Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/Q2XH5cp7YORyjbewm7YAtZxF-uk.roa
File: Q2XH5cp7YORyjbewm7YAtZxF-uk.roa (raw, json)
Hash identifier: PinbbK1qUemevrFrIxVeKe1Y0N51IFT1D95GrMVpWOQ=
Subject key identifier: 43:65:C7:E5:CA:7B:60:E4:72:8D:B7:B0:9B:B6:00:B5:9C:45:FA:E9
Certificate issuer: /CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Certificate serial: 0191C87F787C33B0999614E6CA69891F2918
Authority key identifier: 0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/Q2XH5cp7YORyjbewm7YAtZxF-uk.roa
Signing time: Fri 06 Sep 2024 18:01:22 +0000
ROA not before: Fri 06 Sep 2024 18:01:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 185.162.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 16:08:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c8:7f:78:7c:33:b0:99:96:14:e6:ca:69:89:1f:29:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Validity
Not Before: Sep 6 18:01:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4365c7e5ca7b60e4728db7b09bb600b59c45fae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f1:91:49:7a:13:be:1b:c5:fe:a5:30:4a:fb:
09:44:32:75:a0:f4:6e:1c:4a:6c:c8:9f:60:c0:a0:
2b:54:7a:5a:ba:21:19:a4:6e:05:2c:a8:73:86:b6:
f5:d6:43:dc:50:95:0f:f2:78:2d:06:d2:ea:e2:3a:
bb:c6:c5:a0:a0:7e:f9:5a:00:7f:b2:dd:e0:d3:37:
e7:90:52:70:35:d6:6e:be:dc:78:dc:7e:60:ff:72:
40:1d:24:c7:48:f0:97:c1:f5:cc:02:e9:b6:d1:e7:
33:32:9c:1e:53:7e:47:66:97:38:a2:2f:1b:87:2c:
68:b1:42:ec:eb:80:56:08:be:5d:6b:f9:79:4d:84:
00:b8:df:f2:4b:20:05:18:cd:31:d6:21:84:c1:d9:
6e:0c:27:c6:cb:1a:0c:36:5f:b5:c5:6f:5a:2d:5d:
95:03:da:53:03:d6:bc:69:cb:a5:87:6c:e1:0b:9d:
9e:36:e4:9f:d2:fc:51:f2:68:45:fd:2c:4b:11:47:
5e:8a:d2:50:14:42:8b:37:46:b6:06:11:73:19:77:
53:ff:9c:0d:ab:6d:5e:c3:48:c9:fe:5d:da:08:65:
e3:5d:6c:e2:ab:3d:04:da:a8:e4:08:fc:9a:54:41:
50:cf:7b:6f:66:6c:49:b1:56:e7:f8:1b:77:0f:c4:
c5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:65:C7:E5:CA:7B:60:E4:72:8D:B7:B0:9B:B6:00:B5:9C:45:FA:E9
X509v3 Authority Key Identifier:
keyid:0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/Q2XH5cp7YORyjbewm7YAtZxF-uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/C1-MlEfWFLhhgnY9kzMlDi2UEuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.176.0/24
Signature Algorithm: sha256WithRSAEncryption
87:80:bd:66:aa:b9:65:13:71:cd:5f:5a:48:fa:7b:4d:00:a3:
45:20:ea:99:bb:1b:13:08:a0:f9:da:ab:c7:8d:e5:d3:64:a5:
