Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/f-Sg3wVNZnYm9uc5kdSDHYbYUXU.roa
File: f-Sg3wVNZnYm9uc5kdSDHYbYUXU.roa (raw, json)
Hash identifier: 5BeWKcbcOpPYlKALsVYuTfi0pq4mZ7j+P8FYNxK5Fuk=
Subject key identifier: 7F:E4:A0:DF:05:4D:66:76:26:F6:E7:39:91:D4:83:1D:86:D8:51:75
Certificate issuer: /CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Certificate serial: 018CC7950898ADA2E3FFDD6BB331F5E5611E
Authority key identifier: 7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/f-Sg3wVNZnYm9uc5kdSDHYbYUXU.roa
Signing time: Tue 02 Jan 2024 00:31:21 +0000
ROA not before: Tue 02 Jan 2024 00:31:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29226
IP address blocks: 185.45.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 12:10:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:08:98:ad:a2:e3:ff:dd:6b:b3:31:f5:e5:61:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Validity
Not Before: Jan 2 00:31:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7fe4a0df054d667626f6e73991d4831d86d85175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ef:69:e9:db:f7:3e:77:7f:d4:e8:6a:1d:ed:
57:3a:e5:22:53:29:98:55:12:6d:a4:e7:98:61:b8:
1c:e1:b6:5e:2d:c1:10:5b:4a:0e:3b:21:3e:0a:ec:
70:58:3b:45:3f:f1:2c:e0:58:8a:3b:bd:72:4d:0b:
ef:07:c2:79:5a:f0:f5:c4:02:71:d2:f2:1d:f8:86:
62:ac:2e:f3:26:fb:9f:16:79:3f:20:7a:b0:d4:7e:
0e:5d:70:88:0b:a4:f8:e5:fe:b5:ba:1a:ec:17:52:
28:b9:39:ae:59:56:87:04:64:39:c0:eb:bd:18:f2:
27:1c:84:3a:88:bb:4f:26:67:34:b0:e4:b3:13:e7:
57:cc:5e:82:fb:6c:7d:0d:8a:14:89:d9:16:97:f2:
f7:8b:8e:2c:4b:8b:65:a2:c5:d1:04:61:d6:97:86:
0b:ec:18:39:b2:98:fc:a7:12:1f:51:64:f5:07:a7:
a0:7b:57:ce:fb:f9:a7:34:87:50:4a:39:cb:be:0f:
39:75:88:21:fc:58:29:88:6d:fc:0f:e6:30:02:76:
0e:31:88:71:b8:19:0e:7d:1e:8d:66:b3:cb:70:bf:
b0:9d:ec:86:58:4a:b9:48:32:8b:b2:7a:a9:ce:d5:
0a:8b:83:27:84:fd:18:e0:89:c3:e7:ab:71:7a:a3:
9e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E4:A0:DF:05:4D:66:76:26:F6:E7:39:91:D4:83:1D:86:D8:51:75
X509v3 Authority Key Identifier:
keyid:7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/f-Sg3wVNZnYm9uc5kdSDHYbYUXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/fUOw7HmVHV1VgBM-UympDy_uHFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.83.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:cb:87:54:47:b3:89:e9:32:c3:4e:e6:f7:bc:83:d7:fd:b2:
bc:fb:9c:c2:0e:4d:ab:13:ed:0b:f3:4b:49:59:bd:31:60:28:
a0:9c:12:36:f4:c9:5c:df:13:61:4d:f3:ef:8a:25:1a:1d:8f:
c5:dc:71:c0:1a:c5:0b:3b:5e:6d:0d:a2:9b:6b:13:d4:00:76:
0f:8f:1f:c5:f2:27:ac:60:c0:06:b0:95:ce:46:a7:72:01:ed:
f8:df:0f:d5:da:ea:09:e4:4b:93:9b:a8:be:74:da:19:2f:b9:
c8:10:7f:90:73:85:ef:1f:93:58:6f:64:18:2a:e7:47:f8:dc:
33:e0:2c:d0:0a:ee:c8:7a:ae:2f:37:49:ad:9d:67:00:98:cf:
c6:f9:90:b0:98:cb:b8:22:a3:49:69:51:c7:cd:0d:8c:01:e4:
25:0d:81:87:8d:a9:09:b4:d0:59:96:bd:25:1b:92:81:46:f3:
6f:e4:e1:15:a3:8e:6e:f8:3f:b1:f8:83:ed:4d:da:83:58:6b:
87:8a:a1:3e:17:1f:27:4c:3d:c8:cc:f2:ed:3c:e9:97:1b:6d:
2f:26:97:22:78:dd:3a:57:90:6f:cc:6b:cb:67:de:e3:ef:42:
52:fa:a3:5a:f2:66:0a:e8:2f:1c:57:47:c5:e1:95:80:f5:35:
c5:0e:5a:9e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlQiYraLj/91rszH15WEeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNDNiMGVjNzk5NTFkNWQ1NTgwMTMzZTUzMjlhOTBmMmZl
ZTFjNWIwHhcNMjQwMTAyMDAzMTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmU0YTBkZjA1NGQ2Njc2MjZmNmU3Mzk5MWQ0ODMxZDg2ZDg1MTc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAge9p6dv3Pnd/1OhqHe1XOuUiUymY
VRJtpOeYYbgc4bZeLcEQW0oOOyE+CuxwWDtFP/Es4FiKO71yTQvvB8J5WvD1xAJx
0vId+IZirC7zJvufFnk/IHqw1H4OXXCIC6T45f61uhrsF1IouTmuWVaHBGQ5wOu9
GPInHIQ6iLtPJmc0sOSzE+dXzF6C+2x9DYoUidkWl/L3i44sS4tlosXRBGHWl4YL
7Bg5spj8pxIfUWT1B6ege1fO+/mnNIdQSjnLvg85dYgh/FgpiG38D+YwAnYOMYhx
uBkOfR6NZrPLcL+wneyGWEq5SDKLsnqpztUKi4MnhP0Y4InD56txeqOerQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH/koN8FTWZ2JvbnOZHUgx2G2FF1MB8GA1UdIwQY
MBaAFH1DsOx5lR1dVYATPlMpqQ8v7hxbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlVPdzdIbVZIVjFWZ0JNLVV5bXBEeV91SEZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8yNjA0ZTAtOTFmYS00ZmU5LWJiMjgt
OTNhNjE5MmIxNzg1LzEvZi1TZzN3Vk5ablltOXVjNWtkU0RIWWJZVVhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS8yNjA0ZTAtOTFmYS00ZmU5LWJiMjgtOTNhNjE5MmIxNzg1
LzEvZlVPdzdIbVZIVjFWZ0JNLVV5bXBEeV91SEZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuS1TMA0G
CSqGSIb3DQEBCwUAA4IBAQBMy4dUR7OJ6TLDTub3vIPX/bK8+5zCDk2rE+0L80tJ
Wb0xYCignBI29Mlc3xNhTfPviiUaHY/F3HHAGsULO15tDaKbaxPUAHYPjx/F8ies
YMAGsJXORqdyAe343w/V2uoJ5EuTm6i+dNoZL7nIEH+Qc4XvH5NYb2QYKudH+Nwz
4CzQCu7Ieq4vN0mtnWcAmM/G+ZCwmMu4IqNJaVHHzQ2MAeQlDYGHjakJtNBZlr0l
G5KBRvNv5OEVo45u+D+x+IPtTdqDWGuHiqE+Fx8nTD3IzPLtPOmXG20vJpcieN06
V5BvzGvLZ97j70JS+qNa8mYK6C8cV0fF4ZWA9TXFDlqe
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:14 2024 by rpki-client on console-fra.rpki-client.org