Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/DIHRC2PPV0FrAHBfQXVIleY4mj8.roa
File: DIHRC2PPV0FrAHBfQXVIleY4mj8.roa (raw, json)
Hash identifier: YsVtvzIIPmVfKvA5Uch4YRwXCthCy0dMT0Xppjx+70s=
Subject key identifier: 0C:81:D1:0B:63:CF:57:41:6B:00:70:5F:41:75:48:95:E6:38:9A:3F
Certificate issuer: /CN=e4c86da3f483246518d368034bc86113906a55a3
Certificate serial: 019277DEEF4FC740E62EBB60CF3AADF2DEF7
Authority key identifier: E4:C8:6D:A3:F4:83:24:65:18:D3:68:03:4B:C8:61:13:90:6A:55:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/DIHRC2PPV0FrAHBfQXVIleY4mj8.roa
Signing time: Thu 10 Oct 2024 19:19:11 +0000
ROA not before: Thu 10 Oct 2024 19:19:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.10.120.0/23 maxlen: 23
185.10.122.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 11 Oct 2024 08:34:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:77:de:ef:4f:c7:40:e6:2e:bb:60:cf:3a:ad:f2:de:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4c86da3f483246518d368034bc86113906a55a3
Validity
Not Before: Oct 10 19:19:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c81d10b63cf57416b00705f41754895e6389a3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:89:c6:f4:44:c1:ce:ae:c1:22:82:55:72:c3:
98:01:14:6d:ca:48:a0:0d:ae:bf:e1:80:b3:4d:57:
a0:f4:03:6b:86:37:a4:82:af:bb:41:90:9a:83:f8:
15:fd:81:ec:bc:f5:23:5e:67:48:e9:55:cd:48:3e:
5e:56:37:2d:f5:68:4e:b2:0f:8f:99:56:5a:8d:56:
db:3e:de:80:22:fb:5e:42:cd:21:5d:a6:91:94:23:
d5:3a:a5:70:86:97:d4:e8:e4:fc:f2:04:ed:bd:46:
af:30:76:3b:f8:58:6a:0c:f6:77:b4:e2:7e:0b:0d:
d8:cf:e7:72:a9:22:3a:de:2a:06:84:65:a6:b7:a3:
5e:a5:13:c1:70:04:8a:1d:20:f9:7e:4f:ab:a6:44:
93:7e:22:24:36:d8:f1:74:42:a7:93:b2:b0:f9:18:
1f:a5:84:58:3a:e5:ac:8c:ff:ec:e0:66:14:7f:a6:
53:51:db:78:b5:2c:9f:a8:cc:84:d3:a0:3a:49:2d:
37:8c:45:12:a5:78:27:80:c3:42:15:81:c3:fb:01:
7a:73:56:21:44:96:6b:d2:85:6c:e3:27:f3:57:81:
90:da:5e:8c:1e:49:c7:0e:a6:00:ac:47:8f:a6:60:
fd:76:7e:6d:ee:31:3d:bb:26:22:f7:b7:6b:b7:e6:
9d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:81:D1:0B:63:CF:57:41:6B:00:70:5F:41:75:48:95:E6:38:9A:3F
X509v3 Authority Key Identifier:
keyid:E4:C8:6D:A3:F4:83:24:65:18:D3:68:03:4B:C8:61:13:90:6A:55:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/DIHRC2PPV0FrAHBfQXVIleY4mj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/5Mhto_SDJGUY02gDS8hhE5BqVaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.120.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:7c:62:06:0c:aa:a8:90:f2:6d:85:6e:78:e7:33:2b:a9:97:
fe:b8:c6:8b:5c:2e:04:5d:89:bb:93:20:17:c5:c0:cc:f8:be:
01:15:23:54:50:03:dc:1d:54:f2:7a:e1:4a:fc:ac:41:b3:b3:
e4:a3:3c:c1:d0:36:5d:9e:f4:97:f5:6d:1d:d0:90:d5:1d:7b:
c5:fd:ed:8b:16:64:25:2a:07:27:df:2c:62:ec:0f:3d:ce:7d:
2e:77:79:23:76:2e:61:86:82:cf:98:58:36:cb:89:84:51:3f:
74:bb:37:de:19:43:df:3e:7e:da:d5:12:a0:0a:f4:b6:83:bc:
2d:54:2e:f6:d4:7f:0c:14:5a:c8:27:87:29:a1:31:b3:cf:d5:
f3:eb:0f:f4:9b:33:5a:a4:1e:5b:49:01:95:a2:48:03:7a:de:
40:66:b3:1e:b5:5b:33:d2:60:68:fa:6d:c1:38:34:cc:42:8d:
8b:47:06:ec:de:9d:c8:a7:fd:30:60:85:a5:cc:d3:a9:99:61:
0e:64:46:ee:45:76:61:95:d2:58:c8:10:ab:ce:e9:93:18:59:
b2:47:a2:a9:bc:51:00:ad:61:f4:e2:08:7c:6d:df:dc:6f:53:
fc:c8:b4:34:e9:03:d4:5b:1c:4c:bd:e5:04:4f:9d:ad:8d:7d:
8a:0a:83:70
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJ33u9Px0DmLrtgzzqt8t73MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0Yzg2ZGEzZjQ4MzI0NjUxOGQzNjgwMzRiYzg2MTEzOTA2
YTU1YTMwHhcNMjQxMDEwMTkxOTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzgxZDEwYjYzY2Y1NzQxNmIwMDcwNWY0MTc1NDg5NWU2Mzg5YTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYnG9ETBzq7BIoJVcsOYARRtykig
Da6/4YCzTVeg9ANrhjekgq+7QZCag/gV/YHsvPUjXmdI6VXNSD5eVjct9WhOsg+P
mVZajVbbPt6AIvteQs0hXaaRlCPVOqVwhpfU6OT88gTtvUavMHY7+FhqDPZ3tOJ+
Cw3Yz+dyqSI63ioGhGWmt6NepRPBcASKHSD5fk+rpkSTfiIkNtjxdEKnk7Kw+Rgf
pYRYOuWsjP/s4GYUf6ZTUdt4tSyfqMyE06A6SS03jEUSpXgngMNCFYHD+wF6c1Yh
RJZr0oVs4yfzV4GQ2l6MHknHDqYArEePpmD9dn5t7jE9uyYi97drt+adcQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAyB0Qtjz1dBawBwX0F1SJXmOJo/MB8GA1UdIwQY
MBaAFOTIbaP0gyRlGNNoA0vIYROQalWjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNU1odG9fU0RKR1VZMDJnRFM4aGhFNUJxVmFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iNGU1MDMtNTc0Yi00NTY1LTkyMTct
YzUxMWEzZTkxMmI2LzEvRElIUkMyUFBWMEZyQUhCZlFYVklsZVk0bWo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9iNGU1MDMtNTc0Yi00NTY1LTkyMTctYzUxMWEzZTkxMmI2
LzEvNU1odG9fU0RKR1VZMDJnRFM4aGhFNUJxVmFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuQp4MA0G
CSqGSIb3DQEBCwUAA4IBAQCyfGIGDKqokPJthW545zMrqZf+uMaLXC4EXYm7kyAX
xcDM+L4BFSNUUAPcHVTyeuFK/KxBs7PkozzB0DZdnvSX9W0d0JDVHXvF/e2LFmQl
Kgcn3yxi7A89zn0ud3kjdi5hhoLPmFg2y4mEUT90uzfeGUPfPn7a1RKgCvS2g7wt
VC721H8MFFrIJ4cpoTGzz9Xz6w/0mzNapB5bSQGVokgDet5AZrMetVsz0mBo+m3B
ODTMQo2LRwbs3p3Ip/0wYIWlzNOpmWEOZEbuRXZhldJYyBCrzumTGFmyR6KpvFEA
rWH04gh8bd/cb1P8yLQ06QPUWxxMveUET52tjX2KCoNw
-----END CERTIFICATE-----
Generated at Fri Oct 11 13:27:56 2024 by rpki-client on console-ams.rpki-client.org