Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/204509-8a32-4b28-97c8-e56e738380de/1/egCI52KnaV7aDrV_6dd15VPE1Ak.roa
File: egCI52KnaV7aDrV_6dd15VPE1Ak.roa (raw, json)
Hash identifier: nncxfeECAE6f8NA7yt4c7KoG1rl6mXK+qX6gkZi3/wk=
Subject key identifier: 7A:00:88:E7:62:A7:69:5E:DA:0E:B5:7F:E9:D7:75:E5:53:C4:D4:09
Certificate issuer: /CN=429b1cf21d20f8c6f94641e3327e4555e2e41102
Certificate serial: 018CC64AD1796722A96AD0FF075B9628283E
Authority key identifier: 42:9B:1C:F2:1D:20:F8:C6:F9:46:41:E3:32:7E:45:55:E2:E4:11:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qpsc8h0g-Mb5RkHjMn5FVeLkEQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/204509-8a32-4b28-97c8-e56e738380de/1/egCI52KnaV7aDrV_6dd15VPE1Ak.roa
Signing time: Mon 01 Jan 2024 18:30:41 +0000
ROA not before: Mon 01 Jan 2024 18:30:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8220
IP address blocks: 185.8.141.0/24 maxlen: 24
185.8.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 08:06:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:d1:79:67:22:a9:6a:d0:ff:07:5b:96:28:28:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429b1cf21d20f8c6f94641e3327e4555e2e41102
Validity
Not Before: Jan 1 18:30:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a0088e762a7695eda0eb57fe9d775e553c4d409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:77:dd:69:11:39:00:ae:71:59:66:f5:72:ce:
dd:d4:57:dc:ac:48:86:66:d2:50:9e:ba:79:dc:8a:
97:f1:02:a8:ab:1b:7c:8f:c3:90:65:4a:93:3e:84:
41:c7:cc:6f:54:9e:15:c1:91:8a:77:0d:70:fd:17:
46:5c:ba:26:14:d7:2d:f7:f4:f1:7e:70:1c:af:21:
2a:f6:54:d4:6a:a5:04:b3:f5:fe:df:d6:4f:1f:7c:
c4:32:d2:01:d7:6c:39:81:80:4c:a9:0a:eb:2c:af:
d9:93:99:d8:ed:ac:82:0f:8c:72:18:d8:83:7d:20:
db:9a:dd:1a:5d:97:4e:c4:0f:9b:bd:e5:8a:72:1d:
0f:13:07:56:62:8a:f2:4e:89:c0:58:ee:90:93:cb:
fa:45:02:26:15:56:02:6e:2a:7d:58:13:53:b1:6e:
3a:2d:ad:34:10:29:31:40:da:8d:6a:91:5a:9d:e9:
19:af:be:b4:16:57:cf:20:c9:2d:ad:5c:f7:a6:df:
7e:a0:93:af:ed:61:b1:ed:4d:c3:ac:3d:b9:8b:fb:
6b:4f:08:93:f8:31:8c:ec:da:9e:71:5e:ff:4b:92:
d9:d5:e5:d5:e9:5c:f3:6c:a3:47:a0:78:e9:7d:33:
6c:f5:42:5c:54:73:da:23:be:bd:43:d9:4b:31:35:
ce:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:00:88:E7:62:A7:69:5E:DA:0E:B5:7F:E9:D7:75:E5:53:C4:D4:09
X509v3 Authority Key Identifier:
keyid:42:9B:1C:F2:1D:20:F8:C6:F9:46:41:E3:32:7E:45:55:E2:E4:11:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qpsc8h0g-Mb5RkHjMn5FVeLkEQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/204509-8a32-4b28-97c8-e56e738380de/1/egCI52KnaV7aDrV_6dd15VPE1Ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/204509-8a32-4b28-97c8-e56e738380de/1/Qpsc8h0g-Mb5RkHjMn5FVeLkEQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.141.0/24
