Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/at26tbajOZFZFWyLaSMx5Ul01Ug.roa
File: at26tbajOZFZFWyLaSMx5Ul01Ug.roa (raw, json)
Hash identifier: SSwkYcqQgc8Ygddh2AccYEFm0ilq7cH9sLq5AYfvMYc=
Subject key identifier: 6A:DD:BA:B5:B6:A3:39:91:59:15:6C:8B:69:23:31:E5:49:74:D5:48
Certificate issuer: /CN=b9762db1282ffd084761232038f81f5d29e640d5
Certificate serial: 018CC9BC5EA9167078852D2EA42C51883620
Authority key identifier: B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/at26tbajOZFZFWyLaSMx5Ul01Ug.roa
Signing time: Tue 02 Jan 2024 10:33:34 +0000
ROA not before: Tue 02 Jan 2024 10:33:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25795
IP address blocks: 185.139.32.0/23 maxlen: 24
2a07:12c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 10 May 2024 21:35:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:5e:a9:16:70:78:85:2d:2e:a4:2c:51:88:36:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9762db1282ffd084761232038f81f5d29e640d5
Validity
Not Before: Jan 2 10:33:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6addbab5b6a3399159156c8b692331e54974d548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:92:e7:15:06:d9:a1:f5:e3:e9:8e:62:79:f2:
b3:e8:5a:74:58:ce:10:e0:b8:c3:b0:5b:57:6a:8a:
3a:34:d5:0c:ba:a6:cf:f3:71:dd:d4:0e:2f:d3:d6:
62:1d:ce:31:9e:4d:c7:d4:ed:1b:5a:3d:a0:64:41:
6f:ae:a5:61:38:34:73:d1:4b:9d:c8:4e:aa:90:cc:
2c:8c:4b:2c:19:b3:07:42:52:eb:f1:a3:34:b7:b2:
7d:ff:51:e5:10:ac:15:80:c6:2a:df:93:cd:93:65:
bb:79:91:47:2e:25:a7:ac:2b:cf:30:65:89:23:46:
cd:28:27:8e:d4:33:b9:1e:53:68:6c:39:83:84:81:
19:0b:ee:6f:7c:1d:12:34:d6:77:89:a0:8f:c3:5b:
60:7e:12:7d:c5:d6:cd:bf:72:9c:b7:81:f2:bb:86:
68:7b:fc:d0:a8:e9:91:f9:aa:81:42:22:89:5d:86:
85:ff:eb:81:86:5a:25:a8:07:9c:2b:e8:98:8a:77:
7c:d6:ee:54:9c:92:46:9f:21:eb:40:2d:ba:24:4d:
39:9f:1f:97:b2:0b:51:88:f7:59:c8:c8:d7:cc:0d:
d9:a2:45:bf:43:dc:e8:b2:44:41:a3:18:19:ab:60:
03:37:75:2b:b7:87:c3:12:af:99:41:36:cd:eb:58:
8d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:DD:BA:B5:B6:A3:39:91:59:15:6C:8B:69:23:31:E5:49:74:D5:48
X509v3 Authority Key Identifier:
keyid:B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/at26tbajOZFZFWyLaSMx5Ul01Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.32.0/23
IPv6:
2a07:12c0::/29
Signature Algorithm: sha256WithRSAEncryption
a7:2e:55:1d:f6:33:62:46:ba:98:44:3c:1e:c2:16:76:8c:82:
61:9c:9b:ff:71:18:c9:c1:56:97:e3:d4:fe:c4:9a:3a:53:34:
