Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/d6hRmjHND431brTcpLS22bdsWMg.roa
File: d6hRmjHND431brTcpLS22bdsWMg.roa (raw, json)
Hash identifier: lzSleExyewitEOGV9dWWaEWmsTu+qO6joEFj08I/q/Y=
Subject key identifier: 77:A8:51:9A:31:CD:0F:8D:F5:6E:B4:DC:A4:B4:B6:D9:B7:6C:58:C8
Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Certificate serial: 018C79AE03400EA060966B43EF26DEF2E3F6
Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/d6hRmjHND431brTcpLS22bdsWMg.roa
Signing time: Sun 17 Dec 2023 21:28:16 +0000
ROA not before: Sun 17 Dec 2023 21:28:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200665
IP address blocks: 185.124.54.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:79:ae:03:40:0e:a0:60:96:6b:43:ef:26:de:f2:e3:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Validity
Not Before: Dec 17 21:28:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77a8519a31cd0f8df56eb4dca4b4b6d9b76c58c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ef:0b:fc:46:d9:f2:79:3e:33:ca:f5:85:b8:
19:1d:ea:80:07:50:79:97:83:75:f7:58:43:2a:47:
d5:4b:80:f4:c9:d5:42:21:d0:f1:21:a3:f4:90:7a:
e8:46:ca:1d:88:52:6a:fb:98:7d:e9:a6:3c:8b:4f:
a8:69:7a:3a:d3:16:03:bb:c3:fb:2b:f7:0b:e9:02:
c7:15:c3:f1:61:25:28:4c:d8:20:65:22:86:2e:35:
09:f0:75:9b:2e:eb:63:37:1c:1d:c0:fd:da:ea:25:
7e:06:87:6e:69:13:36:70:d6:5c:65:fa:5e:e4:f0:
b4:ed:ab:5f:a4:3d:21:d2:fb:af:1c:56:f1:8c:7e:
64:67:f6:82:7c:af:02:99:0e:36:3e:c2:22:55:05:
04:64:ef:c9:dd:67:0a:e9:41:15:24:11:2e:48:ae:
3d:57:0d:3d:52:67:4a:9d:37:cf:90:e0:2f:ee:20:
7c:f1:22:f0:1e:f5:a7:84:7b:50:df:8b:d4:40:0e:
0b:a4:65:7e:91:16:c4:da:e6:44:b9:63:fa:51:a0:
f7:80:a4:e6:f2:02:b4:7e:96:0a:b6:d8:87:b1:f3:
27:fd:3e:cd:9d:15:ed:23:41:e2:99:b6:70:a5:12:
c1:7f:b8:3d:e9:97:71:ce:ca:db:40:b4:da:08:40:
1b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A8:51:9A:31:CD:0F:8D:F5:6E:B4:DC:A4:B4:B6:D9:B7:6C:58:C8
X509v3 Authority Key Identifier:
keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/d6hRmjHND431brTcpLS22bdsWMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.54.0/23
Signature Algorithm: sha256WithRSAEncryption
47:c6:90:a9:48:c5:cc:26:96:05:8b:62:99:8e:1d:c7:47:f0:
fb:ab:4f:2c:f5:8e:44:09:4f:73:a6:95:59:51:ee:fb:3e:ab:
a6:65:f6:e4:27:46:e4:97:e2:9f:bb:d6:cf:2c:fe:9a:94:70:
83:71:41:ed:d9:dd:4d:0b:eb:f4:f5:39:a9:48:dd:14:ba:d0:
6b:ac:31:ed:7d:e7:05:77:f3:0f:3d:34:79:7a:50:e7:31:98:
a7:62:e0:30:dd:0c:e4:3f:03:23:a2:48:75:d6:af:87:ff:7e:
85:d2:ac:19:f7:85:90:0a:c8:cc:9c:a8:02:dd:f0:cf:47:e6:
44:e7:6c:ef:cc:1a:0e:34:8e:62:fa:60:20:0b:aa:9f:45:1e:
8a:30:5d:cd:3d:aa:a7:98:fd:77:15:4b:6f:83:e6:5b:06:07:
01:98:d7:e4:2a:4b:98:e4:37:7d:0d:72:7c:67:1c:0b:a6:78:
04:76:54:1d:63:cf:82:83:0c:7e:33:1b:15:80:6b:d6:aa:d5:
ab:00:44:b4:19:89:95:c1:0e:d0:ae:cc:6c:34:5f:7b:df:db:
5d:0d:88:84:4d:44:98:89:03:84:c5:07:39:80:b2:ee:e7:bb:
b8:ce:a3:ff:a8:b5:33:35:57:50:b9:72:a8:16:55:46:ae:60:
e4:3c:64:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYx5rgNADqBglmtD7ybe8uP2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNTNiOTE5ZDc1ZGMyMDRkOWNhMzhkYjdiMjhhMTc0ODM0
YjNiM2QwHhcNMjMxMjE3MjEyODE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2E4NTE5YTMxY2QwZjhkZjU2ZWI0ZGNhNGI0YjZkOWI3NmM1OGM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+8L/EbZ8nk+M8r1hbgZHeqAB1B5
l4N191hDKkfVS4D0ydVCIdDxIaP0kHroRsodiFJq+5h96aY8i0+oaXo60xYDu8P7
K/cL6QLHFcPxYSUoTNggZSKGLjUJ8HWbLutjNxwdwP3a6iV+BoduaRM2cNZcZfpe
5PC07atfpD0h0vuvHFbxjH5kZ/aCfK8CmQ42PsIiVQUEZO/J3WcK6UEVJBEuSK49
Vw09UmdKnTfPkOAv7iB88SLwHvWnhHtQ34vUQA4LpGV+kRbE2uZEuWP6UaD3gKTm
8gK0fpYKttiHsfMn/T7NnRXtI0HimbZwpRLBf7g96ZdxzsrbQLTaCEAbjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHeoUZoxzQ+N9W603KS0ttm3bFjIMB8GA1UdIwQY
MBaAFAJTuRnXXcIE2co423sooXSDSzs9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2Yt
NzNkYjBmMjg0MWM5LzEvZDZoUm1qSE5ENDMxYnJUY3BMUzIyYmRzV01nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2YtNzNkYjBmMjg0MWM5
LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuXw2MA0G
CSqGSIb3DQEBCwUAA4IBAQBHxpCpSMXMJpYFi2KZjh3HR/D7q08s9Y5ECU9zppVZ
Ue77PqumZfbkJ0bkl+Kfu9bPLP6alHCDcUHt2d1NC+v09TmpSN0UutBrrDHtfecF
d/MPPTR5elDnMZinYuAw3QzkPwMjokh11q+H/36F0qwZ94WQCsjMnKgC3fDPR+ZE
52zvzBoONI5i+mAgC6qfRR6KMF3NPaqnmP13FUtvg+ZbBgcBmNfkKkuY5Dd9DXJ8
ZxwLpngEdlQdY8+Cgwx+MxsVgGvWqtWrAES0GYmVwQ7QrsxsNF9739tdDYiETUSY
iQOExQc5gLLu57u4zqP/qLUzNVdQuXKoFlVGrmDkPGSJ
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:01 2024 by rpki-client on console-ams.rpki-client.org