Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/dXBwd8ThUrTzmt06f0QdlpipDmo.roa
File: dXBwd8ThUrTzmt06f0QdlpipDmo.roa (raw, json)
Hash identifier: cjkcs3gJm3uGXIA6U5xNIGYYTqEF03ALCC2iNC/LwyM=
Subject key identifier: 75:70:70:77:C4:E1:52:B4:F3:9A:DD:3A:7F:44:1D:96:98:A9:0E:6A
Certificate issuer: /CN=4d77ccd7a94415dfc68ccca874e94c2e8c22202d
Certificate serial: 01856F14A8BFE5BA086CEC5AF4DA10895882
Authority key identifier: 4D:77:CC:D7:A9:44:15:DF:C6:8C:CC:A8:74:E9:4C:2E:8C:22:20:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXfM16lEFd_GjMyodOlMLowiIC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/dXBwd8ThUrTzmt06f0QdlpipDmo.roa
Signing time: Sun 01 Jan 2023 20:45:02 +0000
ROA not before: Sun 01 Jan 2023 20:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136557
IP address blocks: 185.184.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:a8:bf:e5:ba:08:6c:ec:5a:f4:da:10:89:58:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d77ccd7a94415dfc68ccca874e94c2e8c22202d
Validity
Not Before: Jan 1 20:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75707077c4e152b4f39add3a7f441d9698a90e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:fd:c5:6f:3c:fb:db:67:d0:c6:9b:a1:f7:c3:
9c:55:f5:8f:bb:90:ad:9b:0b:99:b9:4f:4d:04:43:
7b:b8:ca:da:eb:75:f4:22:a9:37:34:c4:a5:b2:f8:
0e:e4:11:74:e4:4d:0a:f9:8b:1b:53:56:af:39:b1:
e6:d1:24:b9:55:71:64:e7:02:ae:ce:72:98:18:e1:
31:73:78:c8:9d:79:b2:b9:ca:a9:c9:e4:46:9d:1f:
32:b6:65:e3:ae:69:6f:9a:84:fc:c5:e4:d2:ab:1c:
01:e0:94:83:78:15:11:8c:d4:63:2e:3a:47:0b:71:
93:42:5a:7d:e1:b9:f5:10:b5:97:71:f8:e5:9f:d4:
01:1a:2d:09:16:cd:e5:1c:bc:4f:82:aa:92:f4:da:
69:8b:e1:26:be:5c:2f:8c:89:9e:b3:d2:e2:39:4d:
21:36:e9:66:ef:b9:92:e5:1a:34:aa:73:0a:b0:76:
18:28:ce:24:02:ec:f4:e9:0a:d0:b3:36:2d:ce:50:
5e:8c:15:c0:80:1c:2d:0b:a9:41:74:d3:fa:76:db:
03:b6:c4:a6:50:32:b0:32:30:2f:ed:2b:99:5b:59:
a3:f2:44:de:27:37:91:9a:60:1a:b5:04:68:0a:d3:
1a:ce:f1:db:63:23:90:0a:66:65:a1:3e:f2:1a:97:
b7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:70:70:77:C4:E1:52:B4:F3:9A:DD:3A:7F:44:1D:96:98:A9:0E:6A
X509v3 Authority Key Identifier:
keyid:4D:77:CC:D7:A9:44:15:DF:C6:8C:CC:A8:74:E9:4C:2E:8C:22:20:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXfM16lEFd_GjMyodOlMLowiIC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/dXBwd8ThUrTzmt06f0QdlpipDmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/TXfM16lEFd_GjMyodOlMLowiIC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.152.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:12:56:91:50:5b:0f:6b:28:a2:d8:4d:05:a1:4f:83:fc:af:
f7:ac:6e:33:d5:91:f1:99:92:11:29:91:14:30:31:a7:6c:7e:
eb:be:62:79:e1:6a:5f:74:16:64:12:8b:59:74:73:9d:fa:fa:
cd:a1:14:0d:29:94:96:d6:48:98:3c:42:b7:c5:a5:10:39:2f:
39:f3:5f:4c:cb:a4:6d:a6:38:7b:bf:37:ca:ca:5f:1b:8e:79:
78:4f:0a:9e:83:68:30:a7:8b:1f:1b:86:04:7c:1e:1f:4f:7d:
22:00:84:cd:7f:07:e3:90:b9:f2:41:4b:f2:4b:1c:33:bc:c9:
43:36:2e:1c:f5:27:e8:8b:41:ed:a4:9b:8f:64:6e:ec:b4:9e:
1c:af:36:6b:6d:f5:9f:71:25:c0:2c:d8:c0:10:0c:04:6f:05:
5e:8d:d9:4a:fb:66:8d:8b:83:c7:00:52:01:8f:18:22:3a:8c:
b6:99:95:5a:c6:0e:7f:93:85:34:9f:c2:e4:2b:93:ea:bd:d1:
6e:e0:47:35:27:d0:ea:88:34:d0:89:50:22:af:44:45:07:7e:
70:34:bb:be:59:52:4e:58:4c:28:e8:04:ca:3d:2e:96:f2:eb:
ae:09:31:66:aa:cf:c9:a5:52:ba:45:91:51:52:75:ee:ce:1f:
1c:12:c3:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFKi/5boIbOxa9NoQiViCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkNzdjY2Q3YTk0NDE1ZGZjNjhjY2NhODc0ZTk0YzJlOGMy
MjIwMmQwHhcNMjMwMTAxMjA0NTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTcwNzA3N2M0ZTE1MmI0ZjM5YWRkM2E3ZjQ0MWQ5Njk4YTkwZTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgP3Fbzz722fQxpuh98OcVfWPu5Ct
mwuZuU9NBEN7uMra63X0Iqk3NMSlsvgO5BF05E0K+YsbU1avObHm0SS5VXFk5wKu
znKYGOExc3jInXmyucqpyeRGnR8ytmXjrmlvmoT8xeTSqxwB4JSDeBURjNRjLjpH
C3GTQlp94bn1ELWXcfjln9QBGi0JFs3lHLxPgqqS9Nppi+EmvlwvjImes9LiOU0h
Nulm77mS5Ro0qnMKsHYYKM4kAuz06QrQszYtzlBejBXAgBwtC6lBdNP6dtsDtsSm
UDKwMjAv7SuZW1mj8kTeJzeRmmAatQRoCtMazvHbYyOQCmZloT7yGpe3sQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHVwcHfE4VK085rdOn9EHZaYqQ5qMB8GA1UdIwQY
MBaAFE13zNepRBXfxozMqHTpTC6MIiAtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFhmTTE2bEVGZF9Hak15b2RPbE1Mb3dpSUMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9kNjA4YjgtNTAxZi00OTFmLWEyZjIt
MTBlNTdmNTZhMTdhLzEvZFhCd2Q4VGhVclR6bXQwNmYwUWRscGlwRG1vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9kNjA4YjgtNTAxZi00OTFmLWEyZjItMTBlNTdmNTZhMTdh
LzEvVFhmTTE2bEVGZF9Hak15b2RPbE1Mb3dpSUMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubiYMA0G
CSqGSIb3DQEBCwUAA4IBAQCbElaRUFsPayii2E0FoU+D/K/3rG4z1ZHxmZIRKZEU
MDGnbH7rvmJ54WpfdBZkEotZdHOd+vrNoRQNKZSW1kiYPEK3xaUQOS85819My6Rt
pjh7vzfKyl8bjnl4Twqeg2gwp4sfG4YEfB4fT30iAITNfwfjkLnyQUvySxwzvMlD
Ni4c9Sfoi0HtpJuPZG7stJ4crzZrbfWfcSXALNjAEAwEbwVejdlK+2aNi4PHAFIB
jxgiOoy2mZVaxg5/k4U0n8LkK5PqvdFu4Ec1J9DqiDTQiVAir0RFB35wNLu+WVJO
WEwo6ATKPS6W8uuuCTFmqs/JpVK6RZFRUnXuzh8cEsOi
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:25 2024 by rpki-client on console-ams.rpki-client.org