Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/kIgnmXdRC1oXCjLaJN1ScZW9oNg.roa
File: kIgnmXdRC1oXCjLaJN1ScZW9oNg.roa (raw, json)
Hash identifier: rAfBA2D7ZZyqf/+6COjTT4bvyu9GhlOVfjvnTigv5bc=
Subject key identifier: 90:88:27:99:77:51:0B:5A:17:0A:32:DA:24:DD:52:71:95:BD:A0:D8
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018A791D8533D2BD95958B5A10547BF4241A
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/kIgnmXdRC1oXCjLaJN1ScZW9oNg.roa
Signing time: Sat 09 Sep 2023 08:44:52 +0000
ROA not before: Sat 09 Sep 2023 08:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 185.212.174.0/24 maxlen: 24
185.161.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:79:1d:85:33:d2:bd:95:95:8b:5a:10:54:7b:f4:24:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Sep 9 08:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9088279977510b5a170a32da24dd527195bda0d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1c:7c:89:d8:ca:13:14:d7:e2:04:cf:cf:3e:
40:b9:91:40:36:2b:8d:7a:32:ba:c4:68:da:2d:82:
d1:1e:ba:a9:e9:7b:7d:20:90:69:72:df:7c:57:30:
42:1e:57:74:5d:fd:6a:5a:a8:d8:e6:8b:7e:71:4e:
10:1b:0a:6a:03:9b:39:f6:7d:c3:a0:c4:91:e2:17:
14:cc:60:55:40:3d:98:55:50:29:fb:aa:70:04:f6:
c9:dd:7b:5a:fb:2d:6d:60:26:25:27:bf:20:fd:7d:
7b:1d:86:c8:2f:b7:b7:22:ec:5b:1e:51:ef:fd:e8:
7d:08:98:64:a5:37:2d:85:02:5e:a5:c3:e4:8c:11:
f2:d2:34:fc:e5:a6:28:00:8d:c7:d4:93:62:01:19:
ab:92:27:22:09:c2:34:53:1d:5b:f1:6a:a3:79:6c:
5c:de:a5:e2:97:49:73:44:ec:4d:a6:00:2b:db:af:
8d:84:79:73:ba:77:f2:29:69:dc:ab:d0:b1:94:57:
69:7a:29:08:8d:20:de:cc:06:4b:95:27:b7:0e:fe:
d3:1c:ae:2f:88:5c:b2:e1:90:51:68:90:4e:92:7a:
a5:e7:4b:9d:1a:45:10:e2:1d:0b:cd:7a:77:6f:dc:
fb:e0:81:02:21:40:f1:bc:a9:f9:4b:ea:1f:bd:93:
45:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:88:27:99:77:51:0B:5A:17:0A:32:DA:24:DD:52:71:95:BD:A0:D8
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/kIgnmXdRC1oXCjLaJN1ScZW9oNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.111.0/24
185.212.174.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:68:98:29:55:7a:f8:ba:21:97:7d:af:eb:ba:d2:c4:ce:a9:
38:22:12:1c:39:88:ab:71:9e:09:94:f7:a9:2b:46:56:99:4c:
c1:96:21:6b:54:45:84:cc:fe:50:4b:37:0e:04:47:44:5a:8a:
1c:ca:1c:9c:92:aa:82:d4:9e:95:98:1d:58:7f:c2:38:e0:b1:
2d:83:e5:ff:76:ff:e7:e2:ed:ce:10:3c:29:f7:23:9b:88:84:
37:a5:e0:4d:be:66:cc:39:4e:02:e6:90:73:2c:cc:bf:19:cc:
51:50:23:ca:d7:90:c8:d2:5a:00:fd:df:3f:ed:23:2d:74:18:
a2:e4:09:d9:55:5a:8d:7e:ea:64:77:49:63:94:a8:9b:9c:84:
16:53:13:76:9c:61:f5:a3:9b:11:af:b2:bd:fe:48:2a:18:ce:
a2:d2:7c:ca:5a:cc:ab:0d:e0:2d:23:86:37:e4:c4:e4:09:7c:
2a:d6:fe:61:b6:17:b4:55:fd:a6:eb:c8:3b:a7:62:87:ef:6c:
e3:92:20:eb:d3:a4:c2:19:e1:b6:8b:a1:ce:24:dd:d1:c4:81:
f2:2b:0c:b9:35:0e:ad:c9:c5:78:72:e1:15:60:fd:11:e2:d4:
2e:c7:40:e8:30:31:3a:03:39:ce:6e:9f:e9:85:0a:12:47:b1:
6e:ad:67:6f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYp5HYUz0r2VlYtaEFR79CQaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzMjRkZWZiYWFkZTkzZTk5OGUxM2E5NDIwMjlkZDU5M2I4
YjJlYTMwHhcNMjMwOTA5MDg0NDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDg4Mjc5OTc3NTEwYjVhMTcwYTMyZGEyNGRkNTI3MTk1YmRhMGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRx8idjKExTX4gTPzz5AuZFANiuN
ejK6xGjaLYLRHrqp6Xt9IJBpct98VzBCHld0Xf1qWqjY5ot+cU4QGwpqA5s59n3D
oMSR4hcUzGBVQD2YVVAp+6pwBPbJ3Xta+y1tYCYlJ78g/X17HYbIL7e3IuxbHlHv
/eh9CJhkpTcthQJepcPkjBHy0jT85aYoAI3H1JNiARmrkiciCcI0Ux1b8WqjeWxc
3qXil0lzROxNpgAr26+NhHlzunfyKWncq9CxlFdpeikIjSDezAZLlSe3Dv7THK4v
iFyy4ZBRaJBOknql50udGkUQ4h0LzXp3b9z74IECIUDxvKn5S+ofvZNFCwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJCIJ5l3UQtaFwoy2iTdUnGVvaDYMB8GA1UdIwQY
MBaAFFMk3vuq3pPpmOE6lCAp3Vk7iy6jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXlUZS02cmVrLW1ZNFRxVUlDbmRXVHVMTHFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yOTRlODQtY2ZjNS00NWE0LWE1Y2Qt
MzNiNzQ1OTk3NWUwLzEva0lnbm1YZFJDMW9YQ2pMYUpOMVNjWlc5b05nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8yOTRlODQtY2ZjNS00NWE0LWE1Y2QtMzNiNzQ1OTk3NWUw
LzEvVXlUZS02cmVrLW1ZNFRxVUlDbmRXVHVMTHFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuaFvAwQA
udSuMA0GCSqGSIb3DQEBCwUAA4IBAQAqaJgpVXr4uiGXfa/rutLEzqk4IhIcOYir
cZ4JlPepK0ZWmUzBliFrVEWEzP5QSzcOBEdEWoocyhyckqqC1J6VmB1Yf8I44LEt
g+X/dv/n4u3OEDwp9yObiIQ3peBNvmbMOU4C5pBzLMy/GcxRUCPK15DI0loA/d8/
7SMtdBii5AnZVVqNfupkd0ljlKibnIQWUxN2nGH1o5sRr7K9/kgqGM6i0nzKWsyr
DeAtI4Y35MTkCXwq1v5hthe0Vf2m68g7p2KH72zjkiDr06TCGeG2i6HOJN3RxIHy
Kwy5NQ6tycV4cuEVYP0R4tQux0DoMDE6AznObp/phQoSR7FurWdv
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org