Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/O5GRMlDiTi3mWd0Og6SFHObyCJ8.roa
File: O5GRMlDiTi3mWd0Og6SFHObyCJ8.roa (raw, json)
Hash identifier: BAVPEA1BhUBlYfjf5rSV38FwlkgSWt7zn9Hsgbvb8f0=
Subject key identifier: 3B:91:91:32:50:E2:4E:2D:E6:59:DD:0E:83:A4:85:1C:E6:F2:08:9F
Certificate issuer: /CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Certificate serial: 01857082D604CA5AB3A6B235744E35827934
Authority key identifier: 35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/O5GRMlDiTi3mWd0Og6SFHObyCJ8.roa
Signing time: Mon 02 Jan 2023 03:25:00 +0000
ROA not before: Mon 02 Jan 2023 03:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211439
IP address blocks: 185.74.52.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Sep 2023 11:32:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:d6:04:ca:5a:b3:a6:b2:35:74:4e:35:82:79:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Validity
Not Before: Jan 2 03:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b91913250e24e2de659dd0e83a4851ce6f2089f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:56:91:23:20:ac:8a:8c:fb:20:fa:5c:1d:da:
06:4c:84:b6:b1:c5:4b:4c:31:48:da:d8:38:d6:45:
ab:5b:73:7d:c0:f0:ee:c0:00:c2:54:f5:81:d4:1b:
e9:26:32:73:5f:f6:72:fc:55:93:8f:54:dc:49:e4:
60:ce:59:de:2b:9c:8e:50:1f:01:80:74:46:12:d1:
d1:cd:6d:36:be:89:9d:2a:82:45:c6:5c:50:c9:0a:
85:c6:b5:1a:2e:d8:03:5b:92:f7:a6:58:51:29:6c:
0c:ca:35:0d:42:34:86:26:bc:58:eb:fd:6f:8a:c3:
b6:64:ba:9c:aa:e7:6b:b7:64:dd:c9:30:93:e7:b3:
b8:d2:dd:61:6a:da:74:5c:9e:43:8b:3c:2f:61:7c:
30:8e:fa:24:96:51:f1:ac:31:60:6a:6e:ae:8d:08:
fd:fc:d5:05:3c:f3:30:5c:d4:52:bd:00:2a:cb:07:
a3:2f:28:20:63:27:d1:05:49:32:b2:b9:b6:03:ee:
e0:14:83:55:c8:b1:82:ae:21:f7:22:c1:50:89:d4:
41:b2:2e:27:5c:df:7e:f3:e2:e4:08:7d:c2:df:7a:
f9:a5:b5:2c:51:e5:db:ad:da:41:1d:25:dd:b6:48:
7a:e1:fd:d9:ab:3e:44:af:c3:f3:bb:4a:04:76:b6:
96:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:91:91:32:50:E2:4E:2D:E6:59:DD:0E:83:A4:85:1C:E6:F2:08:9F
X509v3 Authority Key Identifier:
keyid:35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/O5GRMlDiTi3mWd0Og6SFHObyCJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/NS-JGea8HvVmNIkBj8h1vjTA8kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.52.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:23:44:a5:e5:a6:ab:1c:6d:c6:73:ec:22:94:cc:48:88:69:
56:d9:38:d7:fd:b1:64:c7:c9:73:9e:d3:79:71:ff:5a:5f:af:
66:85:12:9a:65:c3:23:6a:d1:a2:ed:a6:5d:1c:eb:b5:4a:80:
ec:f0:9c:bd:cb:59:8f:3d:8d:34:76:ee:49:25:35:68:9b:b0:
51:36:66:e4:a1:90:6a:99:e5:03:6d:a5:08:04:7e:4d:0b:c4:
e3:56:89:2d:67:5e:83:e1:7c:ff:66:cc:4b:97:5b:37:75:76:
f7:b4:ce:d3:ed:18:dc:ad:6b:4b:a4:34:06:b5:78:f4:4e:b1:
09:ca:81:35:83:67:3b:b0:44:f5:42:71:89:bf:c8:59:7c:36:
d2:04:93:f7:1e:13:1f:da:f4:eb:51:f1:5f:21:f1:9f:d9:77:
5a:10:26:f9:fc:d5:00:da:86:c3:9b:83:6d:c5:4b:ee:2e:2b:
4b:dc:32:e0:52:1b:96:a2:6e:88:6c:2b:18:31:d2:b0:90:65:
49:99:d2:35:c6:22:bf:45:b7:c0:93:dd:82:53:ae:37:20:55:
d1:bd:58:f0:20:47:f2:21:61:a7:3b:72:4c:62:c5:54:89:af:
8d:3a:2a:67:ab:24:62:e3:f4:80:44:99:89:79:72:fb:f3:89:
bd:ce:a2:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwgtYEylqzprI1dE41gnk0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MmY4OTE5ZTZiYzFlZjU2NjM0ODkwMThmYzg3NWJlMzRj
MGYyNGMwHhcNMjMwMTAyMDMyNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjkxOTEzMjUwZTI0ZTJkZTY1OWRkMGU4M2E0ODUxY2U2ZjIwODlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFaRIyCsioz7IPpcHdoGTIS2scVL
TDFI2tg41kWrW3N9wPDuwADCVPWB1BvpJjJzX/Zy/FWTj1TcSeRgzlneK5yOUB8B
gHRGEtHRzW02vomdKoJFxlxQyQqFxrUaLtgDW5L3plhRKWwMyjUNQjSGJrxY6/1v
isO2ZLqcqudrt2TdyTCT57O40t1hatp0XJ5DizwvYXwwjvokllHxrDFgam6ujQj9
/NUFPPMwXNRSvQAqywejLyggYyfRBUkysrm2A+7gFINVyLGCriH3IsFQidRBsi4n
XN9+8+LkCH3C33r5pbUsUeXbrdpBHSXdtkh64f3Zqz5Er8Pzu0oEdraWLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDuRkTJQ4k4t5lndDoOkhRzm8gifMB8GA1UdIwQY
MBaAFDUviRnmvB71ZjSJAY/Idb40wPJMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlMtSkdlYThIdlZtTklrQmo4aDF2alRBOGt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9jZjk0M2QtYzkyMS00ZWY3LTlhYTAt
ZTNmY2IyM2UzNDM4LzEvTzVHUk1sRGlUaTNtV2QwT2c2U0ZIT2J5Q0o4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS9jZjk0M2QtYzkyMS00ZWY3LTlhYTAtZTNmY2IyM2UzNDM4
LzEvTlMtSkdlYThIdlZtTklrQmo4aDF2alRBOGt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuUo0MA0G
CSqGSIb3DQEBCwUAA4IBAQCbI0Sl5aarHG3Gc+wilMxIiGlW2TjX/bFkx8lzntN5
cf9aX69mhRKaZcMjatGi7aZdHOu1SoDs8Jy9y1mPPY00du5JJTVom7BRNmbkoZBq
meUDbaUIBH5NC8TjVoktZ16D4Xz/ZsxLl1s3dXb3tM7T7RjcrWtLpDQGtXj0TrEJ
yoE1g2c7sET1QnGJv8hZfDbSBJP3HhMf2vTrUfFfIfGf2XdaECb5/NUA2obDm4Nt
xUvuLitL3DLgUhuWom6IbCsYMdKwkGVJmdI1xiK/RbfAk92CU643IFXRvVjwIEfy
IWGnO3JMYsVUia+NOipnqyRi4/SARJmJeXL784m9zqJ8
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:26 2024 by rpki-client on console-ams.rpki-client.org