Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/qHcH0bQkI_ILJ53ES99hPk49cWo.roa
File: qHcH0bQkI_ILJ53ES99hPk49cWo.roa (raw, json)
Hash identifier: cPJL6MCxhWJIqLWB4rDAOJhwr4LWDh5+y5WalMk2OSU=
Subject key identifier: A8:77:07:D1:B4:24:23:F2:0B:27:9D:C4:4B:DF:61:3E:4E:3D:71:6A
Certificate issuer: /CN=0a2a157f00515f95b6df5dc0d52eb1b5d43fde5c
Certificate serial: 01856BD372A76F4E568E46A7516A99DFDC0F
Authority key identifier: 0A:2A:15:7F:00:51:5F:95:B6:DF:5D:C0:D5:2E:B1:B5:D4:3F:DE:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CioVfwBRX5W2313A1S6xtdQ_3lw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/qHcH0bQkI_ILJ53ES99hPk49cWo.roa
Signing time: Sun 01 Jan 2023 05:34:57 +0000
ROA not before: Sun 01 Jan 2023 05:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198102
IP address blocks: 185.211.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:72:a7:6f:4e:56:8e:46:a7:51:6a:99:df:dc:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a2a157f00515f95b6df5dc0d52eb1b5d43fde5c
Validity
Not Before: Jan 1 05:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a87707d1b42423f20b279dc44bdf613e4e3d716a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bd:52:dc:08:1c:13:3e:48:ce:1a:22:d8:45:
15:15:aa:a2:4f:37:55:a6:15:d2:f9:79:37:25:59:
67:a7:ce:24:e8:51:dd:e5:80:6c:17:4e:36:ba:15:
70:e6:0c:fe:88:f0:1e:66:de:f2:0d:66:27:e4:de:
5d:22:14:e0:67:8f:27:6f:ea:e4:42:c4:28:bf:0e:
2b:c1:23:76:7e:e8:03:21:96:a6:f5:6e:3a:2e:2f:
9d:d2:a8:b2:a2:58:35:86:12:ef:fc:9f:0c:01:23:
36:72:ec:1b:b3:a1:92:df:f2:6d:d4:c5:64:7d:0a:
58:e0:fa:65:41:52:aa:11:c1:2e:6a:0d:a1:46:69:
9d:60:b4:a3:86:8c:d5:6e:bf:25:65:6d:73:0a:74:
d2:8d:f1:22:0a:17:68:ee:16:5e:87:be:1c:ee:1f:
4e:61:8c:3f:5c:75:cf:bd:8d:8c:7f:c6:7f:1c:61:
a1:c8:43:ec:ed:2c:34:94:15:b0:39:af:07:26:9b:
e9:e5:e9:2a:66:6c:c3:27:4d:5d:70:7d:6f:d6:0f:
d8:e1:b4:6e:cc:70:08:c6:73:9f:5b:91:b3:7b:cf:
47:b8:7f:9c:e7:44:fd:92:72:e4:a9:58:d7:df:0d:
7b:9c:f3:db:0d:80:f2:d9:02:ec:f6:1e:4e:ee:17:
fc:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:77:07:D1:B4:24:23:F2:0B:27:9D:C4:4B:DF:61:3E:4E:3D:71:6A
X509v3 Authority Key Identifier:
keyid:0A:2A:15:7F:00:51:5F:95:B6:DF:5D:C0:D5:2E:B1:B5:D4:3F:DE:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CioVfwBRX5W2313A1S6xtdQ_3lw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/qHcH0bQkI_ILJ53ES99hPk49cWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/CioVfwBRX5W2313A1S6xtdQ_3lw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.14.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:5d:ed:d5:86:2b:93:54:25:04:54:4e:ea:40:c8:90:3e:fb:
88:ba:d3:83:50:6b:d0:c8:99:6c:fe:fd:93:12:ab:dd:f4:64:
35:91:0b:ae:67:5f:7d:d1:41:16:58:2d:af:20:ce:76:03:20:
c3:dc:8f:d5:ee:61:f2:f5:27:15:a8:9b:bc:89:d3:fd:d5:cb:
a7:c0:45:fb:6e:0e:67:b0:79:63:b5:38:3d:2e:a5:c5:ef:28:
ed:01:ee:65:23:66:69:ec:e5:fd:3a:c9:72:3e:9e:f2:b2:e8:
ca:f8:94:b1:5d:e2:a5:64:d7:1f:ba:98:23:15:83:03:12:c8:
18:5e:a4:a8:6d:43:d0:c3:e1:47:6f:31:5e:c3:88:5e:71:54:
18:60:2f:fe:dc:67:6c:a9:90:56:d0:3f:69:4c:19:06:90:a2:
c4:95:fc:57:3c:26:9a:31:b3:e2:95:37:b0:2e:8c:60:fd:92:
8c:64:53:c6:25:5a:cf:2b:a6:d1:25:10:f6:c1:2d:23:ef:ea:
f5:1a:d7:37:4c:60:62:39:6e:a5:4e:05:47:c0:52:16:72:bf:
2e:9f:5b:49:90:15:3d:b9:c8:a5:36:43:69:55:ab:9d:42:23:
38:30:81:ce:73:48:1b:ed:a8:41:2c:0a:00:f6:16:74:13:bc:
cc:05:7e:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr03Knb05WjkanUWqZ39wPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhMmExNTdmMDA1MTVmOTViNmRmNWRjMGQ1MmViMWI1ZDQz
ZmRlNWMwHhcNMjMwMTAxMDUzNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODc3MDdkMWI0MjQyM2YyMGIyNzlkYzQ0YmRmNjEzZTRlM2Q3MTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl71S3AgcEz5Izhoi2EUVFaqiTzdV
phXS+Xk3JVlnp84k6FHd5YBsF042uhVw5gz+iPAeZt7yDWYn5N5dIhTgZ48nb+rk
QsQovw4rwSN2fugDIZam9W46Li+d0qiyolg1hhLv/J8MASM2cuwbs6GS3/Jt1MVk
fQpY4PplQVKqEcEuag2hRmmdYLSjhozVbr8lZW1zCnTSjfEiChdo7hZeh74c7h9O
YYw/XHXPvY2Mf8Z/HGGhyEPs7Sw0lBWwOa8HJpvp5ekqZmzDJ01dcH1v1g/Y4bRu
zHAIxnOfW5Gze89HuH+c50T9knLkqVjX3w17nPPbDYDy2QLs9h5O7hf81wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKh3B9G0JCPyCyedxEvfYT5OPXFqMB8GA1UdIwQY
MBaAFAoqFX8AUV+Vtt9dwNUusbXUP95cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2lvVmZ3QlJYNVcyMzEzQTFTNnh0ZFFfM2x3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8zYTM5ZTktM2Q0MC00NmY4LWJiMGYt
NWJhNDNiMTE4Zjc1LzEvcUhjSDBiUWtJX0lMSjUzRVM5OWhQazQ5Y1dvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS8zYTM5ZTktM2Q0MC00NmY4LWJiMGYtNWJhNDNiMTE4Zjc1
LzEvQ2lvVmZ3QlJYNVcyMzEzQTFTNnh0ZFFfM2x3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudMOMA0G
CSqGSIb3DQEBCwUAA4IBAQBKXe3VhiuTVCUEVE7qQMiQPvuIutODUGvQyJls/v2T
Eqvd9GQ1kQuuZ1990UEWWC2vIM52AyDD3I/V7mHy9ScVqJu8idP91cunwEX7bg5n
sHljtTg9LqXF7yjtAe5lI2Zp7OX9OslyPp7ysujK+JSxXeKlZNcfupgjFYMDEsgY
XqSobUPQw+FHbzFew4hecVQYYC/+3GdsqZBW0D9pTBkGkKLElfxXPCaaMbPilTew
Loxg/ZKMZFPGJVrPK6bRJRD2wS0j7+r1Gtc3TGBiOW6lTgVHwFIWcr8un1tJkBU9
ucilNkNpVaudQiM4MIHOc0gb7ahBLAoA9hZ0E7zMBX5P
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:30 2024 by rpki-client on console-fra.rpki-client.org