Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/73QfPKht7d0SG32QN085VI1_kWY.roa
File: 73QfPKht7d0SG32QN085VI1_kWY.roa (raw, json)
Hash identifier: DroXf7+H1Q7JNSocdMZ/kbc2rUJ4q0HBQ8tMddoDpCw=
Subject key identifier: EF:74:1F:3C:A8:6D:ED:DD:12:1B:7D:90:37:4F:39:54:8D:7F:91:66
Certificate issuer: /CN=68b22eea4a4a3b81654a227eda94e0e75937b015
Certificate serial: 01856E38EA2DEB4968E4B25D85D6D5E79D0F
Authority key identifier: 68:B2:2E:EA:4A:4A:3B:81:65:4A:22:7E:DA:94:E0:E7:59:37:B0:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLIu6kpKO4FlSiJ-2pTg51k3sBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/73QfPKht7d0SG32QN085VI1_kWY.roa
Signing time: Sun 01 Jan 2023 16:45:01 +0000
ROA not before: Sun 01 Jan 2023 16:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208972
IP address blocks: 185.252.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Mar 2023 08:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:ea:2d:eb:49:68:e4:b2:5d:85:d6:d5:e7:9d:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b22eea4a4a3b81654a227eda94e0e75937b015
Validity
Not Before: Jan 1 16:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef741f3ca86deddd121b7d90374f39548d7f9166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:31:59:5f:10:ec:bc:1b:87:d0:9f:6c:fb:40:
9b:8a:53:39:b6:8b:49:e1:c7:3a:5a:cc:31:1d:a7:
1c:44:50:58:0f:c3:b8:26:ba:8e:86:7e:9b:1c:fd:
42:38:a6:a0:82:37:39:b7:a7:86:50:7d:b2:fb:7f:
0d:1f:b8:2f:5e:f7:fa:1c:37:e3:4e:b9:fa:da:f4:
fb:80:d7:28:14:6a:b7:84:0b:5a:e2:9e:a1:f8:d0:
a6:1c:45:5a:4c:3e:f8:9e:52:9b:d9:4a:5d:e3:dc:
ab:be:37:4b:fc:f8:20:2f:e5:37:96:50:c1:d6:7b:
9f:fe:c8:6f:00:ae:51:cf:43:43:3f:e6:2a:fb:54:
0e:e9:fa:64:ff:b4:98:b6:02:8e:45:24:59:c9:b2:
fd:a9:d4:22:82:07:a2:1f:eb:42:dc:b1:ad:3a:38:
dc:e3:8a:63:55:79:c2:1a:9e:b8:14:6b:a9:cc:ed:
74:7d:39:5f:8a:01:7d:85:40:37:f4:cd:ab:7d:71:
dd:94:d6:bb:79:ef:5b:dc:ab:70:f0:f6:29:c3:b8:
2d:b2:60:ff:ac:2f:b7:63:72:d6:df:9d:97:37:4e:
2f:7d:f7:05:7b:45:a1:5e:83:d3:24:97:ed:23:3e:
a1:ae:1d:43:79:f3:4e:ba:18:f6:65:c8:40:24:0a:
52:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:74:1F:3C:A8:6D:ED:DD:12:1B:7D:90:37:4F:39:54:8D:7F:91:66
X509v3 Authority Key Identifier:
keyid:68:B2:2E:EA:4A:4A:3B:81:65:4A:22:7E:DA:94:E0:E7:59:37:B0:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLIu6kpKO4FlSiJ-2pTg51k3sBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/73QfPKht7d0SG32QN085VI1_kWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/aLIu6kpKO4FlSiJ-2pTg51k3sBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.114.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:0b:96:cd:06:ac:96:fc:ff:f9:dd:95:54:66:55:95:8a:5c:
b8:23:ae:74:37:92:e0:81:a3:2f:00:b8:2d:f8:2c:bb:be:9d:
3c:ad:49:93:95:ba:17:b7:8e:3e:87:e3:b4:6f:a2:7b:c3:3a:
76:86:60:7f:35:ee:08:25:19:65:b9:c2:68:05:cb:9d:1a:03:
16:75:e3:90:9f:29:8e:f1:40:3e:76:af:08:12:91:d7:30:1c:
41:f1:48:d0:0e:11:7e:e2:c1:e0:94:93:08:ce:84:e6:ab:e0:
67:a6:88:b3:00:ad:3a:4a:ad:25:f5:b8:1f:6f:d3:7e:ea:b5:
4d:56:5d:a7:b6:8e:81:16:a4:09:3b:1a:9f:66:7e:a7:e6:f7:
2f:5e:ad:80:db:a3:f8:b9:a8:66:31:c5:54:7c:ec:8b:67:4a:
d2:c2:8e:ef:72:a8:b1:34:14:7d:64:f3:d6:b6:aa:94:d4:96:
cf:d2:2e:7a:54:1a:04:ef:bd:c4:e1:6e:1f:59:8f:ff:97:f9:
7c:10:32:fd:fa:7b:26:3a:9f:ad:94:d7:a3:62:c2:b4:5a:fc:
80:34:4d:13:3f:9f:10:c2:31:5e:10:16:32:fd:d0:04:ef:3b:
f1:bf:f2:24:b9:48:a2:92:7b:f5:8d:90:1a:e7:af:7e:8e:df:
4d:9e:a3:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuOOot60lo5LJdhdbV550PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YjIyZWVhNGE0YTNiODE2NTRhMjI3ZWRhOTRlMGU3NTkz
N2IwMTUwHhcNMjMwMTAxMTY0NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjc0MWYzY2E4NmRlZGRkMTIxYjdkOTAzNzRmMzk1NDhkN2Y5MTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjTFZXxDsvBuH0J9s+0CbilM5totJ
4cc6WswxHaccRFBYD8O4JrqOhn6bHP1COKaggjc5t6eGUH2y+38NH7gvXvf6HDfj
Trn62vT7gNcoFGq3hAta4p6h+NCmHEVaTD74nlKb2Upd49yrvjdL/PggL+U3llDB
1nuf/shvAK5Rz0NDP+Yq+1QO6fpk/7SYtgKORSRZybL9qdQiggeiH+tC3LGtOjjc
44pjVXnCGp64FGupzO10fTlfigF9hUA39M2rfXHdlNa7ee9b3Ktw8PYpw7gtsmD/
rC+3Y3LW352XN04vffcFe0WhXoPTJJftIz6hrh1DefNOuhj2ZchAJApSuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO90Hzyobe3dEht9kDdPOVSNf5FmMB8GA1UdIwQY
MBaAFGiyLupKSjuBZUoiftqU4OdZN7AVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUxJdTZrcEtPNEZsU2lKLTJwVGc1MWszc0JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy82OWNiYzAtYjZjNS00ZTY3LWE3M2It
MmI2NWE3YThiZThjLzEvNzNRZlBLaHQ3ZDBTRzMyUU4wODVWSTFfa1dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy82OWNiYzAtYjZjNS00ZTY3LWE3M2ItMmI2NWE3YThiZThj
LzEvYUxJdTZrcEtPNEZsU2lKLTJwVGc1MWszc0JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufxyMA0G
CSqGSIb3DQEBCwUAA4IBAQA/C5bNBqyW/P/53ZVUZlWVily4I650N5LggaMvALgt
+Cy7vp08rUmTlboXt44+h+O0b6J7wzp2hmB/Ne4IJRllucJoBcudGgMWdeOQnymO
8UA+dq8IEpHXMBxB8UjQDhF+4sHglJMIzoTmq+BnpoizAK06Sq0l9bgfb9N+6rVN
Vl2nto6BFqQJOxqfZn6n5vcvXq2A26P4uahmMcVUfOyLZ0rSwo7vcqixNBR9ZPPW
tqqU1JbP0i56VBoE773E4W4fWY//l/l8EDL9+nsmOp+tlNejYsK0WvyANE0TP58Q
wjFeEBYy/dAE7zvxv/IkuUiiknv1jZAa569+jt9NnqP8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:50 2024 by rpki-client on console-fra.rpki-client.org