Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/rROO5Jmvb0zfIp3dod0hKTKGUEo.roa
File: rROO5Jmvb0zfIp3dod0hKTKGUEo.roa (raw, json)
Hash identifier: 9QTHpCGNMliswwh8gsB0+lSU1yqi9jnKkwicg+in6rQ=
Subject key identifier: AD:13:8E:E4:99:AF:6F:4C:DF:22:9D:DD:A1:DD:21:29:32:86:50:4A
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 018F8F63AB0ACC1849A6D986B5A699154C40
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/rROO5Jmvb0zfIp3dod0hKTKGUEo.roa
Signing time: Sun 19 May 2024 05:47:04 +0000
ROA not before: Sun 19 May 2024 05:47:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152672
IP address blocks: 185.99.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 07:56:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8f:63:ab:0a:cc:18:49:a6:d9:86:b5:a6:99:15:4c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: May 19 05:47:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad138ee499af6f4cdf229ddda1dd21293286504a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a1:09:b3:37:fc:30:12:a3:f1:71:04:56:e3:
b8:2d:b1:a7:71:7f:19:ac:14:90:b7:d9:ce:cd:25:
22:ab:b6:be:50:9c:4e:89:94:11:5c:14:22:da:9e:
27:2f:42:e0:74:6d:ac:8d:36:c5:84:66:42:08:57:
ec:dd:e7:2f:36:ec:9b:ca:30:dd:22:0e:1c:94:c7:
80:7a:41:c1:fc:98:45:61:49:13:58:bf:06:a0:73:
ed:33:0b:bd:5d:c3:59:54:0c:a8:a1:24:f1:0f:fb:
94:36:69:39:07:5e:4e:54:94:bf:dd:f7:6c:9c:81:
20:42:51:fd:4c:59:d2:60:6e:24:5c:21:b2:91:83:
28:ff:25:6c:71:d0:01:ab:2b:b0:21:77:11:a7:da:
1f:08:cb:23:f7:ed:4b:3d:14:3d:a4:80:fd:58:0d:
47:c5:03:71:42:8a:7b:e1:36:97:6a:cd:f3:a4:9f:
b1:0c:6b:2a:19:d7:de:60:36:af:3b:a1:45:0f:b4:
a3:57:89:e9:4d:3b:0d:1c:4e:94:29:c8:bd:48:6d:
14:e8:a5:a8:6e:19:56:8b:a3:3d:87:bb:df:77:51:
2c:71:c2:0b:a1:70:b9:68:d8:84:09:c9:40:26:e7:
a7:4a:38:3b:8b:b0:9e:b6:81:02:8f:ec:94:1b:cd:
45:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:13:8E:E4:99:AF:6F:4C:DF:22:9D:DD:A1:DD:21:29:32:86:50:4A
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/rROO5Jmvb0zfIp3dod0hKTKGUEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.20.0/24
Signature Algorithm: sha256WithRSAEncryption
30:dd:b9:0f:09:71:a2:a9:d5:47:0f:53:6e:0c:4c:0f:44:2e:
22:65:12:bf:22:e7:95:e9:98:8c:97:af:5d:7f:68:88:ee:91:
4b:4f:ac:81:d9:3e:06:7d:43:91:88:58:e3:88:bd:91:bb:8b:
65:b8:2b:de:16:b8:2b:61:96:1c:8c:f8:fb:f9:9c:f4:70:2b:
cd:50:4b:05:b7:e9:c6:f4:89:b9:78:6a:13:0b:68:c9:d6:e7:
09:f1:e6:d8:cc:07:0a:80:5f:e2:50:84:84:fe:24:1f:96:11:
41:15:8a:fa:09:da:c5:9d:a7:57:fc:3a:a1:81:3f:d9:f3:1a:
d5:1d:95:ac:52:26:16:cc:42:2b:4c:2f:c6:a1:d1:ab:90:14:
25:14:fd:ea:0d:77:20:63:00:fd:d6:53:a4:e2:4a:b6:83:18:
3d:52:94:a5:94:c2:20:31:6f:ec:71:7c:6b:8e:1f:ef:7c:24:
04:27:69:0c:d0:08:40:8c:02:60:ae:8a:1d:46:9b:72:4e:25:
25:10:0e:81:85:19:49:d0:4a:e7:6f:76:95:c1:7b:0b:a0:b7:
44:df:18:7c:ac:95:bb:0c:93:6d:ef:60:1f:76:a7:e0:4c:b1:
e5:e1:ef:f5:ee:0a:31:3a:3d:d3:d0:9b:c3:e9:9c:01:a6:d7:
d9:28:20:3e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+PY6sKzBhJptmGtaaZFUxAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMTMxMDMwMjAxOGEzODdjNjkyMTQ2YTM1ZWZkMzNhNmVk
NmIxZWYwHhcNMjQwNTE5MDU0NzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDEzOGVlNDk5YWY2ZjRjZGYyMjlkZGRhMWRkMjEyOTMyODY1MDRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6EJszf8MBKj8XEEVuO4LbGncX8Z
rBSQt9nOzSUiq7a+UJxOiZQRXBQi2p4nL0LgdG2sjTbFhGZCCFfs3ecvNuybyjDd
Ig4clMeAekHB/JhFYUkTWL8GoHPtMwu9XcNZVAyooSTxD/uUNmk5B15OVJS/3fds
nIEgQlH9TFnSYG4kXCGykYMo/yVscdABqyuwIXcRp9ofCMsj9+1LPRQ9pID9WA1H
xQNxQop74TaXas3zpJ+xDGsqGdfeYDavO6FFD7SjV4npTTsNHE6UKci9SG0U6KWo
bhlWi6M9h7vfd1EsccILoXC5aNiECclAJuenSjg7i7CetoECj+yUG81F8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK0TjuSZr29M3yKd3aHdISkyhlBKMB8GA1UdIwQY
MBaAFGITEDAgGKOHxpIUajXv0zpu1rHvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9mNThhYzgtNTNlOS00Y2E2LWFjYjIt
YmU1N2Q3ZGZhMGRlLzEvclJPTzVKbXZiMHpmSXAzZG9kMGhLVEtHVUVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9mNThhYzgtNTNlOS00Y2E2LWFjYjItYmU1N2Q3ZGZhMGRl
LzEvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWMUMA0G
CSqGSIb3DQEBCwUAA4IBAQAw3bkPCXGiqdVHD1NuDEwPRC4iZRK/IueV6ZiMl69d
f2iI7pFLT6yB2T4GfUORiFjjiL2Ru4tluCveFrgrYZYcjPj7+Zz0cCvNUEsFt+nG
9Im5eGoTC2jJ1ucJ8ebYzAcKgF/iUISE/iQflhFBFYr6CdrFnadX/DqhgT/Z8xrV
HZWsUiYWzEIrTC/GodGrkBQlFP3qDXcgYwD91lOk4kq2gxg9UpSllMIgMW/scXxr
jh/vfCQEJ2kM0AhAjAJgroodRptyTiUlEA6BhRlJ0Ernb3aVwXsLoLdE3xh8rJW7
DJNt72AfdqfgTLHl4e/17goxOj3T0JvD6ZwBptfZKCA+
-----END CERTIFICATE-----
Generated at Wed Sep 25 10:31:32 2024 by rpki-client on console-ams.rpki-client.org