Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/3e50c9-95d0-4ab7-a7e1-0111038934d3/1/TuEqexac1Ti8Lkxc22elTmq_6ag.roa
File: TuEqexac1Ti8Lkxc22elTmq_6ag.roa (raw, json)
Hash identifier: kvqsAxr4KfRtN9oR1U5zr/k6xIoda1z5XAyhVSl14R8=
Subject key identifier: 4E:E1:2A:7B:16:9C:D5:38:BC:2E:4C:5C:DB:67:A5:4E:6A:BF:E9:A8
Certificate issuer: /CN=8724b401ffeac3d5db42f828cab4f163c064d6d5
Certificate serial: 01856F8B61ECAA8C9F4F5501460307E5F820
Authority key identifier: 87:24:B4:01:FF:EA:C3:D5:DB:42:F8:28:CA:B4:F1:63:C0:64:D6:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyS0Af_qw9XbQvgoyrTxY8Bk1tU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/3e50c9-95d0-4ab7-a7e1-0111038934d3/1/TuEqexac1Ti8Lkxc22elTmq_6ag.roa
Signing time: Sun 01 Jan 2023 22:54:43 +0000
ROA not before: Sun 01 Jan 2023 22:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51018
IP address blocks: 185.239.52.0/24 maxlen: 24
185.239.52.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:61:ec:aa:8c:9f:4f:55:01:46:03:07:e5:f8:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8724b401ffeac3d5db42f828cab4f163c064d6d5
Validity
Not Before: Jan 1 22:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ee12a7b169cd538bc2e4c5cdb67a54e6abfe9a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7d:90:50:9a:2f:85:a9:1c:6b:88:a9:df:eb:
ac:8a:48:5e:a0:c6:96:30:1c:25:a5:13:8f:6f:87:
ca:41:07:5a:ba:63:99:aa:2c:ca:41:e2:78:84:2d:
b1:a3:7d:7c:f2:c0:45:65:c8:1a:b7:af:ae:73:f2:
08:64:8f:a3:a1:34:29:02:18:e2:64:0d:5a:ae:00:
d9:c4:cf:a5:df:ad:ab:aa:f4:01:3e:d7:77:fe:32:
c5:02:cd:60:e1:72:6d:cf:75:33:ac:e1:60:9b:82:
a9:7b:d9:92:96:b0:7a:81:6e:a6:90:f4:49:a8:b1:
a8:43:2c:d1:82:bb:72:4c:e9:f7:4c:03:3e:bd:e7:
41:da:60:34:e9:b1:e4:cb:34:5b:7c:2e:af:62:0b:
65:c1:13:f8:52:9b:2d:24:cf:74:13:f1:a2:10:88:
de:4e:e1:3a:db:5b:0c:be:bb:ff:81:14:c1:6d:85:
82:71:3d:8a:6e:9b:9f:ab:21:ac:89:4e:96:6c:19:
49:c1:3f:23:04:9f:1d:af:1a:a9:85:25:49:a0:1f:
4b:17:aa:43:83:05:cd:cb:3d:8d:7d:97:d9:e4:63:
e6:e6:d5:a1:0c:4c:d3:56:2f:d5:fc:6d:aa:3e:96:
26:3f:b4:08:c1:28:99:5e:33:19:f5:04:cb:80:3c:
54:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E1:2A:7B:16:9C:D5:38:BC:2E:4C:5C:DB:67:A5:4E:6A:BF:E9:A8
X509v3 Authority Key Identifier:
keyid:87:24:B4:01:FF:EA:C3:D5:DB:42:F8:28:CA:B4:F1:63:C0:64:D6:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyS0Af_qw9XbQvgoyrTxY8Bk1tU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/3e50c9-95d0-4ab7-a7e1-0111038934d3/1/TuEqexac1Ti8Lkxc22elTmq_6ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/3e50c9-95d0-4ab7-a7e1-0111038934d3/1/hyS0Af_qw9XbQvgoyrTxY8Bk1tU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.52.0/22
