Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/sTN61G09sRgLLph-UNc7bzSYfjw.roa
File: sTN61G09sRgLLph-UNc7bzSYfjw.roa (raw, json)
Hash identifier: A7enFitzVZMWgEDEX+OGLq6lJTSSemssfaSXcI8Pck8=
Subject key identifier: B1:33:7A:D4:6D:3D:B1:18:0B:2E:98:7E:50:D7:3B:6F:34:98:7E:3C
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 018CC3489950C23B4CD0526BBE5DA831DF6D
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/sTN61G09sRgLLph-UNc7bzSYfjw.roa
Signing time: Mon 01 Jan 2024 04:29:24 +0000
ROA not before: Mon 01 Jan 2024 04:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24768
IP address blocks: 185.228.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Apr 2024 21:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:99:50:c2:3b:4c:d0:52:6b:be:5d:a8:31:df:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: Jan 1 04:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1337ad46d3db1180b2e987e50d73b6f34987e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5a:15:5b:f7:fd:47:00:2d:1d:78:4c:1f:6d:
33:ce:a6:3f:4e:6c:b1:d3:55:33:85:c1:c6:fa:a1:
3e:1f:3b:33:81:51:2b:77:f6:01:7f:74:5a:b9:8e:
a7:68:2a:41:0c:37:bc:3e:96:b3:96:ad:51:d9:20:
89:7f:6e:48:7c:51:fc:1b:d7:bb:f5:5a:16:2a:88:
71:3f:c9:70:a8:41:00:b5:b3:00:ac:25:07:15:c3:
5d:26:f5:b6:08:51:1b:29:90:c8:09:b5:ad:5a:fe:
e8:fb:85:ca:e6:e5:39:90:09:1e:45:11:55:39:1e:
95:7c:b7:5a:bc:6d:76:5e:90:5e:9b:86:42:22:10:
e2:d0:72:9d:5b:19:19:d6:1b:d0:7d:55:4e:d0:75:
bf:a8:8b:c5:9b:ae:5e:01:1f:6e:7b:25:30:06:cc:
2f:76:18:70:0f:e3:59:ab:68:c5:b6:af:7b:02:bf:
44:77:95:7e:7f:49:d5:93:99:27:68:41:46:3b:15:
0c:c0:c1:d7:fa:e5:e7:33:ee:7b:d0:8c:f6:c0:df:
d1:a4:61:51:0e:30:9b:1d:12:17:86:82:23:76:bf:
14:8b:01:75:a6:d5:85:83:41:96:aa:2e:b5:1a:57:
f4:a4:b3:3f:e8:42:59:3d:62:7b:0e:fe:f7:91:1b:
22:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:33:7A:D4:6D:3D:B1:18:0B:2E:98:7E:50:D7:3B:6F:34:98:7E:3C
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/sTN61G09sRgLLph-UNc7bzSYfjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.3.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:55:a2:71:6d:19:db:d3:5b:ce:a5:2b:32:d4:eb:62:1d:a6:
4a:34:cc:d8:ca:65:7e:ca:bc:69:55:d9:0e:f9:c6:46:a8:01:
c1:67:47:07:56:57:fe:51:f4:66:60:8c:96:e0:45:0c:e6:49:
0c:bf:0a:59:5f:f7:bf:64:6e:64:45:a2:48:93:f3:4a:06:27:
42:ce:ca:70:e3:e1:9a:99:c0:4f:db:16:58:b6:78:32:bd:2b:
ef:6f:ea:6e:48:93:b4:90:57:29:aa:8e:c6:e7:4b:2b:73:43:
4d:52:b9:99:e6:71:ad:53:2a:91:42:43:7a:d4:64:9b:6f:0c:
38:2c:91:90:10:1e:c1:23:ad:ee:74:61:1b:ed:71:5f:27:82:
3e:ad:fb:ed:ac:ee:16:64:d7:7f:71:cd:e2:25:34:03:aa:52:
5a:f7:dc:4f:08:e2:f9:ee:b8:c3:44:3c:07:8f:91:a4:4b:a4:
75:9b:1a:d6:0a:17:3b:b8:d0:b8:ee:57:5b:2b:ca:85:f4:10:
34:c0:8c:18:44:2e:51:b3:eb:95:ce:69:de:4b:df:d6:c8:90:
a6:50:5c:89:91:46:bf:7d:b2:8f:22:45:82:af:8b:93:0f:7d:
a3:81:99:ca:b2:85:70:7b:fc:7b:39:9c:44:d6:86:fb:fb:ff:
1c:6a:ca:55
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDSJlQwjtM0FJrvl2oMd9tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1YzYzNzNlYWIxOWNmNDNkZDJmNDMxMTEzOTgzODNlZTJi
YWQwMzAwHhcNMjQwMTAxMDQyOTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTMzN2FkNDZkM2RiMTE4MGIyZTk4N2U1MGQ3M2I2ZjM0OTg3ZTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFoVW/f9RwAtHXhMH20zzqY/Tmyx
01UzhcHG+qE+HzszgVErd/YBf3RauY6naCpBDDe8Ppazlq1R2SCJf25IfFH8G9e7
9VoWKohxP8lwqEEAtbMArCUHFcNdJvW2CFEbKZDICbWtWv7o+4XK5uU5kAkeRRFV
OR6VfLdavG12XpBem4ZCIhDi0HKdWxkZ1hvQfVVO0HW/qIvFm65eAR9ueyUwBswv
dhhwD+NZq2jFtq97Ar9Ed5V+f0nVk5knaEFGOxUMwMHX+uXnM+570Iz2wN/RpGFR
DjCbHRIXhoIjdr8UiwF1ptWFg0GWqi61Glf0pLM/6EJZPWJ7Dv73kRsiPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLEzetRtPbEYCy6YflDXO280mH48MB8GA1UdIwQY
MBaAFKXGNz6rGc9D3S9DEROYOD7iutAwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGNZM1Bxc1p6MFBkTDBNUkU1ZzRQdUs2MERBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9mMGY1ZTMtNjA1MC00ZTJkLWE0ZWEt
YTRlYTBhNjNmNzY2LzEvc1RONjFHMDlzUmdMTHBoLVVOYzdielNZZmp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9mMGY1ZTMtNjA1MC00ZTJkLWE0ZWEtYTRlYTBhNjNmNzY2
LzEvcGNZM1Bxc1p6MFBkTDBNUkU1ZzRQdUs2MERBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueQDMA0G
CSqGSIb3DQEBCwUAA4IBAQAaVaJxbRnb01vOpSsy1OtiHaZKNMzYymV+yrxpVdkO
+cZGqAHBZ0cHVlf+UfRmYIyW4EUM5kkMvwpZX/e/ZG5kRaJIk/NKBidCzspw4+Ga
mcBP2xZYtngyvSvvb+puSJO0kFcpqo7G50src0NNUrmZ5nGtUyqRQkN61GSbbww4
LJGQEB7BI63udGEb7XFfJ4I+rfvtrO4WZNd/cc3iJTQDqlJa99xPCOL57rjDRDwH
j5GkS6R1mxrWChc7uNC47ldbK8qF9BA0wIwYRC5Rs+uVzmneS9/WyJCmUFyJkUa/
fbKPIkWCr4uTD32jgZnKsoVwe/x7OZxE1ob7+/8caspV
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:12 2024 by rpki-client on console-ams.rpki-client.org