Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/d7vGIt7yD6hNrbfJUigIMYURAX8.roa
File: d7vGIt7yD6hNrbfJUigIMYURAX8.roa (raw, json)
Hash identifier: 1KZ+ztVUMEQbNz3z0/Vhjlu5K2hJ8rLzgy+yUcI+CEM=
Subject key identifier: 77:BB:C6:22:DE:F2:0F:A8:4D:AD:B7:C9:52:28:08:31:85:11:01:7F
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 01856F42AE67D101989708EBA601F7D46A40
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/d7vGIt7yD6hNrbfJUigIMYURAX8.roa
Signing time: Sun 01 Jan 2023 21:35:19 +0000
ROA not before: Sun 01 Jan 2023 21:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31708
IP address blocks: 185.199.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ae:67:d1:01:98:97:08:eb:a6:01:f7:d4:6a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Jan 1 21:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77bbc622def20fa84dadb7c9522808318511017f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a2:b3:9b:8f:30:f0:26:a8:c4:64:27:10:88:
56:7c:da:f9:73:26:99:34:7a:b9:c4:ef:9d:7a:03:
75:62:62:b4:05:42:34:ba:26:a4:10:ae:ea:e1:21:
f9:d6:0b:fe:72:35:d8:88:4a:f4:2b:a3:aa:34:c7:
7b:55:e0:61:e5:c3:b9:f0:26:ce:31:9d:1c:28:e7:
96:13:c6:c4:ff:c9:38:58:05:7f:7c:57:75:30:07:
b9:8d:59:fb:80:ce:4f:b1:77:9f:bc:bb:cf:ad:0b:
24:05:74:57:2d:2e:ec:c4:03:da:7c:b7:ef:f5:80:
27:10:38:90:85:ac:8e:af:94:cb:da:12:6c:e4:96:
ba:62:ec:ac:78:0f:a7:fe:bb:eb:1c:e9:b0:4c:47:
0a:89:af:7f:3a:e3:f9:6b:20:fb:b1:49:82:d1:2d:
fe:73:38:5b:ef:3c:73:27:01:8a:55:99:e2:1b:96:
57:a9:9a:2c:e2:5c:3b:dd:16:aa:7c:a7:1d:b9:b7:
d1:c0:78:d9:0e:ac:a3:20:53:27:4b:31:06:83:65:
c9:77:00:65:8d:15:37:ca:49:8b:fa:de:1a:2b:1c:
5f:0e:1d:d7:b7:2c:19:16:a8:4d:a1:ad:b5:6b:0c:
bb:1d:42:73:70:d9:25:2b:2c:13:94:06:ee:cd:c0:
9f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BB:C6:22:DE:F2:0F:A8:4D:AD:B7:C9:52:28:08:31:85:11:01:7F
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/d7vGIt7yD6hNrbfJUigIMYURAX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.36.0/24
Signature Algorithm: sha256WithRSAEncryption
43:5a:31:f1:88:79:19:58:ef:e9:97:23:dd:26:12:96:ca:aa:
0a:3e:72:30:1d:4c:36:81:07:11:03:bf:38:4d:d0:9e:55:cc:
1f:fb:66:7d:91:93:85:57:0d:fa:64:ba:18:ea:ea:d5:7c:e1:
78:43:4f:c3:b6:f1:15:be:01:59:d4:ea:ac:b2:45:2e:4d:9d:
a8:03:62:b2:24:b9:8b:d9:c6:9c:00:61:d3:59:12:e0:e7:31:
29:35:2c:74:34:70:b6:33:2a:c1:44:1d:38:2e:61:05:37:b0:
66:c3:41:91:3c:ea:05:f1:31:3e:d2:b4:a8:d3:f9:2d:95:c7:
98:6c:3d:29:4a:dc:8f:40:9a:30:29:3a:4e:8d:c1:a6:d4:84:
3b:dc:68:28:08:2e:7e:57:2c:5a:b9:46:6c:6c:08:a9:bf:47:
bc:24:c6:13:18:55:b7:fa:f8:87:49:a3:ff:6c:62:4e:d2:64:
01:43:fc:05:36:76:31:9d:7e:2a:fd:40:3c:54:a5:28:c4:cb:
fa:bd:27:44:91:fa:aa:a7:f0:ca:37:1f:df:ee:8f:a3:b9:9a:
77:1e:18:50:9c:9e:8a:8d:01:62:7e:5e:79:9e:4f:2b:fc:dd:
e7:fa:09:99:01:73:0b:a2:41:06:47:92:f2:dc:a2:01:86:c0:
20:bf:17:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvQq5n0QGYlwjrpgH31GpAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0MGExMGEyNTY3MjhmMTFhNGJiYWFkYzMyMDRiN2YwYTM1
YTUwMDAwHhcNMjMwMTAxMjEzNTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2JiYzYyMmRlZjIwZmE4NGRhZGI3Yzk1MjI4MDgzMTg1MTEwMTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqKzm48w8CaoxGQnEIhWfNr5cyaZ
NHq5xO+degN1YmK0BUI0uiakEK7q4SH51gv+cjXYiEr0K6OqNMd7VeBh5cO58CbO
MZ0cKOeWE8bE/8k4WAV/fFd1MAe5jVn7gM5PsXefvLvPrQskBXRXLS7sxAPafLfv
9YAnEDiQhayOr5TL2hJs5Ja6YuyseA+n/rvrHOmwTEcKia9/OuP5ayD7sUmC0S3+
czhb7zxzJwGKVZniG5ZXqZos4lw73RaqfKcdubfRwHjZDqyjIFMnSzEGg2XJdwBl
jRU3ykmL+t4aKxxfDh3XtywZFqhNoa21awy7HUJzcNklKywTlAbuzcCfIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHe7xiLe8g+oTa23yVIoCDGFEQF/MB8GA1UdIwQY
MBaAFJQKEKJWco8RpLuq3DIEt/CjWlAAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYt
ZGNlNmQ2OTA5MjQ3LzEvZDd2R0l0N3lENmhOcmJmSlVpZ0lNWVVSQVg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYtZGNlNmQ2OTA5MjQ3
LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucckMA0G
CSqGSIb3DQEBCwUAA4IBAQBDWjHxiHkZWO/plyPdJhKWyqoKPnIwHUw2gQcRA784
TdCeVcwf+2Z9kZOFVw36ZLoY6urVfOF4Q0/DtvEVvgFZ1OqsskUuTZ2oA2KyJLmL
2cacAGHTWRLg5zEpNSx0NHC2MyrBRB04LmEFN7Bmw0GRPOoF8TE+0rSo0/ktlceY
bD0pStyPQJowKTpOjcGm1IQ73GgoCC5+VyxauUZsbAipv0e8JMYTGFW3+viHSaP/
bGJO0mQBQ/wFNnYxnX4q/UA8VKUoxMv6vSdEkfqqp/DKNx/f7o+juZp3HhhQnJ6K
jQFifl55nk8r/N3n+gmZAXMLokEGR5Ly3KIBhsAgvxfw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:24 2024 by rpki-client on console-ams.rpki-client.org