9f:46:ff:05:76:ac:c8:0d:0e:ca:1e:cf:b7:e5:8e:14:99:06:
6f:86:74:60:1a:fc:a3:7a:1e:96:2e:6a:48:e8:cb:93:f1:71:
c7:a8:cf:ea:48:4e:ac:de:83:b1:41:54:9d:ae:d0:5c:06:d9:
dc:b7:36:e2:1b:f0:ed:24:7d:4b:74:2d:13:00:76:b1:26:c0:
81:36:c7:d4:97:63:ad:f6:05:bb:d1:b7:42:dc:a6:95:c9:5b:
3b:e1:6d:d0:be:b4:d7:b7:6b:4e:ea:e3:43:36:74:82:8f:66:
75:b6:4e:3e:03:03:e4:44:d7:e8:af:57:f5:05:79:15:75:a6:
c1:42:ab:ca:f5:b9:b0:57:93:41:c1:cf:54:8b:55:3f:ce:e2:
36:19:4a:82:22:0d:11:3f:bb:06:86:54:b2:9c:63:61:f0:a7:
f8:ce:74:4d:fb:bc:0f:74:bc:41:77:6a:4b:06:fc:48:65:6a:
16:6c:e4:3e:35:aa:05:a8:81:a6:67:2d:6b:7a:b8:3e:a1:cb:
9e:27:e4:27:ef:91:1d:74:3e:4b:6b:0d:8f:1c:fc:ab:78:e4:
a7:88:97:64
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzJvF6pFnB4hS0upCxRiDYgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NzYyZGIxMjgyZmZkMDg0NzYxMjMyMDM4ZjgxZjVkMjll
NjQwZDUwHhcNMjQwMTAyMTAzMzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YWRkYmFiNWI2YTMzOTkxNTkxNTZjOGI2OTIzMzFlNTQ5NzRkNTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhZLnFQbZofXj6Y5iefKz6Fp0WM4Q
4LjDsFtXaoo6NNUMuqbP83Hd1A4v09ZiHc4xnk3H1O0bWj2gZEFvrqVhODRz0Uud
yE6qkMwsjEssGbMHQlLr8aM0t7J9/1HlEKwVgMYq35PNk2W7eZFHLiWnrCvPMGWJ
I0bNKCeO1DO5HlNobDmDhIEZC+5vfB0SNNZ3iaCPw1tgfhJ9xdbNv3Kct4Hyu4Zo
e/zQqOmR+aqBQiKJXYaF/+uBhlolqAecK+iYind81u5UnJJGnyHrQC26JE05nx+X
sgtRiPdZyMjXzA3ZokW/Q9zoskRBoxgZq2ADN3Urt4fDEq+ZQTbN61iNzQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGrdurW2ozmRWRVsi2kjMeVJdNVIMB8GA1UdIwQY
MBaAFLl2LbEoL/0IR2EjIDj4H10p5kDVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVhZdHNTZ3ZfUWhIWVNNZ09QZ2ZYU25tUU5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9mODE5MTUtNDA1ZS00YjU0LTljYjQt
NzBhNTU2YmE4YTExLzEvYXQyNnRiYWpPWkZaRld5TGFTTXg1VWwwMVVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS9mODE5MTUtNDA1ZS00YjU0LTljYjQtNzBhNTU2YmE4YTEx
LzEvdVhZdHNTZ3ZfUWhIWVNNZ09QZ2ZYU25tUU5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBuYsgMA0E
AgACMAcDBQMqBxLAMA0GCSqGSIb3DQEBCwUAA4IBAQCnLlUd9jNiRrqYRDwewhZ2
jIJhnJv/cRjJwVaX49T+xJo6UzSfRv8FdqzIDQ7KHs+35Y4UmQZvhnRgGvyjeh6W
LmpI6MuT8XHHqM/qSE6s3oOxQVSdrtBcBtnctzbiG/DtJH1LdC0TAHaxJsCBNsfU
l2Ot9gW70bdC3KaVyVs74W3QvrTXt2tO6uNDNnSCj2Z1tk4+AwPkRNfor1f1BXkV
dabBQqvK9bmwV5NBwc9Ui1U/zuI2GUqCIg0RP7sGhlSynGNh8Kf4znRN+7wPdLxB
d2pLBvxIZWoWbOQ+NaoFqIGmZy1rerg+ocueJ+Qn75EddD5Law2PHPyreOSniJdk
-----END CERTIFICATE-----
Generated at Sat May 11 00:26:38 2024 by rpki-client on console-ams.rpki-client.org