Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/D9RE3X_TCzjuYg2YtDQqjcmyyJU.roa
File: D9RE3X_TCzjuYg2YtDQqjcmyyJU.roa (raw, json)
Hash identifier: WNMWxLw6Z9yWy9VOGVemCdy4xCymrmN7daKDVquCzuo=
Subject key identifier: 0F:D4:44:DD:7F:D3:0B:38:EE:62:0D:98:B4:34:2A:8D:C9:B2:C8:95
Certificate issuer: /CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Certificate serial: 018A01EE65CB3FC40D42EBC43BDB2B28B5B3
Authority key identifier: 9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/D9RE3X_TCzjuYg2YtDQqjcmyyJU.roa
Signing time: Thu 17 Aug 2023 05:18:35 +0000
ROA not before: Thu 17 Aug 2023 05:18:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.149.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Nov 2023 10:47:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:01:ee:65:cb:3f:c4:0d:42:eb:c4:3b:db:2b:28:b5:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Validity
Not Before: Aug 17 05:18:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fd444dd7fd30b38ee620d98b4342a8dc9b2c895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3e:33:dd:d3:95:39:87:f3:e2:be:94:08:33:
e3:9b:52:42:4d:74:43:cd:9d:b1:d4:2d:e1:26:70:
36:e7:24:5d:ab:f9:f8:2f:cb:fb:c2:a2:02:4d:0a:
6b:43:6c:e4:bf:5f:d8:4a:3b:dd:3c:31:1e:27:b7:
2b:f9:d8:3f:fe:3b:61:ea:20:0a:63:02:40:4a:ef:
0d:2f:20:05:bd:71:9b:71:89:df:c5:a0:0c:c6:90:
68:d2:a8:6a:87:cf:d0:05:4c:e1:01:e3:08:73:67:
b2:3b:7e:a3:b7:bb:e3:b0:2f:a1:88:d0:20:97:9a:
bf:19:a6:06:e2:d4:09:cb:b4:d4:11:87:fb:67:d3:
e6:47:8a:54:82:7b:cb:f3:ab:c7:eb:72:f6:a8:01:
f4:bc:49:85:92:56:36:c8:26:01:4f:bc:43:f5:54:
32:06:fe:cf:c6:1e:0d:8a:06:e8:22:06:f8:77:20:
98:dd:e7:21:c8:db:ec:0f:84:f3:61:0e:09:73:22:
e4:b7:88:00:af:d2:1b:e1:90:4f:35:b8:2e:83:8e:
26:e3:66:7e:6b:0d:1b:41:a7:69:c1:a4:4b:ad:1d:
ed:f6:8f:5c:30:27:89:d4:80:94:38:0d:23:34:ec:
a5:33:32:f3:6b:26:72:f9:38:19:9c:72:b8:88:46:
a8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D4:44:DD:7F:D3:0B:38:EE:62:0D:98:B4:34:2A:8D:C9:B2:C8:95
X509v3 Authority Key Identifier:
keyid:9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/D9RE3X_TCzjuYg2YtDQqjcmyyJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ncKK6ZN_9-SexPEjTlPYud1pRUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.151.0/24
Signature Algorithm: sha256WithRSAEncryption
16:f6:14:16:a7:4c:40:65:ea:16:50:1d:58:68:6f:d3:2e:42:
4d:d0:09:9e:6e:ed:d1:ce:07:e9:94:11:0c:4b:ad:5d:f2:92:
