Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/5f343d-9b42-44b4-9067-7cae040e49e8/1/OX4Mh5IoHATUqwQMAEXZusRhxyE.roa
File: OX4Mh5IoHATUqwQMAEXZusRhxyE.roa (raw, json)
Hash identifier: qtCGr3KpCuJH1FMb5UNYRaQvr+mTX0DsdPXvDwIoqyU=
Subject key identifier: 39:7E:0C:87:92:28:1C:04:D4:AB:04:0C:00:45:D9:BA:C4:61:C7:21
Certificate issuer: /CN=785b490d766f4b1c211d7dadd6efa770f6eb9e25
Certificate serial: 0185708CD5C76987A4A254098AB291649844
Authority key identifier: 78:5B:49:0D:76:6F:4B:1C:21:1D:7D:AD:D6:EF:A7:70:F6:EB:9E:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eFtJDXZvSxwhHX2t1u-ncPbrniU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/5f343d-9b42-44b4-9067-7cae040e49e8/1/OX4Mh5IoHATUqwQMAEXZusRhxyE.roa
Signing time: Mon 02 Jan 2023 03:35:56 +0000
ROA not before: Mon 02 Jan 2023 03:35:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202289
IP address blocks: 185.155.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:d5:c7:69:87:a4:a2:54:09:8a:b2:91:64:98:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=785b490d766f4b1c211d7dadd6efa770f6eb9e25
Validity
Not Before: Jan 2 03:35:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=397e0c8792281c04d4ab040c0045d9bac461c721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d6:5a:27:24:cd:7d:04:33:20:28:72:52:c9:
24:a7:82:37:fc:f0:04:38:29:58:8c:ba:ef:7c:85:
57:ac:8b:54:0b:d4:f7:1c:ca:01:83:9c:d6:9c:65:
8a:2e:52:04:6d:d6:50:31:99:8d:ab:9b:fa:21:01:
7b:4a:7c:60:71:a5:ee:29:35:a8:46:3f:af:fc:5b:
1b:3f:32:f7:85:52:c0:7f:2f:ce:af:19:88:ce:c8:
dc:bf:a2:03:83:6d:02:4b:56:12:30:a2:73:b7:34:
06:be:b9:9b:fe:84:d3:0f:12:c6:68:f4:6e:76:1f:
4b:d0:23:6b:23:ae:03:ae:96:64:41:58:09:00:50:
23:64:42:44:84:6b:a4:a5:37:3c:07:ab:3f:d1:58:
dd:09:1e:42:ad:5e:02:86:83:04:ae:6b:7a:f3:30:
7a:e0:8a:0a:d1:05:a1:43:6b:76:a9:24:d5:68:ec:
f5:eb:7c:ab:81:1f:c3:04:a3:f7:54:c5:33:35:24:
d1:88:d2:7c:6a:d1:b6:c0:6b:b4:56:9e:47:39:7d:
df:a2:38:6a:f0:ec:2c:c6:bb:66:ce:04:ba:fb:55:
76:f8:16:42:38:1c:39:61:ac:0f:cf:0b:db:37:08:
11:d0:11:26:d7:cf:5c:67:1e:34:e4:5c:0e:3a:56:
08:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:7E:0C:87:92:28:1C:04:D4:AB:04:0C:00:45:D9:BA:C4:61:C7:21
X509v3 Authority Key Identifier:
keyid:78:5B:49:0D:76:6F:4B:1C:21:1D:7D:AD:D6:EF:A7:70:F6:EB:9E:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eFtJDXZvSxwhHX2t1u-ncPbrniU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5f343d-9b42-44b4-9067-7cae040e49e8/1/OX4Mh5IoHATUqwQMAEXZusRhxyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5f343d-9b42-44b4-9067-7cae040e49e8/1/eFtJDXZvSxwhHX2t1u-ncPbrniU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.16.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:0c:75:7d:52:f8:37:fc:b1:1a:aa:7f:72:ca:b2:73:d8:af:
21:a4:c6:3d:cf:95:d2:d7:01:82:7d:46:56:f2:6d:cd:b8:00:
75:22:ff:cc:18:d7:eb:0e:31:8f:bf:07:fd:8c:49:e8:55:5c:
d5:af:18:92:3d:2a:86:8a:04:94:be:e1:ba:be:b3:d8:9e:c9:
12:b1:b9:8e:1b:1f:98:e9:35:03:d4:7a:38:d6:5e:26:85:7f:
99:03:ad:21:70:72:cc:62:1c:54:c5:1a:4d:06:b8:47:5b:a2:
30:12:bf:2a:49:11:8a:ab:39:19:00:69:4c:ba:94:7e:98:65:
4d:b2:a5:48:7e:05:13:58:a9:5c:02:39:ec:60:9c:9a:5a:29:
77:aa:02:9d:5e:30:3d:38:c1:18:41:78:ad:ac:7f:a4:99:8c:
49:6d:77:bb:e2:5e:88:6a:de:02:45:cd:56:dc:fe:ca:f6:fd:
29:66:82:0b:7d:4b:05:7d:99:f9:44:25:1d:80:0c:5e:fe:b0:
a0:01:2b:07:ea:09:0b:b5:10:e2:b7:34:83:d9:bf:49:d6:07:
50:99:5c:d7:8d:0c:ca:3d:5a:98:09:65:c4:ed:57:89:28:09:
e8:28:0b:42:3c:c2:8d:f6:1a:91:40:40:47:9f:91:ce:39:ca:
ca:1d:9e:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwjNXHaYekolQJirKRZJhEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4NWI0OTBkNzY2ZjRiMWMyMTFkN2RhZGQ2ZWZhNzcwZjZl
YjllMjUwHhcNMjMwMTAyMDMzNTU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTdlMGM4NzkyMjgxYzA0ZDRhYjA0MGMwMDQ1ZDliYWM0NjFjNzIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNZaJyTNfQQzIChyUskkp4I3/PAE
OClYjLrvfIVXrItUC9T3HMoBg5zWnGWKLlIEbdZQMZmNq5v6IQF7SnxgcaXuKTWo
Rj+v/FsbPzL3hVLAfy/OrxmIzsjcv6IDg20CS1YSMKJztzQGvrmb/oTTDxLGaPRu
dh9L0CNrI64DrpZkQVgJAFAjZEJEhGukpTc8B6s/0VjdCR5CrV4ChoMErmt68zB6
4IoK0QWhQ2t2qSTVaOz163yrgR/DBKP3VMUzNSTRiNJ8atG2wGu0Vp5HOX3fojhq
8OwsxrtmzgS6+1V2+BZCOBw5YawPzwvbNwgR0BEm189cZx405FwOOlYI7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDl+DIeSKBwE1KsEDABF2brEYcchMB8GA1UdIwQY
MBaAFHhbSQ12b0scIR19rdbvp3D2654lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUZ0SkRYWnZTeHdoSFgydDF1LW5jUGJybmlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi81ZjM0M2QtOWI0Mi00NGI0LTkwNjct
N2NhZTA0MGU0OWU4LzEvT1g0TWg1SW9IQVRVcXdRTUFFWFp1c1JoeHlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi81ZjM0M2QtOWI0Mi00NGI0LTkwNjctN2NhZTA0MGU0OWU4
LzEvZUZ0SkRYWnZTeHdoSFgydDF1LW5jUGJybmlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZsQMA0G
CSqGSIb3DQEBCwUAA4IBAQBrDHV9Uvg3/LEaqn9yyrJz2K8hpMY9z5XS1wGCfUZW
8m3NuAB1Iv/MGNfrDjGPvwf9jEnoVVzVrxiSPSqGigSUvuG6vrPYnskSsbmOGx+Y
6TUD1Ho41l4mhX+ZA60hcHLMYhxUxRpNBrhHW6IwEr8qSRGKqzkZAGlMupR+mGVN
sqVIfgUTWKlcAjnsYJyaWil3qgKdXjA9OMEYQXitrH+kmYxJbXe74l6Iat4CRc1W
3P7K9v0pZoILfUsFfZn5RCUdgAxe/rCgASsH6gkLtRDitzSD2b9J1gdQmVzXjQzK
PVqYCWXE7VeJKAnoKAtCPMKN9hqRQEBHn5HOOcrKHZ7i
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:01 2024 by rpki-client on console-fra.rpki-client.org