Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/0bab1f-92d6-42f0-b952-442c080ae541/1/assG0SghAvw43TzQ44Y4IJNLd3I.roa
File: assG0SghAvw43TzQ44Y4IJNLd3I.roa (raw, json)
Hash identifier: n5TzeGJU9APKHKr4EfZMnTnotzZc+cB67KrSvFSJuZs=
Subject key identifier: 6A:CB:06:D1:28:21:02:FC:38:DD:3C:D0:E3:86:38:20:93:4B:77:72
Certificate issuer: /CN=36261c261756fa03ac57d1bfc4db856ef808975a
Certificate serial: 01856BD33C1978BDEB75ABBBF0746B50EB99
Authority key identifier: 36:26:1C:26:17:56:FA:03:AC:57:D1:BF:C4:DB:85:6E:F8:08:97:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NiYcJhdW-gOsV9G_xNuFbvgIl1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/0bab1f-92d6-42f0-b952-442c080ae541/1/assG0SghAvw43TzQ44Y4IJNLd3I.roa
Signing time: Sun 01 Jan 2023 05:34:43 +0000
ROA not before: Sun 01 Jan 2023 05:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.35.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Feb 2023 13:17:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:3c:19:78:bd:eb:75:ab:bb:f0:74:6b:50:eb:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36261c261756fa03ac57d1bfc4db856ef808975a
Validity
Not Before: Jan 1 05:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6acb06d1282102fc38dd3cd0e3863820934b7772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:83:57:f6:ed:cf:1d:96:bd:6c:74:35:b6:68:
69:0f:ec:ee:9d:60:bb:29:38:16:d6:4b:b6:2e:4f:
03:bc:de:c7:29:b4:b0:b9:c3:d5:80:8b:4f:f4:e0:
6a:d7:9f:72:21:fc:d6:1a:2d:8d:09:22:36:33:f4:
8d:64:0b:09:38:e0:70:03:e3:ac:ee:f9:a1:a0:37:
b2:c9:4d:f6:38:c1:7f:9b:7b:a7:63:f4:8d:50:67:
7c:6e:36:12:a2:b0:15:ef:be:42:2f:a9:f1:a8:9e:
d0:f6:f3:42:4f:79:28:c6:06:84:92:3b:9b:7a:07:
99:a0:34:af:d2:bd:90:98:bc:8f:f2:7d:a5:6c:6e:
d6:97:74:c3:db:40:09:55:e6:4c:55:e8:f7:c3:d3:
81:c5:67:14:53:93:ad:83:79:38:9e:be:15:cf:c3:
bf:5b:a3:c7:09:24:c7:40:dc:0a:6c:c2:30:c6:01:
86:f6:ff:87:8b:96:32:e1:65:34:25:e5:47:a3:27:
d6:10:74:f3:47:45:f1:4c:6f:71:e7:07:98:5b:44:
e5:0f:84:28:d0:e2:8a:d3:4f:df:ae:09:c7:cd:59:
52:df:28:52:80:53:93:c2:1f:ca:6c:56:c1:84:82:
7c:6d:3f:11:70:9a:77:b2:ef:60:fb:9d:78:6a:2e:
32:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:CB:06:D1:28:21:02:FC:38:DD:3C:D0:E3:86:38:20:93:4B:77:72
X509v3 Authority Key Identifier:
keyid:36:26:1C:26:17:56:FA:03:AC:57:D1:BF:C4:DB:85:6E:F8:08:97:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NiYcJhdW-gOsV9G_xNuFbvgIl1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/0bab1f-92d6-42f0-b952-442c080ae541/1/assG0SghAvw43TzQ44Y4IJNLd3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/0bab1f-92d6-42f0-b952-442c080ae541/1/NiYcJhdW-gOsV9G_xNuFbvgIl1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.76.0/24
