Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/179f80-8838-4d4c-b8d1-31a964f8a37f/1/B8gTobhF0GY1UD17Rrdbfp-Y9ks.roa
File: B8gTobhF0GY1UD17Rrdbfp-Y9ks.roa (raw, json)
Hash identifier: qfqq+6Mw2vRm+VeH4UjLUqg+fW8dQO6vzY0/1gmAdNc=
Subject key identifier: 07:C8:13:A1:B8:45:D0:66:35:50:3D:7B:46:B7:5B:7E:9F:98:F6:4B
Certificate issuer: /CN=a1b39d824479d4da7b12f65c15e5c42725f5260b
Certificate serial: 01856DCB1654329BD7CE1868B1293889429C
Authority key identifier: A1:B3:9D:82:44:79:D4:DA:7B:12:F6:5C:15:E5:C4:27:25:F5:26:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obOdgkR51Np7EvZcFeXEJyX1Jgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/179f80-8838-4d4c-b8d1-31a964f8a37f/1/B8gTobhF0GY1UD17Rrdbfp-Y9ks.roa
Signing time: Sun 01 Jan 2023 14:45:04 +0000
ROA not before: Sun 01 Jan 2023 14:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205341
IP address blocks: 185.221.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:cb:16:54:32:9b:d7:ce:18:68:b1:29:38:89:42:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b39d824479d4da7b12f65c15e5c42725f5260b
Validity
Not Before: Jan 1 14:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07c813a1b845d06635503d7b46b75b7e9f98f64b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e7:80:c8:47:69:3f:2d:c3:01:eb:bc:76:40:
eb:1c:a3:a7:3f:34:a7:75:a2:29:de:4b:0d:e2:af:
b0:ce:78:9b:96:1d:76:dc:b3:4a:88:27:b5:6e:ad:
36:91:63:e3:4c:ed:75:51:ca:62:f3:75:b8:8a:e7:
89:d5:ec:2b:1c:4e:4f:e9:69:eb:cb:77:c1:c3:cf:
20:9d:7b:7d:e9:d8:ae:94:c7:ea:5e:d8:68:f5:f8:
45:98:d2:2b:ca:24:c1:3b:47:a3:1a:48:03:f6:f8:
aa:da:cf:68:6c:06:db:b6:23:67:ec:77:bc:85:05:
69:5a:6a:d5:ad:02:11:ac:f6:d3:1f:c0:6a:41:69:
6a:c7:bb:9c:de:55:05:39:b3:41:4d:7f:56:ce:14:
d4:38:dd:9f:d4:87:75:b5:55:4a:46:50:60:d4:e5:
ce:0b:14:28:19:1c:58:12:3f:62:72:f0:06:eb:42:
28:0e:32:4a:84:ba:3c:21:5f:65:c1:72:5f:ac:27:
d0:dd:86:b5:9b:6e:64:a5:24:6b:18:35:3b:c4:c3:
db:a9:30:f9:0f:0a:cf:53:e4:9e:80:74:31:2a:50:
f1:34:19:f2:5d:ab:f8:cf:f4:b0:d9:94:55:a6:05:
9a:c8:64:fa:7e:84:e1:b8:b6:6f:b7:41:1c:64:3d:
58:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C8:13:A1:B8:45:D0:66:35:50:3D:7B:46:B7:5B:7E:9F:98:F6:4B
X509v3 Authority Key Identifier:
keyid:A1:B3:9D:82:44:79:D4:DA:7B:12:F6:5C:15:E5:C4:27:25:F5:26:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obOdgkR51Np7EvZcFeXEJyX1Jgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/179f80-8838-4d4c-b8d1-31a964f8a37f/1/B8gTobhF0GY1UD17Rrdbfp-Y9ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/179f80-8838-4d4c-b8d1-31a964f8a37f/1/obOdgkR51Np7EvZcFeXEJyX1Jgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.8.0/22
