Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/0bab1f-92d6-42f0-b952-442c080ae541/1/jotjkvXxefhrLAkj3R8Mrjb7wI8.roa
File: jotjkvXxefhrLAkj3R8Mrjb7wI8.roa (raw, json)
Hash identifier: QtizqcMksUAg21GimQOtRHIyn2VAsCJ7TdswL7BV4/4=
Subject key identifier: 8E:8B:63:92:F5:F1:79:F8:6B:2C:09:23:DD:1F:0C:AE:36:FB:C0:8F
Certificate issuer: /CN=36261c261756fa03ac57d1bfc4db856ef808975a
Certificate serial: 01863B78F515EB028C3A24A89D40AF456B94
Authority key identifier: 36:26:1C:26:17:56:FA:03:AC:57:D1:BF:C4:DB:85:6E:F8:08:97:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NiYcJhdW-gOsV9G_xNuFbvgIl1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/0bab1f-92d6-42f0-b952-442c080ae541/1/jotjkvXxefhrLAkj3R8Mrjb7wI8.roa
Signing time: Fri 10 Feb 2023 13:17:08 +0000
ROA not before: Fri 10 Feb 2023 13:17:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20860
IP address blocks: 185.35.77.0/24 maxlen: 24
2a00:e120::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3b:78:f5:15:eb:02:8c:3a:24:a8:9d:40:af:45:6b:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36261c261756fa03ac57d1bfc4db856ef808975a
Validity
Not Before: Feb 10 13:17:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e8b6392f5f179f86b2c0923dd1f0cae36fbc08f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:14:c7:96:72:40:bc:84:4e:37:fd:1f:f7:bc:
d1:40:d8:38:0d:71:05:d6:87:56:e9:fa:19:5f:cd:
94:87:0f:50:4d:80:82:2d:b3:26:df:00:2e:ff:1a:
ba:52:cf:37:d8:0a:e4:a6:4e:68:20:78:50:77:5d:
71:be:b6:ee:af:7f:e2:17:61:2f:c6:e1:6d:dd:7f:
b2:b6:03:81:94:54:df:a7:37:49:1d:61:28:b8:da:
06:a1:75:b6:98:93:37:86:c9:38:a8:60:25:21:a7:
57:12:b1:61:ba:a3:18:ef:1a:a8:d8:3e:9c:bf:5b:
e2:f3:76:d9:6f:ea:54:c6:11:fc:b7:94:38:a9:1d:
f9:c2:f6:f2:ee:57:a5:80:92:15:b6:89:ea:b9:9a:
07:04:9d:95:55:4a:a4:43:74:52:de:20:82:df:3b:
5f:a5:66:61:7d:0b:57:1b:bd:69:3f:5a:0e:e9:66:
d5:d3:23:e4:28:aa:02:44:e2:a9:d5:19:2a:1e:25:
38:56:7b:3c:1a:2f:73:42:1b:dc:2e:a7:20:72:0d:
4b:bd:ac:f3:b6:3d:9d:ef:12:89:2c:81:1f:ce:13:
82:0f:00:f9:c1:ac:ff:b1:d5:ed:ce:b3:2f:75:12:
08:9c:19:0e:f8:ac:39:91:5d:44:f8:a3:d7:35:b4:
58:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:8B:63:92:F5:F1:79:F8:6B:2C:09:23:DD:1F:0C:AE:36:FB:C0:8F
X509v3 Authority Key Identifier:
keyid:36:26:1C:26:17:56:FA:03:AC:57:D1:BF:C4:DB:85:6E:F8:08:97:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NiYcJhdW-gOsV9G_xNuFbvgIl1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/0bab1f-92d6-42f0-b952-442c080ae541/1/jotjkvXxefhrLAkj3R8Mrjb7wI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/0bab1f-92d6-42f0-b952-442c080ae541/1/NiYcJhdW-gOsV9G_xNuFbvgIl1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.77.0/24
