Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/TdyaWEHvgzAYv_Vr-AYScDrInaM.roa
File: TdyaWEHvgzAYv_Vr-AYScDrInaM.roa (raw, json)
Hash identifier: WDcXr6o8mm9VyhhcbmHDM+15Jr3gGfGQyQACCg755/w=
Subject key identifier: 4D:DC:9A:58:41:EF:83:30:18:BF:F5:6B:F8:06:12:70:3A:C8:9D:A3
Certificate issuer: /CN=4f152900b0d323d36d94510ab0b01c93f4517c89
Certificate serial: 018571277BAA31EE443642741275F1158D08
Authority key identifier: 4F:15:29:00:B0:D3:23:D3:6D:94:51:0A:B0:B0:1C:93:F4:51:7C:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxUpALDTI9NtlFEKsLAck_RRfIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/TdyaWEHvgzAYv_Vr-AYScDrInaM.roa
Signing time: Mon 02 Jan 2023 06:24:50 +0000
ROA not before: Mon 02 Jan 2023 06:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2119
IP address blocks: 185.102.32.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:7b:aa:31:ee:44:36:42:74:12:75:f1:15:8d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f152900b0d323d36d94510ab0b01c93f4517c89
Validity
Not Before: Jan 2 06:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ddc9a5841ef833018bff56bf80612703ac89da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fb:f1:ac:81:fa:cb:10:89:f6:3a:5f:70:54:
ee:db:99:f9:78:c9:48:cd:77:8a:48:1e:ff:f7:e6:
98:42:88:e7:6c:33:cb:96:9b:18:2b:29:ee:b8:8c:
65:dd:47:2a:e5:de:1f:83:a1:69:c4:e5:ba:dd:66:
c0:68:cc:d2:da:aa:30:bf:01:da:f6:51:92:ab:15:
03:ea:a5:ce:69:01:e7:11:d1:94:63:aa:8b:67:e4:
73:c4:62:c4:00:8f:8e:71:bf:d0:2c:a2:4d:6b:04:
07:fe:75:61:43:e2:1d:6a:cb:5e:14:e9:16:ed:63:
39:5c:08:96:98:fc:e6:72:d9:4e:30:8e:81:ca:de:
b9:46:c1:ef:f7:50:71:46:e6:d5:08:55:4b:56:d4:
cd:37:e6:de:9f:80:9b:79:96:8f:a2:9d:3c:fc:a4:
84:17:c1:f4:5a:88:f3:39:58:96:66:e8:18:e6:62:
90:6d:d2:52:67:98:33:bb:ed:81:41:46:59:53:7b:
e0:e1:06:e8:92:f8:e4:9b:d8:72:14:e4:9f:85:a0:
25:41:27:3b:66:12:3f:68:6d:58:5d:24:a6:0f:31:
f0:e0:bd:a7:41:35:3d:72:08:70:3b:23:fa:3b:6c:
ce:91:2f:f2:3f:a0:75:f7:c2:4d:02:e8:c1:7d:07:
bd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:DC:9A:58:41:EF:83:30:18:BF:F5:6B:F8:06:12:70:3A:C8:9D:A3
X509v3 Authority Key Identifier:
keyid:4F:15:29:00:B0:D3:23:D3:6D:94:51:0A:B0:B0:1C:93:F4:51:7C:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxUpALDTI9NtlFEKsLAck_RRfIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/TdyaWEHvgzAYv_Vr-AYScDrInaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/TxUpALDTI9NtlFEKsLAck_RRfIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.32.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:db:be:1c:36:fc:0e:c0:e3:dc:f8:3e:72:b6:6a:cb:f1:19:
