Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/Y6WS1iw8DhCX3mcb18z2vIJf4_A.roa
File: Y6WS1iw8DhCX3mcb18z2vIJf4_A.roa (raw, json)
Hash identifier: ULqt+IucoHyrr0E7nuTHqiAwJF7jgboPrO/sYDxH76o=
Subject key identifier: 63:A5:92:D6:2C:3C:0E:10:97:DE:67:1B:D7:CC:F6:BC:82:5F:E3:F0
Certificate issuer: /CN=dd82de4f1304339fde527ba06033ca9e511171bd
Certificate serial: 01856D38767482C7E6F28921B9D54D1657F8
Authority key identifier: DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/Y6WS1iw8DhCX3mcb18z2vIJf4_A.roa
Signing time: Sun 01 Jan 2023 12:04:54 +0000
ROA not before: Sun 01 Jan 2023 12:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34871
IP address blocks: 185.236.38.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:76:74:82:c7:e6:f2:89:21:b9:d5:4d:16:57:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd82de4f1304339fde527ba06033ca9e511171bd
Validity
Not Before: Jan 1 12:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63a592d62c3c0e1097de671bd7ccf6bc825fe3f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8b:75:61:58:35:5a:c5:d6:36:cf:f1:23:2d:
f8:84:4d:bd:78:35:b2:28:02:d5:a2:b0:44:e9:f3:
b8:2b:d5:62:80:da:a7:68:40:9f:e3:75:89:e3:a1:
92:6d:31:7e:11:5f:1f:61:83:3d:df:3d:0e:f7:20:
40:f7:76:ac:dd:58:4f:ec:bf:f3:ca:4b:a0:32:e0:
08:3a:08:6d:40:f7:cd:bf:a9:d9:a9:ad:6b:23:00:
2d:a7:1b:8b:74:7b:95:8d:fe:db:97:e6:ce:40:69:
c1:d0:14:d1:c0:28:67:f4:ff:39:9f:1b:bf:42:22:
82:10:10:72:e0:2e:d3:1e:02:01:ea:cc:43:5b:3f:
db:86:5c:46:07:93:33:18:ab:6c:f8:0e:c5:27:d0:
25:ad:01:ac:26:72:00:ee:98:2d:d5:91:9d:fa:1d:
95:72:55:72:27:bb:c4:eb:6e:fe:dc:e9:63:bb:41:
74:fb:69:51:f0:7b:18:7d:13:f4:6f:c0:81:a4:71:
8e:a6:64:a1:a6:93:31:16:d9:45:ab:1c:c3:34:f6:
cd:f1:3e:b0:50:ee:23:52:48:61:2e:38:03:77:21:
d4:91:fa:b9:f5:52:f8:da:5b:39:e6:82:bd:5b:96:
a3:a6:41:a9:d7:fa:fe:ea:e7:38:22:de:6d:82:fe:
40:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A5:92:D6:2C:3C:0E:10:97:DE:67:1B:D7:CC:F6:BC:82:5F:E3:F0
X509v3 Authority Key Identifier:
keyid:DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/Y6WS1iw8DhCX3mcb18z2vIJf4_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/3YLeTxMEM5_eUnugYDPKnlERcb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.38.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:c7:f2:64:2f:d6:d0:7f:01:e6:37:17:d1:d3:5b:8c:24:b4:
18:8f:2d:1d:95:51:c8:d6:dc:d5:e9:78:b3:91:3f:9e:bb:68:
0c:ca:03:54:dd:10:8e:26:13:3b:a9:00:f4:06:70:e5:ac:ff:
3f:a0:e9:87:46:7e:36:72:57:21:0d:c4:54:2b:3f:ca:23:cb:
2f:bd:5c:ae:6c:e2:68:43:9b:88:8c:c5:06:ea:73:5d:c0:65:
6a:3a:43:55:29:a7:22:81:6f:3f:b4:97:17:0a:f6:5d:be:93:
83:38:58:01:f8:1b:8c:a9:3d:76:b1:79:e3:b8:c1:e1:8b:07:
c3:3a:db:f0:5c:0e:a7:ed:1c:23:d1:b1:62:6d:c2:3d:42:a7:
7d:a5:75:06:11:86:28:26:b6:d2:4c:4c:68:18:9e:2e:64:2e:
5b:52:a0:e5:e5:72:97:fc:3d:20:c3:8c:b4:b8:23:24:45:8e:
80:09:dc:2f:ed:f8:34:09:fd:04:76:b0:79:35:1b:9c:a3:67:
08:13:59:72:2a:e2:9a:2d:36:54:4f:54:a9:69:7c:6b:29:ca:
66:79:c9:c8:39:df:1d:fb:c7:36:6a:1e:47:da:b1:8d:08:eb:
06:e4:9e:9c:c4:90:0c:16:a8:c1:fa:d7:27:d0:9f:cb:02:5a:
28:dd:32:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtOHZ0gsfm8okhudVNFlf4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkODJkZTRmMTMwNDMzOWZkZTUyN2JhMDYwMzNjYTllNTEx
MTcxYmQwHhcNMjMwMTAxMTIwNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2E1OTJkNjJjM2MwZTEwOTdkZTY3MWJkN2NjZjZiYzgyNWZlM2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4t1YVg1WsXWNs/xIy34hE29eDWy
KALVorBE6fO4K9VigNqnaECf43WJ46GSbTF+EV8fYYM93z0O9yBA93as3VhP7L/z
ykugMuAIOghtQPfNv6nZqa1rIwAtpxuLdHuVjf7bl+bOQGnB0BTRwChn9P85nxu/
QiKCEBBy4C7THgIB6sxDWz/bhlxGB5MzGKts+A7FJ9AlrQGsJnIA7pgt1ZGd+h2V
clVyJ7vE627+3Olju0F0+2lR8HsYfRP0b8CBpHGOpmShppMxFtlFqxzDNPbN8T6w
UO4jUkhhLjgDdyHUkfq59VL42ls55oK9W5ajpkGp1/r+6uc4It5tgv5AWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGOlktYsPA4Ql95nG9fM9ryCX+PwMB8GA1UdIwQY
MBaAFN2C3k8TBDOf3lJ7oGAzyp5REXG9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1lMZVR4TUVNNV9lVW51Z1lEUEtubEVSY2IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9mOGJiMWItZDZmZC00OWExLTk2NTMt
ZmYxNTdiZWYwNjIxLzEvWTZXUzFpdzhEaENYM21jYjE4ejJ2SUpmNF9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9mOGJiMWItZDZmZC00OWExLTk2NTMtZmYxNTdiZWYwNjIx
LzEvM1lMZVR4TUVNNV9lVW51Z1lEUEtubEVSY2IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuewmMA0G
CSqGSIb3DQEBCwUAA4IBAQCOx/JkL9bQfwHmNxfR01uMJLQYjy0dlVHI1tzV6Xiz
kT+eu2gMygNU3RCOJhM7qQD0BnDlrP8/oOmHRn42clchDcRUKz/KI8svvVyubOJo
Q5uIjMUG6nNdwGVqOkNVKacigW8/tJcXCvZdvpODOFgB+BuMqT12sXnjuMHhiwfD
OtvwXA6n7Rwj0bFibcI9Qqd9pXUGEYYoJrbSTExoGJ4uZC5bUqDl5XKX/D0gw4y0
uCMkRY6ACdwv7fg0Cf0EdrB5NRuco2cIE1lyKuKaLTZUT1SpaXxrKcpmecnIOd8d
+8c2ah5H2rGNCOsG5J6cxJAMFqjB+tcn0J/LAloo3TLb
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:27 2023 by rpki-client on console-fra.rpki-client.org