Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/7DtLI1KGcgs6PvPyLGrNqI9RYPM.roa
File: 7DtLI1KGcgs6PvPyLGrNqI9RYPM.roa (raw, json)
Hash identifier: j9Xfp4kHYtVpE7bRHlEvx+299XgJqkhvpzvvD9pi+r4=
Subject key identifier: EC:3B:4B:23:52:86:72:0B:3A:3E:F3:F2:2C:6A:CD:A8:8F:51:60:F3
Certificate issuer: /CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Certificate serial: 0189C10C54A308DF324F3BADA85DC7C97657
Authority key identifier: DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/7DtLI1KGcgs6PvPyLGrNqI9RYPM.roa
Signing time: Fri 04 Aug 2023 14:55:58 +0000
ROA not before: Fri 04 Aug 2023 14:55:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212573
IP address blocks: 185.52.117.0/24 maxlen: 24
2a00:dd00:7::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Nov 2023 06:57:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c1:0c:54:a3:08:df:32:4f:3b:ad:a8:5d:c7:c9:76:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Validity
Not Before: Aug 4 14:55:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec3b4b235286720b3a3ef3f22c6acda88f5160f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f0:3f:22:ca:68:80:45:51:35:81:80:7b:71:
32:5d:8f:41:9b:ed:33:3a:4b:ee:f1:b2:51:99:1a:
23:2b:6f:a3:8a:1b:ee:13:78:7e:71:c7:0b:31:41:
16:2b:9d:1c:ab:ef:b0:d8:15:cc:09:a1:c8:6f:5d:
f3:c4:81:4f:70:18:51:f3:e2:42:6a:26:66:3a:15:
a1:54:59:e9:c3:92:a6:39:cd:28:65:c4:b7:0b:d4:
4c:08:fe:35:d9:3f:bc:e5:6f:e1:41:55:aa:91:a1:
6c:cf:4b:7c:b8:18:33:25:e7:06:29:09:c6:08:6c:
b6:61:d5:dd:9b:7f:6c:a7:df:31:19:a7:69:fc:13:
81:b0:46:96:92:ed:3b:9b:25:12:74:87:19:16:72:
72:49:50:05:9f:c0:d4:83:f2:0d:cd:06:c1:39:0e:
fa:c0:b5:e8:75:ec:fb:e3:0d:e4:f3:e6:9b:7c:0b:
fb:3e:77:f6:60:24:5f:19:31:ba:0d:85:6e:0d:2a:
db:ea:82:96:62:b1:c5:26:13:43:ab:93:e2:29:e7:
85:da:a3:40:1f:a3:7e:c4:39:6c:ab:b1:50:a4:27:
d4:d7:5d:77:83:96:08:00:25:a8:a8:0d:4f:51:8b:
60:ad:37:49:0d:10:4e:89:a4:22:8e:51:84:c7:53:
c2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:3B:4B:23:52:86:72:0B:3A:3E:F3:F2:2C:6A:CD:A8:8F:51:60:F3
X509v3 Authority Key Identifier:
keyid:DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/7DtLI1KGcgs6PvPyLGrNqI9RYPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.117.0/24
IPv6:
2a00:dd00:7::/48
Signature Algorithm: sha256WithRSAEncryption
35:e5:2d:f3:ce:fa:10:63:35:60:c1:6e:1c:82:97:bc:cd:80:
00:41:45:ec:65:2a:c3:a0:a4:6a:b8:90:de:f2:e5:37:15:82:
18:d9:ae:f6:e7:03:ce:36:70:84:3b:c5:e0:2d:95:ad:5f:00:
00:2b:93:a8:65:ba:dd:61:f8:2b:1e:31:12:28:8c:9b:56:76:
b4:21:81:02:77:ae:25:2e:ab:de:f6:36:c4:da:0b:b1:e0:23:
93:ae:61:c1:2c:a9:2d:bd:57:ae:31:5e:2f:13:26:d0:70:53:
f2:5a:41:34:c9:3c:94:ce:82:d7:dc:9d:8f:90:3e:6c:20:f6:
57:a1:c0:71:95:ee:7b:49:32:c0:e3:7f:cc:72:ef:43:bd:36:
3f:0c:b3:68:ca:84:f3:40:c0:00:55:20:65:88:52:5c:a1:36:
fb:16:44:b2:eb:33:22:6b:20:ea:57:cf:4f:ba:f6:b8:44:2c:
8e:f0:08:7d:89:e2:93:42:be:a1:1d:a6:cb:2d:81:14:48:ac:
87:25:01:f7:29:a9:b6:a2:8b:38:9b:95:c9:80:2a:47:74:ef:
2c:97:60:eb:e5:44:46:4a:ae:85:27:be:fc:1c:1f:c4:e7:61:
97:dc:f1:66:6a:de:70:2a:07:f1:f5:e5:b9:89:f5:e3:9c:dc:
18:df:84:62
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYnBDFSjCN8yTzutqF3HyXZXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMDJiMThmNTg4YTUwYjkyNzRmZTM0NjlmZjhiZDRhMTY0
OWQ3NGQwHhcNMjMwODA0MTQ1NTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzNiNGIyMzUyODY3MjBiM2EzZWYzZjIyYzZhY2RhODhmNTE2MGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/A/IspogEVRNYGAe3EyXY9Bm+0z
Okvu8bJRmRojK2+jihvuE3h+cccLMUEWK50cq++w2BXMCaHIb13zxIFPcBhR8+JC
aiZmOhWhVFnpw5KmOc0oZcS3C9RMCP412T+85W/hQVWqkaFsz0t8uBgzJecGKQnG
CGy2YdXdm39sp98xGadp/BOBsEaWku07myUSdIcZFnJySVAFn8DUg/INzQbBOQ76
wLXodez74w3k8+abfAv7Pnf2YCRfGTG6DYVuDSrb6oKWYrHFJhNDq5PiKeeF2qNA
H6N+xDlsq7FQpCfU1113g5YIACWoqA1PUYtgrTdJDRBOiaQijlGEx1PCiwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOw7SyNShnILOj7z8ixqzaiPUWDzMB8GA1UdIwQY
MBaAFNwCsY9YilC5J0/jRp/4vUoWSddNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0FLeGoxaUtVTGtuVC1OR25faTlTaFpKMTAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jODYxYzgtYzg5YS00MDQzLWEwMmQt
NjY0ZjA0ZDJhNjhkLzEvN0R0TEkxS0djZ3M2UHZQeUxHck5xSTlSWVBNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9jODYxYzgtYzg5YS00MDQzLWEwMmQtNjY0ZjA0ZDJhNjhk
LzEvM0FLeGoxaUtVTGtuVC1OR25faTlTaFpKMTAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuTR1MA8E
AgACMAkDBwAqAN0AAAcwDQYJKoZIhvcNAQELBQADggEBADXlLfPO+hBjNWDBbhyC
l7zNgABBRexlKsOgpGq4kN7y5TcVghjZrvbnA842cIQ7xeAtla1fAAArk6hlut1h
+CseMRIojJtWdrQhgQJ3riUuq972NsTaC7HgI5OuYcEsqS29V64xXi8TJtBwU/Ja
QTTJPJTOgtfcnY+QPmwg9lehwHGV7ntJMsDjf8xy70O9Nj8Ms2jKhPNAwABVIGWI
UlyhNvsWRLLrMyJrIOpXz0+69rhELI7wCH2J4pNCvqEdpsstgRRIrIclAfcpqbai
iziblcmAKkd07yyXYOvlREZKroUnvvwcH8TnYZfc8WZq3nAqB/H15bmJ9eOc3Bjf
hGI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:36 2024 by rpki-client on console-fra.rpki-client.org