Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/D9CjrqPlt9dBEg4dHsWCVrVFGFA.roa
File: D9CjrqPlt9dBEg4dHsWCVrVFGFA.roa (raw, json)
Hash identifier: vSbr/iWfb4PXglAsQdKkdgYv5XxS++gknjUTGSXu5WM=
Subject key identifier: 0F:D0:A3:AE:A3:E5:B7:D7:41:12:0E:1D:1E:C5:82:56:B5:45:18:50
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 018B37DFF71C358BBC6650777A0EE11EC7FF
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/D9CjrqPlt9dBEg4dHsWCVrVFGFA.roa
Signing time: Mon 16 Oct 2023 09:45:06 +0000
ROA not before: Mon 16 Oct 2023 09:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 185.255.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Dec 2023 07:20:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:37:df:f7:1c:35:8b:bc:66:50:77:7a:0e:e1:1e:c7:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Oct 16 09:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fd0a3aea3e5b7d741120e1d1ec58256b5451850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5e:95:f7:7f:29:a1:e6:39:a6:b5:01:20:cc:
fd:f6:9b:cc:3d:d5:bc:c7:03:af:07:42:80:b8:17:
a4:1c:ae:32:b7:44:6a:0a:72:48:12:32:1a:f8:2e:
43:db:db:e3:f7:b6:c3:a2:18:5e:ee:66:d2:3e:77:
df:1b:b4:26:e2:c2:09:13:07:dd:19:e0:a5:b9:81:
fb:47:4d:c4:a7:8f:94:26:41:43:34:24:05:fe:9f:
24:01:54:be:da:37:4d:41:b2:29:6f:ba:d7:dd:47:
93:83:7c:f4:a7:8b:63:85:86:28:27:0e:72:45:55:
d5:5e:ef:4b:b0:d8:67:5a:f8:e3:d1:fa:67:94:5a:
c1:4e:a8:44:ed:9e:d7:03:2f:5b:33:db:3e:ec:53:
e4:f1:8d:c7:1c:d4:34:82:fb:dc:1f:72:ec:59:95:
6e:05:d5:66:60:36:0d:67:97:d5:ad:33:ac:f8:61:
5e:a3:8e:8b:fd:43:bb:28:ab:45:b7:cd:ca:25:03:
02:3d:0a:7d:31:5c:6b:2b:0d:ae:dc:bd:bd:9f:12:
fb:8a:cd:ea:97:8e:1c:c6:40:b5:d2:74:44:8e:e8:
5c:85:7b:5f:c8:35:2f:f6:cf:d4:a2:19:d5:59:37:
f0:20:47:9d:3a:0a:9b:ed:1c:43:f8:a4:98:71:93:
44:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D0:A3:AE:A3:E5:B7:D7:41:12:0E:1D:1E:C5:82:56:B5:45:18:50
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/D9CjrqPlt9dBEg4dHsWCVrVFGFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.196.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:82:4b:1f:42:3f:4a:b1:fe:40:ab:22:5c:aa:2f:0a:90:57:
e7:14:a4:4a:01:9a:55:18:5d:07:1d:c4:da:c0:72:c4:fd:ea:
65:e5:5e:03:4a:ed:c7:e9:d2:71:f2:cc:b3:46:93:0b:10:0d:
73:31:7a:8d:ad:03:7f:78:6b:8c:8e:2f:6c:12:ab:5b:52:84:
fc:ff:d6:05:22:f4:56:7f:0b:9a:6e:12:8c:57:f0:38:13:f1:
0e:c4:6b:00:f0:6f:90:23:04:a0:5c:f7:33:a7:60:d3:ce:a1:
17:ab:1f:ae:1a:75:0d:28:25:16:70:a6:29:f0:f6:7f:4c:c3:
98:4e:4f:22:39:d9:24:c8:fc:bf:46:9d:47:59:d3:fc:ef:2c:
b5:98:2d:0a:c0:26:e2:10:83:34:39:7d:52:0e:90:ad:31:d3:
86:04:46:f4:74:59:fd:4e:68:60:8a:ff:03:97:6b:7f:b3:e3:
c3:e6:40:5f:60:52:d6:1e:bc:64:2c:7e:6a:00:ff:60:64:86:
eb:b6:7b:9a:77:c3:1a:4b:90:ec:14:24:27:31:eb:28:70:c7:
f2:64:f6:05:4c:37:fa:0d:ea:00:33:25:f0:78:a4:14:6a:8a:
19:b0:af:9a:1a:17:69:49:d2:45:39:bd:5e:fd:19:3a:b7:09:
4a:b3:e4:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYs33/ccNYu8ZlB3eg7hHsf/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4MDZkYTVhNTkyNTEyNzVjZWIxODY5NGUxNzQxNTM1MmFl
ZGQ2YWEwHhcNMjMxMDE2MDk0NTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmQwYTNhZWEzZTViN2Q3NDExMjBlMWQxZWM1ODI1NmI1NDUxODUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArF6V938poeY5prUBIMz99pvMPdW8
xwOvB0KAuBekHK4yt0RqCnJIEjIa+C5D29vj97bDohhe7mbSPnffG7Qm4sIJEwfd
GeCluYH7R03Ep4+UJkFDNCQF/p8kAVS+2jdNQbIpb7rX3UeTg3z0p4tjhYYoJw5y
RVXVXu9LsNhnWvjj0fpnlFrBTqhE7Z7XAy9bM9s+7FPk8Y3HHNQ0gvvcH3LsWZVu
BdVmYDYNZ5fVrTOs+GFeo46L/UO7KKtFt83KJQMCPQp9MVxrKw2u3L29nxL7is3q
l44cxkC10nREjuhchXtfyDUv9s/UohnVWTfwIEedOgqb7RxD+KSYcZNE0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA/Qo66j5bfXQRIOHR7Fgla1RRhQMB8GA1UdIwQY
MBaAFFgG2lpZJRJ1zrGGlOF0FTUq7daqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0FiYVdsa2xFblhPc1lhVTRYUVZOU3J0MXFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi81ZGYxMTktYjFkZi00Y2ViLWJkNGYt
Zjc5Y2NjM2Y0ZWFmLzEvRDlDanJxUGx0OWRCRWc0ZEhzV0NWclZGR0ZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi81ZGYxMTktYjFkZi00Y2ViLWJkNGYtZjc5Y2NjM2Y0ZWFm
LzEvV0FiYVdsa2xFblhPc1lhVTRYUVZOU3J0MXFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf/EMA0G
CSqGSIb3DQEBCwUAA4IBAQClgksfQj9Ksf5AqyJcqi8KkFfnFKRKAZpVGF0HHcTa
wHLE/epl5V4DSu3H6dJx8syzRpMLEA1zMXqNrQN/eGuMji9sEqtbUoT8/9YFIvRW
fwuabhKMV/A4E/EOxGsA8G+QIwSgXPczp2DTzqEXqx+uGnUNKCUWcKYp8PZ/TMOY
Tk8iOdkkyPy/Rp1HWdP87yy1mC0KwCbiEIM0OX1SDpCtMdOGBEb0dFn9Tmhgiv8D
l2t/s+PD5kBfYFLWHrxkLH5qAP9gZIbrtnuad8MaS5DsFCQnMesocMfyZPYFTDf6
DeoAMyXweKQUaooZsK+aGhdpSdJFOb1e/Rk6twlKs+Rl
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:56 2024 by rpki-client on console-fra.rpki-client.org