Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/jWTrgollmxgnmCKqVVMpj5SURW8.roa
File: jWTrgollmxgnmCKqVVMpj5SURW8.roa (raw, json)
Hash identifier: fGlKdUY3vxh3uIRclGvvNR214zgZ8OqSoiL3sjMX/4Y=
Subject key identifier: 8D:64:EB:82:89:65:9B:18:27:98:22:AA:55:53:29:8F:94:94:45:6F
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 0190F88EC58E59DCAAF2E08B2E5456A9B1F5
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/jWTrgollmxgnmCKqVVMpj5SURW8.roa
Signing time: Sun 28 Jul 2024 08:57:04 +0000
ROA not before: Sun 28 Jul 2024 08:57:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49245
IP address blocks: 185.1.206.0/24 maxlen: 24
2a05:4140:3::/48 maxlen: 48
2a05:4140:11::/48 maxlen: 48
2a05:4140:12::/48 maxlen: 48
2a05:4140:13::/48 maxlen: 48
2a05:4140:14::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 27 Oct 2024 15:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f8:8e:c5:8e:59:dc:aa:f2:e0:8b:2e:54:56:a9:b1:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Jul 28 08:57:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d64eb8289659b18279822aa5553298f9494456f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3d:af:96:13:45:14:3b:d8:8e:c5:fd:32:74:
3c:d8:b3:44:2c:4e:68:12:d5:bf:42:71:7b:79:75:
ec:2e:05:2e:3c:0b:a7:d6:a6:8f:30:a0:2b:31:89:
e3:6a:cb:91:bf:6d:55:eb:4d:2e:62:2f:a5:18:6c:
8a:b4:d8:63:f5:8b:3d:36:c6:f5:2b:56:7d:12:43:
df:1f:5c:89:29:69:49:cb:40:7d:d8:4f:6d:73:e0:
91:37:ed:83:12:1f:e9:ef:1a:8d:2d:bc:1e:c2:ec:
d7:46:98:a6:ac:c2:6b:e7:af:d4:4a:13:ab:cf:a8:
35:67:00:f9:e7:e0:ee:4f:13:7b:d0:79:8b:64:e6:
df:04:bf:ba:99:10:e1:d4:a8:f3:cf:d0:6b:6d:0f:
7e:c9:84:ee:46:60:59:a7:18:87:cb:1c:fd:43:4e:
62:9d:fb:36:28:e1:b4:5f:ae:73:2f:0b:6c:e4:47:
cb:2f:df:4d:a4:89:cb:76:84:43:90:92:a7:e5:fe:
64:ec:a7:73:41:f6:2c:a9:aa:4c:2c:0b:31:1a:05:
84:d3:b1:85:f6:fd:27:0b:87:4f:18:5a:3a:81:bc:
4b:6f:31:05:39:43:5b:79:9a:ea:60:f2:88:22:cc:
2c:5b:c8:a7:56:47:ba:e0:6c:ef:4a:1b:68:93:32:
65:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:64:EB:82:89:65:9B:18:27:98:22:AA:55:53:29:8F:94:94:45:6F
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/jWTrgollmxgnmCKqVVMpj5SURW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.206.0/24
IPv6:
2a05:4140:3::/48
2a05:4140:11::-2a05:4140:14:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
62:c4:49:fd:c9:cc:7d:28:fd:bd:07:fa:bc:60:22:ca:c9:26:
cf:ff:4d:89:2a:f6:60:ac:c1:8a:6f:19:48:6f:f1:75:31:65:
a5:ef:9f:ce:69:5e:c2:f9:96:30:1d:e7:d4:8f:e5:b7:9a:4d:
a2:e5:81:70:29:2f:54:98:33:3d:01:d3:93:3e:a7:33:b6:96:
e3:ec:3f:17:bd:97:84:19:dc:0b:3a:be:3c:ef:e7:16:a3:49:
a5:d9:4e:3d:6c:68:2b:6c:91:0f:e6:e7:0d:53:54:ac:7b:d2:
da:37:20:a6:da:fe:86:ad:0e:ab:e9:03:45:87:cd:83:65:47:
4b:6d:9b:70:4e:c0:04:bf:a1:9e:d2:4d:17:0a:d4:7d:13:ce:
84:1f:b2:ff:58:48:7a:c3:6b:a8:25:a6:9d:0d:7f:a0:bf:9e:
2e:72:5c:2b:72:96:d8:e5:2a:09:ec:b1:bc:b7:09:3c:24:e4:
b6:37:80:60:63:54:73:2c:de:20:e9:29:32:7d:41:c7:e4:af:
ac:92:01:1e:17:56:d5:f7:a4:d4:32:ed:fe:05:5f:27:42:99:
c4:f4:9c:f4:c0:16:50:6f:72:f8:8d:0a:c9:ca:3b:78:75:46:
a7:7e:ec:38:22:f3:31:f8:db:ed:d7:6d:65:2e:5c:42:57:0a:
f4:67:25:71
-----BEGIN CERTIFICATE-----
MIIFIjCCBAqgAwIBAgISAZD4jsWOWdyq8uCLLlRWqbH1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NGM2MGFkZWIwY2Q1NzY4Y2Y3NTZmNTYyYjFiNWNjNWI5
YzE4MGEwHhcNMjQwNzI4MDg1NzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDY0ZWI4Mjg5NjU5YjE4Mjc5ODIyYWE1NTUzMjk4Zjk0OTQ0NTZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlz2vlhNFFDvYjsX9MnQ82LNELE5o
EtW/QnF7eXXsLgUuPAun1qaPMKArMYnjasuRv21V600uYi+lGGyKtNhj9Ys9Nsb1
K1Z9EkPfH1yJKWlJy0B92E9tc+CRN+2DEh/p7xqNLbwewuzXRpimrMJr56/UShOr
z6g1ZwD55+DuTxN70HmLZObfBL+6mRDh1Kjzz9BrbQ9+yYTuRmBZpxiHyxz9Q05i
nfs2KOG0X65zLwts5EfLL99NpInLdoRDkJKn5f5k7KdzQfYsqapMLAsxGgWE07GF
9v0nC4dPGFo6gbxLbzEFOUNbeZrqYPKIIswsW8inVke64GzvShtokzJl/QIDAQAB
o4ICLjCCAiowHQYDVR0OBBYEFI1k64KJZZsYJ5giqlVTKY+UlEVvMB8GA1UdIwQY
MBaAFMdMYK3rDNV2jPdW9WKxtcxbnBgKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMt
ODg1ZTg0ZTc1MTJlLzEvaldUcmdvbGxteGdubUNLcVZWTXBqNVNVUlc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMtODg1ZTg0ZTc1MTJl
LzEveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEQGCCsGAQUFBwEHAQH/BDUwMzAMBAIAATAGAwQAuQHOMCME
AgACMB0DBwAqBUFAAAMwEgMHACoFQUAAEQMHACoFQUAAFDANBgkqhkiG9w0BAQsF
AAOCAQEAYsRJ/cnMfSj9vQf6vGAiyskmz/9NiSr2YKzBim8ZSG/xdTFlpe+fzmle
wvmWMB3n1I/lt5pNouWBcCkvVJgzPQHTkz6nM7aW4+w/F72XhBncCzq+PO/nFqNJ
pdlOPWxoK2yRD+bnDVNUrHvS2jcgptr+hq0Oq+kDRYfNg2VHS22bcE7ABL+hntJN
FwrUfRPOhB+y/1hIesNrqCWmnQ1/oL+eLnJcK3KW2OUqCeyxvLcJPCTktjeAYGNU
cyzeIOkpMn1Bx+SvrJIBHhdW1fek1DLt/gVfJ0KZxPSc9MAWUG9y+I0Kyco7eHVG
p37sOCLzMfjb7ddtZS5cQlcK9GclcQ==
-----END CERTIFICATE-----
Generated at Sun Oct 27 19:49:06 2024 by rpki-client on console-ams.rpki-client.org