Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d6a422-3612-45af-83ab-d24b68966e0e/1/LRtxKRd750gKWFsn6Mh8sL8lOCM.roa
File: LRtxKRd750gKWFsn6Mh8sL8lOCM.roa (raw, json)
Hash identifier: wFoXOz6QPXwRHxa6t4Xz48Xx7aaW4CFZbyrHrnxeqZM=
Subject key identifier: 2D:1B:71:29:17:7B:E7:48:0A:58:5B:27:E8:C8:7C:B0:BF:25:38:23
Certificate issuer: /CN=a15e3f974b5f974656ccf4d45596caad1b9096d4
Certificate serial: 01859D9E0CA1C42E5B955BDA113B228C9062
Authority key identifier: A1:5E:3F:97:4B:5F:97:46:56:CC:F4:D4:55:96:CA:AD:1B:90:96:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV4_l0tfl0ZWzPTUVZbKrRuQltQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d6a422-3612-45af-83ab-d24b68966e0e/1/LRtxKRd750gKWFsn6Mh8sL8lOCM.roa
Signing time: Tue 10 Jan 2023 21:37:38 +0000
ROA not before: Tue 10 Jan 2023 21:37:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34549
IP address blocks: 185.220.149.0/24 maxlen: 24
2a0b:f841::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9d:9e:0c:a1:c4:2e:5b:95:5b:da:11:3b:22:8c:90:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15e3f974b5f974656ccf4d45596caad1b9096d4
Validity
Not Before: Jan 10 21:37:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d1b7129177be7480a585b27e8c87cb0bf253823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:72:8c:ba:55:98:7c:b2:c3:0b:00:aa:6c:0d:
58:d3:2e:03:e9:d1:22:29:98:6e:c7:1f:7d:25:4c:
a5:ac:3f:7c:24:6f:1c:63:48:44:32:74:df:db:1b:
3e:c8:72:59:83:5f:d2:08:c1:0d:02:ea:5a:67:38:
e0:a9:da:14:07:ae:03:66:e7:54:78:45:4d:35:43:
1c:e4:9a:f2:36:15:0d:cd:ed:1b:a8:ee:57:7a:19:
a4:d0:63:69:c3:8f:54:13:df:53:2c:f4:10:fd:71:
1b:47:11:b9:af:0e:5d:e6:a6:82:86:0a:90:ef:3d:
67:89:cb:b8:d7:9b:a4:54:12:5a:81:73:e8:74:95:
49:32:06:fa:aa:fd:5c:e8:b2:6e:83:8e:b5:23:ea:
b0:3d:22:d1:2e:28:d7:c1:ed:ca:54:56:e7:da:7f:
3c:98:12:78:fe:d9:7f:89:d3:77:66:ca:a9:ea:fb:
43:d4:ed:2b:7a:ed:1c:d3:1f:22:c4:f4:2a:05:dd:
91:60:4b:b4:ad:93:f1:d7:32:7a:96:7c:e0:fa:5f:
dc:b5:f8:1c:cf:e8:a1:4c:ef:91:7e:f2:cb:a5:5b:
4b:a4:3e:31:83:b6:67:19:07:51:bc:ff:82:da:91:
48:30:00:50:00:63:99:08:c5:01:84:b8:59:5e:ef:
9d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1B:71:29:17:7B:E7:48:0A:58:5B:27:E8:C8:7C:B0:BF:25:38:23
X509v3 Authority Key Identifier:
keyid:A1:5E:3F:97:4B:5F:97:46:56:CC:F4:D4:55:96:CA:AD:1B:90:96:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV4_l0tfl0ZWzPTUVZbKrRuQltQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d6a422-3612-45af-83ab-d24b68966e0e/1/LRtxKRd750gKWFsn6Mh8sL8lOCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d6a422-3612-45af-83ab-d24b68966e0e/1/oV4_l0tfl0ZWzPTUVZbKrRuQltQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.149.0/24