63:6e:2a:f1:30:dd:c7:9b:58:f0:80:26:33:d5:52:0b:4a:65:
4c:af:47:a9:87:ef:96:1c:6a:4e:c4:1f:53:9f:8b:0b:5e:fc:
3c:66:5d:98:27:18:7e:62:40:67:64:1a:97:22:e3:70:27:03:
48:5b:2d:0a:48:7b:0e:14:d3:3b:91:a5:87:d2:c6:37:2c:ac:
41:b0:99:15:9c:c2:6a:20:81:a0:2f:3f:bd:ed:28:4e:16:cc:
be:f3:6f:dd:84:de:59:c1:e9:93:68:91:58:78:da:e6:54:43:
49:0a:4b:cc:6b:1f:82:16:8f:ac:8d:d2:f4:fc:17:e1:da:bb:
80:58:25:50:d4:46:b9:f6:82:11:09:f7:52:42:d5:2a:2e:63:
31:52:30:07:8c:4b:b2:2d:7b:a0:cd:d2:c9:09:0f:14:e3:ae:
8f:52:40:f9:59:7d:76:c4:44:90:fe:88:72:54:13:2f:aa:f6:
68:1d:2e:8c:a9:25:6d:1c:de:29:71:ed:23:f3:d7:50:fe:eb:
a1:58:a4:f5:08:be:e5:1c:b9:bf:90:31:e4:fb:21:66:e4:15:
74:c8:45:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYoB7mXLP8QNQuvEO9srKLWzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkYzI4YWU5OTM3ZmY3ZTQ5ZWM0ZjEyMzRlNTNkOGI5ZGQ2
OTQ1NDEwHhcNMjMwODE3MDUxODM1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmQ0NDRkZDdmZDMwYjM4ZWU2MjBkOThiNDM0MmE4ZGM5YjJjODk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4j4z3dOVOYfz4r6UCDPjm1JCTXRD
zZ2x1C3hJnA25yRdq/n4L8v7wqICTQprQ2zkv1/YSjvdPDEeJ7cr+dg//jth6iAK
YwJASu8NLyAFvXGbcYnfxaAMxpBo0qhqh8/QBUzhAeMIc2eyO36jt7vjsC+hiNAg
l5q/GaYG4tQJy7TUEYf7Z9PmR4pUgnvL86vH63L2qAH0vEmFklY2yCYBT7xD9VQy
Bv7Pxh4NigboIgb4dyCY3echyNvsD4TzYQ4JcyLkt4gAr9Ib4ZBPNbgug44m42Z+
aw0bQadpwaRLrR3t9o9cMCeJ1ICUOA0jNOylMzLzayZy+TgZnHK4iEao2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA/URN1/0ws47mINmLQ0Ko3JssiVMB8GA1UdIwQY
MBaAFJ3CiumTf/fknsTxI05T2LndaUVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmNLSzZaTl85LVNleFBFalRsUFl1ZDFwUlVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9jMDMzMGMtOTg3Mi00YWM2LWEyMmMt
MTkyY2JkMDhkYjUxLzEvRDlSRTNYX1RDemp1WWcyWXREUXFqY215eUpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9jMDMzMGMtOTg3Mi00YWM2LWEyMmMtMTkyY2JkMDhkYjUx
LzEvbmNLSzZaTl85LVNleFBFalRsUFl1ZDFwUlVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZWXMA0G
CSqGSIb3DQEBCwUAA4IBAQAW9hQWp0xAZeoWUB1YaG/TLkJN0Amebu3RzgfplBEM
S61d8pJjbirxMN3Hm1jwgCYz1VILSmVMr0eph++WHGpOxB9Tn4sLXvw8Zl2YJxh+
YkBnZBqXIuNwJwNIWy0KSHsOFNM7kaWH0sY3LKxBsJkVnMJqIIGgLz+97ShOFsy+
82/dhN5ZwemTaJFYeNrmVENJCkvMax+CFo+sjdL0/Bfh2ruAWCVQ1Ea59oIRCfdS
QtUqLmMxUjAHjEuyLXugzdLJCQ8U466PUkD5WX12xESQ/ohyVBMvqvZoHS6MqSVt
HN4pce0j89dQ/uuhWKT1CL7lHLm/kDHk+yFm5BV0yEUF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:54 2024 by rpki-client on console-fra.rpki-client.org