Signature Algorithm: sha256WithRSAEncryption
77:62:d0:dc:66:c7:2d:bf:4c:75:76:a0:e1:d8:17:3f:ba:b8:
53:42:b2:77:6e:ba:fd:d5:5c:c2:99:18:28:ee:ce:3d:67:80:
0f:f9:d3:00:e7:3d:6e:f8:1d:7a:73:5d:2e:d3:80:41:6e:22:
d0:9c:a7:0e:5c:51:2f:4b:d0:5f:9f:63:46:03:58:66:d5:ff:
f9:31:1e:fb:76:63:50:92:49:0a:32:83:37:e9:8f:47:69:f6:
7e:43:ba:40:42:9c:94:57:8d:7b:c6:16:b5:f7:02:7e:bb:cc:
a2:d7:b9:e9:19:b4:a3:26:27:cf:8d:15:12:db:7c:41:0e:40:
48:0f:57:09:18:84:38:55:43:3b:75:ed:47:be:31:6a:42:0e:
66:3d:c7:51:36:15:48:c7:53:c1:cf:19:ac:3d:99:ea:31:b2:
cc:47:ad:8d:4d:60:f5:11:53:ff:07:1b:8c:a8:32:5a:a2:3e:
1b:bd:e6:24:07:e4:9d:d5:7b:7a:ba:12:8a:5f:b5:3d:87:59:
af:7f:7b:6d:d3:ba:c6:3e:63:62:ee:d8:48:2a:1d:bd:74:e6:
ed:7a:ac:76:04:41:ad:4f:60:6e:40:18:cb:f5:aa:4b:88:3d:
05:d0:d5:1d:51:a1:c3:64:b1:a8:0e:84:0b:68:8e:db:27:39:
e3:ba:5f:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvi2HsqoyfT1UBRgMH5fggMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MjRiNDAxZmZlYWMzZDVkYjQyZjgyOGNhYjRmMTYzYzA2
NGQ2ZDUwHhcNMjMwMTAxMjI1NDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZWUxMmE3YjE2OWNkNTM4YmMyZTRjNWNkYjY3YTU0ZTZhYmZlOWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq32QUJovhakca4ip3+usikheoMaW
MBwlpROPb4fKQQdaumOZqizKQeJ4hC2xo3188sBFZcgat6+uc/IIZI+joTQpAhji
ZA1argDZxM+l362rqvQBPtd3/jLFAs1g4XJtz3UzrOFgm4Kpe9mSlrB6gW6mkPRJ
qLGoQyzRgrtyTOn3TAM+vedB2mA06bHkyzRbfC6vYgtlwRP4UpstJM90E/GiEIje
TuE621sMvrv/gRTBbYWCcT2KbpufqyGsiU6WbBlJwT8jBJ8drxqphSVJoB9LF6pD
gwXNyz2NfZfZ5GPm5tWhDEzTVi/V/G2qPpYmP7QIwSiZXjMZ9QTLgDxU6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE7hKnsWnNU4vC5MXNtnpU5qv+moMB8GA1UdIwQY
MBaAFIcktAH/6sPV20L4KMq08WPAZNbVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHlTMEFmX3F3OVhiUXZnb3lyVHhZOEJrMXRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS8zZTUwYzktOTVkMC00YWI3LWE3ZTEt
MDExMTAzODkzNGQzLzEvVHVFcWV4YWMxVGk4TGt4YzIyZWxUbXFfNmFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS8zZTUwYzktOTVkMC00YWI3LWE3ZTEtMDExMTAzODkzNGQz
LzEvaHlTMEFmX3F3OVhiUXZnb3lyVHhZOEJrMXRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCue80MA0G
CSqGSIb3DQEBCwUAA4IBAQB3YtDcZsctv0x1dqDh2Bc/urhTQrJ3brr91VzCmRgo
7s49Z4AP+dMA5z1u+B16c10u04BBbiLQnKcOXFEvS9Bfn2NGA1hm1f/5MR77dmNQ
kkkKMoM36Y9HafZ+Q7pAQpyUV417xha19wJ+u8yi17npGbSjJifPjRUS23xBDkBI
D1cJGIQ4VUM7de1HvjFqQg5mPcdRNhVIx1PBzxmsPZnqMbLMR62NTWD1EVP/BxuM
qDJaoj4bveYkB+Sd1Xt6uhKKX7U9h1mvf3tt07rGPmNi7thIKh29dObteqx2BEGt
T2BuQBjL9apLiD0F0NUdUaHDZLGoDoQLaI7bJznjul/h
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:50 2024 by rpki-client on console-fra.rpki-client.org