Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/e5b301-0c33-48b4-847b-e98ee2381146/1/tJ3ZHBRRcVcIGWgt3VeYEfL-j-c.roa
File: tJ3ZHBRRcVcIGWgt3VeYEfL-j-c.roa (raw, json)
Hash identifier: 8pRI2J8jp6luoohdtZweDXUpuD4sdThWT90KV7Sp1VA=
Subject key identifier: B4:9D:D9:1C:14:51:71:57:08:19:68:2D:DD:57:98:11:F2:FE:8F:E7
Certificate issuer: /CN=91cd4c6c1260fc9a7c894bf6abe77a6eecfec06e
Certificate serial: 018570671BA33F463CB86644E9EFC561C2F8
Authority key identifier: 91:CD:4C:6C:12:60:FC:9A:7C:89:4B:F6:AB:E7:7A:6E:EC:FE:C0:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kc1MbBJg_Jp8iUv2q-d6buz-wG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/e5b301-0c33-48b4-847b-e98ee2381146/1/tJ3ZHBRRcVcIGWgt3VeYEfL-j-c.roa
Signing time: Mon 02 Jan 2023 02:54:43 +0000
ROA not before: Mon 02 Jan 2023 02:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59740
IP address blocks: 185.58.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:1b:a3:3f:46:3c:b8:66:44:e9:ef:c5:61:c2:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91cd4c6c1260fc9a7c894bf6abe77a6eecfec06e
Validity
Not Before: Jan 2 02:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b49dd91c145171570819682ddd579811f2fe8fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:97:66:c6:bb:6e:6c:90:2b:7b:4c:1b:01:aa:
28:18:b1:33:d3:9d:bc:68:a8:a2:2b:33:fc:a2:49:
9b:3b:35:a1:10:9d:0f:34:6d:8c:76:e6:c6:db:45:
b3:26:7d:e0:bf:6b:1e:77:77:a9:7f:83:b9:c9:0b:
7f:45:9e:1c:75:9c:f9:62:3e:d9:08:86:c4:34:4b:
07:6c:a9:b6:0c:bd:14:e8:a2:ec:73:09:17:54:82:
a0:9b:9f:8d:d5:90:52:d2:85:22:46:07:9f:3e:a3:
f7:33:5d:d1:dd:90:a1:2e:d9:ba:26:8d:a7:d6:eb:
55:ba:bb:f9:13:d0:b6:31:29:05:be:8f:45:41:4a:
35:a8:70:05:39:6b:f2:1f:10:a4:28:b1:dc:90:d6:
f4:87:80:a4:73:e4:e7:a9:77:84:8b:00:69:a2:99:
a7:14:9b:97:aa:20:7b:d6:f0:c1:05:5a:03:1a:73:
ce:5b:78:df:4f:77:a7:ec:6f:c7:84:f9:8c:ba:6d:
c0:33:00:b9:11:3f:3f:6e:0d:a3:d7:b3:38:ea:5d:
07:aa:a6:cd:87:1c:61:3d:67:61:2e:9c:9e:a2:38:
23:bf:cf:5f:66:76:dd:c0:7d:07:0c:71:9c:b6:1d:
99:db:bd:cf:d4:12:e1:a1:65:03:e4:7b:f9:29:c4:
eb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:9D:D9:1C:14:51:71:57:08:19:68:2D:DD:57:98:11:F2:FE:8F:E7
X509v3 Authority Key Identifier:
keyid:91:CD:4C:6C:12:60:FC:9A:7C:89:4B:F6:AB:E7:7A:6E:EC:FE:C0:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kc1MbBJg_Jp8iUv2q-d6buz-wG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e5b301-0c33-48b4-847b-e98ee2381146/1/tJ3ZHBRRcVcIGWgt3VeYEfL-j-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e5b301-0c33-48b4-847b-e98ee2381146/1/kc1MbBJg_Jp8iUv2q-d6buz-wG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.252.0/22
