Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/hRzRTkxyoTkfLmHKtr3liD1FIDw.roa
File: hRzRTkxyoTkfLmHKtr3liD1FIDw.roa (raw, json)
Hash identifier: 8hdHuYEwmPeN/CNW8KyPIrjuMIDY8xZHxU972RbI15o=
Subject key identifier: 85:1C:D1:4E:4C:72:A1:39:1F:2E:61:CA:B6:BD:E5:88:3D:45:20:3C
Certificate issuer: /CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Certificate serial: 01856B49FE6634EEFF58FBFA5BF73DC80300
Authority key identifier: 5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/hRzRTkxyoTkfLmHKtr3liD1FIDw.roa
Signing time: Sun 01 Jan 2023 03:04:49 +0000
ROA not before: Sun 01 Jan 2023 03:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41368
IP address blocks: 185.40.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:49:fe:66:34:ee:ff:58:fb:fa:5b:f7:3d:c8:03:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Validity
Not Before: Jan 1 03:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=851cd14e4c72a1391f2e61cab6bde5883d45203c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:98:f9:43:7d:20:a9:d3:44:8e:0b:11:74:04:
8d:fb:ac:c2:d0:95:92:86:e0:9e:42:4e:c5:05:0b:
29:11:be:bb:9f:f9:c4:0c:81:9d:6b:ec:07:ec:38:
ec:60:35:da:78:26:e0:6b:4f:c6:71:78:3d:b2:7b:
21:95:4a:8e:92:05:f4:29:03:ad:8c:41:b8:de:47:
70:72:73:79:3a:db:a1:b1:1e:d1:eb:e0:70:74:cb:
87:e1:af:a8:c9:fe:1a:24:68:96:52:be:4a:24:c6:
5d:dc:0f:b7:48:45:f7:92:58:85:bf:e2:3e:75:8a:
1b:23:f7:a1:8d:ac:e8:f2:16:cf:8e:ad:91:f6:57:
74:8d:1d:3e:10:1a:a5:ae:c3:18:61:df:7d:82:29:
e7:55:31:69:27:23:1c:58:5f:a3:96:c4:23:3f:62:
45:52:ac:1f:62:27:77:f2:76:e2:71:34:ae:53:17:
6a:b8:f6:ea:ef:e4:7f:40:7c:a0:72:2c:2c:7b:a1:
89:37:b9:fa:7a:bd:e1:c9:0c:78:74:6f:b2:11:b0:
2f:9c:0b:49:5c:29:2f:a5:6a:71:52:fe:c6:32:18:
3a:f0:7c:32:7c:64:f9:a5:29:f8:89:e6:ee:a8:96:
ad:27:39:d6:33:5a:1d:6a:90:2a:75:eb:9f:8e:6b:
8a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:1C:D1:4E:4C:72:A1:39:1F:2E:61:CA:B6:BD:E5:88:3D:45:20:3C
X509v3 Authority Key Identifier:
keyid:5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/hRzRTkxyoTkfLmHKtr3liD1FIDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.37.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:d7:bc:15:4c:eb:0f:93:77:ac:8e:03:e1:d3:f2:d9:3f:bf:
81:e5:79:96:21:33:e0:84:69:3d:24:01:07:e1:5b:c0:1e:d7:
5e:5a:24:9a:53:e4:c7:2c:70:09:f4:cb:25:7f:94:42:42:86:
95:ff:d1:86:32:c1:97:10:e2:d1:0c:6b:fa:0e:f7:aa:38:ee:
34:f1:8a:0c:1e:e6:84:0c:73:b3:60:fe:6c:fc:6e:59:09:c1:
77:a9:e3:ee:a8:d8:36:54:fe:2f:07:19:72:35:ad:53:b8:f7:
f4:48:6d:57:32:9f:8e:ff:9d:6d:60:74:c6:91:1e:6d:a2:88:
23:b9:9a:85:a9:78:a9:18:df:d8:fc:a2:3c:19:a7:ac:39:bb:
b5:20:70:50:77:5a:ee:6f:d7:53:76:f1:b5:39:2b:01:18:b8:
08:99:6e:84:03:62:a3:c5:32:fb:f2:2f:be:b2:c8:38:d9:d3:
c9:67:c2:17:b1:21:af:6a:15:1c:07:45:85:36:cb:f8:a6:0a:
93:91:35:e8:d3:72:8d:da:a2:20:68:aa:a1:ea:e8:24:52:8e:
28:72:a7:68:79:6f:1d:8f:68:0d:8d:59:9f:71:81:95:52:d2:
71:bd:3f:ad:9f:f6:69:9e:2f:48:55:59:f2:fd:06:7b:63:be:
7a:84:cf:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrSf5mNO7/WPv6W/c9yAMAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhOTM5YjBjZWQzOGQ3NWNjNjNlZDUwZDZlNWNlNzJiYmI1
YjRiMTAwHhcNMjMwMTAxMDMwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTFjZDE0ZTRjNzJhMTM5MWYyZTYxY2FiNmJkZTU4ODNkNDUyMDNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZj5Q30gqdNEjgsRdASN+6zC0JWS
huCeQk7FBQspEb67n/nEDIGda+wH7DjsYDXaeCbga0/GcXg9snshlUqOkgX0KQOt
jEG43kdwcnN5OtuhsR7R6+BwdMuH4a+oyf4aJGiWUr5KJMZd3A+3SEX3kliFv+I+
dYobI/ehjazo8hbPjq2R9ld0jR0+EBqlrsMYYd99ginnVTFpJyMcWF+jlsQjP2JF
UqwfYid38nbicTSuUxdquPbq7+R/QHygciwse6GJN7n6er3hyQx4dG+yEbAvnAtJ
XCkvpWpxUv7GMhg68HwyfGT5pSn4iebuqJatJznWM1odapAqdeufjmuKVwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIUc0U5McqE5Hy5hyra95Yg9RSA8MB8GA1UdIwQY
MBaAFFqTmwztONdcxj7VDW5c5yu7W0sQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3BPYkRPMDQxMXpHUHRVTmJsem5LN3RiU3hBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9iZWExNGEtMGQzMi00YWE3LWI4OTgt
ZDYwYjNiNmNjYTZlLzEvaFJ6UlRreHlvVGtmTG1IS3RyM2xpRDFGSUR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC9iZWExNGEtMGQzMi00YWE3LWI4OTgtZDYwYjNiNmNjYTZl
LzEvV3BPYkRPMDQxMXpHUHRVTmJsem5LN3RiU3hBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSglMA0G
CSqGSIb3DQEBCwUAA4IBAQB717wVTOsPk3esjgPh0/LZP7+B5XmWITPghGk9JAEH
4VvAHtdeWiSaU+THLHAJ9Mslf5RCQoaV/9GGMsGXEOLRDGv6DveqOO408YoMHuaE
DHOzYP5s/G5ZCcF3qePuqNg2VP4vBxlyNa1TuPf0SG1XMp+O/51tYHTGkR5toogj
uZqFqXipGN/Y/KI8GaesObu1IHBQd1rub9dTdvG1OSsBGLgImW6EA2KjxTL78i++
ssg42dPJZ8IXsSGvahUcB0WFNsv4pgqTkTXo03KN2qIgaKqh6ugkUo4ocqdoeW8d
j2gNjVmfcYGVUtJxvT+tn/Zpni9IVVny/QZ7Y756hM9F
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:08 2024 by rpki-client on console-ams.rpki-client.org