Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/XsjdmgjfqrnKz2kbrdCrDiAEkAI.roa
File: XsjdmgjfqrnKz2kbrdCrDiAEkAI.roa (raw, json)
Hash identifier: vlg0TTIFOMeCuQ4m2ZsGjSvevCxTyarWEfscCw4F51c=
Subject key identifier: 5E:C8:DD:9A:08:DF:AA:B9:CA:CF:69:1B:AD:D0:AB:0E:20:04:90:02
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0186BA9A03A1675D0349D81236089F9181FB
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/XsjdmgjfqrnKz2kbrdCrDiAEkAI.roa
Signing time: Tue 07 Mar 2023 05:45:00 +0000
ROA not before: Tue 07 Mar 2023 05:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60117
IP address blocks: 185.238.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Jun 2023 09:45:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ba:9a:03:a1:67:5d:03:49:d8:12:36:08:9f:91:81:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Mar 7 05:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ec8dd9a08dfaab9cacf691badd0ab0e20049002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:cf:be:99:05:8d:0b:b2:61:aa:d4:70:87:0e:
e2:b7:63:dd:82:3c:ff:a4:b4:7c:6f:9a:ad:9d:a4:
af:ce:c8:f6:e5:cb:e6:22:75:c2:fe:79:b0:1e:c5:
0b:44:25:e4:03:4b:ff:2d:e2:57:5e:c5:2c:a5:3d:
00:96:dd:6f:35:44:e2:4e:e4:f4:ae:4f:c0:01:d7:
f5:99:ec:32:a0:e5:29:e4:05:b5:a3:83:ed:b5:dd:
55:6e:f2:a0:9f:99:84:76:62:61:6c:5b:f3:14:22:
3d:1d:1b:4b:8b:4c:66:60:c9:6d:ff:79:ba:d2:44:
3d:b7:f7:d5:84:ac:5a:65:db:73:f1:b9:0d:fb:ba:
ad:70:8e:8a:ae:2e:37:f4:95:c3:75:9e:c2:8c:f0:
e1:9a:f2:1f:ad:d6:1c:f2:ba:b5:9c:0e:19:12:32:
88:e6:95:32:ab:ee:cc:0b:5a:80:29:41:e5:12:74:
07:ea:bf:e3:fe:a4:d7:90:92:a2:3a:c3:24:89:09:
e3:b3:9b:4a:a3:3d:85:3a:bb:40:11:50:5d:cf:b5:
f9:c9:4f:26:d8:df:1e:a9:26:c9:b4:30:03:62:12:
24:7c:f8:1c:21:fe:68:d0:22:b7:78:04:ed:d4:d0:
21:56:f7:e7:b6:04:44:87:15:f6:ab:19:7c:5e:53:
69:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C8:DD:9A:08:DF:AA:B9:CA:CF:69:1B:AD:D0:AB:0E:20:04:90:02
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/XsjdmgjfqrnKz2kbrdCrDiAEkAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.10.0/24
Signature Algorithm: sha256WithRSAEncryption
62:57:c2:ae:83:a0:a7:da:ac:af:6c:bd:d3:70:ed:d7:44:ad:
c4:af:bc:29:02:37:f9:ba:41:ee:a6:94:6a:a1:b4:d8:15:f3:
e5:72:71:5c:f6:ee:66:25:a2:cc:70:8c:a3:95:56:99:ed:21:
f7:69:f0:60:f6:b1:b3:4a:10:e4:48:ae:45:93:88:de:25:cb:
f9:f0:8d:b8:f0:24:c8:20:7d:56:46:78:51:1b:98:3a:77:66:
60:ee:f9:ca:ed:4a:ba:87:32:30:3f:5d:06:20:14:ae:d3:c9:
51:b1:83:a4:75:1c:66:52:5b:52:2e:92:ad:58:0c:90:d5:fa:
b2:d7:c8:fd:cf:4c:ef:e9:6f:76:72:36:36:cb:70:e3:41:52:
a2:4c:c7:06:26:e6:0d:a9:34:86:f2:90:92:96:e6:e9:d4:bf:
5a:6b:d8:ff:ec:66:39:30:3c:82:9b:69:ab:93:c7:59:6b:8c:
26:ce:35:7a:2e:93:91:fe:01:fd:54:38:7d:23:d4:e9:b6:3b:
c6:5b:4e:78:95:3a:84:56:51:06:cb:0a:10:9b:80:5e:e2:17:
24:e4:32:5d:82:f7:44:91:6c:f5:60:b7:3d:fc:42:3b:85:1c:
42:5b:fc:92:69:07:d9:8e:0a:ce:07:67:10:dd:ff:36:1d:cd:
e4:aa:b2:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYa6mgOhZ10DSdgSNgifkYH7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjMwMzA3MDU0NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZWM4ZGQ5YTA4ZGZhYWI5Y2FjZjY5MWJhZGQwYWIwZTIwMDQ5MDAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjM++mQWNC7JhqtRwhw7it2Pdgjz/
pLR8b5qtnaSvzsj25cvmInXC/nmwHsULRCXkA0v/LeJXXsUspT0Alt1vNUTiTuT0
rk/AAdf1mewyoOUp5AW1o4Pttd1VbvKgn5mEdmJhbFvzFCI9HRtLi0xmYMlt/3m6
0kQ9t/fVhKxaZdtz8bkN+7qtcI6Kri439JXDdZ7CjPDhmvIfrdYc8rq1nA4ZEjKI
5pUyq+7MC1qAKUHlEnQH6r/j/qTXkJKiOsMkiQnjs5tKoz2FOrtAEVBdz7X5yU8m
2N8eqSbJtDADYhIkfPgcIf5o0CK3eATt1NAhVvfntgREhxX2qxl8XlNp6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF7I3ZoI36q5ys9pG63Qqw4gBJACMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvWHNqZG1namZxcm5LejJrYnJkQ3JEaUFFa0FJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue4KMA0G
CSqGSIb3DQEBCwUAA4IBAQBiV8Kug6Cn2qyvbL3TcO3XRK3Er7wpAjf5ukHuppRq
obTYFfPlcnFc9u5mJaLMcIyjlVaZ7SH3afBg9rGzShDkSK5Fk4jeJcv58I248CTI
IH1WRnhRG5g6d2Zg7vnK7Uq6hzIwP10GIBSu08lRsYOkdRxmUltSLpKtWAyQ1fqy
18j9z0zv6W92cjY2y3DjQVKiTMcGJuYNqTSG8pCSlubp1L9aa9j/7GY5MDyCm2mr
k8dZa4wmzjV6LpOR/gH9VDh9I9TptjvGW054lTqEVlEGywoQm4Be4hck5DJdgvdE
kWz1YLc9/EI7hRxCW/ySaQfZjgrOB2cQ3f82Hc3kqrLf
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:11 2024 by rpki-client on console-ams.rpki-client.org