Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/R-2QGcBf-c6SxiyKoajEFEun20s.roa
File: R-2QGcBf-c6SxiyKoajEFEun20s.roa (raw, json)
Hash identifier: Jsm8PFoyAvc64jQ4VJ6QXGnbO2pxV7m74b2H8tl6/mk=
Subject key identifier: 47:ED:90:19:C0:5F:F9:CE:92:C6:2C:8A:A1:A8:C4:14:4B:A7:DB:4B
Certificate issuer: /CN=5e0ff8aaf7453114147028d54ae1c693a8a147bc
Certificate serial: 018CBBC105C09937A4295857E27C159C50BD
Authority key identifier: 5E:0F:F8:AA:F7:45:31:14:14:70:28:D5:4A:E1:C6:93:A8:A1:47:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xg_4qvdFMRQUcCjVSuHGk6ihR7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/R-2QGcBf-c6SxiyKoajEFEun20s.roa
Signing time: Sat 30 Dec 2023 17:23:58 +0000
ROA not before: Sat 30 Dec 2023 17:23:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212165
IP address blocks: 185.224.212.0/24 maxlen: 24
2a12:92c0::/29 maxlen: 29
2a10:9680::/29 maxlen: 29
2a11:e140::/29 maxlen: 29
2a12:6c40::/29 maxlen: 29
2a12:7f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bb:c1:05:c0:99:37:a4:29:58:57:e2:7c:15:9c:50:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e0ff8aaf7453114147028d54ae1c693a8a147bc
Validity
Not Before: Dec 30 17:23:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47ed9019c05ff9ce92c62c8aa1a8c4144ba7db4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:70:db:20:8f:b8:b8:b3:1b:f9:3a:2e:bc:37:
b8:32:2c:32:7d:0d:27:af:62:0c:bc:22:36:26:d4:
c4:4b:77:7e:12:f5:54:55:50:24:9f:88:e6:5b:f7:
08:ad:0f:51:27:76:bb:e5:e8:c7:a3:7b:a1:34:7f:
9b:c6:e2:c3:18:3c:8e:e6:57:4d:51:44:02:72:c5:
83:85:68:9a:7e:84:9a:57:26:29:8b:2e:13:ac:cb:
92:f7:d0:1c:e1:ae:2b:00:1e:c2:9c:c3:b2:e8:0d:
78:97:8a:0b:92:0c:04:6f:64:2b:89:d3:26:0e:8c:
7f:26:77:30:52:6a:31:b6:57:47:c5:d8:36:0a:1e:
c3:df:18:23:c8:de:77:c7:b8:51:84:50:6e:d6:0a:
5e:55:b8:fd:94:43:6e:f6:cd:c2:3f:56:ca:01:cd:
c2:84:b1:d6:bf:6f:fa:30:7b:f8:77:2c:aa:c3:e5:
12:06:fe:df:52:94:6b:62:63:48:68:48:a9:1f:3b:
5a:c7:1a:58:7f:31:9a:e7:fd:b7:be:d6:2d:68:a7:
da:e1:08:82:91:7b:31:3e:06:1a:95:21:05:a5:4f:
4e:a0:4a:c8:f3:99:d7:8d:86:a7:9c:3f:b9:78:fb:
be:af:0e:ac:26:3d:fc:f5:35:7f:9e:78:42:1e:2a:
e0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:ED:90:19:C0:5F:F9:CE:92:C6:2C:8A:A1:A8:C4:14:4B:A7:DB:4B
X509v3 Authority Key Identifier:
keyid:5E:0F:F8:AA:F7:45:31:14:14:70:28:D5:4A:E1:C6:93:A8:A1:47:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xg_4qvdFMRQUcCjVSuHGk6ihR7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/R-2QGcBf-c6SxiyKoajEFEun20s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dd6e1d-abc9-473b-a91a-d8721375644a/1/Xg_4qvdFMRQUcCjVSuHGk6ihR7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.212.0/24
IPv6:
2a10:9680::/29
