Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/46358e-54f7-4f4b-a747-f735e3dafd53/1/rUfk36dYw_KNhrRy3qOj59LQlVk.roa
File: rUfk36dYw_KNhrRy3qOj59LQlVk.roa (raw, json)
Hash identifier: 7qAUFty3XWxHdYwQO/qPnfZMVw/ReKfF8UJnLaX/DN8=
Subject key identifier: AD:47:E4:DF:A7:58:C3:F2:8D:86:B4:72:DE:A3:A3:E7:D2:D0:95:59
Certificate issuer: /CN=a0dae7678a396969e6340c9dcb65cde9e329554a
Certificate serial: 018B8F6EF76C68347DF2A10B6FF25F4376CB
Authority key identifier: A0:DA:E7:67:8A:39:69:69:E6:34:0C:9D:CB:65:CD:E9:E3:29:55:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNrnZ4o5aWnmNAydy2XN6eMpVUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/46358e-54f7-4f4b-a747-f735e3dafd53/1/rUfk36dYw_KNhrRy3qOj59LQlVk.roa
Signing time: Thu 02 Nov 2023 09:48:15 +0000
ROA not before: Thu 02 Nov 2023 09:48:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50629
IP address blocks: 185.226.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:6e:f7:6c:68:34:7d:f2:a1:0b:6f:f2:5f:43:76:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0dae7678a396969e6340c9dcb65cde9e329554a
Validity
Not Before: Nov 2 09:48:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad47e4dfa758c3f28d86b472dea3a3e7d2d09559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:59:c1:78:91:f7:2a:bf:eb:d2:8e:a5:1a:5a:
5c:32:9d:72:51:1b:cc:02:2c:33:e5:30:3b:d9:67:
7e:84:8f:49:56:74:6b:9f:76:f1:18:72:fe:af:b7:
8e:82:85:91:44:6c:92:22:00:a7:68:8c:4d:e3:6a:
cf:b3:4e:1e:f4:57:90:6a:9e:6f:49:98:c7:cb:4f:
fa:23:fe:41:a0:c8:62:fe:46:da:16:cc:7c:3a:9f:
b3:56:78:07:2e:b4:47:f2:7b:65:e3:b2:74:ca:c1:
5c:a9:bd:cf:3b:11:6d:40:75:38:0c:f1:db:6a:cb:
e3:69:2f:f1:76:56:4d:60:b1:cc:12:ff:37:25:5a:
0f:84:97:21:dc:26:73:e8:2c:e1:b5:0b:b1:e6:67:
25:b0:b9:e3:22:4b:a8:bd:b0:c6:d3:12:16:36:3b:
ec:a4:ba:1f:2f:30:f0:c0:26:e0:8d:80:19:f8:9d:
14:e7:e1:77:ec:86:2c:48:24:78:3d:c9:e7:29:d2:
79:e0:78:61:58:b2:9e:7b:b1:8e:8b:c0:5c:c1:62:
6f:2e:ce:ed:fe:8d:1b:16:9e:5d:d1:bc:bb:0d:ae:
47:02:e2:e4:e4:51:97:5f:5b:9d:52:df:95:df:f2:
34:1d:7e:7f:bf:d2:b1:7f:cd:55:af:90:6b:cf:67:
bd:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:47:E4:DF:A7:58:C3:F2:8D:86:B4:72:DE:A3:A3:E7:D2:D0:95:59
X509v3 Authority Key Identifier:
keyid:A0:DA:E7:67:8A:39:69:69:E6:34:0C:9D:CB:65:CD:E9:E3:29:55:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNrnZ4o5aWnmNAydy2XN6eMpVUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/46358e-54f7-4f4b-a747-f735e3dafd53/1/rUfk36dYw_KNhrRy3qOj59LQlVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/46358e-54f7-4f4b-a747-f735e3dafd53/1/oNrnZ4o5aWnmNAydy2XN6eMpVUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.243.0/24
