Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/B3HMftvAOE-8ryqx3H6sW095V7Q.roa
File: B3HMftvAOE-8ryqx3H6sW095V7Q.roa (raw, json)
Hash identifier: T4pqoiRY+XSK5rTBPd9rcmyyq8F1C5ppPBLTy2npe+A=
Subject key identifier: 07:71:CC:7E:DB:C0:38:4F:BC:AF:2A:B1:DC:7E:AC:5B:4F:79:57:B4
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B650EB8EBDE589C4D8AD92568F7CEF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/B3HMftvAOE-8ryqx3H6sW095V7Q.roa
Signing time: Mon 02 Jan 2023 09:00:51 +0000
ROA not before: Mon 02 Jan 2023 09:00:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 185.240.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 17:55:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:50:eb:8e:bd:e5:89:c4:d8:ad:92:56:8f:7c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0771cc7edbc0384fbcaf2ab1dc7eac5b4f7957b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2f:2d:1c:1c:68:3f:f6:d7:dd:3b:0b:ff:54:
c2:7a:e6:47:54:21:d6:b2:17:62:d0:5d:63:f1:20:
06:1d:78:0b:2b:fe:e5:9e:83:db:c0:f2:49:3b:4b:
7c:2c:a0:4a:b4:1f:f5:a4:72:a7:60:6a:49:76:7f:
e0:a5:43:f6:a8:fc:7b:06:1a:45:41:ae:25:29:17:
55:7f:60:ca:27:d4:f5:b2:18:5d:31:9e:16:56:5b:
ac:42:de:c4:91:ee:54:9f:51:cc:c3:0a:a0:de:fd:
4d:ce:c4:5c:6a:f3:65:3e:ea:7f:95:83:a5:3f:01:
29:be:b4:32:25:5b:01:1c:bc:6e:5a:a2:51:49:64:
d7:96:3e:a8:ed:a7:d2:bd:84:f5:78:f1:3f:03:84:
83:1f:55:aa:78:9d:09:bd:b3:c4:78:a0:30:a8:7b:
c8:d2:ce:be:cb:ca:f4:3d:9f:84:87:de:93:77:99:
6c:85:86:1b:d8:09:98:5d:ac:92:a5:60:82:c6:22:
bc:7a:75:24:96:f3:77:ff:d2:f6:1d:f3:cf:09:85:
ae:c7:dc:c5:24:cf:72:50:76:61:76:1e:5f:66:64:
e1:83:53:77:38:31:6a:dd:3b:ed:a9:20:e4:3d:3c:
ca:b4:c7:f6:f5:25:36:a6:a5:5e:9c:ec:67:d2:6d:
c0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:71:CC:7E:DB:C0:38:4F:BC:AF:2A:B1:DC:7E:AC:5B:4F:79:57:B4
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/B3HMftvAOE-8ryqx3H6sW095V7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
70:b5:25:6f:84:c1:3b:a8:f3:70:c9:07:4e:b4:d1:2a:59:72:
7f:8b:ca:11:f8:95:6e:ae:f1:26:39:c9:b9:e4:eb:b1:37:64:
d6:f8:16:f5:b7:43:39:78:f1:99:d2:74:d6:e3:ab:d7:bf:01:
7f:56:0e:e1:cf:9b:25:d8:81:b0:f8:fe:0c:35:f8:0d:9c:a7:
78:d6:68:9d:27:b4:7f:7a:4a:12:e3:9b:ca:f2:f3:bd:64:d7:
c4:62:cd:a5:3d:3f:5b:45:33:4c:92:7e:37:68:af:7e:e2:e5:
c5:6e:e2:19:7e:cd:08:eb:6f:2d:09:53:51:77:48:1a:91:34:
48:64:35:9e:72:48:9e:33:11:cc:a6:9f:89:24:d7:49:e8:7e:
b9:28:c1:da:22:25:8e:c8:97:fe:0e:1f:96:d1:0e:da:13:f9:
df:62:b8:16:1a:08:71:4b:a7:69:b5:c7:c2:2d:bb:e4:59:55:
4b:76:30:d9:3f:27:bf:d7:2a:05:98:9c:37:c3:f0:f7:5a:4f:
65:b8:f3:b3:11:cf:c4:0e:bd:5c:2b:04:5e:d2:bb:b5:b7:eb:
a0:1d:41:96:19:0f:9b:d6:b2:cc:a0:a9:ac:4f:70:51:c1:68:
5f:ff:2d:bc:31:7c:18:ba:6e:4a:f4:a7:16:ae:50:63:e9:65:
f3:1f:05:12
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxtlDrjr3licTYrZJWj3zvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwMTAyMDkwMDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzcxY2M3ZWRiYzAzODRmYmNhZjJhYjFkYzdlYWM1YjRmNzk1N2I0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmC8tHBxoP/bX3TsL/1TCeuZHVCHW
shdi0F1j8SAGHXgLK/7lnoPbwPJJO0t8LKBKtB/1pHKnYGpJdn/gpUP2qPx7BhpF
Qa4lKRdVf2DKJ9T1shhdMZ4WVlusQt7Eke5Un1HMwwqg3v1NzsRcavNlPup/lYOl
PwEpvrQyJVsBHLxuWqJRSWTXlj6o7afSvYT1ePE/A4SDH1WqeJ0JvbPEeKAwqHvI
0s6+y8r0PZ+Eh96Td5lshYYb2AmYXaySpWCCxiK8enUklvN3/9L2HfPPCYWux9zF
JM9yUHZhdh5fZmThg1N3ODFq3TvtqSDkPTzKtMf29SU2pqVenOxn0m3AjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAdxzH7bwDhPvK8qsdx+rFtPeVe0MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvQjNITWZ0dkFPRS04cnlxeDNINnNXMDk1VjdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufB6MA0G
CSqGSIb3DQEBCwUAA4IBAQBwtSVvhME7qPNwyQdOtNEqWXJ/i8oR+JVurvEmOcm5
5OuxN2TW+Bb1t0M5ePGZ0nTW46vXvwF/Vg7hz5sl2IGw+P4MNfgNnKd41midJ7R/
ekoS45vK8vO9ZNfEYs2lPT9bRTNMkn43aK9+4uXFbuIZfs0I628tCVNRd0gakTRI
ZDWeckieMxHMpp+JJNdJ6H65KMHaIiWOyJf+Dh+W0Q7aE/nfYrgWGghxS6dptcfC
LbvkWVVLdjDZPye/1yoFmJw3w/D3Wk9luPOzEc/EDr1cKwRe0ru1t+ugHUGWGQ+b
1rLMoKmsT3BRwWhf/y28MXwYum5K9KcWrlBj6WXzHwUS
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org