Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/tTiJAvPdAJz9N0LUYjgcCc3iFL4.roa
File: tTiJAvPdAJz9N0LUYjgcCc3iFL4.roa (raw, json)
Hash identifier: 1M8VgWgym2z7d9ZXjM4DKml9Utuu7N+txAK+iiEKXWc=
Subject key identifier: B5:38:89:02:F3:DD:00:9C:FD:37:42:D4:62:38:1C:09:CD:E2:14:BE
Certificate issuer: /CN=60ceeb253845c6dca190d3616dba23f37d8b6397
Certificate serial: 01856CF85A4ABCDD34CB8684C7C0B8536372
Authority key identifier: 60:CE:EB:25:38:45:C6:DC:A1:90:D3:61:6D:BA:23:F3:7D:8B:63:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YM7rJThFxtyhkNNhbboj832LY5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/tTiJAvPdAJz9N0LUYjgcCc3iFL4.roa
Signing time: Sun 01 Jan 2023 10:54:53 +0000
ROA not before: Sun 01 Jan 2023 10:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1836
IP address blocks: 185.38.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:5a:4a:bc:dd:34:cb:86:84:c7:c0:b8:53:63:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ceeb253845c6dca190d3616dba23f37d8b6397
Validity
Not Before: Jan 1 10:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5388902f3dd009cfd3742d462381c09cde214be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f2:b3:35:bd:66:f8:8b:45:9b:39:f4:65:a7:
61:c5:5a:ea:da:d2:b6:6f:1d:08:26:a8:bc:0b:2a:
a0:b0:9c:a6:eb:46:19:1f:29:25:fe:a5:72:c6:3b:
5d:09:d7:96:65:df:7f:bf:46:b7:97:c4:71:1f:88:
68:20:8c:f6:40:bd:df:9e:56:af:91:39:55:92:d8:
01:f1:78:29:70:87:c8:38:be:fe:d9:65:eb:d9:25:
f6:9f:19:c9:8b:6d:16:fa:b1:17:ec:23:27:a7:59:
81:cd:92:e8:40:f9:5b:48:67:74:f3:24:9b:8c:35:
2f:cb:9c:95:28:4d:94:a1:33:94:27:34:0c:9d:62:
1c:10:28:27:a9:ad:35:55:fd:5d:9d:50:a7:46:df:
73:8e:fc:83:0d:11:db:a1:15:e3:01:be:7f:1b:d1:
ed:1c:7d:7e:26:14:87:b8:f6:d6:e9:2d:b0:41:36:
49:4a:d6:87:7c:64:cc:6e:0e:a5:e4:23:ce:83:a5:
7f:91:9e:1b:7e:90:b6:a7:18:1c:71:81:04:0f:3f:
25:9f:d7:7d:27:53:06:80:e5:6d:d4:51:14:a7:da:
aa:76:e0:62:ec:9d:a5:b5:68:4a:40:2b:25:4b:e7:
0a:71:dd:95:b1:f3:27:c8:b1:4c:22:66:50:ff:c7:
49:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:38:89:02:F3:DD:00:9C:FD:37:42:D4:62:38:1C:09:CD:E2:14:BE
X509v3 Authority Key Identifier:
keyid:60:CE:EB:25:38:45:C6:DC:A1:90:D3:61:6D:BA:23:F3:7D:8B:63:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YM7rJThFxtyhkNNhbboj832LY5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/tTiJAvPdAJz9N0LUYjgcCc3iFL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/YM7rJThFxtyhkNNhbboj832LY5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.66.0/24
Signature Algorithm: sha256WithRSAEncryption
