Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/FdUeKBvSdTCydy8zvLZy9J5X0CA.roa
File: FdUeKBvSdTCydy8zvLZy9J5X0CA.roa (raw, json)
Hash identifier: 98eBYSMar5T7Mhi0tMVwTkRvCawgqG68WEPRerKVVKQ=
Subject key identifier: 15:D5:1E:28:1B:D2:75:30:B2:77:2F:33:BC:B6:72:F4:9E:57:D0:20
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018CC5012E60DAE6E111CA497DBDCBD3247E
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/FdUeKBvSdTCydy8zvLZy9J5X0CA.roa
Signing time: Mon 01 Jan 2024 12:30:38 +0000
ROA not before: Mon 01 Jan 2024 12:30:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212396
IP address blocks: 185.150.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 22:08:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:2e:60:da:e6:e1:11:ca:49:7d:bd:cb:d3:24:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 12:30:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15d51e281bd27530b2772f33bcb672f49e57d020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:37:1e:a7:4c:78:12:2f:20:95:06:68:29:81:
d2:9d:5c:1c:b3:fc:d5:0d:00:08:66:6c:25:b3:75:
60:43:41:81:84:a8:2c:4e:8f:06:8d:54:32:06:bf:
33:7d:a3:f5:12:c4:c2:a6:25:ad:94:e8:6a:17:27:
4f:b6:a8:d6:f3:a9:77:f6:f2:03:36:d5:c0:80:bf:
ee:2f:32:30:ad:9c:b4:eb:46:1e:b4:74:ff:b8:5b:
2a:55:aa:82:4b:85:49:3d:22:0e:8a:37:8e:03:4c:
94:0e:17:ee:d0:a0:dd:84:26:38:09:63:f2:60:80:
98:d9:70:4e:a0:0a:f2:65:55:7c:29:39:6f:57:b4:
be:82:87:c5:6f:23:88:8b:4f:e5:90:28:94:fb:5d:
4b:2f:9e:b8:d2:0e:75:14:f0:1a:bf:3c:23:75:44:
a0:62:c5:15:b8:26:5b:f1:61:f6:f6:51:ae:0d:25:
f4:89:9c:e1:28:0a:15:1e:cc:77:26:06:f7:b8:19:
5b:1e:6d:04:dc:77:9b:05:a1:55:81:fe:b0:4d:4c:
c1:ee:ff:0e:71:28:02:94:fd:c0:b6:27:cb:81:f1:
bb:f9:1c:d6:53:ef:04:96:d1:82:04:4d:d4:55:d9:
e2:16:c0:d6:2f:4c:56:8a:ed:f8:f6:d5:51:34:2e:
1a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D5:1E:28:1B:D2:75:30:B2:77:2F:33:BC:B6:72:F4:9E:57:D0:20
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/FdUeKBvSdTCydy8zvLZy9J5X0CA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.1.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:3a:a0:9e:13:35:44:20:fb:2a:60:6e:31:82:fa:6c:11:06:
48:7d:39:62:6b:b2:64:a2:80:24:c1:b4:fc:83:9b:cb:1d:95:
3d:60:04:ef:84:4f:e1:8a:c0:0c:b4:f0:98:13:b8:72:a5:e1:
99:04:a4:0b:f4:8c:5d:52:c6:e6:6e:e3:c7:22:0c:ad:d9:45:
06:31:52:1c:35:d7:05:cd:e5:11:13:bb:70:ac:9f:a4:bb:4e:
22:e2:49:15:a8:ec:ee:15:cf:f5:67:cf:a6:5e:55:b1:90:be:
78:26:86:50:e6:2f:8c:c7:ec:a4:85:45:93:36:cc:0a:14:13:
ee:ea:e8:c6:88:b4:f4:db:a2:bd:8b:ff:21:e1:6b:64:c1:6c:
da:9f:de:81:be:1f:c7:7c:cd:0f:b6:f5:dd:be:3b:7c:ed:71:
24:59:11:36:68:14:e1:43:e7:70:8f:ab:79:4f:88:2b:56:bf:
c3:38:32:62:24:17:9a:2d:9e:c6:ec:f2:57:ad:4b:1e:16:79:
25:b3:5b:1f:6f:d9:36:e2:5c:bf:32:a0:41:53:e0:27:22:10:
df:34:47:a9:ae:a8:7a:b9:87:46:af:e0:13:b0:4e:68:3d:b0:
30:35:d9:02:6c:e1:58:a9:0b:c2:81:72:46:c6:96:56:d8:89:
d6:ff:68:ed
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFAS5g2ubhEcpJfb3L0yR+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjQwMTAxMTIzMDM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNWQ1MWUyODFiZDI3NTMwYjI3NzJmMzNiY2I2NzJmNDllNTdkMDIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjcep0x4Ei8glQZoKYHSnVwcs/zV
DQAIZmwls3VgQ0GBhKgsTo8GjVQyBr8zfaP1EsTCpiWtlOhqFydPtqjW86l39vID
NtXAgL/uLzIwrZy060YetHT/uFsqVaqCS4VJPSIOijeOA0yUDhfu0KDdhCY4CWPy
YICY2XBOoAryZVV8KTlvV7S+gofFbyOIi0/lkCiU+11LL5640g51FPAavzwjdUSg
YsUVuCZb8WH29lGuDSX0iZzhKAoVHsx3Jgb3uBlbHm0E3HebBaFVgf6wTUzB7v8O
cSgClP3AtifLgfG7+RzWU+8EltGCBE3UVdniFsDWL0xWiu349tVRNC4aXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBXVHigb0nUwsncvM7y2cvSeV9AgMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvRmRVZUtCdlNkVEN5ZHk4enZMWnk5SjVYMENBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZYBMA0G
CSqGSIb3DQEBCwUAA4IBAQAdOqCeEzVEIPsqYG4xgvpsEQZIfTlia7JkooAkwbT8
g5vLHZU9YATvhE/hisAMtPCYE7hypeGZBKQL9IxdUsbmbuPHIgyt2UUGMVIcNdcF
zeURE7twrJ+ku04i4kkVqOzuFc/1Z8+mXlWxkL54JoZQ5i+Mx+ykhUWTNswKFBPu
6ujGiLT026K9i/8h4WtkwWzan96Bvh/HfM0PtvXdvjt87XEkWRE2aBThQ+dwj6t5
T4grVr/DODJiJBeaLZ7G7PJXrUseFnkls1sfb9k24ly/MqBBU+AnIhDfNEeprqh6
uYdGr+ATsE5oPbAwNdkCbOFYqQvCgXJGxpZW2InW/2jt
-----END CERTIFICATE-----
Generated at Thu Jan 11 00:45:11 2024 by rpki-client on console-fra.rpki-client.org