Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9e57aa-8901-4bd8-8295-9c1a53580e39/1/oxVdgQrvlwi-xQJvgCCe9nRLvPs.roa
File: oxVdgQrvlwi-xQJvgCCe9nRLvPs.roa (raw, json)
Hash identifier: PGm7PgHZrGu6jINl6GNCSQ+zlQ2/JU5LubQE9mPrX8Q=
Subject key identifier: A3:15:5D:81:0A:EF:97:08:BE:C5:02:6F:80:20:9E:F6:74:4B:BC:FB
Certificate issuer: /CN=266e0c40e4e9370db99ad27a97298d7d05598f73
Certificate serial: 01856D6F7709E73ECE11E243BA165AA26AA7
Authority key identifier: 26:6E:0C:40:E4:E9:37:0D:B9:9A:D2:7A:97:29:8D:7D:05:59:8F:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jm4MQOTpNw25mtJ6lymNfQVZj3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9e57aa-8901-4bd8-8295-9c1a53580e39/1/oxVdgQrvlwi-xQJvgCCe9nRLvPs.roa
Signing time: Sun 01 Jan 2023 13:04:59 +0000
ROA not before: Sun 01 Jan 2023 13:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 185.252.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:77:09:e7:3e:ce:11:e2:43:ba:16:5a:a2:6a:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=266e0c40e4e9370db99ad27a97298d7d05598f73
Validity
Not Before: Jan 1 13:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3155d810aef9708bec5026f80209ef6744bbcfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:27:14:81:40:d6:9b:e7:f4:e4:68:32:e4:5c:
48:62:8b:dc:fe:72:a8:a4:8f:8a:9a:d9:d2:a1:c9:
cd:61:6b:b0:4e:56:b4:22:8e:04:21:29:ad:d9:d2:
c3:46:ea:3b:85:80:27:ff:90:f7:79:98:a4:1b:0e:
13:84:f4:22:e9:d1:a0:ef:0e:95:7c:66:31:ed:7f:
91:c9:13:93:50:43:99:8a:e4:45:aa:eb:8e:35:89:
5b:03:21:22:ab:5d:10:bf:8e:95:e9:09:9c:53:7e:
5e:ac:bd:48:2e:82:32:c2:db:fe:dd:19:a3:26:e4:
39:42:88:11:9b:85:a1:3e:30:4f:6a:94:d3:ae:d0:
78:0b:73:86:87:f2:13:a7:f0:f4:5f:58:5b:92:d4:
a3:ce:b1:3a:a3:27:8a:af:e7:b7:9c:d8:47:fa:b6:
8e:6b:52:47:d2:db:86:85:45:53:ec:31:a8:e8:b2:
66:37:88:a8:e5:42:59:4d:e8:81:cd:3b:88:98:79:
24:84:62:50:22:06:2a:1e:ef:6c:3b:f9:bb:a6:9b:
f0:05:51:70:56:b5:d9:94:9d:2d:30:15:9b:50:8e:
73:86:73:b1:42:6e:c6:30:fc:05:6d:d5:76:93:84:
0a:a6:43:89:23:d7:9a:38:10:77:a2:6c:fd:60:28:
20:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:15:5D:81:0A:EF:97:08:BE:C5:02:6F:80:20:9E:F6:74:4B:BC:FB
X509v3 Authority Key Identifier:
keyid:26:6E:0C:40:E4:E9:37:0D:B9:9A:D2:7A:97:29:8D:7D:05:59:8F:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jm4MQOTpNw25mtJ6lymNfQVZj3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9e57aa-8901-4bd8-8295-9c1a53580e39/1/oxVdgQrvlwi-xQJvgCCe9nRLvPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9e57aa-8901-4bd8-8295-9c1a53580e39/1/Jm4MQOTpNw25mtJ6lymNfQVZj3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.43.0/24
