Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/2b42fc-49bc-4f81-987b-85493046ec46/1/dGtnlTgirlGReDLOhechCmszxYg.roa
File: dGtnlTgirlGReDLOhechCmszxYg.roa (raw, json)
Hash identifier: Bo+kNANTaqWmRjAy9RdwNEK/UqBHgFN1qcg3RC05t/Q=
Subject key identifier: 74:6B:67:95:38:22:AE:51:91:78:32:CE:85:E7:21:0A:6B:33:C5:88
Certificate issuer: /CN=0701b929fd9edbabae35dd44adc161d7d470b1fa
Certificate serial: 01856C53E194BC65B5DF1D9270EF2C9031C6
Authority key identifier: 07:01:B9:29:FD:9E:DB:AB:AE:35:DD:44:AD:C1:61:D7:D4:70:B1:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwG5Kf2e26uuNd1ErcFh19Rwsfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/2b42fc-49bc-4f81-987b-85493046ec46/1/dGtnlTgirlGReDLOhechCmszxYg.roa
Signing time: Sun 01 Jan 2023 07:55:14 +0000
ROA not before: Sun 01 Jan 2023 07:55:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16019
IP address blocks: 185.31.36.0/22 maxlen: 22
2a04:4d40::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:e1:94:bc:65:b5:df:1d:92:70:ef:2c:90:31:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0701b929fd9edbabae35dd44adc161d7d470b1fa
Validity
Not Before: Jan 1 07:55:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=746b67953822ae51917832ce85e7210a6b33c588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:87:6b:3e:e8:6b:7e:06:77:fe:77:2a:d5:bf:
31:47:c9:d3:74:6d:35:51:d2:f5:f2:33:ec:64:72:
97:b9:5f:a3:1e:b4:b3:a7:2e:3c:52:f9:d7:8b:c4:
03:73:9f:b2:3f:4c:c4:dd:54:9e:a2:74:0a:e2:7b:
cd:fc:b1:3d:97:7d:79:e9:45:bf:80:60:9b:c6:91:
d6:dd:89:ee:68:cd:7f:8d:3a:d4:df:0a:4f:90:9b:
51:43:a8:0f:92:1a:3d:bd:0f:d5:e1:4b:65:0b:19:
e8:83:d7:c9:c0:60:58:63:e7:b8:5d:22:01:d6:a2:
4d:35:f9:32:7a:ad:45:a4:07:ef:a7:d1:e7:84:f7:
d8:5e:ce:5a:bd:aa:de:22:b4:0a:68:5e:9b:a5:47:
bf:ae:f4:f2:61:57:b9:1a:31:2b:2e:c9:84:52:fe:
a7:48:ae:28:6e:9d:07:25:48:b9:4b:ed:0c:96:80:
e3:38:d3:03:4f:8d:29:cd:66:b7:0d:ae:df:dd:64:
9b:d8:5d:87:2a:37:79:0d:3b:db:ca:39:7d:b1:0a:
b2:7d:8d:17:2d:00:f6:1b:13:eb:ae:67:2a:cd:12:
56:af:00:92:5c:c3:f4:db:4b:ef:0b:3d:c8:08:84:
70:8c:d4:61:53:0d:60:ad:0c:8e:2d:53:2b:63:28:
5a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:6B:67:95:38:22:AE:51:91:78:32:CE:85:E7:21:0A:6B:33:C5:88
X509v3 Authority Key Identifier:
keyid:07:01:B9:29:FD:9E:DB:AB:AE:35:DD:44:AD:C1:61:D7:D4:70:B1:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwG5Kf2e26uuNd1ErcFh19Rwsfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/2b42fc-49bc-4f81-987b-85493046ec46/1/dGtnlTgirlGReDLOhechCmszxYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/2b42fc-49bc-4f81-987b-85493046ec46/1/BwG5Kf2e26uuNd1ErcFh19Rwsfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.36.0/22
