Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7029b3-2ca8-4ba1-aa92-e6d472d3a825/1/dy1yRNqTYyoIQcOX7WYeC73WmYs.roa
File: dy1yRNqTYyoIQcOX7WYeC73WmYs.roa (raw, json)
Hash identifier: D4LWWLcZ5WUnm66SISm+bP6ZFWPY2LpgiJzHfWoA3hc=
Subject key identifier: 77:2D:72:44:DA:93:63:2A:08:41:C3:97:ED:66:1E:0B:BD:D6:99:8B
Certificate issuer: /CN=d14f747f42d6f2606f808f8829f43c90dd48ca0b
Certificate serial: 01856DD3EE065B4AEA327E804B2513EA477A
Authority key identifier: D1:4F:74:7F:42:D6:F2:60:6F:80:8F:88:29:F4:3C:90:DD:48:CA:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0U90f0LW8mBvgI-IKfQ8kN1Iygs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7029b3-2ca8-4ba1-aa92-e6d472d3a825/1/dy1yRNqTYyoIQcOX7WYeC73WmYs.roa
Signing time: Sun 01 Jan 2023 14:54:43 +0000
ROA not before: Sun 01 Jan 2023 14:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212609
IP address blocks: 185.238.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d3:ee:06:5b:4a:ea:32:7e:80:4b:25:13:ea:47:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14f747f42d6f2606f808f8829f43c90dd48ca0b
Validity
Not Before: Jan 1 14:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=772d7244da93632a0841c397ed661e0bbdd6998b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7e:1c:27:4d:db:0a:7b:03:81:49:32:43:92:
52:69:7a:b6:32:29:3f:f6:55:0d:ff:b6:17:d4:05:
25:5d:25:e5:ad:37:cc:b4:79:39:03:44:9f:32:d5:
05:c9:06:19:df:5b:02:2f:e9:53:36:83:5d:e0:1f:
3a:a6:0a:f3:68:e6:bf:68:aa:f2:d4:db:81:fc:00:
ae:07:38:57:a7:f4:b7:74:b7:2f:c5:de:fb:a0:a8:
11:a5:0e:d6:61:e7:ad:f0:93:90:6e:f2:04:d9:ab:
8f:97:9e:c4:c6:76:af:be:3f:18:08:13:af:12:bc:
36:fa:ea:35:49:58:68:30:e8:b4:e8:a4:bd:ef:4c:
dc:ad:f3:7f:c0:e3:20:30:13:c2:97:f2:bc:d9:7e:
20:fa:71:39:de:1f:0b:c6:c8:40:a5:08:83:10:05:
0e:98:74:8e:0c:d6:11:c7:3a:95:06:6e:7f:91:08:
3a:f4:c8:b8:0d:f6:fe:ad:74:9c:08:26:04:bc:db:
ae:e8:b5:95:af:11:bd:2a:3f:cd:56:56:5a:f8:c2:
87:82:7c:81:63:f1:70:ac:b6:6d:8d:93:c2:ea:fe:
86:14:b4:c9:1d:2f:6c:bf:f3:1c:09:20:ee:b2:6f:
e5:f4:a0:86:2b:33:66:2c:60:e9:8f:2d:08:14:21:
5e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2D:72:44:DA:93:63:2A:08:41:C3:97:ED:66:1E:0B:BD:D6:99:8B
X509v3 Authority Key Identifier:
keyid:D1:4F:74:7F:42:D6:F2:60:6F:80:8F:88:29:F4:3C:90:DD:48:CA:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0U90f0LW8mBvgI-IKfQ8kN1Iygs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7029b3-2ca8-4ba1-aa92-e6d472d3a825/1/dy1yRNqTYyoIQcOX7WYeC73WmYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7029b3-2ca8-4ba1-aa92-e6d472d3a825/1/0U90f0LW8mBvgI-IKfQ8kN1Iygs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.142.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:21:27:7a:1c:5e:0c:a1:bb:48:3c:ab:d4:f0:d7:92:4d:69:
39:19:a0:03:48:f3:e5:0e:35:e0:a1:16:21:be:ae:67:af:c1:
2c:e0:61:ef:ce:88:a2:19:90:33:98:65:36:da:00:b9:c4:96:
99:ad:01:34:12:c0:77:84:76:00:c5:31:a7:bc:a5:cb:aa:e9:
db:13:b9:4e:06:c4:9c:fc:85:6c:3d:24:ba:b0:f5:28:e4:24:
82:24:bf:68:42:9a:ab:7e:7c:b1:7b:b7:90:e0:b4:4e:5d:f3:
67:1f:a1:4b:c6:89:b4:2a:67:ca:39:ee:52:12:e4:54:95:11:
c2:d8:57:d7:79:8c:ca:01:70:74:ff:28:ba:e8:1d:d9:ec:b6:
e8:9f:ed:15:cb:7b:00:3d:33:7b:51:c0:fe:20:14:c2:88:6a:
8c:9a:c2:01:16:82:52:e4:6d:3f:33:39:4c:67:b9:cd:4a:be:
36:89:86:16:1f:61:85:61:7d:22:ad:56:8f:5c:6e:60:d0:9f:
9b:fe:fd:e7:63:dd:87:29:a4:41:3f:31:5c:91:ae:b3:d9:1e:
2e:32:9d:28:a7:91:d0:cc:9c:e4:3a:1c:b7:54:dd:7b:43:7e:
d7:9f:23:ea:5e:e8:6b:4c:e5:d6:e5:6b:10:70:db:01:d0:66:
60:86:b5:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt0+4GW0rqMn6ASyUT6kd6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxNGY3NDdmNDJkNmYyNjA2ZjgwOGY4ODI5ZjQzYzkwZGQ0
OGNhMGIwHhcNMjMwMTAxMTQ1NDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzJkNzI0NGRhOTM2MzJhMDg0MWMzOTdlZDY2MWUwYmJkZDY5OThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0H4cJ03bCnsDgUkyQ5JSaXq2Mik/
9lUN/7YX1AUlXSXlrTfMtHk5A0SfMtUFyQYZ31sCL+lTNoNd4B86pgrzaOa/aKry
1NuB/ACuBzhXp/S3dLcvxd77oKgRpQ7WYeet8JOQbvIE2auPl57Exnavvj8YCBOv
Erw2+uo1SVhoMOi06KS970zcrfN/wOMgMBPCl/K82X4g+nE53h8LxshApQiDEAUO
mHSODNYRxzqVBm5/kQg69Mi4Dfb+rXScCCYEvNuu6LWVrxG9Kj/NVlZa+MKHgnyB
Y/FwrLZtjZPC6v6GFLTJHS9sv/McCSDusm/l9KCGKzNmLGDpjy0IFCFe1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHctckTak2MqCEHDl+1mHgu91pmLMB8GA1UdIwQY
MBaAFNFPdH9C1vJgb4CPiCn0PJDdSMoLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFU5MGYwTFc4bUJ2Z0ktSUtmUThrTjFJeWdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83MDI5YjMtMmNhOC00YmExLWFhOTIt
ZTZkNDcyZDNhODI1LzEvZHkxeVJOcVRZeW9JUWNPWDdXWWVDNzNXbVlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83MDI5YjMtMmNhOC00YmExLWFhOTItZTZkNDcyZDNhODI1
LzEvMFU5MGYwTFc4bUJ2Z0ktSUtmUThrTjFJeWdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue6OMA0G
CSqGSIb3DQEBCwUAA4IBAQCoISd6HF4MobtIPKvU8NeSTWk5GaADSPPlDjXgoRYh
vq5nr8Es4GHvzoiiGZAzmGU22gC5xJaZrQE0EsB3hHYAxTGnvKXLqunbE7lOBsSc
/IVsPSS6sPUo5CSCJL9oQpqrfnyxe7eQ4LROXfNnH6FLxom0KmfKOe5SEuRUlRHC
2FfXeYzKAXB0/yi66B3Z7Lbon+0Vy3sAPTN7UcD+IBTCiGqMmsIBFoJS5G0/MzlM
Z7nNSr42iYYWH2GFYX0irVaPXG5g0J+b/v3nY92HKaRBPzFcka6z2R4uMp0op5HQ
zJzkOhy3VN17Q37XnyPqXuhrTOXW5WsQcNsB0GZghrWj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:11 2024 by rpki-client on console-ams.rpki-client.org