Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/EP8gql6Lr5L-TZFsA1afUnhSoIs.roa
File: EP8gql6Lr5L-TZFsA1afUnhSoIs.roa (raw, json)
Hash identifier: f5PSsCGAHvgQuJ84Rg80b78XrNWJUhr6LP8hXDfi6b0=
Subject key identifier: 10:FF:20:AA:5E:8B:AF:92:FE:4D:91:6C:03:56:9F:52:78:52:A0:8B
Certificate issuer: /CN=e1477072b91af5c3f3bfe69743243e7cda3ae879
Certificate serial: 0190939ACE3FD951EA961E4E7EDEE3F63CCD
Authority key identifier: E1:47:70:72:B9:1A:F5:C3:F3:BF:E6:97:43:24:3E:7C:DA:3A:E8:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Udwcrka9cPzv-aXQyQ-fNo66Hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/EP8gql6Lr5L-TZFsA1afUnhSoIs.roa
Signing time: Mon 08 Jul 2024 18:28:34 +0000
ROA not before: Mon 08 Jul 2024 18:28:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199760
IP address blocks: 185.145.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 18:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:93:9a:ce:3f:d9:51:ea:96:1e:4e:7e:de:e3:f6:3c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1477072b91af5c3f3bfe69743243e7cda3ae879
Validity
Not Before: Jul 8 18:28:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10ff20aa5e8baf92fe4d916c03569f527852a08b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:08:e7:61:9f:1f:50:d9:b7:ae:02:ef:c0:8b:
42:70:3a:96:9a:6e:dc:6e:3d:33:22:18:09:af:1f:
97:b4:8d:0e:5b:4f:6a:46:52:0a:66:ff:be:0b:9e:
75:3f:58:62:ce:bf:e3:39:d3:4d:91:a1:e1:18:68:
ce:cf:22:30:04:5f:4d:a5:6d:80:c2:d1:ea:54:69:
ea:ee:d3:79:13:e6:26:2a:46:bb:4c:13:85:a0:fa:
fd:5a:3c:5a:8b:df:80:21:1a:e1:a9:bc:c7:f1:52:
60:c1:a5:1e:34:76:3d:43:73:ec:bb:98:5a:d6:af:
72:6a:db:89:77:3a:d0:47:eb:20:d1:44:d9:02:bc:
10:25:65:48:ab:0d:36:14:e2:64:4b:e3:68:24:5c:
6d:0e:30:68:7d:fd:85:db:6c:2f:f0:75:c2:60:67:
7d:ef:61:d4:2c:90:14:93:d9:18:37:a1:5e:8f:9a:
34:57:36:5a:77:f8:9f:b2:47:1a:ba:f6:4b:41:43:
7b:ea:6b:7c:0e:81:35:d8:71:c2:f5:ac:0e:c9:1a:
e5:ac:62:d1:c9:e9:5e:5e:ed:7f:57:19:17:65:eb:
24:91:f2:bb:38:e3:7b:ab:32:05:0a:80:cc:6f:ca:
68:7e:8b:8f:ab:43:b2:7f:f4:b4:1c:66:6d:52:7e:
69:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FF:20:AA:5E:8B:AF:92:FE:4D:91:6C:03:56:9F:52:78:52:A0:8B
X509v3 Authority Key Identifier:
keyid:E1:47:70:72:B9:1A:F5:C3:F3:BF:E6:97:43:24:3E:7C:DA:3A:E8:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Udwcrka9cPzv-aXQyQ-fNo66Hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/EP8gql6Lr5L-TZFsA1afUnhSoIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/4Udwcrka9cPzv-aXQyQ-fNo66Hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.235.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:c4:06:76:23:b6:74:21:31:e0:b4:d0:6c:86:0e:4a:3e:04:
36:45:5a:a0:d2:34:48:34:fb:6e:ec:14:cd:e5:22:f8:d4:9f:
b4:29:b5:25:fc:44:f4:b0:32:9f:56:d7:a4:61:06:e7:d8:9b:
a4:e9:23:0c:63:f2:c1:16:af:d5:00:ab:04:c1:67:28:da:4b:
e1:e5:34:99:fa:8a:7c:99:3e:a4:aa:e8:16:b5:2e:6b:d2:65:
3f:2f:dd:ca:12:2b:21:82:b7:b8:b3:0e:6c:cf:49:05:01:7e:
be:28:23:d2:41:79:58:4e:83:33:80:41:5f:eb:87:49:0e:cc:
28:60:e8:2d:20:1c:02:52:0c:2c:a6:97:e6:9c:07:78:e7:75:
49:86:35:8c:c5:6e:8f:60:f2:c9:49:27:ad:8d:f1:2d:61:97:
ed:8d:1e:54:82:a1:00:1b:8e:20:12:c2:0e:54:46:89:28:e7:
fd:41:14:97:a0:11:a3:01:0b:4d:43:eb:14:d1:21:a8:47:8a:
05:b0:b5:ee:a2:a2:b3:4a:e1:56:18:aa:f6:24:d4:1f:44:3e:
8f:3d:34:48:ab:83:e2:4d:22:09:a6:db:ce:be:ee:32:2a:01:
aa:ea:bd:9f:ed:87:9c:23:fd:6c:10:9a:31:05:6a:62:44:c9:
64:da:59:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCTms4/2VHqlh5Oft7j9jzNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxNDc3MDcyYjkxYWY1YzNmM2JmZTY5NzQzMjQzZTdjZGEz
YWU4NzkwHhcNMjQwNzA4MTgyODM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMGZmMjBhYTVlOGJhZjkyZmU0ZDkxNmMwMzU2OWY1Mjc4NTJhMDhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwjnYZ8fUNm3rgLvwItCcDqWmm7c
bj0zIhgJrx+XtI0OW09qRlIKZv++C551P1hizr/jOdNNkaHhGGjOzyIwBF9NpW2A
wtHqVGnq7tN5E+YmKka7TBOFoPr9Wjxai9+AIRrhqbzH8VJgwaUeNHY9Q3Psu5ha
1q9yatuJdzrQR+sg0UTZArwQJWVIqw02FOJkS+NoJFxtDjBoff2F22wv8HXCYGd9
72HULJAUk9kYN6Fej5o0VzZad/ifskcauvZLQUN76mt8DoE12HHC9awOyRrlrGLR
yeleXu1/VxkXZeskkfK7OON7qzIFCoDMb8pofouPq0Oyf/S0HGZtUn5pEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBD/IKpei6+S/k2RbANWn1J4UqCLMB8GA1UdIwQY
MBaAFOFHcHK5GvXD87/ml0MkPnzaOuh5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFVkd2Nya2E5Y1B6di1hWFF5US1mTm82NkhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy83NDk0YmYtOGFjZC00ZTQzLTg2Y2Ut
ZTdjOGNmM2FmNWRlLzEvRVA4Z3FsNkxyNUwtVFpGc0ExYWZVbmhTb0lzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy83NDk0YmYtOGFjZC00ZTQzLTg2Y2UtZTdjOGNmM2FmNWRl
LzEvNFVkd2Nya2E5Y1B6di1hWFF5US1mTm82NkhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZHrMA0G
CSqGSIb3DQEBCwUAA4IBAQCaxAZ2I7Z0ITHgtNBshg5KPgQ2RVqg0jRINPtu7BTN
5SL41J+0KbUl/ET0sDKfVtekYQbn2Juk6SMMY/LBFq/VAKsEwWco2kvh5TSZ+op8
mT6kqugWtS5r0mU/L93KEishgre4sw5sz0kFAX6+KCPSQXlYToMzgEFf64dJDswo
YOgtIBwCUgwsppfmnAd453VJhjWMxW6PYPLJSSetjfEtYZftjR5UgqEAG44gEsIO
VEaJKOf9QRSXoBGjAQtNQ+sU0SGoR4oFsLXuoqKzSuFWGKr2JNQfRD6PPTRIq4Pi
TSIJptvOvu4yKgGq6r2f7YecI/1sEJoxBWpiRMlk2ll8
-----END CERTIFICATE-----
Generated at Thu Jul 11 19:21:51 2024 by rpki-client on console-ams.rpki-client.org