IPv6:
2a04:4d40::/29
Signature Algorithm: sha256WithRSAEncryption
73:59:f7:1a:dd:b6:86:b2:49:ab:4a:c8:d4:2d:57:44:1e:2b:
1d:0e:19:d5:49:b5:d6:a9:4b:c5:10:5b:af:09:34:7d:c8:d3:
5b:6a:f7:79:2d:9e:d0:9d:e1:9c:f0:1e:94:fd:75:42:9c:53:
d9:73:e8:77:d9:76:2c:77:00:70:f5:a9:2a:17:07:c6:b7:02:
c3:b6:01:7f:67:f8:d4:c2:80:9f:41:2b:01:1e:85:61:f6:fa:
64:f1:96:66:14:34:7b:e2:ee:47:c1:f3:77:7f:4a:41:57:b6:
2d:48:ba:34:0d:2c:27:e0:a3:2f:ec:5e:01:f7:a6:55:f6:6e:
c8:54:e3:dd:3c:e5:53:47:45:97:59:25:12:9c:d6:08:f4:eb:
09:6e:56:05:bb:e0:40:df:1c:54:0c:01:a2:75:aa:b5:b9:64:
c4:e3:dc:73:02:1d:7d:2c:84:62:0b:9d:83:91:15:ce:95:57:
76:b7:0f:08:fd:44:fa:e1:65:92:ad:2e:7c:8f:ca:76:e8:48:
7c:a8:d3:3b:22:58:68:14:2f:83:43:2c:7e:f8:b5:1c:26:fb:
26:0b:3f:0d:89:e9:fc:7d:70:2b:bc:a8:57:84:e9:28:a9:85:
d1:e9:bd:68:9c:71:f6:f1:92:91:cc:19:a2:db:e9:d6:2e:a8:
ac:93:50:12
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVsU+GUvGW13x2ScO8skDHGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3MDFiOTI5ZmQ5ZWRiYWJhZTM1ZGQ0NGFkYzE2MWQ3ZDQ3
MGIxZmEwHhcNMjMwMTAxMDc1NTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDZiNjc5NTM4MjJhZTUxOTE3ODMyY2U4NWU3MjEwYTZiMzNjNTg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjIdrPuhrfgZ3/ncq1b8xR8nTdG01
UdL18jPsZHKXuV+jHrSzpy48UvnXi8QDc5+yP0zE3VSeonQK4nvN/LE9l3156UW/
gGCbxpHW3YnuaM1/jTrU3wpPkJtRQ6gPkho9vQ/V4UtlCxnog9fJwGBYY+e4XSIB
1qJNNfkyeq1FpAfvp9HnhPfYXs5avareIrQKaF6bpUe/rvTyYVe5GjErLsmEUv6n
SK4obp0HJUi5S+0MloDjONMDT40pzWa3Da7f3WSb2F2HKjd5DTvbyjl9sQqyfY0X
LQD2GxPrrmcqzRJWrwCSXMP020vvCz3ICIRwjNRhUw1grQyOLVMrYyha2QIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFHRrZ5U4Iq5RkXgyzoXnIQprM8WIMB8GA1UdIwQY
MBaAFAcBuSn9nturrjXdRK3BYdfUcLH6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQndHNUtmMmUyNnV1TmQxRXJjRmgxOVJ3c2ZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8yYjQyZmMtNDliYy00ZjgxLTk4N2It
ODU0OTMwNDZlYzQ2LzEvZEd0bmxUZ2lybEdSZURMT2hlY2hDbXN6eFlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS8yYjQyZmMtNDliYy00ZjgxLTk4N2ItODU0OTMwNDZlYzQ2
LzEvQndHNUtmMmUyNnV1TmQxRXJjRmgxOVJ3c2ZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuR8kMA0E
AgACMAcDBQMqBE1AMA0GCSqGSIb3DQEBCwUAA4IBAQBzWfca3baGskmrSsjULVdE
HisdDhnVSbXWqUvFEFuvCTR9yNNbavd5LZ7QneGc8B6U/XVCnFPZc+h32XYsdwBw
9akqFwfGtwLDtgF/Z/jUwoCfQSsBHoVh9vpk8ZZmFDR74u5HwfN3f0pBV7YtSLo0
DSwn4KMv7F4B96ZV9m7IVOPdPOVTR0WXWSUSnNYI9OsJblYFu+BA3xxUDAGidaq1
uWTE49xzAh19LIRiC52DkRXOlVd2tw8I/UT64WWSrS58j8p26Eh8qNM7IlhoFC+D
Qyx++LUcJvsmCz8Nien8fXArvKhXhOkoqYXR6b1onHH28ZKRzBmi2+nWLqisk1AS
-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:22 2024 by rpki-client on console-fra.rpki-client.org