Signature Algorithm: sha256WithRSAEncryption
75:8d:a4:90:27:53:e7:09:93:56:0e:00:59:d5:20:b7:15:46:
42:ec:e1:50:51:7a:80:56:4e:fc:de:19:7a:64:ce:10:09:65:
98:d5:3b:9b:4a:7c:64:2d:92:3b:2d:9a:18:ba:9e:a5:99:61:
dc:51:92:bc:2e:a4:66:f0:b2:b5:8d:ad:bb:77:8c:c8:07:11:
ed:50:e5:de:e8:65:a1:00:6a:1b:d4:97:44:18:a1:83:97:69:
ec:b3:86:a2:c2:c6:bc:2d:2f:5c:bf:a5:54:ae:93:c0:36:91:
49:4c:ea:2b:3c:89:e8:77:43:f6:13:1c:27:66:76:72:3d:fe:
03:3a:25:2a:3c:31:ba:ff:93:a2:9a:0f:d9:43:8d:94:3e:33:
e1:0b:d8:65:78:31:3e:77:aa:fb:ba:03:a6:0a:7b:11:c5:3b:
c4:42:4b:a0:63:06:97:50:a4:03:fd:78:c9:31:3d:3e:4f:f6:
4c:a2:dd:34:70:24:9d:15:d4:b2:f3:44:54:5f:fa:33:76:aa:
7c:d4:0e:db:e8:2d:4d:3d:12:80:20:a6:c6:17:1a:9c:51:71:
14:37:9d:44:7a:90:eb:36:05:ce:64:ac:7b:26:54:33:ec:30:
48:08:77:7d:65:04:fd:e8:1a:d4:20:31:a9:33:ff:ee:65:21:
0d:88:cb:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr0zwZeL3rdau78HRrUOuZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2MjYxYzI2MTc1NmZhMDNhYzU3ZDFiZmM0ZGI4NTZlZjgw
ODk3NWEwHhcNMjMwMTAxMDUzNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YWNiMDZkMTI4MjEwMmZjMzhkZDNjZDBlMzg2MzgyMDkzNGI3NzcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYNX9u3PHZa9bHQ1tmhpD+zunWC7
KTgW1ku2Lk8DvN7HKbSwucPVgItP9OBq159yIfzWGi2NCSI2M/SNZAsJOOBwA+Os
7vmhoDeyyU32OMF/m3unY/SNUGd8bjYSorAV775CL6nxqJ7Q9vNCT3koxgaEkjub
egeZoDSv0r2QmLyP8n2lbG7Wl3TD20AJVeZMVej3w9OBxWcUU5Otg3k4nr4Vz8O/
W6PHCSTHQNwKbMIwxgGG9v+Hi5Yy4WU0JeVHoyfWEHTzR0XxTG9x5weYW0TlD4Qo
0OKK00/frgnHzVlS3yhSgFOTwh/KbFbBhIJ8bT8RcJp3su9g+514ai4yHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGrLBtEoIQL8ON080OOGOCCTS3dyMB8GA1UdIwQY
MBaAFDYmHCYXVvoDrFfRv8TbhW74CJdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmlZY0poZFctZ09zVjlHX3hOdUZidmdJbDFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8wYmFiMWYtOTJkNi00MmYwLWI5NTIt
NDQyYzA4MGFlNTQxLzEvYXNzRzBTZ2hBdnc0M1R6UTQ0WTRJSk5MZDNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS8wYmFiMWYtOTJkNi00MmYwLWI5NTItNDQyYzA4MGFlNTQx
LzEvTmlZY0poZFctZ09zVjlHX3hOdUZidmdJbDFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSNMMA0G
CSqGSIb3DQEBCwUAA4IBAQB1jaSQJ1PnCZNWDgBZ1SC3FUZC7OFQUXqAVk783hl6
ZM4QCWWY1TubSnxkLZI7LZoYup6lmWHcUZK8LqRm8LK1ja27d4zIBxHtUOXe6GWh
AGob1JdEGKGDl2nss4aiwsa8LS9cv6VUrpPANpFJTOorPInod0P2ExwnZnZyPf4D
OiUqPDG6/5Oimg/ZQ42UPjPhC9hleDE+d6r7ugOmCnsRxTvEQkugYwaXUKQD/XjJ
MT0+T/ZMot00cCSdFdSy80RUX/ozdqp81A7b6C1NPRKAIKbGFxqcUXEUN51EepDr
NgXOZKx7JlQz7DBICHd9ZQT96BrUIDGpM//uZSENiMuE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:45 2024 by rpki-client on console-fra.rpki-client.org