2a11:e140::/29
2a12:6c40::/29
2a12:7f40::/29
2a12:92c0::/29
Signature Algorithm: sha256WithRSAEncryption
61:a0:24:b3:37:e5:45:21:e7:35:e7:d6:00:af:04:67:23:c4:
05:b0:41:81:0b:c4:5a:f2:fd:bb:22:49:9d:51:88:e9:5b:c9:
4a:98:47:9a:f1:c2:1d:f7:9f:26:95:42:39:2e:bf:97:8f:ec:
c5:89:c8:5f:f2:e0:a6:c7:3d:68:d1:53:ba:51:07:aa:89:66:
61:b0:6e:a1:17:bb:74:a4:c3:10:67:c3:9d:09:04:01:1c:ab:
3a:1d:39:eb:b9:15:89:2d:f1:22:ce:43:88:e5:fa:9c:f6:af:
f2:b2:ef:de:db:27:74:44:06:05:fa:b3:cf:06:ef:ac:43:60:
cd:04:4b:e7:0a:b3:2b:89:31:f1:2f:1b:49:2e:ed:fe:a7:ba:
ec:b5:16:67:fd:57:2c:34:1b:a9:4a:70:37:d4:be:20:be:78:
66:69:13:2c:79:7a:47:43:87:73:6a:a6:e8:0a:4b:41:f4:df:
6f:3e:bc:c8:9c:70:ab:d3:ec:54:28:44:30:88:d4:c7:41:90:
7f:35:c2:23:86:51:1e:1e:fd:9f:05:a2:a2:65:1b:6a:44:2f:
ed:e5:d9:20:9f:52:1f:77:60:01:6c:d4:2d:1c:8e:88:c9:7a:
17:12:1c:7c:83:a0:d7:6a:de:bc:40:ca:2a:7b:62:e7:24:82:
71:2f:bf:d9
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgISAYy7wQXAmTekKVhX4nwVnFC9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlMGZmOGFhZjc0NTMxMTQxNDcwMjhkNTRhZTFjNjkzYThh
MTQ3YmMwHhcNMjMxMjMwMTcyMzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0N2VkOTAxOWMwNWZmOWNlOTJjNjJjOGFhMWE4YzQxNDRiYTdkYjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAknDbII+4uLMb+TouvDe4MiwyfQ0n
r2IMvCI2JtTES3d+EvVUVVAkn4jmW/cIrQ9RJ3a75ejHo3uhNH+bxuLDGDyO5ldN
UUQCcsWDhWiafoSaVyYpiy4TrMuS99Ac4a4rAB7CnMOy6A14l4oLkgwEb2QridMm
Dox/JncwUmoxtldHxdg2Ch7D3xgjyN53x7hRhFBu1gpeVbj9lENu9s3CP1bKAc3C
hLHWv2/6MHv4dyyqw+USBv7fUpRrYmNIaEipHztaxxpYfzGa5/23vtYtaKfa4QiC
kXsxPgYalSEFpU9OoErI85nXjYannD+5ePu+rw6sJj389TV/nnhCHirgKQIDAQAB
o4ICNDCCAjAwHQYDVR0OBBYEFEftkBnAX/nOksYsiqGoxBRLp9tLMB8GA1UdIwQY
MBaAFF4P+Kr3RTEUFHAo1UrhxpOooUe8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGdfNHF2ZEZNUlFVY0NqVlN1SEdrNmloUjd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kZDZlMWQtYWJjOS00NzNiLWE5MWEt
ZDg3MjEzNzU2NDRhLzEvUi0yUUdjQmYtYzZTeGl5S29hakVGRXVuMjBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9kZDZlMWQtYWJjOS00NzNiLWE5MWEtZDg3MjEzNzU2NDRh
LzEvWGdfNHF2ZEZNUlFVY0NqVlN1SEdrNmloUjd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTAMBAIAATAGAwQAueDUMCkE
AgACMCMDBQMqEJaAAwUDKhHhQAMFAyoSbEADBQMqEn9AAwUDKhKSwDANBgkqhkiG
9w0BAQsFAAOCAQEAYaAkszflRSHnNefWAK8EZyPEBbBBgQvEWvL9uyJJnVGI6VvJ
SphHmvHCHfefJpVCOS6/l4/sxYnIX/Lgpsc9aNFTulEHqolmYbBuoRe7dKTDEGfD
nQkEARyrOh0567kViS3xIs5DiOX6nPav8rLv3tsndEQGBfqzzwbvrENgzQRL5wqz
K4kx8S8bSS7t/qe67LUWZ/1XLDQbqUpwN9S+IL54ZmkTLHl6R0OHc2qm6ApLQfTf
bz68yJxwq9PsVChEMIjUx0GQfzXCI4ZRHh79nwWiomUbakQv7eXZIJ9SH3dgAWzU
LRyOiMl6FxIcfIOg12revEDKKnti5ySCcS+/2Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:58 2024 by rpki-client on console-ams.rpki-client.org