Signature Algorithm: sha256WithRSAEncryption
68:bd:0c:d5:55:cc:37:b0:dc:fd:6a:71:c8:48:9f:cd:a2:92:
b3:18:1a:e2:12:c4:14:b7:1a:07:76:f9:ea:9b:86:cc:fe:dc:
ab:68:40:63:ba:90:4b:23:cd:68:95:3c:ba:2c:2e:bf:13:a8:
b5:7a:da:0f:15:ba:36:0f:35:dc:77:9a:a4:bc:be:41:bf:6a:
6d:c3:61:c9:0d:b6:5c:ce:bc:60:94:0a:9c:0e:4e:29:48:47:
f4:bc:33:ff:53:03:16:67:ca:99:88:eb:12:3b:30:43:d8:09:
a3:16:87:74:0a:9e:a4:c1:db:08:90:f0:c8:07:9a:fc:3f:c1:
47:97:96:47:d1:71:65:1b:d3:c1:71:94:47:31:ee:3b:0f:93:
a1:8e:d1:e7:26:d2:1b:26:9e:9e:7f:a7:95:ea:dd:40:89:a2:
c2:d9:e2:46:ad:ad:07:b8:6d:16:23:23:36:40:26:20:95:48:
31:8c:20:f2:a4:c8:93:7f:0a:d4:14:c2:4d:2d:03:03:fa:43:
80:12:75:53:ea:45:c6:8c:7c:ff:5c:6d:09:f3:bd:10:a8:77:
24:99:ce:1e:02:1b:57:a4:c9:d0:a5:d6:31:fa:05:86:49:1a:
2a:ad:c1:f9:21:a5:5b:55:1a:d8:81:6d:91:57:23:d6:fd:af:
2c:05:8a:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtb3cJ5z7OEeJDuhZaomqnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2NmUwYzQwZTRlOTM3MGRiOTlhZDI3YTk3Mjk4ZDdkMDU1
OThmNzMwHhcNMjMwMTAxMTMwNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzE1NWQ4MTBhZWY5NzA4YmVjNTAyNmY4MDIwOWVmNjc0NGJiY2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoycUgUDWm+f05Ggy5FxIYovc/nKo
pI+KmtnSocnNYWuwTla0Io4EISmt2dLDRuo7hYAn/5D3eZikGw4ThPQi6dGg7w6V
fGYx7X+RyROTUEOZiuRFquuONYlbAyEiq10Qv46V6QmcU35erL1ILoIywtv+3Rmj
JuQ5QogRm4WhPjBPapTTrtB4C3OGh/ITp/D0X1hbktSjzrE6oyeKr+e3nNhH+raO
a1JH0tuGhUVT7DGo6LJmN4io5UJZTeiBzTuImHkkhGJQIgYqHu9sO/m7ppvwBVFw
VrXZlJ0tMBWbUI5zhnOxQm7GMPwFbdV2k4QKpkOJI9eaOBB3omz9YCgg7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKMVXYEK75cIvsUCb4AgnvZ0S7z7MB8GA1UdIwQY
MBaAFCZuDEDk6TcNuZrSepcpjX0FWY9zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSm00TVFPVHBOdzI1bXRKNmx5bU5mUVZaajNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC85ZTU3YWEtODkwMS00YmQ4LTgyOTUt
OWMxYTUzNTgwZTM5LzEvb3hWZGdRcnZsd2kteFFKdmdDQ2U5blJMdlBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC85ZTU3YWEtODkwMS00YmQ4LTgyOTUtOWMxYTUzNTgwZTM5
LzEvSm00TVFPVHBOdzI1bXRKNmx5bU5mUVZaajNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufwrMA0G
CSqGSIb3DQEBCwUAA4IBAQBovQzVVcw3sNz9anHISJ/NopKzGBriEsQUtxoHdvnq
m4bM/tyraEBjupBLI81olTy6LC6/E6i1etoPFbo2DzXcd5qkvL5Bv2ptw2HJDbZc
zrxglAqcDk4pSEf0vDP/UwMWZ8qZiOsSOzBD2AmjFod0Cp6kwdsIkPDIB5r8P8FH
l5ZH0XFlG9PBcZRHMe47D5OhjtHnJtIbJp6ef6eV6t1AiaLC2eJGra0HuG0WIyM2
QCYglUgxjCDypMiTfwrUFMJNLQMD+kOAEnVT6kXGjHz/XG0J870QqHckmc4eAhtX
pMnQpdYx+gWGSRoqrcH5IaVbVRrYgW2RVyPW/a8sBYpA
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:38 2024 by rpki-client on console-ams.rpki-client.org