IPv6:
2a0b:f841::/32
Signature Algorithm: sha256WithRSAEncryption
cc:2e:7d:3f:c4:44:f3:65:e6:fd:94:16:b5:89:b5:ec:a2:b0:
39:c7:c8:d3:f3:1c:da:c4:53:d5:e0:ad:77:ae:6b:13:db:83:
3d:8a:fe:b3:6c:75:7a:bd:2d:e3:3e:2c:32:f6:48:3a:5a:f5:
6a:fe:bd:ef:16:3e:04:d8:f4:8e:9c:61:1a:f7:17:59:90:06:
6e:2f:dc:63:e2:56:af:30:09:13:29:5a:49:27:fd:ee:36:fe:
ae:44:77:05:e3:f7:d1:30:bc:27:f1:2f:23:7b:46:3a:9f:cc:
cd:bb:26:b7:d2:6c:e8:91:9c:19:39:9a:c1:b9:ba:f3:a4:17:
4b:b5:7a:d2:37:e5:d5:cb:93:1d:4f:0c:b9:1a:c9:ea:b1:80:
dd:e7:1b:08:16:38:e2:76:6d:41:d6:5e:bc:c3:b7:84:5f:d0:
9e:3f:a9:ad:69:24:3b:8c:5c:99:63:c0:cf:1c:93:3f:d3:c0:
1e:d9:97:61:28:ac:fd:bd:c7:b8:f3:91:79:e1:60:b6:c6:b9:
5e:04:46:9c:b1:d1:ef:1d:33:1d:16:68:aa:eb:2f:67:21:9e:
02:15:86:fa:33:cf:0d:28:8c:f5:f7:e2:85:cb:d3:84:94:94:
7c:bb:e1:e3:6a:53:eb:3f:8e:55:69:02:df:fe:53:44:37:e5:
9c:d4:03:88
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYWdngyhxC5blVvaETsijJBiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNWUzZjk3NGI1Zjk3NDY1NmNjZjRkNDU1OTZjYWFkMWI5
MDk2ZDQwHhcNMjMwMTEwMjEzNzM4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDFiNzEyOTE3N2JlNzQ4MGE1ODViMjdlOGM4N2NiMGJmMjUzODIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlnKMulWYfLLDCwCqbA1Y0y4D6dEi
KZhuxx99JUylrD98JG8cY0hEMnTf2xs+yHJZg1/SCMENAupaZzjgqdoUB64DZudU
eEVNNUMc5JryNhUNze0bqO5Xehmk0GNpw49UE99TLPQQ/XEbRxG5rw5d5qaChgqQ
7z1nicu415ukVBJagXPodJVJMgb6qv1c6LJug461I+qwPSLRLijXwe3KVFbn2n88
mBJ4/tl/idN3Zsqp6vtD1O0reu0c0x8ixPQqBd2RYEu0rZPx1zJ6lnzg+l/ctfgc
z+ihTO+RfvLLpVtLpD4xg7ZnGQdRvP+C2pFIMABQAGOZCMUBhLhZXu+d4wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFC0bcSkXe+dIClhbJ+jIfLC/JTgjMB8GA1UdIwQY
MBaAFKFeP5dLX5dGVsz01FWWyq0bkJbUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1Y0X2wwdGZsMFpXelBUVVZaYktyUnVRbHRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9kNmE0MjItMzYxMi00NWFmLTgzYWIt
ZDI0YjY4OTY2ZTBlLzEvTFJ0eEtSZDc1MGdLV0ZzbjZNaDhzTDhsT0NNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9kNmE0MjItMzYxMi00NWFmLTgzYWItZDI0YjY4OTY2ZTBl
LzEvb1Y0X2wwdGZsMFpXelBUVVZaYktyUnVRbHRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAudyVMA0E
AgACMAcDBQAqC/hBMA0GCSqGSIb3DQEBCwUAA4IBAQDMLn0/xETzZeb9lBa1ibXs
orA5x8jT8xzaxFPV4K13rmsT24M9iv6zbHV6vS3jPiwy9kg6WvVq/r3vFj4E2PSO
nGEa9xdZkAZuL9xj4lavMAkTKVpJJ/3uNv6uRHcF4/fRMLwn8S8je0Y6n8zNuya3
0mzokZwZOZrBubrzpBdLtXrSN+XVy5MdTwy5GsnqsYDd5xsIFjjidm1B1l68w7eE
X9CeP6mtaSQ7jFyZY8DPHJM/08Ae2ZdhKKz9vce485F54WC2xrleBEacsdHvHTMd
Fmiq6y9nIZ4CFYb6M88NKIz19+KFy9OElJR8u+HjalPrP45VaQLf/lNEN+Wc1AOI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:37 2024 by rpki-client on console-fra.rpki-client.org