Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/DfAy8CIadazNxRinzlsrYes1BXM.roa
File: DfAy8CIadazNxRinzlsrYes1BXM.roa (raw, json)
Hash identifier: Z3eo1oX20sRFCvdPXVBf7XZEU1tR2iR6s1HzBDVcXPc=
Subject key identifier: 0D:F0:32:F0:22:1A:75:AC:CD:C5:18:A7:CE:5B:2B:61:EB:35:05:73
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018A885F2086F3E7FFDA518F2880C25DA59D
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/DfAy8CIadazNxRinzlsrYes1BXM.roa
Signing time: Tue 12 Sep 2023 07:50:50 +0000
ROA not before: Tue 12 Sep 2023 07:50:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209224
IP address blocks: 185.217.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:88:5f:20:86:f3:e7:ff:da:51:8f:28:80:c2:5d:a5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Sep 12 07:50:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0df032f0221a75accdc518a7ce5b2b61eb350573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8b:f9:ab:c0:aa:1f:85:56:7e:1d:49:cb:7b:
64:d3:aa:60:0a:8a:6b:0c:6f:97:d7:26:8b:ab:d3:
af:ab:52:88:1f:9d:26:2c:df:c5:16:69:2f:33:aa:
e1:7d:a2:7a:90:ed:c6:23:1c:d9:3b:6c:c7:7f:99:
86:3a:dc:01:b5:40:50:1c:47:a6:67:d3:71:04:d9:
1f:6c:f0:40:83:f2:2d:a9:28:7e:04:08:dd:c3:08:
8b:28:40:3b:4f:44:bf:d2:90:ea:b8:58:cf:84:c6:
44:a9:ab:5f:31:01:7a:06:5e:6a:b4:ec:4a:d3:ee:
87:35:89:00:90:27:33:be:f3:17:2e:9e:fb:62:c3:
3b:df:09:bf:23:72:5f:f6:6b:ae:07:5c:29:c2:11:
d5:e4:66:89:c2:10:72:1e:f3:20:b5:b8:6d:0a:87:
ec:94:4b:27:92:7c:fd:45:37:76:03:fc:15:30:15:
a7:32:1b:2e:08:73:8c:66:45:b2:b6:2f:96:47:7b:
2a:1e:f8:c0:fc:a7:cf:57:4c:5f:f7:a9:d1:fb:13:
64:1c:3f:a7:24:0c:f2:00:f5:88:40:ef:81:b7:1d:
d3:38:7e:1f:7f:9e:4b:38:fa:46:76:b5:ec:2f:0f:
b7:35:fb:fa:9d:fc:96:c2:88:03:76:cb:45:20:14:
46:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F0:32:F0:22:1A:75:AC:CD:C5:18:A7:CE:5B:2B:61:EB:35:05:73
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/DfAy8CIadazNxRinzlsrYes1BXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.197.0/24
Signature Algorithm: sha256WithRSAEncryption
82:89:51:71:83:66:4f:aa:a1:87:bf:d1:24:c5:74:c2:6a:21:
49:d3:93:4d:f6:e5:a9:98:8e:cb:7c:8a:7c:38:18:c4:51:92:
b8:15:6e:d6:37:48:7e:76:70:08:bb:58:b9:34:00:b1:b2:cf:
5b:fe:b5:3f:7c:c6:31:9e:f7:de:36:cc:5d:32:04:d8:89:de:
57:f7:f4:2b:39:2e:80:5d:17:28:49:d8:21:79:38:6f:a6:c5:
ad:14:0f:06:9b:52:6b:6d:32:6f:f9:c5:1e:b3:2f:8f:b1:26:
f7:6a:52:6e:be:e7:8d:f2:14:fc:a7:ba:12:42:46:92:cf:39:
f3:ca:b8:78:33:53:cd:15:89:d9:0f:ce:fe:48:63:77:de:9a:
f8:0a:23:f0:98:f4:03:4a:6c:b2:7f:e6:ca:0a:26:0a:5a:80:
37:cf:08:8b:e9:ff:00:d1:95:25:15:19:fc:79:0d:5e:77:19:
2b:73:3f:4d:6b:72:0b:2b:bb:ab:8c:d7:e9:98:05:dc:e9:12:
3f:d5:56:f9:e2:a5:74:9e:45:b8:d8:24:f2:75:f4:b4:70:1e:
a3:50:e3:2d:8d:45:eb:49:54:bf:3b:33:7e:17:42:0c:df:7d:
ca:a4:98:19:04:00:73:b4:59:4c:d1:78:7f:c3:a1:41:4a:94:
ee:13:e8:ba
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqIXyCG8+f/2lGPKIDCXaWdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjMwOTEyMDc1MDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZGYwMzJmMDIyMWE3NWFjY2RjNTE4YTdjZTViMmI2MWViMzUwNTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlov5q8CqH4VWfh1Jy3tk06pgCopr
DG+X1yaLq9Ovq1KIH50mLN/FFmkvM6rhfaJ6kO3GIxzZO2zHf5mGOtwBtUBQHEem
Z9NxBNkfbPBAg/ItqSh+BAjdwwiLKEA7T0S/0pDquFjPhMZEqatfMQF6Bl5qtOxK
0+6HNYkAkCczvvMXLp77YsM73wm/I3Jf9muuB1wpwhHV5GaJwhByHvMgtbhtCofs
lEsnknz9RTd2A/wVMBWnMhsuCHOMZkWyti+WR3sqHvjA/KfPV0xf96nR+xNkHD+n
JAzyAPWIQO+Btx3TOH4ff55LOPpGdrXsLw+3Nfv6nfyWwogDdstFIBRGoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA3wMvAiGnWszcUYp85bK2HrNQVzMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvRGZBeThDSWFkYXpOeFJpbnpsc3JZZXMxQlhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudnFMA0G
CSqGSIb3DQEBCwUAA4IBAQCCiVFxg2ZPqqGHv9EkxXTCaiFJ05NN9uWpmI7LfIp8
OBjEUZK4FW7WN0h+dnAIu1i5NACxss9b/rU/fMYxnvfeNsxdMgTYid5X9/QrOS6A
XRcoSdgheThvpsWtFA8Gm1JrbTJv+cUesy+PsSb3alJuvueN8hT8p7oSQkaSzznz
yrh4M1PNFYnZD87+SGN33pr4CiPwmPQDSmyyf+bKCiYKWoA3zwiL6f8A0ZUlFRn8
eQ1edxkrcz9Na3ILK7urjNfpmAXc6RI/1Vb54qV0nkW42CTydfS0cB6jUOMtjUXr
SVS/OzN+F0IM333KpJgZBABztFlM0Xh/w6FBSpTuE+i6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org