Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/X3SCNaeGpLhHkx217hE8QHneQRs.roa
File: X3SCNaeGpLhHkx217hE8QHneQRs.roa (raw, json)
Hash identifier: 42AinLvHoTIYMzpulrOYIJ42LnppRbsrffEY8sClJqc=
Subject key identifier: 5F:74:82:35:A7:86:A4:B8:47:93:1D:B5:EE:11:3C:40:79:DE:41:1B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018ACCBC27B6B37ADFE08B7134C4B731DC03
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/X3SCNaeGpLhHkx217hE8QHneQRs.roa
Signing time: Mon 25 Sep 2023 14:26:37 +0000
ROA not before: Mon 25 Sep 2023 14:26:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 271621
IP address blocks: 185.126.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Dec 2023 10:06:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:bc:27:b6:b3:7a:df:e0:8b:71:34:c4:b7:31:dc:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 25 14:26:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f748235a786a4b847931db5ee113c4079de411b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:f0:78:52:80:f4:69:24:36:90:8d:30:71:2c:
64:7f:4d:13:c8:43:02:a0:85:7e:01:e2:60:ea:37:
23:f9:4c:0f:e7:c3:21:32:97:e0:bd:a2:e0:2b:37:
ef:bb:2d:62:74:5d:da:de:38:67:88:41:08:2d:74:
07:b7:85:a0:dd:0b:97:94:38:92:d9:16:99:cb:df:
23:07:66:81:a5:86:48:29:ee:81:17:47:b6:8b:8a:
c5:7f:f8:2b:c7:56:7e:ae:f3:ad:86:da:dc:99:98:
23:32:a5:c5:99:13:f5:b0:39:28:68:95:a5:3b:cb:
dc:ad:9e:98:a6:db:56:f0:11:36:23:c1:9d:01:1c:
1c:b8:b2:84:78:ae:ab:f2:fc:55:8c:7d:f8:b8:e1:
92:86:1a:97:34:7e:39:74:a0:c5:39:e9:79:cb:df:
76:04:8f:18:35:ff:eb:01:06:1c:fc:1d:b9:19:67:
2f:b9:be:18:d3:d3:81:da:2f:17:88:ea:91:ba:ce:
d1:d4:8e:d9:a4:41:8b:dd:d0:de:bd:ee:7f:b8:84:
92:92:cd:b8:fb:2e:47:14:de:a2:4b:1d:5e:cb:f8:
b2:c8:fc:22:a8:75:43:33:78:ce:13:29:b4:ff:2a:
33:8e:df:c3:51:53:07:eb:b8:00:06:33:c6:d9:2a:
7c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:74:82:35:A7:86:A4:B8:47:93:1D:B5:EE:11:3C:40:79:DE:41:1B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/X3SCNaeGpLhHkx217hE8QHneQRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.82.0/24
Signature Algorithm: sha256WithRSAEncryption
25:07:29:dc:46:d2:15:9c:83:35:61:0e:6a:64:88:93:ed:6a:
f5:f3:5a:77:3b:a4:78:d2:87:48:4a:25:8e:5d:52:5e:ca:c3:
17:9c:c9:72:55:01:8e:88:51:3e:69:0e:99:58:d2:e0:96:04:
09:b2:39:70:27:ab:ed:8c:16:74:70:db:c8:66:df:ff:81:a4:
91:19:52:da:04:5c:58:41:cc:97:31:94:03:2d:47:06:3f:8b:
8c:c4:29:4b:82:d3:0f:04:28:f2:b4:14:89:6f:00:dc:98:73:
be:76:63:9e:dd:a1:fd:18:99:1f:bb:66:b8:0d:8b:de:f0:f9:
e5:9a:16:e3:8d:71:3d:53:c5:dc:9e:17:d2:1c:41:d2:4c:05:
88:a7:69:c6:d9:b3:d0:8b:9b:63:a2:4b:31:b0:be:f1:73:2f:
67:86:bc:19:91:a4:cb:01:40:06:a3:55:0a:1f:ab:84:91:1c:
eb:18:e9:08:a8:8b:eb:0a:a7:5c:58:f9:d7:3e:82:bf:f7:26:
b1:fc:1d:2c:ff:26:ab:d0:61:07:ac:f1:db:f0:27:76:82:6e:
17:a6:f2:83:c7:9d:2c:d5:90:4f:c3:48:95:6c:e6:e6:dc:65:
0f:c8:90:bd:80:ab:d4:71:52:29:b1:e8:39:19:6c:fd:af:b0:
52:ad:45:04
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrMvCe2s3rf4ItxNMS3MdwDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwOTI1MTQyNjM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Zjc0ODIzNWE3ODZhNGI4NDc5MzFkYjVlZTExM2M0MDc5ZGU0MTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgvB4UoD0aSQ2kI0wcSxkf00TyEMC
oIV+AeJg6jcj+UwP58MhMpfgvaLgKzfvuy1idF3a3jhniEEILXQHt4Wg3QuXlDiS
2RaZy98jB2aBpYZIKe6BF0e2i4rFf/grx1Z+rvOthtrcmZgjMqXFmRP1sDkoaJWl
O8vcrZ6YpttW8BE2I8GdARwcuLKEeK6r8vxVjH34uOGShhqXNH45dKDFOel5y992
BI8YNf/rAQYc/B25GWcvub4Y09OB2i8XiOqRus7R1I7ZpEGL3dDeve5/uISSks24
+y5HFN6iSx1ey/iyyPwiqHVDM3jOEym0/yozjt/DUVMH67gABjPG2Sp8AQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF90gjWnhqS4R5Mdte4RPEB53kEbMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvWDNTQ05hZUdwTGhIa3gyMTdoRThRSG5lUVJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuX5SMA0G
CSqGSIb3DQEBCwUAA4IBAQAlByncRtIVnIM1YQ5qZIiT7Wr181p3O6R40odISiWO
XVJeysMXnMlyVQGOiFE+aQ6ZWNLglgQJsjlwJ6vtjBZ0cNvIZt//gaSRGVLaBFxY
QcyXMZQDLUcGP4uMxClLgtMPBCjytBSJbwDcmHO+dmOe3aH9GJkfu2a4DYve8Pnl
mhbjjXE9U8XcnhfSHEHSTAWIp2nG2bPQi5tjoksxsL7xcy9nhrwZkaTLAUAGo1UK
H6uEkRzrGOkIqIvrCqdcWPnXPoK/9yax/B0s/yar0GEHrPHb8Cd2gm4XpvKDx50s
1ZBPw0iVbObm3GUPyJC9gKvUcVIpseg5GWz9r7BSrUUE
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org