Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/c9f2f6-191d-4f0f-a3c4-c3c80e4704e4/1/x-uqrSVW3Uz0j7EqpLZ6BJWaYcQ.roa
File: x-uqrSVW3Uz0j7EqpLZ6BJWaYcQ.roa (raw, json)
Hash identifier: Rac+Gj7uQRdsAZnrGwlhWnaxiPwB8vhbp1brvV6V/9I=
Subject key identifier: C7:EB:AA:AD:25:56:DD:4C:F4:8F:B1:2A:A4:B6:7A:04:95:9A:61:C4
Certificate issuer: /CN=7672c0fe08371764058c6ab85dfb5dcdc109f77e
Certificate serial: 0186FF528CC0708E30AF0CD66A273ED01248
Authority key identifier: 76:72:C0:FE:08:37:17:64:05:8C:6A:B8:5D:FB:5D:CD:C1:09:F7:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnLA_gg3F2QFjGq4XftdzcEJ934.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/c9f2f6-191d-4f0f-a3c4-c3c80e4704e4/1/x-uqrSVW3Uz0j7EqpLZ6BJWaYcQ.roa
Signing time: Mon 20 Mar 2023 14:00:45 +0000
ROA not before: Mon 20 Mar 2023 14:00:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20853
IP address blocks: 185.43.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 13:11:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:52:8c:c0:70:8e:30:af:0c:d6:6a:27:3e:d0:12:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7672c0fe08371764058c6ab85dfb5dcdc109f77e
Validity
Not Before: Mar 20 14:00:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7ebaaad2556dd4cf48fb12aa4b67a04959a61c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:87:1e:21:9a:ac:93:99:ff:ad:39:6b:86:cf:
48:25:6c:81:f4:0d:16:b8:7a:ac:d5:c6:36:44:03:
74:ac:24:7b:b0:b6:a6:67:45:b8:41:86:d7:73:3d:
07:3f:42:c8:f2:c5:85:30:a5:95:96:eb:c3:39:f2:
f7:e3:8a:f2:06:99:e2:83:fb:0f:c0:55:d8:a6:d1:
cf:a4:40:97:c1:91:ad:b8:95:c3:db:04:a4:58:bf:
ea:e3:a0:22:60:04:1d:a1:67:13:7f:8e:05:f3:82:
28:36:ff:95:85:d4:91:a5:64:10:79:83:e6:bf:51:
6a:8a:57:6b:fd:15:b5:21:a1:6e:7e:dd:f8:9d:fa:
d8:59:e3:7c:5f:d4:c3:4d:69:5b:93:ca:03:31:5c:
dd:58:2f:6e:46:3f:31:ba:29:61:44:7f:e9:fc:b8:
8b:aa:ee:9a:85:63:c2:dd:f1:43:01:5a:3c:92:a4:
70:ce:74:c3:64:94:b4:ab:f6:dc:62:85:a0:6d:94:
3c:47:4a:6d:b3:f7:fe:ed:53:b5:21:20:8e:df:1b:
03:fa:5c:cb:40:59:87:a2:a9:96:5c:cc:a1:96:4b:
b2:17:25:32:7c:a6:39:aa:c7:e8:37:2e:91:a2:2f:
16:24:21:73:77:da:92:7d:41:fb:44:f8:0c:82:91:
b9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:EB:AA:AD:25:56:DD:4C:F4:8F:B1:2A:A4:B6:7A:04:95:9A:61:C4
X509v3 Authority Key Identifier:
keyid:76:72:C0:FE:08:37:17:64:05:8C:6A:B8:5D:FB:5D:CD:C1:09:F7:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnLA_gg3F2QFjGq4XftdzcEJ934.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c9f2f6-191d-4f0f-a3c4-c3c80e4704e4/1/x-uqrSVW3Uz0j7EqpLZ6BJWaYcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c9f2f6-191d-4f0f-a3c4-c3c80e4704e4/1/dnLA_gg3F2QFjGq4XftdzcEJ934.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.145.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:ff:20:0c:23:4a:a3:0c:fb:b9:89:38:33:2e:f8:31:9b:03:
58:79:90:92:55:30:f2:bc:3e:f4:57:8f:3a:3a:da:44:e3:3c:
98:a6:22:76:22:be:77:d1:f2:8d:6b:e4:fc:9c:c8:b4:89:27:
f3:b1:49:68:67:24:d6:6a:ce:42:ca:8d:1d:dd:4e:b6:13:4a:
f7:07:92:94:32:e1:a5:16:ba:47:94:7b:ea:e8:aa:d9:41:8a:
5f:aa:c2:27:11:1f:f2:9a:bb:ed:8d:9c:51:10:62:70:70:15:
82:33:9a:33:44:51:63:df:99:68:05:fc:ec:fd:6d:75:be:c4:
6b:9e:83:1a:2f:d4:22:d5:cb:b6:c7:a1:28:e9:e4:30:25:d0:
1c:93:14:32:14:d9:e5:b7:55:3f:97:82:3d:e6:22:be:48:41:
b5:71:c3:f2:5f:32:64:5c:19:fd:16:d7:48:9d:7e:f8:5d:b3:
64:ab:a0:c0:c9:84:55:d0:05:d7:53:a0:ad:e9:22:94:c8:84:
a1:71:ec:8c:7e:df:c4:48:12:38:b6:38:3f:4e:62:93:68:75:
ec:7c:b1:b5:36:a6:93:0b:93:e4:4b:a5:55:7f:c8:e8:4e:d3:
0c:0f:0e:5f:cc:72:b8:f3:fd:a3:c9:4f:5c:5f:c1:28:09:15:
bb:91:a0:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYb/UozAcI4wrwzWaic+0BJIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2NzJjMGZlMDgzNzE3NjQwNThjNmFiODVkZmI1ZGNkYzEw
OWY3N2UwHhcNMjMwMzIwMTQwMDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjN2ViYWFhZDI1NTZkZDRjZjQ4ZmIxMmFhNGI2N2EwNDk1OWE2MWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4ceIZqsk5n/rTlrhs9IJWyB9A0W
uHqs1cY2RAN0rCR7sLamZ0W4QYbXcz0HP0LI8sWFMKWVluvDOfL344ryBpnig/sP
wFXYptHPpECXwZGtuJXD2wSkWL/q46AiYAQdoWcTf44F84IoNv+VhdSRpWQQeYPm
v1Fqildr/RW1IaFuft34nfrYWeN8X9TDTWlbk8oDMVzdWC9uRj8xuilhRH/p/LiL
qu6ahWPC3fFDAVo8kqRwznTDZJS0q/bcYoWgbZQ8R0pts/f+7VO1ISCO3xsD+lzL
QFmHoqmWXMyhlkuyFyUyfKY5qsfoNy6Roi8WJCFzd9qSfUH7RPgMgpG5OwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMfrqq0lVt1M9I+xKqS2egSVmmHEMB8GA1UdIwQY
MBaAFHZywP4INxdkBYxquF37Xc3BCfd+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG5MQV9nZzNGMlFGakdxNFhmdGR6Y0VKOTM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS9jOWYyZjYtMTkxZC00ZjBmLWEzYzQt
YzNjODBlNDcwNGU0LzEveC11cXJTVlczVXowajdFcXBMWjZCSldhWWNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS9jOWYyZjYtMTkxZC00ZjBmLWEzYzQtYzNjODBlNDcwNGU0
LzEvZG5MQV9nZzNGMlFGakdxNFhmdGR6Y0VKOTM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSuRMA0G
CSqGSIb3DQEBCwUAA4IBAQAa/yAMI0qjDPu5iTgzLvgxmwNYeZCSVTDyvD70V486
OtpE4zyYpiJ2Ir530fKNa+T8nMi0iSfzsUloZyTWas5Cyo0d3U62E0r3B5KUMuGl
FrpHlHvq6KrZQYpfqsInER/ymrvtjZxREGJwcBWCM5ozRFFj35loBfzs/W11vsRr
noMaL9Qi1cu2x6Eo6eQwJdAckxQyFNnlt1U/l4I95iK+SEG1ccPyXzJkXBn9FtdI
nX74XbNkq6DAyYRV0AXXU6Ct6SKUyIShceyMft/ESBI4tjg/TmKTaHXsfLG1NqaT
C5PkS6VVf8joTtMMDw5fzHK48/2jyU9cX8EoCRW7kaBq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:32 2024 by rpki-client on console-fra.rpki-client.org