Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/hfOSM7irQ4Ww6bvfCHfz22KZpEM.roa
File: hfOSM7irQ4Ww6bvfCHfz22KZpEM.roa (raw, json)
Hash identifier: 0zDLsS+NccXeW1lTK26Mwn0wLW8ippdiAx31uig1zN4=
Subject key identifier: 85:F3:92:33:B8:AB:43:85:B0:E9:BB:DF:08:77:F3:DB:62:99:A4:43
Certificate issuer: /CN=432ffd36796e90f812a1612ec1f464de3d5e2f38
Certificate serial: 01872496366E12061B1CB0513648E5C2DB00
Authority key identifier: 43:2F:FD:36:79:6E:90:F8:12:A1:61:2E:C1:F4:64:DE:3D:5E:2F:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qy_9NnlukPgSoWEuwfRk3j1eLzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/hfOSM7irQ4Ww6bvfCHfz22KZpEM.roa
Signing time: Mon 27 Mar 2023 19:40:36 +0000
ROA not before: Mon 27 Mar 2023 19:40:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41881
IP address blocks: 185.136.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Mar 2023 20:09:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:24:96:36:6e:12:06:1b:1c:b0:51:36:48:e5:c2:db:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432ffd36796e90f812a1612ec1f464de3d5e2f38
Validity
Not Before: Mar 27 19:40:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85f39233b8ab4385b0e9bbdf0877f3db6299a443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:30:e0:01:88:82:33:eb:c2:be:81:53:6b:16:
11:4a:ae:47:7a:4f:ef:d5:29:9c:f0:26:af:d4:de:
59:7a:2c:f9:71:8d:e3:06:b2:b1:bf:f9:32:61:2b:
b3:12:83:a2:7b:50:c6:83:a4:6e:52:cc:7e:28:b0:
ca:8d:e1:56:ee:89:71:12:8f:dc:58:59:e2:0e:84:
b5:62:ad:92:2f:f3:02:25:2e:07:fd:fb:41:22:ba:
99:99:65:ff:88:65:ab:e3:2f:cd:58:3c:52:cf:b1:
f7:d1:01:6d:6a:09:15:a6:b8:61:12:92:a8:ec:dd:
be:1e:89:9e:46:c1:32:81:bf:cf:13:be:66:91:df:
86:8a:fd:42:66:1a:ef:43:d0:eb:1c:4b:d2:02:4d:
f6:8d:62:1b:29:6d:f3:c1:d3:11:78:57:53:73:55:
9e:28:6b:54:b2:4d:0a:99:88:31:be:79:58:55:f1:
77:33:89:13:4a:42:3d:c3:ab:cb:48:97:17:ba:3a:
c9:36:b0:d2:ca:e2:0a:da:ec:b1:81:9b:f3:e1:32:
b6:97:a7:f6:46:ea:0c:32:7f:59:29:cd:0d:1d:9c:
27:76:bc:8d:f9:df:78:28:f4:81:6c:ab:20:6f:86:
2a:c7:fe:cb:f8:90:13:07:7e:84:04:49:26:ea:1c:
f1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F3:92:33:B8:AB:43:85:B0:E9:BB:DF:08:77:F3:DB:62:99:A4:43
X509v3 Authority Key Identifier:
keyid:43:2F:FD:36:79:6E:90:F8:12:A1:61:2E:C1:F4:64:DE:3D:5E:2F:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qy_9NnlukPgSoWEuwfRk3j1eLzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/hfOSM7irQ4Ww6bvfCHfz22KZpEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/Qy_9NnlukPgSoWEuwfRk3j1eLzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.133.0/24
