Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/2uW6TGfj4CqUMpthBxPPvtmgyCE.roa
File: 2uW6TGfj4CqUMpthBxPPvtmgyCE.roa (raw, json)
Hash identifier: q5YZFUfupPiiPeBW9MOgGWdvUQV+ShjWGPi89z26R+s=
Subject key identifier: DA:E5:BA:4C:67:E3:E0:2A:94:32:9B:61:07:13:CF:BE:D9:A0:C8:21
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EAFA7333EA2CD73CD4F024E2698D7B74E
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/2uW6TGfj4CqUMpthBxPPvtmgyCE.roa
Signing time: Fri 05 Apr 2024 19:05:54 +0000
ROA not before: Fri 05 Apr 2024 19:05:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56769
IP address blocks: 185.248.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 Apr 2024 10:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:af:a7:33:3e:a2:cd:73:cd:4f:02:4e:26:98:d7:b7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 5 19:05:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dae5ba4c67e3e02a94329b610713cfbed9a0c821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:38:ca:41:cf:04:5a:b1:74:78:57:de:fb:fb:
20:cb:67:13:99:af:6e:7b:6f:ef:9f:ce:4a:51:8c:
2c:87:5b:28:39:7b:fb:da:2d:7c:a8:0a:3e:e5:f4:
21:86:89:1c:8b:58:8e:a3:aa:23:9a:83:8c:e6:3c:
fb:2d:61:fe:0f:d7:f8:bd:fa:32:35:15:b1:37:fb:
03:be:c7:a0:6a:28:01:e3:bd:c4:7e:1c:07:60:a4:
49:21:de:8f:5e:c3:87:98:24:cd:ea:cf:44:02:18:
20:f8:9a:cc:3f:8f:bd:62:14:a0:9f:a0:b7:6c:c1:
1e:84:d8:98:67:26:fb:3d:4e:c9:f6:3b:f2:95:b2:
27:41:3c:5d:95:53:00:ba:0b:43:16:38:41:fe:60:
f5:c0:42:18:fe:a0:dd:cb:0e:9a:31:ab:c8:b8:b6:
b1:0a:64:27:d6:5c:61:83:d4:5f:ea:ad:1e:d7:57:
a8:23:a3:c6:81:b8:74:a8:c3:dc:86:b3:86:0c:98:
ee:a6:6b:29:4b:97:6d:76:b0:30:9a:f6:02:20:e1:
ac:50:fc:fd:6f:ba:52:86:4e:a6:40:04:ad:a6:68:
01:c3:3e:c8:41:16:11:27:96:3d:76:2f:b5:4f:8c:
19:c4:58:83:c4:83:c0:b2:7f:13:7f:03:a0:0d:00:
b4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E5:BA:4C:67:E3:E0:2A:94:32:9B:61:07:13:CF:BE:D9:A0:C8:21
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/2uW6TGfj4CqUMpthBxPPvtmgyCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.27.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:c5:34:7a:cb:fc:8e:03:56:9d:c5:20:d5:fd:68:37:46:6a:
00:7f:ae:c2:09:3d:29:6a:62:2e:5c:9d:3e:d5:bb:b4:a4:7f:
7e:b4:b7:b4:c4:5f:f8:52:f9:c6:0b:21:0c:7b:6d:9c:fa:3f:
8b:31:27:eb:0d:53:df:c6:43:5e:61:d8:06:45:1c:5c:c3:53:
e2:09:bc:9d:aa:17:6c:d5:79:10:7f:65:ca:85:69:2d:ba:93:
e4:e6:5b:ed:c5:fa:82:98:7d:c3:c6:72:a2:69:79:30:50:13:
ee:8a:2d:d5:89:f7:08:e1:1b:7d:8a:db:00:06:12:47:0c:94:
f8:87:6a:68:7a:f8:ca:20:15:80:10:0a:2e:f2:e9:e5:96:0f:
c3:6a:a5:af:e7:8d:95:61:01:6c:6f:b0:e0:20:52:1e:e3:95:
de:d9:d9:14:8c:de:fa:3b:25:d6:69:33:6c:ab:d1:d4:69:a4:
ae:e7:0b:e4:2d:72:af:a2:af:53:75:95:23:a7:cb:5e:bc:b6:
4e:01:0c:73:dd:2f:a1:8a:59:28:22:b3:b0:14:1c:bb:22:4b:
d7:41:69:6c:12:d0:0b:d0:e3:03:ef:af:91:9a:75:51:92:69:
11:d2:5a:2e:f3:00:ff:7c:b4:e2:02:67:fd:ff:13:51:dd:9d:
9f:02:c8:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY6vpzM+os1zzU8CTiaY17dOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjQwNDA1MTkwNTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYWU1YmE0YzY3ZTNlMDJhOTQzMjliNjEwNzEzY2ZiZWQ5YTBjODIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhjjKQc8EWrF0eFfe+/sgy2cTma9u
e2/vn85KUYwsh1soOXv72i18qAo+5fQhhokci1iOo6ojmoOM5jz7LWH+D9f4vfoy
NRWxN/sDvsegaigB473EfhwHYKRJId6PXsOHmCTN6s9EAhgg+JrMP4+9YhSgn6C3
bMEehNiYZyb7PU7J9jvylbInQTxdlVMAugtDFjhB/mD1wEIY/qDdyw6aMavIuLax
CmQn1lxhg9Rf6q0e11eoI6PGgbh0qMPchrOGDJjupmspS5dtdrAwmvYCIOGsUPz9
b7pShk6mQAStpmgBwz7IQRYRJ5Y9di+1T4wZxFiDxIPAsn8TfwOgDQC07wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNrlukxn4+AqlDKbYQcTz77ZoMghMB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvMnVXNlRHZmo0Q3FVTXB0aEJ4UFB2dG1neUNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufgbMA0G
CSqGSIb3DQEBCwUAA4IBAQAdxTR6y/yOA1adxSDV/Wg3RmoAf67CCT0pamIuXJ0+
1bu0pH9+tLe0xF/4UvnGCyEMe22c+j+LMSfrDVPfxkNeYdgGRRxcw1PiCbydqhds
1XkQf2XKhWktupPk5lvtxfqCmH3DxnKiaXkwUBPuii3VifcI4Rt9itsABhJHDJT4
h2poevjKIBWAEAou8unllg/DaqWv542VYQFsb7DgIFIe45Xe2dkUjN76OyXWaTNs
q9HUaaSu5wvkLXKvoq9TdZUjp8tevLZOAQxz3S+hilkoIrOwFBy7IkvXQWlsEtAL
0OMD76+RmnVRkmkR0lou8wD/fLTiAmf9/xNR3Z2fAshP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:51 2024 by rpki-client on console-ams.rpki-client.org