Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/41b40c-f3b6-40b8-840c-19a3c5649b57/1/IfK_62mvfetbsRK1bzzWLHnZ4PY.roa
File: IfK_62mvfetbsRK1bzzWLHnZ4PY.roa (raw, json)
Hash identifier: 7SzmZ7UMU5/YiVC8eHlfARBGa3SLMboR0/JLtz9uK/g=
Subject key identifier: 21:F2:BF:EB:69:AF:7D:EB:5B:B1:12:B5:6F:3C:D6:2C:79:D9:E0:F6
Certificate issuer: /CN=a9ec57bc8464fec2e9a1b098ffce34c21aaf9ca6
Certificate serial: 018A2BC97D3645706279E77B41580E3EC10D
Authority key identifier: A9:EC:57:BC:84:64:FE:C2:E9:A1:B0:98:FF:CE:34:C2:1A:AF:9C:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qexXvIRk_sLpobCY_840whqvnKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/41b40c-f3b6-40b8-840c-19a3c5649b57/1/IfK_62mvfetbsRK1bzzWLHnZ4PY.roa
Signing time: Fri 25 Aug 2023 08:22:19 +0000
ROA not before: Fri 25 Aug 2023 08:22:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208943
IP address blocks: 213.108.131.0/24 maxlen: 32
185.229.110.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2b:c9:7d:36:45:70:62:79:e7:7b:41:58:0e:3e:c1:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9ec57bc8464fec2e9a1b098ffce34c21aaf9ca6
Validity
Not Before: Aug 25 08:22:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21f2bfeb69af7deb5bb112b56f3cd62c79d9e0f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f9:f1:02:01:fb:3f:50:31:aa:ea:6c:52:67:
e3:c7:29:53:22:ed:f1:a5:d0:97:5e:90:13:9c:01:
e5:95:d2:ce:9b:08:48:02:b5:1a:22:cd:8a:51:ec:
e1:26:dc:45:9b:34:00:1d:82:b8:d4:29:6c:8a:0a:
4f:6e:51:83:7e:e1:44:85:6f:4f:ae:5e:a9:41:71:
49:e4:55:5f:53:65:a0:c8:36:11:c0:fa:b0:84:c2:
f7:d0:c1:0a:3d:74:12:0b:70:4f:ef:c8:02:13:e5:
d7:88:e6:f6:51:0f:af:41:70:e0:39:2b:92:4a:b9:
1c:2d:f7:ca:59:90:59:1b:42:d0:d0:bb:e7:9e:15:
b5:5d:87:5c:45:70:35:38:00:90:36:82:59:60:d2:
94:c4:75:dc:84:aa:77:1f:1f:12:f7:ee:85:a6:ba:
20:ec:67:fe:dc:7a:40:5e:71:8a:5c:b4:19:6c:2c:
6e:93:88:b9:69:f7:6e:4a:d7:e3:cc:11:dd:92:b3:
09:67:79:6d:8d:d5:66:ee:7a:59:b0:fc:3b:a3:51:
13:87:e3:8e:0b:d1:d6:82:3c:b0:3c:24:64:3d:f2:
0b:14:1a:e2:4a:7a:0f:59:73:98:75:78:ce:2c:e6:
b8:14:a7:8d:7a:74:60:11:fd:90:66:3f:e3:84:19:
d8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F2:BF:EB:69:AF:7D:EB:5B:B1:12:B5:6F:3C:D6:2C:79:D9:E0:F6
X509v3 Authority Key Identifier:
keyid:A9:EC:57:BC:84:64:FE:C2:E9:A1:B0:98:FF:CE:34:C2:1A:AF:9C:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qexXvIRk_sLpobCY_840whqvnKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/41b40c-f3b6-40b8-840c-19a3c5649b57/1/IfK_62mvfetbsRK1bzzWLHnZ4PY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/41b40c-f3b6-40b8-840c-19a3c5649b57/1/qexXvIRk_sLpobCY_840whqvnKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.110.0/24
