Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/Tmks29SvR6HxuHFgQxQDjQMMWXA.roa
File: Tmks29SvR6HxuHFgQxQDjQMMWXA.roa (raw, json)
Hash identifier: nqQE3XTalbWfWG4+o/zejSvt2d0cAJvMw3VsGRIZzE4=
Subject key identifier: 4E:69:2C:DB:D4:AF:47:A1:F1:B8:71:60:43:14:03:8D:03:0C:59:70
Certificate issuer: /CN=fad0fb39d6b11fd15fcbb4163403155d1d455c05
Certificate serial: 0185728CB10C9606D8537CE89BFB32299E8D
Authority key identifier: FA:D0:FB:39:D6:B1:1F:D1:5F:CB:B4:16:34:03:15:5D:1D:45:5C:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/Tmks29SvR6HxuHFgQxQDjQMMWXA.roa
Signing time: Mon 02 Jan 2023 12:55:01 +0000
ROA not before: Mon 02 Jan 2023 12:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205685
IP address blocks: 185.209.68.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:b1:0c:96:06:d8:53:7c:e8:9b:fb:32:29:9e:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad0fb39d6b11fd15fcbb4163403155d1d455c05
Validity
Not Before: Jan 2 12:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e692cdbd4af47a1f1b871604314038d030c5970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:25:71:93:27:a4:c6:c6:47:6c:19:6c:15:8e:
6a:97:f9:ce:cc:08:7f:31:9b:4e:f8:2d:36:ed:21:
d1:b1:86:f4:23:2c:35:c4:63:a6:9e:1b:b9:b4:f8:
da:42:0c:5d:ad:0d:81:3b:c2:63:78:cd:75:5f:21:
bc:ff:ff:03:5a:77:54:d8:89:5f:58:76:82:7e:f4:
3a:97:98:0c:04:63:3f:6d:d3:3c:ec:9f:70:4f:03:
0e:b5:77:c8:e8:08:01:62:13:c3:0a:bb:df:3d:e8:
90:f7:72:25:f3:45:55:8c:96:41:02:11:38:df:1b:
95:ab:0a:8a:7d:65:e5:a7:99:8d:3b:f3:79:45:40:
5e:b7:8c:af:8e:01:23:c2:28:67:54:fb:a1:48:5a:
e3:3b:f9:10:bd:2a:d7:b3:4a:0f:10:51:5d:7a:28:
6b:b8:c0:d1:46:53:42:f6:a9:cc:66:c3:8c:8a:46:
04:09:f2:25:58:0e:1f:1c:bd:b2:ec:30:d0:8e:72:
5a:32:1e:08:35:4d:0e:b6:02:99:c5:59:96:a5:c3:
ee:4b:db:da:1a:20:e7:db:93:46:b8:6e:83:bb:af:
d1:fe:47:98:1e:88:b8:85:40:32:af:68:07:d3:d0:
65:39:93:c1:ab:35:53:0d:93:a9:2d:17:d4:d0:7b:
5c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:69:2C:DB:D4:AF:47:A1:F1:B8:71:60:43:14:03:8D:03:0C:59:70
X509v3 Authority Key Identifier:
keyid:FA:D0:FB:39:D6:B1:1F:D1:5F:CB:B4:16:34:03:15:5D:1D:45:5C:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/Tmks29SvR6HxuHFgQxQDjQMMWXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.68.0/23
Signature Algorithm: sha256WithRSAEncryption
15:33:0d:e4:b2:f7:40:a9:7b:22:26:d4:cc:28:c0:15:36:5e:
2c:26:e9:91:8c:58:18:33:43:94:17:3c:ff:6f:b1:5a:35:d2:
