Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/_gAItmrv76x8651mlwYIS2GrZWM.roa
File: _gAItmrv76x8651mlwYIS2GrZWM.roa (raw, json)
Hash identifier: /U2fIcsW1DrOSITLVeqSm1F+PvK8Xisnsj8SoNqhWDI=
Subject key identifier: FE:00:08:B6:6A:EF:EF:AC:7C:EB:9D:66:97:06:08:4B:61:AB:65:63
Certificate issuer: /CN=123c3de61011de07101e14dc0727395171cb03ab
Certificate serial: 018CC801253EA38212D43DE7696A29D3211D
Authority key identifier: 12:3C:3D:E6:10:11:DE:07:10:1E:14:DC:07:27:39:51:71:CB:03:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ejw95hAR3gcQHhTcByc5UXHLA6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/_gAItmrv76x8651mlwYIS2GrZWM.roa
Signing time: Tue 02 Jan 2024 02:29:27 +0000
ROA not before: Tue 02 Jan 2024 02:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206893
IP address blocks: 185.133.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 16:34:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:25:3e:a3:82:12:d4:3d:e7:69:6a:29:d3:21:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=123c3de61011de07101e14dc0727395171cb03ab
Validity
Not Before: Jan 2 02:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe0008b66aefefac7ceb9d669706084b61ab6563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:3b:b2:66:d7:dd:91:0e:ea:f8:5d:43:91:0b:
f8:b4:13:91:04:07:c2:e3:82:05:83:c5:c3:7c:df:
04:03:e3:26:40:76:b3:42:e5:60:c1:d6:bc:f2:61:
77:b8:0b:ba:0f:8e:7e:dd:36:a9:40:44:0e:d3:8b:
33:ac:48:59:a5:3b:5a:a5:95:be:1a:f6:f7:f6:6a:
e7:b5:8a:7b:79:0e:6f:4a:85:b1:a9:01:99:21:f5:
3d:c8:b2:b1:de:a5:51:f6:18:46:dd:54:98:8d:85:
82:80:9e:02:4a:7a:cc:c9:33:c6:17:c2:7c:74:99:
fa:49:21:41:a9:cf:ab:4b:b0:a6:53:77:d0:18:39:
85:2e:78:61:d1:4c:2d:d0:f7:03:b4:51:cc:0c:65:
97:6c:79:c0:f1:6c:68:7f:6f:30:e1:8d:95:aa:c2:
3b:a8:79:65:1a:3c:87:a0:a6:50:6c:b9:81:71:b9:
28:03:df:68:4a:37:9f:b0:69:ae:15:25:e3:dc:18:
a1:b5:0e:62:49:81:18:2b:f0:fb:65:43:f7:b4:5c:
f3:1d:3b:98:3d:47:ee:e5:17:2c:47:0d:06:af:48:
d8:1e:c0:b2:07:6f:09:1b:9e:a8:4c:0a:27:89:86:
7a:18:62:31:38:cf:52:4c:04:b5:b7:a7:7d:c1:34:
37:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:00:08:B6:6A:EF:EF:AC:7C:EB:9D:66:97:06:08:4B:61:AB:65:63
X509v3 Authority Key Identifier:
keyid:12:3C:3D:E6:10:11:DE:07:10:1E:14:DC:07:27:39:51:71:CB:03:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ejw95hAR3gcQHhTcByc5UXHLA6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/_gAItmrv76x8651mlwYIS2GrZWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/Ejw95hAR3gcQHhTcByc5UXHLA6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.224.0/24
