Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/VhXLtPow87MRdY-uNDtEfGO_cMY.roa
File: VhXLtPow87MRdY-uNDtEfGO_cMY.roa (raw, json)
Hash identifier: XTORZMnDZ/NRBKajjMZI9vzlj4+NP2Ixwu8Sk6cUCVQ=
Subject key identifier: 56:15:CB:B4:FA:30:F3:B3:11:75:8F:AE:34:3B:44:7C:63:BF:70:C6
Certificate issuer: /CN=b799ac989c44b2e1cdabc258e96ca93caad4bd64
Certificate serial: 0186278ABEF83A635D0ABF9F3C68D3D0C85E
Authority key identifier: B7:99:AC:98:9C:44:B2:E1:CD:AB:C2:58:E9:6C:A9:3C:AA:D4:BD:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t5msmJxEsuHNq8JY6WypPKrUvWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/VhXLtPow87MRdY-uNDtEfGO_cMY.roa
Signing time: Mon 06 Feb 2023 16:24:09 +0000
ROA not before: Mon 06 Feb 2023 16:24:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206359
IP address blocks: 185.242.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:27:8a:be:f8:3a:63:5d:0a:bf:9f:3c:68:d3:d0:c8:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b799ac989c44b2e1cdabc258e96ca93caad4bd64
Validity
Not Before: Feb 6 16:24:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5615cbb4fa30f3b311758fae343b447c63bf70c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a7:77:42:51:7c:a3:7e:4f:d3:ad:a4:9e:9e:
31:a4:d5:b2:c0:2c:98:b4:07:8c:49:17:5b:1f:4b:
8c:14:dc:d2:88:74:9e:2e:fa:4c:66:5f:d9:33:3f:
2d:98:e5:dc:9c:fc:86:8d:f1:a9:99:4d:46:cf:4f:
c1:33:57:e0:46:c3:c4:e8:e8:5e:d0:8e:71:14:f2:
bb:cb:2b:c2:4d:d8:01:3c:ea:1d:58:d7:8b:05:c7:
d7:64:3d:ea:1e:90:a2:40:99:13:f6:9d:c8:d7:d8:
f5:cd:38:eb:3e:a3:57:8c:32:08:51:61:3f:48:51:
d9:1f:45:12:96:5e:b4:b4:15:d9:dc:fa:c5:42:6e:
1b:3b:39:af:2c:96:81:78:c6:ae:54:15:54:e4:ce:
8f:de:3a:f8:d4:d9:07:1b:96:fa:7c:ec:b5:2b:50:
7d:63:5a:7d:f4:e5:ff:be:3f:e4:67:38:9b:df:e0:
4b:ec:ce:e1:b0:97:f1:72:d8:4f:88:d8:59:bf:33:
49:01:25:ee:4f:f9:0d:e1:7c:68:e4:4a:4a:f3:ba:
5a:ff:40:40:32:44:c2:4d:50:14:97:68:fd:48:db:
0d:f7:81:eb:d5:3b:41:70:77:b4:62:5a:41:23:b4:
b2:fe:4a:1b:29:55:d7:35:54:79:b1:91:8d:1c:5a:
36:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:15:CB:B4:FA:30:F3:B3:11:75:8F:AE:34:3B:44:7C:63:BF:70:C6
X509v3 Authority Key Identifier:
keyid:B7:99:AC:98:9C:44:B2:E1:CD:AB:C2:58:E9:6C:A9:3C:AA:D4:BD:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t5msmJxEsuHNq8JY6WypPKrUvWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/VhXLtPow87MRdY-uNDtEfGO_cMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/t5msmJxEsuHNq8JY6WypPKrUvWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.136.0/24
Signature Algorithm: sha256WithRSAEncryption
