Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/X3377BQdFZpFe9H6cJ2DSz4hxFw.roa
File: X3377BQdFZpFe9H6cJ2DSz4hxFw.roa (raw, json)
Hash identifier: P50H5bZmHRw1zj60/4PGXBNvLQFQqitVzVefz+vUMXc=
Subject key identifier: 5F:7D:FB:EC:14:1D:15:9A:45:7B:D1:FA:70:9D:83:4B:3E:21:C4:5C
Certificate issuer: /CN=e74c290b5bccdb7de5383ee45ba615d2f306761f
Certificate serial: 018CC793401097302827804CE964D1DC1453
Authority key identifier: E7:4C:29:0B:5B:CC:DB:7D:E5:38:3E:E4:5B:A6:15:D2:F3:06:76:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/50wpC1vM233lOD7kW6YV0vMGdh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/X3377BQdFZpFe9H6cJ2DSz4hxFw.roa
Signing time: Tue 02 Jan 2024 00:29:25 +0000
ROA not before: Tue 02 Jan 2024 00:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398273
IP address blocks: 185.34.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:40:10:97:30:28:27:80:4c:e9:64:d1:dc:14:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74c290b5bccdb7de5383ee45ba615d2f306761f
Validity
Not Before: Jan 2 00:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f7dfbec141d159a457bd1fa709d834b3e21c45c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f9:ac:01:89:4b:45:aa:31:3a:18:a6:c4:5e:
32:b6:c5:ec:9d:41:92:5d:9a:dc:a1:52:cf:52:f7:
0b:a7:26:29:51:d0:cb:46:74:3e:64:81:1d:a0:6b:
2e:8b:9d:bf:16:ad:fd:04:37:07:44:33:2f:fd:c6:
a3:49:c9:26:2a:c3:7c:8f:fa:55:82:65:1f:78:2a:
04:2b:8e:7b:99:01:84:cf:22:9a:1e:35:ba:14:76:
2f:6c:ae:6c:a5:a7:34:56:77:10:88:a2:14:8a:1c:
28:d2:e6:73:e0:57:6b:71:4c:0f:82:6f:f5:49:4c:
ae:81:89:37:e3:0b:c4:d5:d9:6c:9a:69:5e:cd:ce:
23:be:c3:8b:61:e6:01:38:14:f2:dc:86:14:6b:e7:
8b:24:b5:48:06:cd:5b:43:b6:43:78:36:af:3e:0b:
16:b8:06:2d:f8:5b:03:10:cd:38:0b:01:44:92:97:
94:a3:00:03:b3:b9:1a:c2:84:b9:01:c9:c9:ca:d0:
34:2c:4f:c6:d4:21:ec:ba:2f:49:ee:1d:6d:3f:b7:
a9:e5:ca:ca:ca:6e:49:ca:a0:21:4d:5e:f4:70:99:
34:94:87:ba:3a:0e:d9:1a:2d:3a:fd:81:3d:1f:4b:
7d:5f:18:28:d2:3b:21:4b:ac:97:64:a1:4f:9f:bb:
4d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:7D:FB:EC:14:1D:15:9A:45:7B:D1:FA:70:9D:83:4B:3E:21:C4:5C
X509v3 Authority Key Identifier:
keyid:E7:4C:29:0B:5B:CC:DB:7D:E5:38:3E:E4:5B:A6:15:D2:F3:06:76:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/50wpC1vM233lOD7kW6YV0vMGdh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/X3377BQdFZpFe9H6cJ2DSz4hxFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/50wpC1vM233lOD7kW6YV0vMGdh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.200.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:85:ce:44:1f:fb:07:07:5e:98:cd:94:72:4d:45:51:f6:14:
b2:d0:63:73:f4:99:08:50:a9:ea:73:8c:1c:cb:1f:16:67:30:
71:77:8a:7d:35:05:4e:8c:02:9a:04:38:cf:30:08:4b:c4:dc:
f1:6d:b3:09:0c:c7:88:e9:f8:1b:2a:5e:59:9a:3d:76:db:16:
64:46:3f:e3:23:ae:f0:26:dc:d8:fd:0f:5d:ca:a3:fe:7a:81:
85:ce:f3:87:74:9f:3c:5f:21:d8:5a:ce:66:04:0d:0a:36:63:
af:6a:68:3c:aa:b7:20:ab:20:1e:44:2a:68:4a:24:04:12:69:
5e:33:5f:c1:3c:b9:ce:ef:a2:1a:30:71:1a:7d:2f:cf:05:cd:
51:ac:03:32:8c:03:8f:ac:39:f3:c5:1a:a8:20:53:76:28:37:
0e:fe:8f:a5:a3:e6:05:6f:38:63:ab:b6:cb:ca:8a:62:35:b2:
2a:05:99:5a:e9:e8:73:1c:d8:51:7c:09:11:90:8a:18:e8:56:
ff:31:84:d0:30:24:b0:0b:c1:ac:85:36:ed:bc:67:c1:b8:81:
2b:58:70:9f:7f:5d:90:51:b0:5e:cf:44:f9:b3:db:1c:c0:49:
97:bc:08:d8:8e:4c:4e:aa:0b:8a:e9:62:e8:7d:e8:a3:ea:6f:
ef:6e:e8:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHk0AQlzAoJ4BM6WTR3BRTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NGMyOTBiNWJjY2RiN2RlNTM4M2VlNDViYTYxNWQyZjMw
Njc2MWYwHhcNMjQwMTAyMDAyOTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjdkZmJlYzE0MWQxNTlhNDU3YmQxZmE3MDlkODM0YjNlMjFjNDVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkvmsAYlLRaoxOhimxF4ytsXsnUGS
XZrcoVLPUvcLpyYpUdDLRnQ+ZIEdoGsui52/Fq39BDcHRDMv/cajSckmKsN8j/pV
gmUfeCoEK457mQGEzyKaHjW6FHYvbK5spac0VncQiKIUihwo0uZz4FdrcUwPgm/1
SUyugYk34wvE1dlsmmlezc4jvsOLYeYBOBTy3IYUa+eLJLVIBs1bQ7ZDeDavPgsW
uAYt+FsDEM04CwFEkpeUowADs7kawoS5AcnJytA0LE/G1CHsui9J7h1tP7ep5crK
ym5JyqAhTV70cJk0lIe6Og7ZGi06/YE9H0t9Xxgo0jshS6yXZKFPn7tNNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF99++wUHRWaRXvR+nCdg0s+IcRcMB8GA1UdIwQY
MBaAFOdMKQtbzNt95Tg+5FumFdLzBnYfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTB3cEMxdk0yMzNsT0Q3a1c2WVYwdk1HZGg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yMjIzNzYtNWNmNi00OTc4LWE4YTMt
ZDc0MWZiMjczMTE2LzEvWDMzNzdCUWRGWnBGZTlINmNKMkRTejRoeEZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy8yMjIzNzYtNWNmNi00OTc4LWE4YTMtZDc0MWZiMjczMTE2
LzEvNTB3cEMxdk0yMzNsT0Q3a1c2WVYwdk1HZGg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSLIMA0G
CSqGSIb3DQEBCwUAA4IBAQA9hc5EH/sHB16YzZRyTUVR9hSy0GNz9JkIUKnqc4wc
yx8WZzBxd4p9NQVOjAKaBDjPMAhLxNzxbbMJDMeI6fgbKl5Zmj122xZkRj/jI67w
JtzY/Q9dyqP+eoGFzvOHdJ88XyHYWs5mBA0KNmOvamg8qrcgqyAeRCpoSiQEEmle
M1/BPLnO76IaMHEafS/PBc1RrAMyjAOPrDnzxRqoIFN2KDcO/o+lo+YFbzhjq7bL
yopiNbIqBZla6ehzHNhRfAkRkIoY6Fb/MYTQMCSwC8GshTbtvGfBuIErWHCff12Q
UbBez0T5s9scwEmXvAjYjkxOqguK6WLofeij6m/vbugb
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:05 2025 by rpki-client