-81fa-4553-8505-bccd32af97fe/1/6vjfHVst2ApSn6ENljR48-KwQ_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3bd7c1-81fa-4553-8505-bccd32af97fe/1/plBG2F7PIB--9R6L6hxO0z-Vsmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.1.0/24
Signature Algorithm: sha256WithRSAEncryption
09:67:c6:d7:11:97:87:c0:cb:44:16:4a:71:b0:9c:9c:17:f7:
2a:7d:59:7c:fc:0b:10:87:ab:16:05:1c:7e:eb:cd:eb:a6:54:
74:aa:82:41:53:87:8f:dd:75:30:ea:0a:cc:88:3e:f3:c4:4e:
f6:08:4a:70:2a:47:fe:8f:e3:9d:1f:f1:8c:6f:f3:ea:b3:0e:
f1:8d:81:89:1f:40:b5:fe:8d:21:95:ef:57:9f:e5:01:1e:2a:
6b:ca:a1:04:38:bf:1f:a4:9f:e0:ad:06:de:17:0d:59:89:55:
dc:df:ad:60:b8:bb:f4:4f:f8:0f:39:8b:0a:0b:2d:87:0b:16:
f0:9b:d5:b3:9a:e4:e7:67:e4:5d:25:48:02:ca:bb:c2:67:dd:
9f:f3:ae:9e:bd:9d:88:f2:fd:99:31:38:94:bf:7d:70:3e:b1:
0b:51:b4:cb:3f:70:af:22:4c:81:72:47:81:a6:93:6d:db:17:
cc:3a:f1:bc:19:76:d9:39:15:69:6a:ef:d2:3b:44:d2:a4:e4:
15:d8:25:74:3f:81:56:c4:70:66:61:34:37:5d:3e:71:cb:4d:
f5:23:aa:fc:4f:df:b8:cb:9d:aa:b3:c4:fa:f5:ca:3e:81:87:
03:ed:40:37:8a:91:e0:03:24:49:1d:4a:de:48:2d:22:00:5f:
52:0c:13:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtE9t+2J8CgQn776m3kN5AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NTA0NmQ4NWVjZjIwMWZiZWY1MWU4YmVhMWM0ZWQzM2Y5
NWIyNjgwHhcNMjMwMTAxMTEyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYWY4ZGYxZDViMmRkODBhNTI5ZmExMGQ5NjM0NzhmM2UyYjA0M2YxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg8cCAw3YJyjOGiIj8DeY0N1lA6eJ
J8oYLQzMbJ+io56lfZjzdZs+5ONRzdRFq5a0AlFh1mZmot/6VOjEJfFQdrfiWxTi
Mf/t6m1lqLaRxvK1qPySZv9ww6kPUrS44KjYSh9x/VKvbRehDHS+Uk/OKn1xZmvc
PloN9xd9z8TcwPeMyh6PHU0IS/RL1zJZLXQx/wDVJbal05XvrtL0J0d2/U0DNZLT
qF+B26+mZAxpIsdF9SO7YnPF3f/LGXqbUv/fhPSXknxJNAottr2GmP50qhqWnV7y
HDm6C+ZkLaJ/HfOc2B9aV1GhY698HvUjO1IRj2RwUypMmfbMQI4rzRpWQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOr43x1bLdgKUp+hDZY0ePPisEPxMB8GA1UdIwQY
MBaAFKZQRthezyAfvvUei+ocTtM/lbJoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGxCRzJGN1BJQi0tOVI2TDZoeE8wei1Wc21nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8zYmQ3YzEtODFmYS00NTUzLTg1MDUt
YmNjZDMyYWY5N2ZlLzEvNnZqZkhWc3QyQXBTbjZFTmxqUjQ4LUt3UV9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8zYmQ3YzEtODFmYS00NTUzLTg1MDUtYmNjZDMyYWY5N2Zl
LzEvcGxCRzJGN1BJQi0tOVI2TDZoeE8wei1Wc21nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiMBMA0G
CSqGSIb3DQEBCwUAA4IBAQAJZ8bXEZeHwMtEFkpxsJycF/cqfVl8/AsQh6sWBRx+
683rplR0qoJBU4eP3XUw6grMiD7zxE72CEpwKkf+j+OdH/GMb/Pqsw7xjYGJH0C1
/o0hle9Xn+UBHipryqEEOL8fpJ/grQbeFw1ZiVXc361guLv0T/gPOYsKCy2HCxbw
m9WzmuTnZ+RdJUgCyrvCZ92f866evZ2I8v2ZMTiUv31wPrELUbTLP3CvIkyBckeB
ppNt2xfMOvG8GXbZORVpau/SO0TSpOQV2CV0P4FWxHBmYTQ3XT5xy031I6r8T9+4
y52qs8T69co+gYcD7UA3ipHgAyRJHUreSC0iAF9SDBN5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org