Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c07a7d-24e6-4610-b656-c47172d5d882/1/THtMO54MPZVzMN9hNpfzrtF-_UI.roa
File: THtMO54MPZVzMN9hNpfzrtF-_UI.roa (raw, json)
Hash identifier: CSdqq4wcRGhcwqOQzJtql5+TF7M1SCIOJsb4dkPEkWs=
Subject key identifier: 4C:7B:4C:3B:9E:0C:3D:95:73:30:DF:61:36:97:F3:AE:D1:7E:FD:42
Certificate issuer: /CN=59b3e0956a9d4817cd92852c27a27b7d2f1113db
Certificate serial: 01856CAF2245D7604E7E1D186DA553BD7078
Authority key identifier: 59:B3:E0:95:6A:9D:48:17:CD:92:85:2C:27:A2:7B:7D:2F:11:13:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WbPglWqdSBfNkoUsJ6J7fS8RE9s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c07a7d-24e6-4610-b656-c47172d5d882/1/THtMO54MPZVzMN9hNpfzrtF-_UI.roa
Signing time: Sun 01 Jan 2023 09:34:54 +0000
ROA not before: Sun 01 Jan 2023 09:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43366
IP address blocks: 185.54.216.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:22:45:d7:60:4e:7e:1d:18:6d:a5:53:bd:70:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59b3e0956a9d4817cd92852c27a27b7d2f1113db
Validity
Not Before: Jan 1 09:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c7b4c3b9e0c3d957330df613697f3aed17efd42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a1:01:f7:da:04:2f:bd:51:3f:19:ba:30:aa:
c1:8b:79:d7:6d:25:c1:5d:70:f4:b7:d0:bd:5d:4f:
e9:87:73:26:ee:82:94:65:ef:b1:a9:7a:69:37:33:
0d:1a:dc:2e:7d:83:a0:aa:c7:16:f4:46:cd:49:1b:
8a:9b:b7:a3:40:5b:ba:e1:d0:f4:f5:e2:8c:a6:c7:
3f:a9:8c:d3:1e:92:14:35:67:3d:18:22:b5:bf:b1:
32:09:88:d0:cf:f9:d0:43:68:a6:c8:a0:93:a6:20:
dd:ad:fa:6e:30:ac:71:92:6b:cf:a1:9e:23:ec:2e:
bd:4b:63:ff:5e:87:7d:5d:27:e0:4d:46:39:14:dd:
ea:13:04:46:d6:d3:c8:d8:58:c5:03:d1:be:d8:70:
eb:85:9e:55:1b:28:2a:a0:52:4b:9e:60:a4:a0:92:
ea:52:7e:a7:06:c7:c1:27:e3:c5:b5:ef:fe:8c:d9:
97:a8:11:7a:ad:15:79:b3:a4:2b:f2:16:d9:3c:a2:
99:00:f1:8a:c2:4b:53:90:35:6a:e4:b7:64:ca:27:
75:8e:f8:2b:98:e3:0a:ac:fb:87:d0:ca:76:88:48:
1b:6d:dd:5c:61:ab:47:79:58:be:8c:d1:08:09:3b:
f8:91:c0:26:f2:b5:69:63:37:a9:d6:25:ad:a1:b2:
c5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:7B:4C:3B:9E:0C:3D:95:73:30:DF:61:36:97:F3:AE:D1:7E:FD:42
X509v3 Authority Key Identifier:
keyid:59:B3:E0:95:6A:9D:48:17:CD:92:85:2C:27:A2:7B:7D:2F:11:13:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WbPglWqdSBfNkoUsJ6J7fS8RE9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c07a7d-24e6-4610-b656-c47172d5d882/1/THtMO54MPZVzMN9hNpfzrtF-_UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c07a7d-24e6-4610-b656-c47172d5d882/1/WbPglWqdSBfNkoUsJ6J7fS8RE9s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.216.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:47:90:26:20:f9:33:0b:61:be:74:05:83:40:ea:04:ce:ba:
99:47:15:8c:bd:66:d0:08:f1:a7:1a:f5:d1:6e:94:cb:21:23:
8a:3c:d4:55:82:ff:8e:0f:85:0b:e2:3e:b1:94:61:d5:9e:47:
07:6a:aa:a0:86:d7:ae:e5:96:75:3e:72:3a:ad:4d:70:01:1b:
b3:20:0a:46:ca:77:06:67:6f:1a:6a:d2:6a:66:6d:75:0d:1e:
c0:97:6a:dd:ca:0c:b3:c9:00:b9:c7:fb:38:51:6f:2e:1c:0c:
38:88:97:fa:c3:e3:85:75:1c:c2:c7:a3:1f:a7:81:ed:4a:68:
ca:bd:53:86:e9:02:ab:5b:26:c7:95:a4:ab:fc:9d:34:49:bb:
e8:6d:0b:b6:4e:20:14:be:e7:b9:bf:5a:c9:0c:11:f6:2a:c1:
2c:c8:47:a8:ce:f3:01:e0:b6:42:fc:67:de:42:b4:09:93:36:
82:9c:45:fd:ca:a7:9a:61:36:ee:ac:67:e3:3e:bf:24:26:ca:
8d:c7:e6:0e:2f:ef:66:23:c1:81:20:b3:64:ce:0d:88:4a:ae:
5c:43:31:ac:fd:ab:c7:b1:33:fc:c3:62:24:c4:20:10:09:4e:
22:48:a4:5c:61:0c:94:06:e0:04:bc:20:69:48:98:d5:90:31:
be:df:2b:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsryJF12BOfh0YbaVTvXB4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5YjNlMDk1NmE5ZDQ4MTdjZDkyODUyYzI3YTI3YjdkMmYx
MTEzZGIwHhcNMjMwMTAxMDkzNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzdiNGMzYjllMGMzZDk1NzMzMGRmNjEzNjk3ZjNhZWQxN2VmZDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7aEB99oEL71RPxm6MKrBi3nXbSXB
XXD0t9C9XU/ph3Mm7oKUZe+xqXppNzMNGtwufYOgqscW9EbNSRuKm7ejQFu64dD0
9eKMpsc/qYzTHpIUNWc9GCK1v7EyCYjQz/nQQ2imyKCTpiDdrfpuMKxxkmvPoZ4j
7C69S2P/Xod9XSfgTUY5FN3qEwRG1tPI2FjFA9G+2HDrhZ5VGygqoFJLnmCkoJLq
Un6nBsfBJ+PFte/+jNmXqBF6rRV5s6Qr8hbZPKKZAPGKwktTkDVq5Ldkyid1jvgr
mOMKrPuH0Mp2iEgbbd1cYatHeVi+jNEICTv4kcAm8rVpYzep1iWtobLF5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEx7TDueDD2VczDfYTaX867Rfv1CMB8GA1UdIwQY
MBaAFFmz4JVqnUgXzZKFLCeie30vERPbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2JQZ2xXcWRTQmZOa29Vc0o2SjdmUzhSRTlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9jMDdhN2QtMjRlNi00NjEwLWI2NTYt
YzQ3MTcyZDVkODgyLzEvVEh0TU81NE1QWlZ6TU45aE5wZnpydEYtX1VJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS9jMDdhN2QtMjRlNi00NjEwLWI2NTYtYzQ3MTcyZDVkODgy
LzEvV2JQZ2xXcWRTQmZOa29Vc0o2SjdmUzhSRTlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuTbYMA0G
CSqGSIb3DQEBCwUAA4IBAQCiR5AmIPkzC2G+dAWDQOoEzrqZRxWMvWbQCPGnGvXR
bpTLISOKPNRVgv+OD4UL4j6xlGHVnkcHaqqghteu5ZZ1PnI6rU1wARuzIApGyncG
Z28aatJqZm11DR7Al2rdygyzyQC5x/s4UW8uHAw4iJf6w+OFdRzCx6Mfp4HtSmjK
vVOG6QKrWybHlaSr/J00SbvobQu2TiAUvue5v1rJDBH2KsEsyEeozvMB4LZC/Gfe
QrQJkzaCnEX9yqeaYTburGfjPr8kJsqNx+YOL+9mI8GBILNkzg2ISq5cQzGs/avH
sTP8w2IkxCAQCU4iSKRcYQyUBuAEvCBpSJjVkDG+3ytk
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:51 2024 by rpki-client on console-ams.rpki-client.org