93:81:64:b1:a3:0c:02:a4:33:74:60:60:dc:60:37:a3:c9:60:
86:b3:83:30:97:f6:7e:a6:56:8d:5a:7d:a4:a0:1d:c5:cf:b3:
bc:0a:57:77:d6:f7:e3:21:07:4b:e1:b0:f3:fa:12:9e:e5:d2:
fd:5c:d6:3a:cc:83:71:22:36:91:52:74:10:74:90:b0:ea:4b:
cd:07:4b:20:8c:04:0d:16:9d:39:ad:90:c4:02:e3:bf:b8:bb:
db:94:95:d0:fa:0a:44:69:0f:46:c2:94:50:02:f2:fb:4e:6e:
60:51:10:ae:d1:1d:a7:3f:fc:30:87:cf:8e:a4:31:03:3e:89:
f6:b4:7a:86:c6:76:9b:c5:9e:fe:4d:75:8b:84:00:6a:c5:14:
dd:95:a5:0a:e0:84:90:c7:97:ec:5d:65:5b:f4:18:e4:6a:86:
ce:09:74:51:a6:68:f9:d0:1a:2c:51:c9:1d:bc:57:82:63:db:
7e:d0:62:fc:c9:f8:3d:7e:c5:2f:12:2f:7c:33:58:06:55:57:
f1:72:78:db:8d:77:aa:9a:7c:45:33:06:90:a1:88:39:9b:89:
e9:e5:a4:eb:f2:43:b3:98:6c:81:2d:9e:0a:5e:8d:0c:c4:75:
e5:11:d8:8a:9b:07:25:e9:f0:d3:e0:5e:1e:52:09:34:a4:73:
d4:50:0c:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs+FpKvN00y4aEx8C4U2NyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwY2VlYjI1Mzg0NWM2ZGNhMTkwZDM2MTZkYmEyM2YzN2Q4
YjYzOTcwHhcNMjMwMTAxMTA1NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTM4ODkwMmYzZGQwMDljZmQzNzQyZDQ2MjM4MWMwOWNkZTIxNGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/KzNb1m+ItFmzn0ZadhxVrq2tK2
bx0IJqi8CyqgsJym60YZHykl/qVyxjtdCdeWZd9/v0a3l8RxH4hoIIz2QL3fnlav
kTlVktgB8XgpcIfIOL7+2WXr2SX2nxnJi20W+rEX7CMnp1mBzZLoQPlbSGd08ySb
jDUvy5yVKE2UoTOUJzQMnWIcECgnqa01Vf1dnVCnRt9zjvyDDRHboRXjAb5/G9Ht
HH1+JhSHuPbW6S2wQTZJStaHfGTMbg6l5CPOg6V/kZ4bfpC2pxgccYEEDz8ln9d9
J1MGgOVt1FEUp9qqduBi7J2ltWhKQCslS+cKcd2VsfMnyLFMImZQ/8dJRQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLU4iQLz3QCc/TdC1GI4HAnN4hS+MB8GA1UdIwQY
MBaAFGDO6yU4RcbcoZDTYW26I/N9i2OXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWU03ckpUaEZ4dHloa05OaGJib2o4MzJMWTVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8yNjE1MTQtYTE1ZC00NjYxLTljNTUt
OWY5MzIyZDY3MzJiLzEvdFRpSkF2UGRBSno5TjBMVVlqZ2NDYzNpRkw0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi8yNjE1MTQtYTE1ZC00NjYxLTljNTUtOWY5MzIyZDY3MzJi
LzEvWU03ckpUaEZ4dHloa05OaGJib2o4MzJMWTVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSZCMA0G
CSqGSIb3DQEBCwUAA4IBAQCTgWSxowwCpDN0YGDcYDejyWCGs4Mwl/Z+plaNWn2k
oB3Fz7O8Cld31vfjIQdL4bDz+hKe5dL9XNY6zINxIjaRUnQQdJCw6kvNB0sgjAQN
Fp05rZDEAuO/uLvblJXQ+gpEaQ9GwpRQAvL7Tm5gURCu0R2nP/wwh8+OpDEDPon2
tHqGxnabxZ7+TXWLhABqxRTdlaUK4ISQx5fsXWVb9BjkaobOCXRRpmj50BosUckd
vFeCY9t+0GL8yfg9fsUvEi98M1gGVVfxcnjbjXeqmnxFMwaQoYg5m4np5aTr8kOz
mGyBLZ4KXo0MxHXlEdiKmwcl6fDT4F4eUgk0pHPUUAzi
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:04 2024 by rpki-client on console-fra.rpki-client.org