Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/3d4ZOCvXgs3nDxbZv2KmtQ9zLaI.roa
File: 3d4ZOCvXgs3nDxbZv2KmtQ9zLaI.roa (raw, json)
Hash identifier: CnfSuJg0HS3SZpf5zQsXcIzzaUXeVKcZYHFTxK+WJjs=
Subject key identifier: DD:DE:19:38:2B:D7:82:CD:E7:0F:16:D9:BF:62:A6:B5:0F:73:2D:A2
Certificate issuer: /CN=e168e36ba577ed47e6928729691991e4e7f235da
Certificate serial: 01856CEF46798C0DB9FD6EBD88CE3D40654D
Authority key identifier: E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/3d4ZOCvXgs3nDxbZv2KmtQ9zLaI.roa
Signing time: Sun 01 Jan 2023 10:44:58 +0000
ROA not before: Sun 01 Jan 2023 10:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 185.211.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Jun 2023 17:55:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:46:79:8c:0d:b9:fd:6e:bd:88:ce:3d:40:65:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e168e36ba577ed47e6928729691991e4e7f235da
Validity
Not Before: Jan 1 10:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddde19382bd782cde70f16d9bf62a6b50f732da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cc:a6:93:0b:7a:3e:a9:de:3e:6f:06:cc:3a:
70:87:99:85:af:39:5d:67:26:d9:6e:51:60:8f:cc:
1b:7a:61:6b:55:65:68:e2:36:25:4d:31:6a:f3:38:
17:02:db:e4:53:7f:72:c4:5c:36:d7:64:d7:da:3c:
b2:03:a4:ce:0a:d8:fe:b0:a2:01:07:ff:8f:c0:bd:
cc:97:18:44:1d:7f:be:a0:fe:41:39:fa:b6:73:48:
19:d6:c4:90:c9:74:a4:42:d5:75:99:c3:20:75:26:
98:f0:1c:cf:d6:ce:c9:97:d3:cc:99:56:52:5b:f6:
ad:19:f0:a6:32:45:18:cd:69:bf:76:cd:a2:63:d8:
4e:97:b9:ba:8b:f4:78:03:7d:11:c9:94:9c:88:1e:
b7:28:d3:03:1f:25:00:fc:26:1d:2e:8f:22:4e:0f:
f9:74:99:16:12:ae:0a:bd:90:3f:9e:a5:6c:e6:22:
d6:5f:cf:c6:95:ea:21:c6:64:b9:48:30:d1:33:6c:
6f:98:11:d2:8a:da:99:17:88:e2:03:65:48:4c:26:
04:e1:6b:dd:e2:3c:77:c6:95:93:50:e9:3b:04:07:
0c:51:8f:0b:07:ba:b0:85:1d:f4:8c:03:49:93:60:
8b:91:8d:86:6a:8e:06:61:f0:ba:3c:29:db:6b:dd:
2d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:DE:19:38:2B:D7:82:CD:E7:0F:16:D9:BF:62:A6:B5:0F:73:2D:A2
X509v3 Authority Key Identifier:
keyid:E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/3d4ZOCvXgs3nDxbZv2KmtQ9zLaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/4Wjja6V37UfmkocpaRmR5OfyNdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.9.0/24
Signature Algorithm: sha256WithRSAEncryption
48:c9:62:e7:17:a0:75:0e:8f:cd:d7:24:d1:62:a8:49:5d:49:
0f:38:a5:ef:52:47:da:5d:43:0b:9e:2b:4e:ea:38:4a:86:48:
f6:b8:40:9a:12:ae:b8:e3:1c:3c:03:a3:3a:e6:18:2f:b8:a4:
78:d4:83:c0:b8:61:1b:e4:8b:c6:32:ad:c3:f7:65:9e:ea:5f:
42:78:c8:53:c0:6c:c6:89:da:f9:76:fe:da:9c:b8:50:f8:5e:
9e:50:b2:23:e6:dd:1d:83:e3:e4:72:c0:f5:89:85:ce:1c:0f:
54:a2:f3:e2:bc:a6:73:8c:f8:74:d3:fe:42:79:5f:e0:5b:e6:
f0:fc:a8:90:09:fd:59:7b:64:27:40:e7:cb:05:1f:9c:42:eb:
c2:a0:96:cd:c5:86:31:a0:87:45:cc:2b:08:a5:9c:f2:37:5d:
dd:d2:f0:c9:bc:a4:0e:31:e5:de:32:99:4e:aa:ca:ae:fd:be:
c8:fc:ec:8d:58:e3:9f:ac:32:c6:45:db:64:b0:bc:2c:b2:e0:
b2:9d:98:f6:c0:d8:c8:4d:6e:8a:22:38:ba:89:35:fe:e1:0b:
68:c9:07:7c:90:8d:d6:92:5a:1b:75:11:f6:cb:98:b4:87:8a:
c1:5b:05:4d:1a:68:b1:73:31:09:22:d0:39:0f:0d:0f:1e:14:
1b:ea:2e:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs70Z5jA25/W69iM49QGVNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxNjhlMzZiYTU3N2VkNDdlNjkyODcyOTY5MTk5MWU0ZTdm
MjM1ZGEwHhcNMjMwMTAxMTA0NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZGRlMTkzODJiZDc4MmNkZTcwZjE2ZDliZjYyYTZiNTBmNzMyZGEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcymkwt6PqnePm8GzDpwh5mFrzld
ZybZblFgj8wbemFrVWVo4jYlTTFq8zgXAtvkU39yxFw212TX2jyyA6TOCtj+sKIB
B/+PwL3MlxhEHX++oP5BOfq2c0gZ1sSQyXSkQtV1mcMgdSaY8BzP1s7Jl9PMmVZS
W/atGfCmMkUYzWm/ds2iY9hOl7m6i/R4A30RyZSciB63KNMDHyUA/CYdLo8iTg/5
dJkWEq4KvZA/nqVs5iLWX8/GleohxmS5SDDRM2xvmBHSitqZF4jiA2VITCYE4Wvd
4jx3xpWTUOk7BAcMUY8LB7qwhR30jANJk2CLkY2Gao4GYfC6PCnba90tRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN3eGTgr14LN5w8W2b9iprUPcy2iMB8GA1UdIwQY
MBaAFOFo42uld+1H5pKHKWkZkeTn8jXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFdqamE2VjM3VWZta29jcGFSbVI1T2Z5TmRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny85YTI5N2QtY2VlNS00YzkzLWIyNTgt
Y2I0YmFiZTlkYzhmLzEvM2Q0Wk9DdlhnczNuRHhiWnYyS210UTl6TGFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny85YTI5N2QtY2VlNS00YzkzLWIyNTgtY2I0YmFiZTlkYzhm
LzEvNFdqamE2VjM3VWZta29jcGFSbVI1T2Z5TmRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudMJMA0G
CSqGSIb3DQEBCwUAA4IBAQBIyWLnF6B1Do/N1yTRYqhJXUkPOKXvUkfaXUMLnitO
6jhKhkj2uECaEq644xw8A6M65hgvuKR41IPAuGEb5IvGMq3D92We6l9CeMhTwGzG
idr5dv7anLhQ+F6eULIj5t0dg+PkcsD1iYXOHA9UovPivKZzjPh00/5CeV/gW+bw
/KiQCf1Ze2QnQOfLBR+cQuvCoJbNxYYxoIdFzCsIpZzyN13d0vDJvKQOMeXeMplO
qsqu/b7I/OyNWOOfrDLGRdtksLwssuCynZj2wNjITW6KIji6iTX+4QtoyQd8kI3W
klobdRH2y5i0h4rBWwVNGmixczEJItA5Dw0PHhQb6i42
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:28 2024 by rpki-client on console-ams.rpki-client.org