Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/K4PVgue3O6sj-fHJ6R2Ofj2LId8.roa
File: K4PVgue3O6sj-fHJ6R2Ofj2LId8.roa (raw, json)
Hash identifier: qEZOH3vc9Ab06LfgunPLEIhzEmMDURREA9vwS3tQZHo=
Subject key identifier: 2B:83:D5:82:E7:B7:3B:AB:23:F9:F1:C9:E9:1D:8E:7E:3D:8B:21:DF
Certificate issuer: /CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Certificate serial: 01856ED4B69E6A1E76CED1017A26CE0F7AC0
Authority key identifier: 1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/K4PVgue3O6sj-fHJ6R2Ofj2LId8.roa
Signing time: Sun 01 Jan 2023 19:35:12 +0000
ROA not before: Sun 01 Jan 2023 19:35:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39151
IP address blocks: 185.68.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Mar 2023 11:14:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:b6:9e:6a:1e:76:ce:d1:01:7a:26:ce:0f:7a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Validity
Not Before: Jan 1 19:35:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b83d582e7b73bab23f9f1c9e91d8e7e3d8b21df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:25:59:01:23:e5:ff:bd:84:70:1f:5a:e9:74:
c3:c3:75:3d:9f:7f:02:f7:81:ed:bf:96:28:22:57:
28:41:fb:88:23:44:d4:4f:64:a5:31:78:d6:41:53:
b8:41:65:c9:a9:58:1f:e3:66:66:c9:8f:02:21:bb:
c9:ff:e3:6f:c6:04:e2:31:03:89:d5:c9:22:76:19:
66:76:33:ad:bf:17:ab:97:33:94:09:4d:3b:30:46:
e6:a8:e3:85:a0:01:0e:bd:50:20:8c:f4:d2:ad:78:
cd:3a:5b:58:b8:e4:a0:bb:b9:e6:fb:9a:7d:ca:f5:
5b:63:5d:75:f4:33:30:f7:d1:30:3d:29:d2:61:ce:
39:bd:ca:05:30:78:3e:c3:8e:1d:f7:b5:15:84:e2:
5f:bb:05:f8:98:5e:1d:d9:dc:00:1b:b4:e4:4d:bb:
55:02:09:e9:fd:a1:f1:9e:5d:70:47:90:92:15:7e:
9f:a2:04:ed:89:c8:c9:d5:3c:3d:36:5c:f4:b6:f7:
11:a6:48:d4:00:3f:fa:45:fe:70:05:cc:61:2b:2a:
b7:d6:ff:7d:52:02:ce:65:cd:15:db:37:9a:0a:e6:
c3:27:07:74:3f:34:fb:c0:20:a4:48:3d:30:f9:99:
21:f5:03:6e:23:02:5d:be:06:15:b4:4c:d0:ce:ee:
30:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:83:D5:82:E7:B7:3B:AB:23:F9:F1:C9:E9:1D:8E:7E:3D:8B:21:DF
X509v3 Authority Key Identifier:
keyid:1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/K4PVgue3O6sj-fHJ6R2Ofj2LId8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/HWW3t7iY-q7nB2fQlxXENqg_zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.234.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:90:83:9a:08:43:01:fa:86:05:2c:9e:5c:43:fa:fa:0c:8c:
ef:8d:a7:f7:78:35:70:48:7c:4a:d5:97:4c:75:8d:28:ca:a0:
b6:62:2c:0f:f6:65:c2:ee:b0:76:25:f6:c5:fe:bb:15:60:77:
49:0e:4c:98:79:1b:78:8d:14:00:47:dd:ef:12:14:c8:7c:7c:
be:42:da:b8:67:78:c7:02:8e:8f:fe:5c:63:52:f9:f8:73:da:
d9:d2:60:ff:81:ce:df:1a:e0:10:d1:8a:f7:26:ba:58:5a:1f:
af:2f:62:45:97:00:26:83:5d:93:3f:0d:67:de:39:7d:01:ee:
7d:87:13:88:14:86:0f:77:21:ef:91:ec:3d:f3:5e:3d:85:11:
fb:7b:5c:05:ec:87:2a:0b:c3:cc:2a:46:c9:2f:de:87:69:b6:
89:10:1f:26:86:09:f1:52:ec:9e:d5:88:39:26:96:ff:8a:5c:
7c:51:a1:f5:98:15:f1:bb:ea:bf:8a:01:4e:1a:8f:cd:cf:f6:
38:d8:da:40:e5:28:02:b8:64:12:7c:bc:63:51:6e:37:cf:8a:
21:cf:36:d0:06:aa:73:2f:28:0b:64:8c:7c:08:37:9c:8d:17:
78:ef:6e:03:87:59:37:17:da:b3:f9:b9:98:e2:22:ff:24:b9:
08:5a:d4:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVu1Laeah52ztEBeibOD3rAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkNjViN2I3Yjg5OGZhYWVlNzA3NjdkMDk3MTVjNDM2YTgz
ZmNkYzIwHhcNMjMwMTAxMTkzNTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjgzZDU4MmU3YjczYmFiMjNmOWYxYzllOTFkOGU3ZTNkOGIyMWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqiVZASPl/72EcB9a6XTDw3U9n38C
94Htv5YoIlcoQfuII0TUT2SlMXjWQVO4QWXJqVgf42ZmyY8CIbvJ/+NvxgTiMQOJ
1ckidhlmdjOtvxerlzOUCU07MEbmqOOFoAEOvVAgjPTSrXjNOltYuOSgu7nm+5p9
yvVbY1119DMw99EwPSnSYc45vcoFMHg+w44d97UVhOJfuwX4mF4d2dwAG7TkTbtV
Agnp/aHxnl1wR5CSFX6fogTticjJ1Tw9Nlz0tvcRpkjUAD/6Rf5wBcxhKyq31v99
UgLOZc0V2zeaCubDJwd0PzT7wCCkSD0w+Zkh9QNuIwJdvgYVtEzQzu4w6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCuD1YLntzurI/nxyekdjn49iyHfMB8GA1UdIwQY
MBaAFB1lt7e4mPqu5wdn0JcVxDaoP83CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFdXM3Q3aVktcTduQjJmUWx4WEVOcWdfemNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9kZWFlZjEtNjI0MS00OWFiLTk4MjUt
OGZjMzczNzU3Njg0LzEvSzRQVmd1ZTNPNnNqLWZISjZSMk9majJMSWQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9kZWFlZjEtNjI0MS00OWFiLTk4MjUtOGZjMzczNzU3Njg0
LzEvSFdXM3Q3aVktcTduQjJmUWx4WEVOcWdfemNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUTqMA0G
CSqGSIb3DQEBCwUAA4IBAQBbkIOaCEMB+oYFLJ5cQ/r6DIzvjaf3eDVwSHxK1ZdM
dY0oyqC2YiwP9mXC7rB2JfbF/rsVYHdJDkyYeRt4jRQAR93vEhTIfHy+Qtq4Z3jH
Ao6P/lxjUvn4c9rZ0mD/gc7fGuAQ0Yr3JrpYWh+vL2JFlwAmg12TPw1n3jl9Ae59
hxOIFIYPdyHvkew98149hRH7e1wF7IcqC8PMKkbJL96HabaJEB8mhgnxUuye1Yg5
Jpb/ilx8UaH1mBXxu+q/igFOGo/Nz/Y42NpA5SgCuGQSfLxjUW43z4ohzzbQBqpz
LygLZIx8CDecjRd4724Dh1k3F9qz+bmY4iL/JLkIWtTM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:10 2024 by rpki-client on console-fra.rpki-client.org