Signature Algorithm: sha256WithRSAEncryption
68:58:a6:9a:d8:e7:74:1a:38:92:fe:09:e8:1f:84:9a:4b:ef:
5a:38:4b:42:88:e9:15:3d:6d:07:d7:a2:62:1f:85:5b:45:10:
af:d0:7f:90:16:46:68:71:ce:ca:7f:bb:eb:69:d1:bf:e3:d5:
6b:e7:ab:8e:b5:9b:8d:cd:29:eb:1c:3e:dc:90:4f:b7:ea:c1:
b7:28:4b:66:88:66:f3:fe:c7:a1:eb:1e:64:75:40:a7:2d:7f:
2f:8d:89:9a:90:32:c0:13:aa:11:42:a3:f0:1b:2c:0e:ae:81:
49:19:e9:df:d3:b8:ae:ed:f1:30:38:7a:de:b2:2f:ce:51:ca:
23:a4:ca:75:ca:f1:a4:45:05:0b:49:66:a2:59:20:25:43:dc:
00:a9:25:6d:ea:9e:67:d8:a6:4a:51:ba:0a:fe:67:c5:73:65:
f6:ae:7b:7a:6f:64:d8:d7:b7:c9:dd:4f:3b:98:64:4a:8a:30:
c1:c4:f9:3a:58:55:e4:7d:71:73:37:0a:ea:c5:1b:84:48:81:
1f:14:83:86:64:d8:9d:18:fc:b3:8b:2d:93:a7:22:08:6c:c1:
53:6b:15:6c:b2:3e:5a:1c:45:c8:fb:c7:8d:b3:05:64:40:26:
9d:28:e2:1f:c9:11:69:35:b9:ed:88:ee:02:e5:05:ff:fc:e6:
d9:c8:45:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYckljZuEgYbHLBRNkjlwtsAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMmZmZDM2Nzk2ZTkwZjgxMmExNjEyZWMxZjQ2NGRlM2Q1
ZTJmMzgwHhcNMjMwMzI3MTk0MDM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NWYzOTIzM2I4YWI0Mzg1YjBlOWJiZGYwODc3ZjNkYjYyOTlhNDQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTDgAYiCM+vCvoFTaxYRSq5Hek/v
1Smc8Cav1N5Zeiz5cY3jBrKxv/kyYSuzEoOie1DGg6RuUsx+KLDKjeFW7olxEo/c
WFniDoS1Yq2SL/MCJS4H/ftBIrqZmWX/iGWr4y/NWDxSz7H30QFtagkVprhhEpKo
7N2+HomeRsEygb/PE75mkd+Giv1CZhrvQ9DrHEvSAk32jWIbKW3zwdMReFdTc1We
KGtUsk0KmYgxvnlYVfF3M4kTSkI9w6vLSJcXujrJNrDSyuIK2uyxgZvz4TK2l6f2
RuoMMn9ZKc0NHZwndryN+d94KPSBbKsgb4Yqx/7L+JATB36EBEkm6hzx1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIXzkjO4q0OFsOm73wh389timaRDMB8GA1UdIwQY
MBaAFEMv/TZ5bpD4EqFhLsH0ZN49Xi84MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXlfOU5ubHVrUGdTb1dFdXdmUmszajFlTHpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi8xOTZmODktMjQyMS00YmMxLWIzMDUt
OGM2YTVlMGVhMDZlLzEvaGZPU003aXJRNFd3NmJ2ZkNIZnoyMktacEVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi8xOTZmODktMjQyMS00YmMxLWIzMDUtOGM2YTVlMGVhMDZl
LzEvUXlfOU5ubHVrUGdTb1dFdXdmUmszajFlTHpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYiFMA0G
CSqGSIb3DQEBCwUAA4IBAQBoWKaa2Od0GjiS/gnoH4SaS+9aOEtCiOkVPW0H16Ji
H4VbRRCv0H+QFkZocc7Kf7vradG/49Vr56uOtZuNzSnrHD7ckE+36sG3KEtmiGbz
/seh6x5kdUCnLX8vjYmakDLAE6oRQqPwGywOroFJGenf07iu7fEwOHresi/OUcoj
pMp1yvGkRQULSWaiWSAlQ9wAqSVt6p5n2KZKUboK/mfFc2X2rnt6b2TY17fJ3U87
mGRKijDBxPk6WFXkfXFzNwrqxRuESIEfFIOGZNidGPyziy2TpyIIbMFTaxVssj5a
HEXI+8eNswVkQCadKOIfyRFpNbntiO4C5QX//ObZyEW9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:46 2024 by rpki-client on console-ams.rpki-client.org