Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/DZk75jmzwkj64IIvNt-E9-CX1k4.roa
File: DZk75jmzwkj64IIvNt-E9-CX1k4.roa (raw, json)
Hash identifier: wAhdyRWWBkAnKMxD08s/Q4wempGHC9l0Zncl32vvvCg=
Subject key identifier: 0D:99:3B:E6:39:B3:C2:48:FA:E0:82:2F:36:DF:84:F7:E0:97:D6:4E
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 018EBC7120DACE03F20CEB009447F5F77307
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/DZk75jmzwkj64IIvNt-E9-CX1k4.roa
Signing time: Mon 08 Apr 2024 06:41:54 +0000
ROA not before: Mon 08 Apr 2024 06:41:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57604
IP address blocks: 139.28.168.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 18:27:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bc:71:20:da:ce:03:f2:0c:eb:00:94:47:f5:f7:73:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Apr 8 06:41:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d993be639b3c248fae0822f36df84f7e097d64e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b4:d9:61:a1:5b:c7:f2:c6:d5:c4:e1:d0:4f:
2b:fa:46:e6:cb:d4:7d:59:4a:11:09:25:d4:30:c4:
4a:0f:1e:2d:a9:90:49:2d:cb:99:69:97:e8:0e:63:
0e:1c:63:b9:42:00:17:42:e4:70:40:a1:ca:23:e8:
14:1a:da:b2:61:4c:82:38:67:c4:88:73:1f:fc:0c:
07:6d:ac:dc:0b:46:72:2e:f9:f4:a8:a1:2f:8a:8d:
ae:79:d4:82:db:cd:99:33:07:96:3f:93:bd:96:ed:
c4:0f:c1:b5:31:35:cc:f6:db:4f:a5:f4:00:9f:18:
56:67:e6:bd:0a:4f:9a:eb:5e:47:2d:c3:88:bb:13:
d6:71:65:5e:f0:b6:e8:84:88:fb:a1:20:17:3e:0b:
ee:36:43:ea:41:12:ff:69:42:e7:3c:78:2f:4d:7d:
32:06:73:b3:3b:23:f6:0a:49:4f:35:40:0a:78:eb:
a2:c1:7a:c1:ac:d7:b2:f5:61:66:f4:a0:c5:25:45:
e6:58:b1:65:66:2f:a6:4f:6f:f9:4c:4f:d3:36:69:
8f:9c:0c:c8:09:23:03:3b:7c:88:05:a3:73:7b:49:
22:bd:39:0f:50:ef:47:e1:83:69:b9:ae:96:18:52:
4d:0e:77:c7:ea:6e:9c:33:e6:68:93:ab:c2:75:92:
34:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:99:3B:E6:39:B3:C2:48:FA:E0:82:2F:36:DF:84:F7:E0:97:D6:4E
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/DZk75jmzwkj64IIvNt-E9-CX1k4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.168.0/22
Signature Algorithm: sha256WithRSAEncryption
33:6c:48:9e:27:25:1b:67:a6:70:04:d2:1a:3c:c6:00:a6:73:
08:66:91:f2:23:db:14:18:12:30:b9:14:29:b9:f6:67:00:0c:
aa:e3:9f:8a:bc:5c:df:b8:f8:38:89:07:a4:a1:d0:fd:e2:03:
7b:38:7d:d7:cf:cd:b9:86:b8:f4:6d:e5:94:d3:ab:cc:2f:d7:
13:be:b6:b0:10:6a:e8:f7:f6:8f:88:1a:76:47:e3:de:e2:7c:
32:e1:07:59:3a:bd:99:92:e9:18:f2:cf:9f:c2:fa:86:97:e5:
0b:df:77:7b:17:07:f0:4f:7d:64:22:30:6d:2f:5f:f8:35:cf:
86:b5:04:9e:9a:31:fd:a4:08:b7:bf:87:74:10:90:4e:81:98:
a3:b8:4d:f7:75:67:86:42:95:02:95:db:2a:39:06:29:5e:86:
03:be:a4:e5:bd:95:b4:57:19:6e:68:b6:01:14:2a:2b:33:b0:
f5:df:e6:2b:1f:c9:1a:3d:72:49:f0:be:77:28:54:9c:2d:38:
75:2f:2f:d5:8d:e3:b3:25:8e:e4:d8:21:fb:73:58:f0:f1:bb:
8f:f5:32:fc:40:2d:a3:4e:9c:26:f2:65:d5:5b:fe:da:fd:5a:
12:24:73:fe:9f:da:0b:d2:02:b0:5c:87:c9:6e:7f:92:cc:9b:
66:a4:94:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY68cSDazgPyDOsAlEf193MHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkYTI1YWFmZTNhOTg3MGU5NTI0YWZhMDI2NTk4N2VkNWE1
YTRkYTMwHhcNMjQwNDA4MDY0MTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDk5M2JlNjM5YjNjMjQ4ZmFlMDgyMmYzNmRmODRmN2UwOTdkNjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7TZYaFbx/LG1cTh0E8r+kbmy9R9
WUoRCSXUMMRKDx4tqZBJLcuZaZfoDmMOHGO5QgAXQuRwQKHKI+gUGtqyYUyCOGfE
iHMf/AwHbazcC0ZyLvn0qKEvio2uedSC282ZMweWP5O9lu3ED8G1MTXM9ttPpfQA
nxhWZ+a9Ck+a615HLcOIuxPWcWVe8LbohIj7oSAXPgvuNkPqQRL/aULnPHgvTX0y
BnOzOyP2CklPNUAKeOuiwXrBrNey9WFm9KDFJUXmWLFlZi+mT2/5TE/TNmmPnAzI
CSMDO3yIBaNze0kivTkPUO9H4YNpua6WGFJNDnfH6m6cM+Zok6vCdZI0HQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA2ZO+Y5s8JI+uCCLzbfhPfgl9ZOMB8GA1UdIwQY
MBaAFK2iWq/jqYcOlSSvoCZZh+1aWk2jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmFKYXItT3BodzZWSkstZ0psbUg3VnBhVGFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS84MTBkMjQtYWNiZS00Y2IyLTlhYzUt
OWQ1ODc1ZDg2MzczLzEvRFprNzVqbXp3a2o2NElJdk50LUU5LUNYMWs0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS84MTBkMjQtYWNiZS00Y2IyLTlhYzUtOWQ1ODc1ZDg2Mzcz
LzEvcmFKYXItT3BodzZWSkstZ0psbUg3VnBhVGFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCixyoMA0G
CSqGSIb3DQEBCwUAA4IBAQAzbEieJyUbZ6ZwBNIaPMYApnMIZpHyI9sUGBIwuRQp
ufZnAAyq45+KvFzfuPg4iQekodD94gN7OH3Xz825hrj0beWU06vML9cTvrawEGro
9/aPiBp2R+Pe4nwy4QdZOr2ZkukY8s+fwvqGl+UL33d7FwfwT31kIjBtL1/4Nc+G
tQSemjH9pAi3v4d0EJBOgZijuE33dWeGQpUCldsqOQYpXoYDvqTlvZW0VxluaLYB
FCorM7D13+YrH8kaPXJJ8L53KFScLTh1Ly/VjeOzJY7k2CH7c1jw8buP9TL8QC2j
Tpwm8mXVW/7a/VoSJHP+n9oL0gKwXIfJbn+SzJtmpJST
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org