Signature Algorithm: sha256WithRSAEncryption
48:23:4d:9d:3d:98:76:4d:28:01:39:58:44:bb:4f:5c:30:de:
4b:66:7f:02:c0:ab:38:e1:89:1f:fb:56:dd:e4:96:e4:d4:c6:
e7:2e:c3:a3:4a:6c:49:e1:dc:20:11:5c:2f:45:7e:67:08:a3:
fa:7b:49:2c:d7:15:af:df:b8:ca:80:b8:36:0c:ba:a5:bd:0f:
86:2f:7d:1c:77:10:1b:ee:1d:61:6d:e2:17:ae:63:90:d4:ec:
d1:1c:ad:e7:bf:05:5d:bf:f1:75:35:c4:7d:5b:59:1f:fb:48:
94:03:ef:df:b6:ba:4b:7c:11:22:a1:06:f5:55:4e:29:d8:91:
e4:53:71:ff:88:cf:e3:cd:ad:2c:e7:98:b7:db:aa:c6:51:89:
fd:2a:59:1e:3c:04:8c:08:13:c3:b2:2f:e1:d3:73:de:29:88:
ea:f4:3a:6a:1c:04:f2:30:15:30:64:fe:2e:45:e8:76:33:b5:
cc:6a:b0:93:2f:dd:65:9a:27:71:5e:2d:c3:21:f9:8c:7c:12:
13:f2:26:3c:c4:75:44:c2:29:ea:de:ae:b9:61:0b:0f:ec:5c:
76:b3:05:22:f8:e0:4b:13:d7:3e:2f:a1:a7:f5:41:7c:94:85:
0a:33:75:ad:9c:00:21:7e:51:51:82:6a:41:33:27:ea:9b:86:
c1:7b:84:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtyxZUMpvXzhhosSk4iUKcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExYjM5ZDgyNDQ3OWQ0ZGE3YjEyZjY1YzE1ZTVjNDI3MjVm
NTI2MGIwHhcNMjMwMTAxMTQ0NTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2M4MTNhMWI4NDVkMDY2MzU1MDNkN2I0NmI3NWI3ZTlmOThmNjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+eAyEdpPy3DAeu8dkDrHKOnPzSn
daIp3ksN4q+wzniblh123LNKiCe1bq02kWPjTO11Ucpi83W4iueJ1ewrHE5P6Wnr
y3fBw88gnXt96diulMfqXtho9fhFmNIryiTBO0ejGkgD9viq2s9obAbbtiNn7He8
hQVpWmrVrQIRrPbTH8BqQWlqx7uc3lUFObNBTX9WzhTUON2f1Id1tVVKRlBg1OXO
CxQoGRxYEj9icvAG60IoDjJKhLo8IV9lwXJfrCfQ3Ya1m25kpSRrGDU7xMPbqTD5
DwrPU+SegHQxKlDxNBnyXav4z/Sw2ZRVpgWayGT6foThuLZvt0EcZD1YIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAfIE6G4RdBmNVA9e0a3W36fmPZLMB8GA1UdIwQY
MBaAFKGznYJEedTaexL2XBXlxCcl9SYLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2JPZGdrUjUxTnA3RXZaY0ZlWEVKeVgxSmdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8xNzlmODAtODgzOC00ZDRjLWI4ZDEt
MzFhOTY0ZjhhMzdmLzEvQjhnVG9iaEYwR1kxVUQxN1JyZGJmcC1ZOWtzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS8xNzlmODAtODgzOC00ZDRjLWI4ZDEtMzFhOTY0ZjhhMzdm
LzEvb2JPZGdrUjUxTnA3RXZaY0ZlWEVKeVgxSmdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCud0IMA0G
CSqGSIb3DQEBCwUAA4IBAQBII02dPZh2TSgBOVhEu09cMN5LZn8CwKs44Ykf+1bd
5Jbk1MbnLsOjSmxJ4dwgEVwvRX5nCKP6e0ks1xWv37jKgLg2DLqlvQ+GL30cdxAb
7h1hbeIXrmOQ1OzRHK3nvwVdv/F1NcR9W1kf+0iUA+/ftrpLfBEioQb1VU4p2JHk
U3H/iM/jza0s55i326rGUYn9KlkePASMCBPDsi/h03PeKYjq9DpqHATyMBUwZP4u
Reh2M7XMarCTL91lmidxXi3DIfmMfBIT8iY8xHVEwinq3q65YQsP7Fx2swUi+OBL
E9c+L6Gn9UF8lIUKM3WtnAAhflFRgmpBMyfqm4bBe4Q9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:20 2024 by rpki-client on console-ams.rpki-client.org