Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/jpdWXM8QOIdXo5CeRnHYH08SSy4.roa
File: jpdWXM8QOIdXo5CeRnHYH08SSy4.roa (raw, json)
Hash identifier: 0ffiFgx8qKYPDa8cPSwRpcG+KsJxI396Uy5SDSc9F34=
Subject key identifier: 8E:97:56:5C:CF:10:38:87:57:A3:90:9E:46:71:D8:1F:4F:12:4B:2E
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 018CC56E01DECD7F0D60DD30692972239762
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/jpdWXM8QOIdXo5CeRnHYH08SSy4.roa
Signing time: Mon 01 Jan 2024 14:29:30 +0000
ROA not before: Mon 01 Jan 2024 14:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41390
IP address blocks: 146.185.233.0/24 maxlen: 24
146.185.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 11:13:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:01:de:cd:7f:0d:60:dd:30:69:29:72:23:97:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 14:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e97565ccf10388757a3909e4671d81f4f124b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:38:45:34:d9:b2:a6:b0:62:bf:10:46:92:93:
bc:e9:e5:1b:38:77:53:39:e8:85:39:66:30:76:27:
1c:be:9e:c3:53:11:ed:7c:de:4e:3d:bb:ce:8e:6c:
4e:c8:cf:5b:6f:f6:af:25:44:bf:0e:67:64:83:0f:
38:6b:6a:a0:a1:fa:d1:59:28:18:6c:1f:fd:9d:9a:
c9:4f:4d:41:7e:5a:98:63:41:38:7a:7f:b0:bc:d3:
fd:2e:da:dd:7b:10:26:37:79:78:56:f0:c9:73:f7:
23:60:bc:82:7a:11:d0:09:5f:d2:9a:65:98:cb:9b:
f2:c8:42:5a:a2:d2:70:f4:e8:90:73:9e:dd:80:ca:
7b:c5:c7:e6:fd:bd:69:e0:1c:4c:0f:2f:9c:83:03:
48:10:d5:32:eb:86:e2:e5:12:15:95:60:80:d5:6a:
9f:0d:37:36:bb:d4:60:f1:9b:e9:b9:90:38:1e:53:
d1:a5:13:9e:7b:ef:b0:41:04:6e:be:d0:9d:1a:8a:
17:d0:bb:54:e8:e3:96:f1:79:e1:16:c7:fd:9d:8a:
cb:4d:84:c5:55:17:98:6b:0d:07:47:3c:c1:c1:26:
47:5d:a7:65:1b:f0:d2:92:04:b6:aa:77:38:1e:89:
5f:d6:24:52:27:cb:6c:ed:60:ff:0b:07:09:ff:98:
10:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:97:56:5C:CF:10:38:87:57:A3:90:9E:46:71:D8:1F:4F:12:4B:2E
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/jpdWXM8QOIdXo5CeRnHYH08SSy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.213.0/24
146.185.233.0/24
Signature Algorithm: sha256WithRSAEncryption
36:e6:4e:ef:f8:1e:a3:9d:0f:b4:5e:7d:f5:b2:39:19:d2:09:
70:6a:72:23:51:67:1e:f4:ae:a9:94:db:4e:53:42:44:a4:5c:
f1:28:2f:d0:ab:47:b6:6e:03:5c:80:cf:da:85:75:7b:a4:12:
dd:c0:64:a9:d2:71:a2:5d:91:1f:37:4d:1d:d0:c8:bc:52:7c:
92:6b:b4:54:c8:0f:98:3a:8b:ae:13:19:2a:05:28:6c:a9:69:
30:7f:24:05:5e:c7:be:2d:7d:45:63:f7:36:ed:22:35:9f:c2:
d3:02:d9:3c:72:43:aa:f7:63:25:14:10:6f:81:cf:8b:8f:6c:
3c:ea:de:41:8b:b1:3c:ba:04:09:16:19:ae:ae:06:63:83:4b:
b0:b5:c0:5d:6d:31:46:ca:c9:63:82:de:1f:2d:78:3b:b7:4c:
0c:72:cc:de:2c:b5:21:08:eb:52:f2:3e:68:0e:04:d0:a5:d3:
8a:e5:77:ea:89:03:d5:3d:d0:b3:cd:fc:a5:74:00:ea:78:57:
44:55:d5:bb:3b:e3:a0:14:64:d0:2e:4b:3b:c6:8e:8b:d1:af:
bd:99:50:e3:50:9c:7a:44:4e:ce:6a:a2:72:60:f9:ae:e0:c1:
cd:c8:9b:ca:76:c7:5a:8d:35:4f:6a:72:72:a7:d2:eb:de:fd:
89:76:4e:13
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzFbgHezX8NYN0waSlyI5diMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl
Y2EwNzEwHhcNMjQwMTAxMTQyOTMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZTk3NTY1Y2NmMTAzODg3NTdhMzkwOWU0NjcxZDgxZjRmMTI0YjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhzhFNNmyprBivxBGkpO86eUbOHdT
OeiFOWYwdiccvp7DUxHtfN5OPbvOjmxOyM9bb/avJUS/Dmdkgw84a2qgofrRWSgY
bB/9nZrJT01BflqYY0E4en+wvNP9LtrdexAmN3l4VvDJc/cjYLyCehHQCV/SmmWY
y5vyyEJaotJw9OiQc57dgMp7xcfm/b1p4BxMDy+cgwNIENUy64bi5RIVlWCA1Wqf
DTc2u9Rg8ZvpuZA4HlPRpROee++wQQRuvtCdGooX0LtU6OOW8XnhFsf9nYrLTYTF
VReYaw0HRzzBwSZHXadlG/DSkgS2qnc4Holf1iRSJ8ts7WD/CwcJ/5gQKwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFI6XVlzPEDiHV6OQnkZx2B9PEksuMB8GA1UdIwQY
MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt
ODlkMDkyNDBjNDNiLzEvanBkV1hNOFFPSWRYbzVDZVJuSFlIMDhTU3k0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi
LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAkrnVAwQA
krnpMA0GCSqGSIb3DQEBCwUAA4IBAQA25k7v+B6jnQ+0Xn31sjkZ0glwanIjUWce
9K6plNtOU0JEpFzxKC/Qq0e2bgNcgM/ahXV7pBLdwGSp0nGiXZEfN00d0Mi8UnyS
a7RUyA+YOouuExkqBShsqWkwfyQFXse+LX1FY/c27SI1n8LTAtk8ckOq92MlFBBv
gc+Lj2w86t5Bi7E8ugQJFhmurgZjg0uwtcBdbTFGysljgt4fLXg7t0wMcszeLLUh
COtS8j5oDgTQpdOK5XfqiQPVPdCzzfyldADqeFdEVdW7O+OgFGTQLks7xo6L0a+9
mVDjUJx6RE7OaqJyYPmu4MHNyJvKdsdajTVPanJyp9Lr3v2Jdk4T
-----END CERTIFICATE-----
Generated at Wed Mar 13 17:00:28 2024 by rpki-client on console-ams.rpki-client.org