07:1f:dc:61:37:16:a9:39:b8:f0:ba:27:2e:a2:ab:32:76:f4:
c8:b3:12:91:8e:b6:77:83:65:75:c8:59:3b:0f:74:66:ee:1f:
7a:53:43:5c:30:c5:fb:78:41:8e:de:95:67:fb:e9:cd:3f:2e:
72:9a:0c:92:f2:ce:58:ab:b1:3a:ed:32:9b:51:5e:6f:5c:55:
3e:75:23:99:c3:46:d7:4d:be:c8:46:16:bf:91:81:3a:78:c3:
e1:d6:ca:5d:9a:16:7f:6b:a2:98:d2:9b:1e:12:a2:10:ad:f3:
d6:84:22:b6:ce:be:42:7a:a7:c4:31:10:f0:38:f9:55:fd:27:
ab:33:8b:30:5c:9f:d3:f6:f9:ba:e8:c8:cf:fd:04:cb:9c:23:
ed:7c:70:9d:51:09:10:49:a9:36:51:79:f8:97:26:b9:2d:11:
3b:7b:a3:04:1d:38:4d:27:12:af:49:3f:28:93:a8:10:7e:4a:
5c:74:40:5d:63:26:8c:9d:29:6e:02:67:e7:fd:2d:98:6b:68:
cb:a4:25:44:14:4f:ab:79:b9:9a:0e:12:43:ba:31:13:88:f3:
a0:77:0d:5f:35:91:dc:5e:80:3d:22:4d:c5:f8:f0:70:ae:cd:
6d:d7:c1:43
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxJ3uqMe5ENkJ0EnXxFY0IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMTUyOTAwYjBkMzIzZDM2ZDk0NTEwYWIwYjAxYzkzZjQ1
MTdjODkwHhcNMjMwMTAyMDYyNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGRjOWE1ODQxZWY4MzMwMThiZmY1NmJmODA2MTI3MDNhYzg5ZGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApfvxrIH6yxCJ9jpfcFTu25n5eMlI
zXeKSB7/9+aYQojnbDPLlpsYKynuuIxl3Ucq5d4fg6FpxOW63WbAaMzS2qowvwHa
9lGSqxUD6qXOaQHnEdGUY6qLZ+RzxGLEAI+Ocb/QLKJNawQH/nVhQ+IdasteFOkW
7WM5XAiWmPzmctlOMI6Byt65RsHv91BxRubVCFVLVtTNN+ben4CbeZaPop08/KSE
F8H0WojzOViWZugY5mKQbdJSZ5gzu+2BQUZZU3vg4Qbokvjkm9hyFOSfhaAlQSc7
ZhI/aG1YXSSmDzHw4L2nQTU9cghwOyP6O2zOkS/yP6B198JNAujBfQe9zQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE3cmlhB74MwGL/1a/gGEnA6yJ2jMB8GA1UdIwQY
MBaAFE8VKQCw0yPTbZRRCrCwHJP0UXyJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhVcEFMRFRJOU50bEZFS3NMQWNrX1JSZklrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84OWZmM2ItMTI2My00Y2RkLTljYWQt
MjNkZjhkZGRmOTc4LzEvVGR5YVdFSHZnekFZdl9Wci1BWVNjRHJJbmFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC84OWZmM2ItMTI2My00Y2RkLTljYWQtMjNkZjhkZGRmOTc4
LzEvVHhVcEFMRFRJOU50bEZFS3NMQWNrX1JSZklrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuWYgMA0G
CSqGSIb3DQEBCwUAA4IBAQB8274cNvwOwOPc+D5ytmrL8RkHH9xhNxapObjwuicu
oqsydvTIsxKRjrZ3g2V1yFk7D3Rm7h96U0NcMMX7eEGO3pVn++nNPy5ymgyS8s5Y
q7E67TKbUV5vXFU+dSOZw0bXTb7IRha/kYE6eMPh1spdmhZ/a6KY0pseEqIQrfPW
hCK2zr5CeqfEMRDwOPlV/SerM4swXJ/T9vm66MjP/QTLnCPtfHCdUQkQSak2UXn4
lya5LRE7e6MEHThNJxKvST8ok6gQfkpcdEBdYyaMnSluAmfn/S2Ya2jLpCVEFE+r
ebmaDhJDujETiPOgdw1fNZHcXoA9Ik3F+PBwrs1t18FD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-fra.rpki-client.org