16:2c:ea:7d:ce:34:c3:1b:c1:b6:f2:8c:6b:b7:c7:04:8b:df:
cf:4d:2a:7c:14:42:75:2d:74:d3:2e:93:78:fa:32:11:16:c8:
a4:42:d4:20:4d:32:4e:fc:e6:3d:29:4f:4b:72:93:e7:11:5a:
ea:62:43:5d:b4:1d:f1:4e:b6:f2:7e:1a:b2:32:dc:86:71:9f:
b5:b7:f2:0f:c5:88:ab:dd:f5:29:f7:91:e5:3b:e2:a5:69:33:
15:50:c9:48:cc:f2:12:e1:e4:ef:cc:9d:6b:15:29:af:bc:7b:
0d:4b:51:3b:d5:a1:84:31:35:6b:62:88:51:ce:0c:de:4f:e4:
df:e5:59:32:2e:72:d4:fd:7d:f2:d4:4b:99:c6:8d:04:d0:91:
bc:82:59:c4:2c:6f:6b:f8:c2:c7:44:02:c9:1b:d3:cd:71:6a:
db:b0:7e:cb:20:3e:f8:cc:a4:8a:7e:83:a2:c2:bf:f3:a5:6b:
c7:9e:5f:36:f1:9a:36:db:c2:6c:b9:22:39:8a:00:50:09:a3:
1b:fa:3d:30:2e:9a:a9:3c:5f:51:0e:43:cb:fb:3a:49:fc:ef:
1f:33:34:d9:e0:f6:5f:b1:5b:51:ad:81:fd:98:d3:d0:b1:90:
ec:d1:7c:94:61:cb:d2:7f:44:64:bd:78:56:93:06:56:d7:d0:
65:c4:2b:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYnir74OmNdCr+fPGjT0MheMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3OTlhYzk4OWM0NGIyZTFjZGFiYzI1OGU5NmNhOTNjYWFk
NGJkNjQwHhcNMjMwMjA2MTYyNDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjE1Y2JiNGZhMzBmM2IzMTE3NThmYWUzNDNiNDQ3YzYzYmY3MGM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6d3QlF8o35P062knp4xpNWywCyY
tAeMSRdbH0uMFNzSiHSeLvpMZl/ZMz8tmOXcnPyGjfGpmU1Gz0/BM1fgRsPE6Ohe
0I5xFPK7yyvCTdgBPOodWNeLBcfXZD3qHpCiQJkT9p3I19j1zTjrPqNXjDIIUWE/
SFHZH0USll60tBXZ3PrFQm4bOzmvLJaBeMauVBVU5M6P3jr41NkHG5b6fOy1K1B9
Y1p99OX/vj/kZzib3+BL7M7hsJfxcthPiNhZvzNJASXuT/kN4Xxo5EpK87pa/0BA
MkTCTVAUl2j9SNsN94Hr1TtBcHe0YlpBI7Sy/kobKVXXNVR5sZGNHFo22wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFYVy7T6MPOzEXWPrjQ7RHxjv3DGMB8GA1UdIwQY
MBaAFLeZrJicRLLhzavCWOlsqTyq1L1kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDVtc21KeEVzdUhOcThKWTZXeXBQS3JVdldRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8yZTVjNDktMGQ3NC00ODdhLWE4MWMt
OTE3NGRmNGRkYjlhLzEvVmhYTHRQb3c4N01SZFktdU5EdEVmR09fY01ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC8yZTVjNDktMGQ3NC00ODdhLWE4MWMtOTE3NGRmNGRkYjlh
LzEvdDVtc21KeEVzdUhOcThKWTZXeXBQS3JVdldRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufKIMA0G
CSqGSIb3DQEBCwUAA4IBAQAWLOp9zjTDG8G28oxrt8cEi9/PTSp8FEJ1LXTTLpN4
+jIRFsikQtQgTTJO/OY9KU9LcpPnEVrqYkNdtB3xTrbyfhqyMtyGcZ+1t/IPxYir
3fUp95HlO+KlaTMVUMlIzPIS4eTvzJ1rFSmvvHsNS1E71aGEMTVrYohRzgzeT+Tf
5VkyLnLU/X3y1EuZxo0E0JG8glnELG9r+MLHRALJG9PNcWrbsH7LID74zKSKfoOi
wr/zpWvHnl828Zo228JsuSI5igBQCaMb+j0wLpqpPF9RDkPL+zpJ/O8fMzTZ4PZf
sVtRrYH9mNPQsZDs0XyUYcvSf0RkvXhWkwZW19BlxCvd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:43 2024 by rpki-client on console-fra.rpki-client.org