Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e7fe5a-b626-4a32-a1cc-a327b8b56ed6/1/T3XQ8xLTOif2s2bzCdQSNhxD5BM.roa
File: T3XQ8xLTOif2s2bzCdQSNhxD5BM.roa (raw, json)
Hash identifier: FC9mzUOYi16ggRci4f7cGOqHy4bFdKfKkdraOPQKZg8=
Subject key identifier: 4F:75:D0:F3:12:D3:3A:27:F6:B3:66:F3:09:D4:12:36:1C:43:E4:13
Certificate issuer: /CN=1e0c47ba799a060733383b8a4db36e84b62d315d
Certificate serial: 01856F66BF533328067E743225AB4812A8FA
Authority key identifier: 1E:0C:47:BA:79:9A:06:07:33:38:3B:8A:4D:B3:6E:84:B6:2D:31:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgxHunmaBgczODuKTbNuhLYtMV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e7fe5a-b626-4a32-a1cc-a327b8b56ed6/1/T3XQ8xLTOif2s2bzCdQSNhxD5BM.roa
Signing time: Sun 01 Jan 2023 22:14:42 +0000
ROA not before: Sun 01 Jan 2023 22:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212842
IP address blocks: 185.38.100.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:bf:53:33:28:06:7e:74:32:25:ab:48:12:a8:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e0c47ba799a060733383b8a4db36e84b62d315d
Validity
Not Before: Jan 1 22:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f75d0f312d33a27f6b366f309d412361c43e413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:06:3e:fb:ca:88:3a:88:76:70:45:a0:a6:07:
ac:a1:00:55:66:9d:a3:0a:0e:71:1e:7b:9e:69:a1:
70:4d:9a:fe:07:b8:24:06:24:2b:79:ea:66:76:06:
7e:9a:f1:b1:c0:ef:c3:79:bc:17:1d:70:6f:8a:23:
8a:79:17:c7:4e:28:39:47:2c:17:be:b6:c7:ec:89:
d4:b3:d9:99:e8:2d:b3:8e:e2:d8:a2:06:10:17:1c:
c8:38:18:b7:79:b0:7e:3f:5d:2d:f2:6b:ad:f7:6f:
06:72:72:08:dd:03:5c:4c:54:c7:29:9d:80:c9:fb:
4a:46:75:f3:ee:74:ae:3b:53:39:8a:7a:7e:fd:cf:
d8:01:f2:31:6a:c6:a5:0b:96:5c:aa:4f:dc:44:09:
f4:13:c9:1a:4a:ca:73:ba:7a:52:99:76:fe:86:22:
f0:45:a0:bb:51:58:4c:bf:fc:fd:cb:8c:11:1a:25:
1b:d7:c7:b8:28:a8:c7:9c:8a:3c:6d:0f:17:1c:ee:
6a:4d:27:f3:f2:36:0b:d6:96:e8:ac:98:d4:0f:ac:
f4:77:83:74:da:f5:d7:94:d1:27:a4:6d:b6:22:97:
3f:6f:4b:c4:2a:45:32:66:b6:a2:55:45:02:3f:1b:
91:a2:d2:46:8e:f3:6b:e2:c9:c4:49:67:4c:13:a1:
3b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:75:D0:F3:12:D3:3A:27:F6:B3:66:F3:09:D4:12:36:1C:43:E4:13
X509v3 Authority Key Identifier:
keyid:1E:0C:47:BA:79:9A:06:07:33:38:3B:8A:4D:B3:6E:84:B6:2D:31:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgxHunmaBgczODuKTbNuhLYtMV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e7fe5a-b626-4a32-a1cc-a327b8b56ed6/1/T3XQ8xLTOif2s2bzCdQSNhxD5BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e7fe5a-b626-4a32-a1cc-a327b8b56ed6/1/HgxHunmaBgczODuKTbNuhLYtMV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.100.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:77:80:56:27:2e:31:2a:64:db:25:6f:65:b2:da:38:d0:5c:
a1:7b:22:8e:9a:fd:9e:e2:ae:2d:89:7a:e2:52:ee:99:9a:2a:
59:70:bf:bd:88:61:04:94:d9:cc:c3:2d:de:44:d4:62:05:fb:
5b:0f:d2:95:23:8a:7b:bd:c0:ca:3e:6a:86:62:ff:58:ae:e9:
91:c0:88:c7:e9:c4:c8:13:23:5e:b9:4f:bb:a2:33:16:4b:7b:
71:1b:fd:e6:e1:72:ca:f9:b9:22:bd:7b:b4:5a:1e:9d:ac:37:
43:29:92:80:9d:45:e1:d7:4c:40:29:62:24:c1:ef:98:59:0a:
28:a8:d1:9b:13:64:56:61:07:02:65:f5:e0:61:dc:22:06:f1:
7f:c4:2a:e1:bd:9e:a0:6c:d6:31:09:a0:b1:c6:58:84:0b:5c:
17:c9:51:d7:7c:27:7b:35:f3:d1:a0:53:00:6c:46:e1:40:f2:
8a:4f:72:a2:57:58:bd:e5:db:52:9e:6b:1c:0b:9c:65:dc:de:
9f:52:58:77:82:a6:87:d9:0c:dc:c4:73:b7:db:ef:ae:1b:30:
6b:01:3b:93:2c:54:ac:25:f1:51:9d:3b:35:5d:36:d8:54:5b:
f6:b3:07:10:79:42:58:88:55:f9:4c:ca:e9:6c:28:0c:ad:6b:
15:76:c1:4a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvZr9TMygGfnQyJatIEqj6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlMGM0N2JhNzk5YTA2MDczMzM4M2I4YTRkYjM2ZTg0YjYy
ZDMxNWQwHhcNMjMwMTAxMjIxNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Zjc1ZDBmMzEyZDMzYTI3ZjZiMzY2ZjMwOWQ0MTIzNjFjNDNlNDEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQY++8qIOoh2cEWgpgesoQBVZp2j
Cg5xHnueaaFwTZr+B7gkBiQreepmdgZ+mvGxwO/DebwXHXBviiOKeRfHTig5RywX
vrbH7InUs9mZ6C2zjuLYogYQFxzIOBi3ebB+P10t8mut928GcnII3QNcTFTHKZ2A
yftKRnXz7nSuO1M5inp+/c/YAfIxasalC5Zcqk/cRAn0E8kaSspzunpSmXb+hiLw
RaC7UVhMv/z9y4wRGiUb18e4KKjHnIo8bQ8XHO5qTSfz8jYL1pborJjUD6z0d4N0
2vXXlNEnpG22Ipc/b0vEKkUyZraiVUUCPxuRotJGjvNr4snESWdME6E7wQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE910PMS0zon9rNm8wnUEjYcQ+QTMB8GA1UdIwQY
MBaAFB4MR7p5mgYHMzg7ik2zboS2LTFdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGd4SHVubWFCZ2N6T0R1S1RiTnVoTFl0TVYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9lN2ZlNWEtYjYyNi00YTMyLWExY2Mt
YTMyN2I4YjU2ZWQ2LzEvVDNYUTh4TFRPaWYyczJiekNkUVNOaHhENUJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC9lN2ZlNWEtYjYyNi00YTMyLWExY2MtYTMyN2I4YjU2ZWQ2
LzEvSGd4SHVubWFCZ2N6T0R1S1RiTnVoTFl0TVYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuSZkMA0G
CSqGSIb3DQEBCwUAA4IBAQArd4BWJy4xKmTbJW9lsto40FyheyKOmv2e4q4tiXri
Uu6ZmipZcL+9iGEElNnMwy3eRNRiBftbD9KVI4p7vcDKPmqGYv9YrumRwIjH6cTI
EyNeuU+7ojMWS3txG/3m4XLK+bkivXu0Wh6drDdDKZKAnUXh10xAKWIkwe+YWQoo
qNGbE2RWYQcCZfXgYdwiBvF/xCrhvZ6gbNYxCaCxxliEC1wXyVHXfCd7NfPRoFMA
bEbhQPKKT3KiV1i95dtSnmscC5xl3N6fUlh3gqaH2QzcxHO32++uGzBrATuTLFSs
JfFRnTs1XTbYVFv2swcQeUJYiFX5TMrpbCgMrWsVdsFK
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:18 2024 by rpki-client on console-ams.rpki-client.org