Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/FR4c2dymg9EtWlSRSbVBoAF2Mnc.roa
File: FR4c2dymg9EtWlSRSbVBoAF2Mnc.roa (raw, json)
Hash identifier: UOIcSUjvjLd2ux0yleZKyfey8G4uCMGskgjS1IL1K/8=
Subject key identifier: 15:1E:1C:D9:DC:A6:83:D1:2D:5A:54:91:49:B5:41:A0:01:76:32:77
Certificate issuer: /CN=69fdfe8249f943aabad1881fca5836613a6a67bc
Certificate serial: 01856F549941EFFC529CD3192FBE1D0092F7
Authority key identifier: 69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/FR4c2dymg9EtWlSRSbVBoAF2Mnc.roa
Signing time: Sun 01 Jan 2023 21:54:53 +0000
ROA not before: Sun 01 Jan 2023 21:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39242
IP address blocks: 185.159.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:99:41:ef:fc:52:9c:d3:19:2f:be:1d:00:92:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69fdfe8249f943aabad1881fca5836613a6a67bc
Validity
Not Before: Jan 1 21:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=151e1cd9dca683d12d5a549149b541a001763277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:65:9f:01:fa:6e:1c:de:43:88:c7:9e:87:ff:
e3:4f:11:fb:99:02:da:d9:c0:b0:42:a6:3d:88:99:
c0:3e:44:6c:ca:18:a8:ef:04:9f:f2:3c:e3:42:24:
27:33:b0:a4:1b:6c:88:ec:59:ac:31:e6:c2:18:cb:
05:e7:bb:3e:67:99:2b:23:e1:9d:58:1f:9b:78:a7:
98:b1:aa:2d:a1:a4:db:08:43:a0:64:72:83:f0:42:
f2:44:34:c0:46:d0:f6:e3:2e:b9:bc:20:4b:d5:1d:
e4:80:87:bb:05:7f:99:89:35:26:5b:a8:c0:c1:a8:
d5:24:bf:cb:3d:73:c9:f9:98:21:ff:d7:51:9b:f4:
be:6f:03:f5:c1:c2:8b:fc:84:64:77:19:54:ef:72:
58:1b:57:58:40:ad:9e:02:e4:e7:ab:7e:3f:4a:27:
6e:4d:a2:59:b2:72:3d:08:1e:19:6e:00:34:19:53:
83:03:e4:6b:c5:1b:5a:ca:d1:02:71:ac:ce:0e:16:
9e:c0:72:f6:ee:6b:6e:44:de:dc:f7:fe:39:c1:f1:
bc:29:6c:95:e3:2d:d9:eb:7b:93:dd:a8:63:4b:6e:
0b:7a:b8:2d:0a:8d:43:17:b5:2d:26:f5:29:7b:32:
95:bd:8a:bf:83:52:e5:d8:8c:43:d6:fe:2f:3a:32:
08:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:1E:1C:D9:DC:A6:83:D1:2D:5A:54:91:49:B5:41:A0:01:76:32:77
X509v3 Authority Key Identifier:
keyid:69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/FR4c2dymg9EtWlSRSbVBoAF2Mnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.236.0/24
Signature Algorithm: sha256WithRSAEncryption
59:6c:be:30:b1:32:9e:77:92:9c:9d:aa:d3:68:eb:18:41:b2:
6c:63:0a:34:0a:d4:63:8e:ba:f8:34:98:85:18:36:d3:e5:83:
92:45:12:7a:70:8f:03:0f:0c:45:06:3e:8d:21:4c:e2:6e:c6:
a4:6a:cc:6b:62:0e:91:ca:71:38:86:6e:d7:8d:cd:8d:4b:46:
e3:53:18:e4:04:12:8e:e9:98:9b:e1:2e:c2:62:ec:64:42:40:
2f:80:57:55:30:bf:63:27:f7:64:71:9c:95:d0:f2:6e:56:79:
74:00:1a:eb:32:bb:ab:c7:4c:e0:f0:ea:5f:8e:23:9e:2a:40:
44:e8:72:3f:8d:73:e8:23:8d:b3:25:19:82:f4:59:bf:ad:d4:
3c:f2:b7:94:98:2c:53:41:f2:9f:3d:80:b6:69:10:a5:c3:aa:
a5:a3:46:15:dd:6f:22:62:b9:50:29:f0:1b:a9:a7:78:9f:31:
94:4c:32:2f:1c:66:9f:5d:4e:1f:6c:37:81:58:6e:8b:0f:eb:
09:21:72:0b:7e:28:e1:b1:33:d5:3a:98:d8:0a:68:bc:17:6d:
7f:01:5b:c3:30:5f:a9:2d:8c:b4:92:66:18:68:5a:7c:5d:0f:
9c:85:2e:7a:1e:e3:41:fd:0f:4e:26:cf:3b:79:a1:50:dc:b2:
52:dc:21:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvVJlB7/xSnNMZL74dAJL3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ZmRmZTgyNDlmOTQzYWFiYWQxODgxZmNhNTgzNjYxM2E2
YTY3YmMwHhcNMjMwMTAxMjE1NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTFlMWNkOWRjYTY4M2QxMmQ1YTU0OTE0OWI1NDFhMDAxNzYzMjc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGWfAfpuHN5DiMeeh//jTxH7mQLa
2cCwQqY9iJnAPkRsyhio7wSf8jzjQiQnM7CkG2yI7FmsMebCGMsF57s+Z5krI+Gd
WB+beKeYsaotoaTbCEOgZHKD8ELyRDTARtD24y65vCBL1R3kgIe7BX+ZiTUmW6jA
wajVJL/LPXPJ+Zgh/9dRm/S+bwP1wcKL/IRkdxlU73JYG1dYQK2eAuTnq34/Sidu
TaJZsnI9CB4ZbgA0GVODA+RrxRtaytECcazODhaewHL27mtuRN7c9/45wfG8KWyV
4y3Z63uT3ahjS24LergtCo1DF7UtJvUpezKVvYq/g1Ll2IxD1v4vOjIIowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBUeHNncpoPRLVpUkUm1QaABdjJ3MB8GA1UdIwQY
MBaAFGn9/oJJ+UOqutGIH8pYNmE6ame8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWYzLWdrbjVRNnE2MFlnZnlsZzJZVHBxWjd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9jY2Y3NzctOTQ2NS00YTJlLTgxMTIt
NzFkOGI4ODUwODUzLzEvRlI0YzJkeW1nOUV0V2xTUlNiVkJvQUYyTW5jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9jY2Y3NzctOTQ2NS00YTJlLTgxMTItNzFkOGI4ODUwODUz
LzEvYWYzLWdrbjVRNnE2MFlnZnlsZzJZVHBxWjd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZ/sMA0G
CSqGSIb3DQEBCwUAA4IBAQBZbL4wsTKed5KcnarTaOsYQbJsYwo0CtRjjrr4NJiF
GDbT5YOSRRJ6cI8DDwxFBj6NIUzibsakasxrYg6RynE4hm7Xjc2NS0bjUxjkBBKO
6Zib4S7CYuxkQkAvgFdVML9jJ/dkcZyV0PJuVnl0ABrrMrurx0zg8OpfjiOeKkBE
6HI/jXPoI42zJRmC9Fm/rdQ88reUmCxTQfKfPYC2aRClw6qlo0YV3W8iYrlQKfAb
qad4nzGUTDIvHGafXU4fbDeBWG6LD+sJIXILfijhsTPVOpjYCmi8F21/AVvDMF+p
LYy0kmYYaFp8XQ+chS56HuNB/Q9OJs87eaFQ3LJS3CFN
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:13 2024 by rpki-client on console-fra.rpki-client.org