IPv6:
2a00:e120::/32
Signature Algorithm: sha256WithRSAEncryption
a4:ac:df:39:0e:84:e7:76:e0:0f:ac:37:c5:ff:f4:43:82:82:
fa:b7:74:fe:1c:16:b4:93:dd:31:78:ab:e0:6b:69:03:7a:08:
28:12:ad:f0:4b:50:bc:9b:5a:f3:5d:3e:a9:bc:ef:c6:bb:1f:
3a:96:98:c3:06:ce:d6:83:d7:d0:31:97:a0:76:8c:d0:f3:aa:
af:41:cd:5e:f7:76:40:85:0e:3f:3f:45:79:ef:0c:89:7a:0e:
a7:c0:0d:34:ef:74:26:d1:fb:a1:93:ad:e9:59:67:ea:85:23:
23:b8:80:59:1c:3d:b9:54:c8:bc:72:da:a6:c4:ef:cc:97:25:
d1:60:a3:3b:50:c6:e4:ab:f9:79:57:32:e3:21:47:98:9e:ff:
88:23:0a:07:8b:93:bf:6f:f2:cd:9b:78:23:df:fc:94:03:a0:
05:b2:6b:2c:3a:3f:f9:0e:fd:8b:85:e1:68:5d:f1:4d:6a:f0:
a4:06:96:0d:32:1b:cc:04:c4:ec:a4:e7:c0:03:be:bc:a7:ba:
62:43:27:43:5c:9b:48:35:cf:6e:44:ea:5a:13:94:71:92:3d:
f6:35:e4:46:a5:59:4d:e8:64:46:9a:f3:a1:d7:a9:06:32:f0:
1b:7e:86:a9:e0:b5:67:e8:06:f8:36:cd:1b:59:49:24:2f:54:
9c:dc:0c:b5
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYY7ePUV6wKMOiSonUCvRWuUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2MjYxYzI2MTc1NmZhMDNhYzU3ZDFiZmM0ZGI4NTZlZjgw
ODk3NWEwHhcNMjMwMjEwMTMxNzA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZThiNjM5MmY1ZjE3OWY4NmIyYzA5MjNkZDFmMGNhZTM2ZmJjMDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBTHlnJAvIRON/0f97zRQNg4DXEF
1odW6foZX82Uhw9QTYCCLbMm3wAu/xq6Us832Arkpk5oIHhQd11xvrbur3/iF2Ev
xuFt3X+ytgOBlFTfpzdJHWEouNoGoXW2mJM3hsk4qGAlIadXErFhuqMY7xqo2D6c
v1vi83bZb+pUxhH8t5Q4qR35wvby7lelgJIVtonquZoHBJ2VVUqkQ3RS3iCC3ztf
pWZhfQtXG71pP1oO6WbV0yPkKKoCROKp1RkqHiU4Vns8Gi9zQhvcLqcgcg1Lvazz
tj2d7xKJLIEfzhOCDwD5waz/sdXtzrMvdRIInBkO+Kw5kV1E+KPXNbRYAwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFI6LY5L18Xn4aywJI90fDK42+8CPMB8GA1UdIwQY
MBaAFDYmHCYXVvoDrFfRv8TbhW74CJdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmlZY0poZFctZ09zVjlHX3hOdUZidmdJbDFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8wYmFiMWYtOTJkNi00MmYwLWI5NTIt
NDQyYzA4MGFlNTQxLzEvam90amt2WHhlZmhyTEFrajNSOE1yamI3d0k4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS8wYmFiMWYtOTJkNi00MmYwLWI5NTItNDQyYzA4MGFlNTQx
LzEvTmlZY0poZFctZ09zVjlHX3hOdUZidmdJbDFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuSNNMA0E
AgACMAcDBQAqAOEgMA0GCSqGSIb3DQEBCwUAA4IBAQCkrN85DoTnduAPrDfF//RD
goL6t3T+HBa0k90xeKvga2kDeggoEq3wS1C8m1rzXT6pvO/Gux86lpjDBs7Wg9fQ
MZegdozQ86qvQc1e93ZAhQ4/P0V57wyJeg6nwA0073Qm0fuhk63pWWfqhSMjuIBZ
HD25VMi8ctqmxO/MlyXRYKM7UMbkq/l5VzLjIUeYnv+IIwoHi5O/b/LNm3gj3/yU
A6AFsmssOj/5Dv2LheFoXfFNavCkBpYNMhvMBMTspOfAA768p7piQydDXJtINc9u
ROpaE5Rxkj32NeRGpVlN6GRGmvOh16kGMvAbfoap4LVn6Ab4Ns0bWUkkL1Sc3Ay1
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:45 2024 by rpki-client on console-fra.rpki-client.org