Signature Algorithm: sha256WithRSAEncryption
23:02:3c:00:46:b9:e8:c0:40:c3:80:52:14:10:f6:60:44:07:
3b:c4:4e:65:86:9e:46:b9:e5:83:06:1e:9e:c3:6b:8d:1a:e3:
0e:b3:88:50:25:81:bf:e4:91:c7:1e:55:3f:52:5f:f8:24:ba:
d8:e0:a7:32:ca:18:a1:fe:6e:c8:92:4a:ef:8f:84:60:c0:ac:
fc:92:99:68:ed:af:ce:5e:60:b8:62:a1:35:2b:8a:b6:36:8c:
25:3d:3a:9c:98:bd:0e:3b:00:a1:a7:fc:07:d3:61:94:82:4c:
8d:86:4d:ea:cc:94:93:db:ff:7f:d9:5f:52:38:f1:24:93:51:
0c:75:ff:ba:94:b9:69:fd:ba:e0:ec:84:f7:84:9a:1e:1c:f9:
27:a1:fb:8c:e2:cc:0a:81:a2:81:d2:41:a7:48:9f:e0:cf:c5:
2d:25:6a:e5:f8:a6:50:87:aa:b3:bc:99:11:cb:e2:b6:e2:38:
2b:fd:ff:03:09:a9:0b:3e:8b:ce:ba:82:45:dd:4a:71:89:b1:
d4:c5:2f:42:f8:1c:72:37:2e:f2:64:91:02:b1:56:46:c7:07:
b9:cd:a5:54:2a:d7:ae:f4:ba:9e:65:12:5c:b8:e2:c6:b1:ad:
98:50:3d:16:cc:b4:ce:67:71:67:3b:66:b4:96:73:11:d9:02:
9e:6d:3e:6b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwZxujP0Y8uGZE6e/FYcL4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxY2Q0YzZjMTI2MGZjOWE3Yzg5NGJmNmFiZTc3YTZlZWNm
ZWMwNmUwHhcNMjMwMTAyMDI1NDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDlkZDkxYzE0NTE3MTU3MDgxOTY4MmRkZDU3OTgxMWYyZmU4ZmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjZdmxrtubJAre0wbAaooGLEz0528
aKiiKzP8okmbOzWhEJ0PNG2MdubG20WzJn3gv2sed3epf4O5yQt/RZ4cdZz5Yj7Z
CIbENEsHbKm2DL0U6KLscwkXVIKgm5+N1ZBS0oUiRgefPqP3M13R3ZChLtm6Jo2n
1utVurv5E9C2MSkFvo9FQUo1qHAFOWvyHxCkKLHckNb0h4Ckc+TnqXeEiwBpopmn
FJuXqiB71vDBBVoDGnPOW3jfT3en7G/HhPmMum3AMwC5ET8/bg2j17M46l0HqqbN
hxxhPWdhLpyeojgjv89fZnbdwH0HDHGcth2Z273P1BLhoWUD5Hv5KcTrUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLSd2RwUUXFXCBloLd1XmBHy/o/nMB8GA1UdIwQY
MBaAFJHNTGwSYPyafIlL9qvnem7s/sBuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2MxTWJCSmdfSnA4aVV2MnEtZDZidXotd0c0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni9lNWIzMDEtMGMzMy00OGI0LTg0N2It
ZTk4ZWUyMzgxMTQ2LzEvdEozWkhCUlJjVmNJR1dndDNWZVlFZkwtai1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni9lNWIzMDEtMGMzMy00OGI0LTg0N2ItZTk4ZWUyMzgxMTQ2
LzEva2MxTWJCSmdfSnA4aVV2MnEtZDZidXotd0c0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTr8MA0G
CSqGSIb3DQEBCwUAA4IBAQAjAjwARrnowEDDgFIUEPZgRAc7xE5lhp5GueWDBh6e
w2uNGuMOs4hQJYG/5JHHHlU/Ul/4JLrY4Kcyyhih/m7Ikkrvj4RgwKz8kplo7a/O
XmC4YqE1K4q2NowlPTqcmL0OOwChp/wH02GUgkyNhk3qzJST2/9/2V9SOPEkk1EM
df+6lLlp/brg7IT3hJoeHPknofuM4swKgaKB0kGnSJ/gz8UtJWrl+KZQh6qzvJkR
y+K24jgr/f8DCakLPovOuoJF3UpxibHUxS9C+BxyNy7yZJECsVZGxwe5zaVUKteu
9LqeZRJcuOLGsa2YUD0WzLTOZ3FnO2a0lnMR2QKebT5r
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:24 2024 by rpki-client on console-fra.rpki-client.org