213.108.131.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:59:94:7f:58:dc:2d:b2:cd:25:8e:e1:ec:81:0a:19:72:0d:
53:1e:d1:db:5e:e0:4b:b9:6e:97:46:92:e9:7c:2d:c4:f8:3e:
65:6f:9c:93:85:2e:e4:c4:bf:9c:ff:19:86:b9:09:8e:d9:45:
74:c2:e7:5d:99:41:67:ae:9b:40:1c:ab:a3:c1:d6:e7:0b:7d:
63:e3:11:6a:3f:dc:eb:d0:9b:66:5a:ee:ca:3b:ff:3d:1b:93:
4a:1e:b0:97:8b:16:47:58:e3:0d:9b:38:20:2f:72:ae:a1:99:
1f:fb:01:8e:9c:54:98:d2:d6:ca:31:e6:a6:3e:44:ec:e2:0f:
93:e9:63:61:7c:c8:57:d7:67:3c:70:6b:27:0a:41:86:3c:a6:
c7:e9:4d:12:3d:05:a1:d2:ba:7d:19:69:15:2d:25:3a:79:da:
71:66:9d:20:27:c9:d7:78:e3:36:e5:1f:06:a6:99:b3:47:45:
92:d8:a7:39:35:d0:2b:d2:61:2d:e0:68:6f:52:36:eb:5e:de:
fa:c7:32:39:8b:90:7f:81:3c:2b:9c:d6:75:09:9b:e9:88:70:
ae:d6:6b:c0:73:77:6f:98:6d:21:2a:a6:cc:b4:0f:e5:bc:51:
19:0c:b7:31:91:7f:f4:d2:3b:48:a9:95:76:30:18:9a:e7:6b:
b5:03:bf:ea
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYoryX02RXBieed7QVgOPsENMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5ZWM1N2JjODQ2NGZlYzJlOWExYjA5OGZmY2UzNGMyMWFh
ZjljYTYwHhcNMjMwODI1MDgyMjE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMWYyYmZlYjY5YWY3ZGViNWJiMTEyYjU2ZjNjZDYyYzc5ZDllMGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAifnxAgH7P1AxqupsUmfjxylTIu3x
pdCXXpATnAHlldLOmwhIArUaIs2KUezhJtxFmzQAHYK41ClsigpPblGDfuFEhW9P
rl6pQXFJ5FVfU2WgyDYRwPqwhML30MEKPXQSC3BP78gCE+XXiOb2UQ+vQXDgOSuS
SrkcLffKWZBZG0LQ0LvnnhW1XYdcRXA1OACQNoJZYNKUxHXchKp3Hx8S9+6Fprog
7Gf+3HpAXnGKXLQZbCxuk4i5afduStfjzBHdkrMJZ3ltjdVm7npZsPw7o1ETh+OO
C9HWgjywPCRkPfILFBriSnoPWXOYdXjOLOa4FKeNenRgEf2QZj/jhBnY2wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCHyv+tpr33rW7EStW881ix52eD2MB8GA1UdIwQY
MBaAFKnsV7yEZP7C6aGwmP/ONMIar5ymMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWV4WHZJUmtfc0xwb2JDWV84NDB3aHF2bktZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy80MWI0MGMtZjNiNi00MGI4LTg0MGMt
MTlhM2M1NjQ5YjU3LzEvSWZLXzYybXZmZXRic1JLMWJ6eldMSG5aNFBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy80MWI0MGMtZjNiNi00MGI4LTg0MGMtMTlhM2M1NjQ5YjU3
LzEvcWV4WHZJUmtfc0xwb2JDWV84NDB3aHF2bktZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAueVuAwQA
1WyDMA0GCSqGSIb3DQEBCwUAA4IBAQBOWZR/WNwtss0ljuHsgQoZcg1THtHbXuBL
uW6XRpLpfC3E+D5lb5yThS7kxL+c/xmGuQmO2UV0wuddmUFnrptAHKujwdbnC31j
4xFqP9zr0JtmWu7KO/89G5NKHrCXixZHWOMNmzggL3KuoZkf+wGOnFSY0tbKMeam
PkTs4g+T6WNhfMhX12c8cGsnCkGGPKbH6U0SPQWh0rp9GWkVLSU6edpxZp0gJ8nX
eOM25R8GppmzR0WS2Kc5NdAr0mEt4GhvUjbrXt76xzI5i5B/gTwrnNZ1CZvpiHCu
1mvAc3dvmG0hKqbMtA/lvFEZDLcxkX/00jtIqZV2MBia52u1A7/q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:48 2024 by rpki-client on console-fra.rpki-client.org