Signature Algorithm: sha256WithRSAEncryption
be:67:a9:0e:22:f9:a4:97:30:70:5e:2e:56:ef:41:82:8e:1c:
1b:62:19:07:1a:ba:8c:55:cc:9a:92:4e:ce:29:26:9b:8c:fb:
39:e1:8e:c5:8d:9b:ad:dd:a6:83:d9:35:35:91:06:dd:cf:64:
21:5d:2f:c9:21:b3:d2:55:c5:42:80:e5:cc:0e:6d:ce:0d:de:
5b:7b:b4:f7:c3:83:bd:90:49:20:24:a7:55:9b:59:49:4f:a9:
f5:d6:99:8d:6e:cb:28:69:68:6f:db:80:24:b8:be:79:27:b4:
b5:bf:4c:42:6d:c8:f7:2f:09:0b:8c:ac:3f:72:40:8a:c8:c6:
50:4a:0d:4d:c8:2b:b0:67:d2:cf:47:fa:3e:e4:04:6f:9f:ac:
54:8e:f0:32:33:50:92:ce:7d:1f:8f:de:68:93:49:71:aa:f0:
27:f8:c8:55:cc:c6:c2:e8:e4:3e:67:09:f6:36:c0:21:39:14:
1d:75:83:d5:0e:69:66:5a:52:d8:d5:87:26:8b:49:79:4d:87:
10:ed:10:9a:40:89:b0:fe:6a:b6:d1:42:83:01:b2:c4:a3:77:
1a:b9:7a:07:13:1c:95:4b:2a:df:9c:1f:76:d9:d9:ef:20:fe:
7c:24:5a:54:ca:42:c6:17:1e:9b:4c:1c:7c:92:a4:73:94:d8:
c8:de:bf:29
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIASU+o4IS1D3naWop0yEdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyM2MzZGU2MTAxMWRlMDcxMDFlMTRkYzA3MjczOTUxNzFj
YjAzYWIwHhcNMjQwMTAyMDIyOTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTAwMDhiNjZhZWZlZmFjN2NlYjlkNjY5NzA2MDg0YjYxYWI2NTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhzuyZtfdkQ7q+F1DkQv4tBORBAfC
44IFg8XDfN8EA+MmQHazQuVgwda88mF3uAu6D45+3TapQEQO04szrEhZpTtapZW+
Gvb39mrntYp7eQ5vSoWxqQGZIfU9yLKx3qVR9hhG3VSYjYWCgJ4CSnrMyTPGF8J8
dJn6SSFBqc+rS7CmU3fQGDmFLnhh0Uwt0PcDtFHMDGWXbHnA8Wxof28w4Y2VqsI7
qHllGjyHoKZQbLmBcbkoA99oSjefsGmuFSXj3BihtQ5iSYEYK/D7ZUP3tFzzHTuY
PUfu5RcsRw0Gr0jYHsCyB28JG56oTAoniYZ6GGIxOM9STAS1t6d9wTQ3DwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP4ACLZq7++sfOudZpcGCEthq2VjMB8GA1UdIwQY
MBaAFBI8PeYQEd4HEB4U3AcnOVFxywOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWp3OTVoQVIzZ2NRSGhUY0J5YzVVWEhMQTZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yMjk2NTAtOGEwMS00MzcwLTk5MWUt
YjUwNGM5YWU5YmJjLzEvX2dBSXRtcnY3Nng4NjUxbWx3WUlTMkdyWldNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8yMjk2NTAtOGEwMS00MzcwLTk5MWUtYjUwNGM5YWU5YmJj
LzEvRWp3OTVoQVIzZ2NRSGhUY0J5YzVVWEhMQTZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYXgMA0G
CSqGSIb3DQEBCwUAA4IBAQC+Z6kOIvmklzBwXi5W70GCjhwbYhkHGrqMVcyakk7O
KSabjPs54Y7FjZut3aaD2TU1kQbdz2QhXS/JIbPSVcVCgOXMDm3ODd5be7T3w4O9
kEkgJKdVm1lJT6n11pmNbssoaWhv24AkuL55J7S1v0xCbcj3LwkLjKw/ckCKyMZQ
Sg1NyCuwZ9LPR/o+5ARvn6xUjvAyM1CSzn0fj95ok0lxqvAn+MhVzMbC6OQ+Zwn2
NsAhORQddYPVDmlmWlLY1Ycmi0l5TYcQ7RCaQImw/mq20UKDAbLEo3cauXoHExyV
SyrfnB922dnvIP58JFpUykLGFx6bTBx8kqRzlNjI3r8p
-----END CERTIFICATE-----
Generated at Fri Apr 5 21:45:32 2024 by rpki-client on console-ams.rpki-client.org