Signature Algorithm: sha256WithRSAEncryption
88:87:e8:82:cc:7f:6b:f8:76:c0:00:cc:6a:2d:c0:25:b4:60:
56:2e:fd:ee:26:70:09:cb:ea:f1:7d:f5:29:fe:4a:c4:25:58:
ef:fc:c7:a7:c5:42:ec:7e:64:64:77:fc:63:91:13:f0:ba:98:
9f:87:f2:b5:57:d4:23:67:ff:95:82:cb:a9:41:d3:47:9d:99:
f8:8f:b8:66:de:49:f8:8b:ca:40:86:cb:28:51:22:5d:6e:51:
e2:ac:13:2c:50:23:7e:29:f3:db:28:fa:74:6a:23:ad:9a:54:
92:76:e2:bb:e0:82:1d:56:ab:fc:2c:11:1d:ab:d0:c8:81:f3:
07:52:70:fc:81:3c:26:85:9e:44:70:89:c6:5c:ea:96:a3:0b:
d1:8a:8f:ee:05:a4:f9:39:4d:ed:33:2d:0a:fb:9a:54:10:41:
fb:fc:83:a4:5f:fb:69:e1:fe:07:09:42:04:96:35:23:4c:6f:
52:5b:2e:c1:05:38:96:02:dd:54:2d:ef:f0:df:b0:01:09:bd:
a5:e2:56:0f:b5:05:5d:79:23:48:ce:3c:a2:81:32:db:27:1c:
86:cf:8e:4c:9c:d3:2e:c7:1e:e6:a6:80:d4:59:10:77:a3:09:
d7:dd:ea:5b:3d:dc:83:78:e7:de:9f:96:1c:d8:9f:4c:ef:9b:
16:76:39:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuPbvdsaDR98qELb/JfQ3bLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZGFlNzY3OGEzOTY5NjllNjM0MGM5ZGNiNjVjZGU5ZTMy
OTU1NGEwHhcNMjMxMTAyMDk0ODE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDQ3ZTRkZmE3NThjM2YyOGQ4NmI0NzJkZWEzYTNlN2QyZDA5NTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiFnBeJH3Kr/r0o6lGlpcMp1yURvM
Aiwz5TA72Wd+hI9JVnRrn3bxGHL+r7eOgoWRRGySIgCnaIxN42rPs04e9FeQap5v
SZjHy0/6I/5BoMhi/kbaFsx8Op+zVngHLrRH8ntl47J0ysFcqb3POxFtQHU4DPHb
asvjaS/xdlZNYLHMEv83JVoPhJch3CZz6CzhtQux5mclsLnjIkuovbDG0xIWNjvs
pLofLzDwwCbgjYAZ+J0U5+F37IYsSCR4PcnnKdJ54HhhWLKee7GOi8BcwWJvLs7t
/o0bFp5d0by7Da5HAuLk5FGXX1udUt+V3/I0HX5/v9Kxf81Vr5Brz2e9VwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK1H5N+nWMPyjYa0ct6jo+fS0JVZMB8GA1UdIwQY
MBaAFKDa52eKOWlp5jQMnctlzenjKVVKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb05yblo0bzVhV25tTkF5ZHkyWE42ZU1wVlVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy80NjM1OGUtNTRmNy00ZjRiLWE3NDct
ZjczNWUzZGFmZDUzLzEvclVmazM2ZFl3X0tOaHJSeTNxT2o1OUxRbFZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy80NjM1OGUtNTRmNy00ZjRiLWE3NDctZjczNWUzZGFmZDUz
LzEvb05yblo0bzVhV25tTkF5ZHkyWE42ZU1wVlVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueLzMA0G
CSqGSIb3DQEBCwUAA4IBAQCIh+iCzH9r+HbAAMxqLcAltGBWLv3uJnAJy+rxffUp
/krEJVjv/MenxULsfmRkd/xjkRPwupifh/K1V9QjZ/+VgsupQdNHnZn4j7hm3kn4
i8pAhssoUSJdblHirBMsUCN+KfPbKPp0aiOtmlSSduK74IIdVqv8LBEdq9DIgfMH
UnD8gTwmhZ5EcInGXOqWowvRio/uBaT5OU3tMy0K+5pUEEH7/IOkX/tp4f4HCUIE
ljUjTG9SWy7BBTiWAt1ULe/w37ABCb2l4lYPtQVdeSNIzjyigTLbJxyGz45MnNMu
xx7mpoDUWRB3ownX3epbPdyDeOfen5Yc2J9M75sWdjlL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:41 2024 by rpki-client on console-fra.rpki-client.org