5b:a7:66:81:92:ef:05:fa:b6:c0:60:12:fa:d4:25:40:de:32:
8f:43:bc:56:67:c4:3b:e3:78:aa:70:48:ff:5a:bb:15:00:55:
73:83:44:5d:1e:40:5d:96:1e:93:d2:08:b2:f5:17:24:25:9f:
48:c9:fd:35:73:14:d2:fe:eb:c5:b3:14:cd:6b:71:03:b5:3a:
1b:4d:44:2a:51:c5:2c:35:ab:6a:ab:9f:d2:13:f2:5f:55:b2:
83:ad:2b:c8:b8:ff:cc:3c:63:82:ff:05:aa:14:51:c3:a9:e1:
0c:52:9f:e7:35:a8:3c:01:6a:db:ba:7f:7e:12:28:a0:df:21:
0c:c0:52:2a:91:ce:ec:bf:09:37:53:46:f5:03:1c:ec:d8:60:
fe:72:cf:b0:28:bb:5b:59:64:a2:60:49:ea:a0:8a:bb:bb:80:
cf:87:1c:9d:42:49:60:23:79:d4:24:54:43:8c:bc:47:8c:77:
fd:30:56:52:80:0c:63:0e:6a:9e:4f:9d:c1:45:4f:cf:da:51:
82:59:60:21:9b:e9:b9:27:0d:8a:2d:1d:f4:1c:b1:0a:d7:a9:
6f:a4:e1:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHIf3h8M7CZlhTmymmJHykYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiNWY4Yzk0NDdkNjE0Yjg2MTgyNzYzZDkzMzMyNTBlMmQ5
NDEyZTIwHhcNMjQwOTA2MTgwMTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzY1YzdlNWNhN2I2MGU0NzI4ZGI3YjA5YmI2MDBiNTljNDVmYWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/GRSXoTvhvF/qUwSvsJRDJ1oPRu
HEpsyJ9gwKArVHpauiEZpG4FLKhzhrb11kPcUJUP8ngtBtLq4jq7xsWgoH75WgB/
st3g0zfnkFJwNdZuvtx43H5g/3JAHSTHSPCXwfXMAum20eczMpweU35HZpc4oi8b
hyxosULs64BWCL5da/l5TYQAuN/ySyAFGM0x1iGEwdluDCfGyxoMNl+1xW9aLV2V
A9pTA9a8aculh2zhC52eNuSf0vxR8mhF/SxLEUdeitJQFEKLN0a2BhFzGXdT/5wN
q21ew0jJ/l3aCGXjXWziqz0E2qjkCPyaVEFQz3tvZmxJsVbn+Bt3D8TFvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFENlx+XKe2Dkco23sJu2ALWcRfrpMB8GA1UdIwQY
MBaAFAtfjJRH1hS4YYJ2PZMzJQ4tlBLiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzEtTWxFZldGTGhoZ25ZOWt6TWxEaTJVRXVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9mN2Y2YzAtMDlkMC00OTJjLTkyZTYt
OGE5NWU2Mzc3MzMyLzEvUTJYSDVjcDdZT1J5amJld203WUF0WnhGLXVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy9mN2Y2YzAtMDlkMC00OTJjLTkyZTYtOGE5NWU2Mzc3MzMy
LzEvQzEtTWxFZldGTGhoZ25ZOWt6TWxEaTJVRXVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaKwMA0G
CSqGSIb3DQEBCwUAA4IBAQCHgL1mqrllE3HNX1pI+ntNAKNFIOqZuxsTCKD52qvH
jeXTZKVbp2aBku8F+rbAYBL61CVA3jKPQ7xWZ8Q743iqcEj/WrsVAFVzg0RdHkBd
lh6T0giy9RckJZ9Iyf01cxTS/uvFsxTNa3EDtTobTUQqUcUsNatqq5/SE/JfVbKD
rSvIuP/MPGOC/wWqFFHDqeEMUp/nNag8AWrbun9+Eiig3yEMwFIqkc7svwk3U0b1
Axzs2GD+cs+wKLtbWWSiYEnqoIq7u4DPhxydQklgI3nUJFRDjLxHjHf9MFZSgAxj
DmqeT53BRU/P2lGCWWAhm+m5Jw2KLR30HLEK16lvpOGI
-----END CERTIFICATE-----
Generated at Wed Sep 11 19:10:20 2024 by rpki-client on console-fra.rpki-client.org