69:29:be:1c:0a:5f:bf:5e:4f:92:3c:44:86:ae:a9:36:a7:98:
c5:0d:d1:e5:04:61:ce:b6:fa:8a:cb:b5:cd:b5:e2:80:e4:1d:
d4:f8:ca:34:a2:99:8a:76:65:f4:17:a7:b7:2d:40:f7:c8:55:
63:9d:9f:5a:0f:b1:03:15:80:cc:4f:d2:23:5f:28:8f:8f:03:
fc:68:c7:a9:46:04:e9:ac:ae:a7:18:6a:70:1c:33:a5:c1:1b:
e6:c8:8e:4a:b9:a4:43:83:6c:05:df:af:3b:3d:b7:4f:3c:ad:
af:cd:2f:7e:9c:b5:51:ff:c3:cb:6d:d7:2b:4a:9d:4e:2b:83:
46:8c:63:d8:49:07:55:ef:da:f8:95:63:f3:ee:ae:0c:84:bd:
d4:7a:9a:76:28:9b:09:52:a3:33:3b:d4:e3:88:e0:b0:f0:de:
c0:9e:dc:39:83:82:96:85:db:7e:13:4d:b5:54:ff:db:a4:70:
53:7c:12:20:bc:bb:6b:a8:cc:1b:f9:6a:48:e8:51:19:90:b8:
64:cb:b9:6b:de:04:0f:5c:b7:1d:59:30:cf:92:fb:fc:77:80:
6f:3d:c6:35
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVyjLEMlgbYU3zom/syKZ6NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhZDBmYjM5ZDZiMTFmZDE1ZmNiYjQxNjM0MDMxNTVkMWQ0
NTVjMDUwHhcNMjMwMTAyMTI1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTY5MmNkYmQ0YWY0N2ExZjFiODcxNjA0MzE0MDM4ZDAzMGM1OTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgiVxkyekxsZHbBlsFY5ql/nOzAh/
MZtO+C027SHRsYb0Iyw1xGOmnhu5tPjaQgxdrQ2BO8JjeM11XyG8//8DWndU2Ilf
WHaCfvQ6l5gMBGM/bdM87J9wTwMOtXfI6AgBYhPDCrvfPeiQ93Il80VVjJZBAhE4
3xuVqwqKfWXlp5mNO/N5RUBet4yvjgEjwihnVPuhSFrjO/kQvSrXs0oPEFFdeihr
uMDRRlNC9qnMZsOMikYECfIlWA4fHL2y7DDQjnJaMh4INU0OtgKZxVmWpcPuS9va
GiDn25NGuG6Du6/R/keYHoi4hUAyr2gH09BlOZPBqzVTDZOpLRfU0HtcJQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFE5pLNvUr0eh8bhxYEMUA40DDFlwMB8GA1UdIwQY
MBaAFPrQ+znWsR/RX8u0FjQDFV0dRVwFMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS10RDdPZGF4SDlGZnk3UVdOQU1WWFIxRlhBVS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQvMzA0ZTNkLTFmMGUtNDRlYi1iMmMx
LWU3OTJmODljYmNlMi8xL1Rta3MyOVN2UjZIeHVIRmdReFFEalFNTVdYQS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZWQvMzA0ZTNkLTFmMGUtNDRlYi1iMmMxLWU3OTJmODljYmNl
Mi8xLzEtdEQ3T2RheEg5RmZ5N1FXTkFNVlhSMUZYQVUuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG50UQw
DQYJKoZIhvcNAQELBQADggEBABUzDeSy90CpeyIm1MwowBU2Xiwm6ZGMWBgzQ5QX
PP9vsVo10mkpvhwKX79eT5I8RIauqTanmMUN0eUEYc62+orLtc214oDkHdT4yjSi
mYp2ZfQXp7ctQPfIVWOdn1oPsQMVgMxP0iNfKI+PA/xox6lGBOmsrqcYanAcM6XB
G+bIjkq5pEODbAXfrzs9t088ra/NL36ctVH/w8tt1ytKnU4rg0aMY9hJB1Xv2viV
Y/PurgyEvdR6mnYomwlSozM71OOI4LDw3sCe3DmDgpaF234TTbVU/9ukcFN8EiC8
u2uozBv5akjoURmQuGTLuWveBA9ctx1ZMM+S+/x3gG89xjU=
-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:51 2024 by rpki-client on console-fra.rpki-client.org