Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/2e0IfE0Xmhnp9Wxqr287yhKFaHw.roa
File: 2e0IfE0Xmhnp9Wxqr287yhKFaHw.roa (raw, json)
Hash identifier: NEYG7yN3q5kDTTxsUoYed7EXf7Be2/xj2DGuGS8cQUo=
Subject key identifier: D9:ED:08:7C:4D:17:9A:19:E9:F5:6C:6A:AF:6F:3B:CA:12:85:68:7C
Certificate issuer: /CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Certificate serial: 018B82003ECB28676EA9D18E9EF6E678A444
Authority key identifier: AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/2e0IfE0Xmhnp9Wxqr287yhKFaHw.roa
Signing time: Mon 30 Oct 2023 19:12:15 +0000
ROA not before: Mon 30 Oct 2023 19:12:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216066
IP address blocks: 185.187.101.0/24 maxlen: 24
2a0a:47c0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:82:00:3e:cb:28:67:6e:a9:d1:8e:9e:f6:e6:78:a4:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Validity
Not Before: Oct 30 19:12:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9ed087c4d179a19e9f56c6aaf6f3bca1285687c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5b:30:ba:e4:10:4f:c7:19:6e:ff:43:c1:48:
19:2d:5d:fe:60:49:ed:df:2a:6a:8b:06:fb:f5:7a:
a7:ff:45:9e:00:6c:59:5d:a1:39:6d:44:c3:95:e0:
41:b2:43:ad:cd:12:31:36:25:b3:bf:44:72:b9:f8:
8d:60:7c:f9:42:9a:1f:b7:f3:d2:a3:b9:b1:bd:d3:
ec:36:02:b9:49:5e:8c:4f:43:30:e0:35:15:04:34:
62:63:e0:2e:3d:45:9e:73:e3:1c:9a:77:dd:bc:e6:
52:7e:91:13:48:0a:98:a2:2d:20:0d:50:96:cd:5a:
76:46:89:2d:79:dc:e8:89:70:d9:4e:ff:c6:25:7f:
fc:96:32:9b:f4:6c:ab:01:71:10:a6:ff:d1:9e:0e:
8a:ab:3b:29:de:4a:6a:98:12:fe:bf:2d:7b:1b:cc:
79:fd:f1:9a:b3:bd:44:70:da:1b:b9:25:ab:64:ad:
d9:b5:a8:3e:f4:60:fb:81:a7:48:9d:36:69:7c:0e:
37:23:a3:d1:82:09:48:c0:09:e8:84:4b:ad:6d:7f:
7c:5a:ca:9b:20:58:cb:4c:b1:20:c4:ce:90:e6:8d:
0e:f5:0e:b8:59:8a:c2:01:bb:9a:90:b0:e1:c5:d5:
0e:1a:a0:8c:19:c6:cb:93:57:87:bf:2e:e7:a6:4c:
f0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:ED:08:7C:4D:17:9A:19:E9:F5:6C:6A:AF:6F:3B:CA:12:85:68:7C
X509v3 Authority Key Identifier:
keyid:AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/2e0IfE0Xmhnp9Wxqr287yhKFaHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/q5-ExqSNXG3-ZBSYc7FI0RILAJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.101.0/24
IPv6:
2a0a:47c0::/29
Signature Algorithm: sha256WithRSAEncryption
36:e9:67:d3:15:f0:5c:75:9c:39:2a:15:89:93:da:3a:0f:ad:
e3:7b:a8:f9:5a:74:0a:f1:c1:1e:62:6d:d3:95:f0:db:a5:d5:
ab:e3:41:36:56:32:94:60:1d:12:f8:44:db:a4:bf:ac:db:07:
65:44:c0:92:87:27:cf:5c:43:03:74:22:8c:aa:70:c0:2d:9f:
9d:9f:d0:e6:b1:91:3b:67:5a:cf:36:58:79:06:b1:5f:58:66:
9f:7a:51:26:e9:59:6c:e5:22:82:17:74:56:2f:b8:f0:0f:47:
7d:d5:50:c2:34:6f:b2:97:a8:6a:0c:26:a3:54:0f:85:41:71:
e7:2b:1f:70:a5:98:04:55:fd:c9:5e:ff:ca:46:73:78:ed:ce:
18:cb:1a:5a:52:fc:d1:22:e8:05:5d:67:b0:78:4a:5b:50:b1:
70:a3:d9:43:d1:03:ab:eb:ae:df:8a:b7:17:e3:94:6e:51:c9:
14:9b:00:16:04:0c:c3:41:63:3e:f7:72:98:4a:86:63:e4:1f:
e7:e3:59:0e:88:81:91:27:51:b6:37:01:a2:6b:75:67:a9:81:
49:80:a8:4a:8d:30:c1:ae:f2:cc:6a:0d:9b:51:ed:aa:38:65:
bf:b1:5e:dc:c9:b4:9a:b4:8c:da:56:54:a3:ab:1b:3b:17:82:
11:f7:41:01
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYuCAD7LKGduqdGOnvbmeKREMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiOWY4NGM2YTQ4ZDVjNmRmZTY0MTQ5ODczYjE0OGQxMTIw
YjAwOWIwHhcNMjMxMDMwMTkxMjE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOWVkMDg3YzRkMTc5YTE5ZTlmNTZjNmFhZjZmM2JjYTEyODU2ODdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFswuuQQT8cZbv9DwUgZLV3+YEnt
3ypqiwb79Xqn/0WeAGxZXaE5bUTDleBBskOtzRIxNiWzv0RyufiNYHz5Qpoft/PS
o7mxvdPsNgK5SV6MT0Mw4DUVBDRiY+AuPUWec+McmnfdvOZSfpETSAqYoi0gDVCW
zVp2RoktedzoiXDZTv/GJX/8ljKb9GyrAXEQpv/Rng6Kqzsp3kpqmBL+vy17G8x5
/fGas71EcNobuSWrZK3Ztag+9GD7gadInTZpfA43I6PRgglIwAnohEutbX98Wsqb
IFjLTLEgxM6Q5o0O9Q64WYrCAbuakLDhxdUOGqCMGcbLk1eHvy7npkzw+wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFNntCHxNF5oZ6fVsaq9vO8oShWh8MB8GA1UdIwQY
MBaAFKufhMakjVxt/mQUmHOxSNESCwCbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTUtRXhxU05YRzMtWkJTWWM3RkkwUklMQUpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8zNjE3N2YtN2NkOC00YmQzLTg2ODkt
MjEzZDY0YmVmZjcxLzEvMmUwSWZFMFhtaG5wOVd4cXIyODd5aEtGYUh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS8zNjE3N2YtN2NkOC00YmQzLTg2ODktMjEzZDY0YmVmZjcx
LzEvcTUtRXhxU05YRzMtWkJTWWM3RkkwUklMQUpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAubtlMA0E
AgACMAcDBQMqCkfAMA0GCSqGSIb3DQEBCwUAA4IBAQA26WfTFfBcdZw5KhWJk9o6
D63je6j5WnQK8cEeYm3TlfDbpdWr40E2VjKUYB0S+ETbpL+s2wdlRMCShyfPXEMD
dCKMqnDALZ+dn9DmsZE7Z1rPNlh5BrFfWGafelEm6Vls5SKCF3RWL7jwD0d91VDC
NG+yl6hqDCajVA+FQXHnKx9wpZgEVf3JXv/KRnN47c4YyxpaUvzRIugFXWeweEpb
ULFwo9lD0QOr667fircX45RuUckUmwAWBAzDQWM+93KYSoZj5B/n41kOiIGRJ1G2
NwGia3VnqYFJgKhKjTDBrvLMag2bUe2qOGW/sV7cybSatIzaVlSjqxs7F4IR90EB
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:30 2024 by rpki-client on console-ams.rpki-client.org