185.8.143.0/24
Signature Algorithm: sha256WithRSAEncryption
75:9c:0e:b2:af:47:cd:93:0a:39:8e:83:ec:c2:fd:a0:eb:3c:
10:a8:10:55:d3:ff:00:35:37:b8:f4:6f:dc:da:23:48:ba:39:
c1:a4:21:e7:fd:ef:30:97:10:cb:28:96:cc:38:f9:06:a0:5c:
6c:0e:11:a8:cc:72:72:f6:12:55:da:16:30:fd:82:84:52:7a:
2e:d7:43:95:31:ff:22:01:17:4f:90:48:46:4f:e2:1d:36:5f:
90:b7:34:ae:fb:f5:1e:92:3c:9b:66:92:d4:4d:b1:06:a0:a8:
44:5a:29:40:4a:74:21:ff:1a:2a:0b:55:d0:aa:3e:c6:a2:c4:
49:4e:9c:8f:bf:56:30:4d:43:43:4e:f9:ae:d0:ee:16:6b:60:
41:f4:0f:9a:58:0c:62:0d:cf:cd:ce:dd:6e:ef:d5:93:8f:8a:
15:6a:dd:7e:4e:bb:32:94:99:33:12:5d:2e:d9:28:9b:43:3e:
bd:9f:32:df:e4:b4:69:57:35:e0:1e:09:ed:a6:1b:ea:3c:61:
9e:47:03:11:73:04:2f:44:4d:84:d2:89:48:61:bd:c4:4d:88:
67:09:2d:da:73:b1:53:38:73:61:09:52:5d:77:21:c0:ec:88:
3c:83:a6:a8:f7:ca:56:9b:91:75:63:af:7a:52:20:bb:c5:a8:
80:bb:f0:30
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzGStF5ZyKpatD/B1uWKCg+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyOWIxY2YyMWQyMGY4YzZmOTQ2NDFlMzMyN2U0NTU1ZTJl
NDExMDIwHhcNMjQwMTAxMTgzMDQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTAwODhlNzYyYTc2OTVlZGEwZWI1N2ZlOWQ3NzVlNTUzYzRkNDA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhHfdaRE5AK5xWWb1cs7d1FfcrEiG
ZtJQnrp53IqX8QKoqxt8j8OQZUqTPoRBx8xvVJ4VwZGKdw1w/RdGXLomFNct9/Tx
fnAcryEq9lTUaqUEs/X+39ZPH3zEMtIB12w5gYBMqQrrLK/Zk5nY7ayCD4xyGNiD
fSDbmt0aXZdOxA+bveWKch0PEwdWYoryTonAWO6Qk8v6RQImFVYCbip9WBNTsW46
La00ECkxQNqNapFanekZr760FlfPIMktrVz3pt9+oJOv7WGx7U3DrD25i/trTwiT
+DGM7NqecV7/S5LZ1eXV6VzzbKNHoHjpfTNs9UJcVHPaI769Q9lLMTXOfwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHoAiOdip2le2g61f+nXdeVTxNQJMB8GA1UdIwQY
MBaAFEKbHPIdIPjG+UZB4zJ+RVXi5BECMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXBzYzhoMGctTWI1UmtIak1uNUZWZUxrRVFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8yMDQ1MDktOGEzMi00YjI4LTk3Yzgt
ZTU2ZTczODM4MGRlLzEvZWdDSTUyS25hVjdhRHJWXzZkZDE1VlBFMUFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8yMDQ1MDktOGEzMi00YjI4LTk3YzgtZTU2ZTczODM4MGRl
LzEvUXBzYzhoMGctTWI1UmtIak1uNUZWZUxrRVFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuQiNAwQA
uQiPMA0GCSqGSIb3DQEBCwUAA4IBAQB1nA6yr0fNkwo5joPswv2g6zwQqBBV0/8A
NTe49G/c2iNIujnBpCHn/e8wlxDLKJbMOPkGoFxsDhGozHJy9hJV2hYw/YKEUnou
10OVMf8iARdPkEhGT+IdNl+QtzSu+/UekjybZpLUTbEGoKhEWilASnQh/xoqC1XQ
qj7GosRJTpyPv1YwTUNDTvmu0O4Wa2BB9A+aWAxiDc/Nzt1u79WTj4oVat1+Trsy
lJkzEl0u2SibQz69nzLf5LRpVzXgHgntphvqPGGeRwMRcwQvRE2E0olIYb3ETYhn
CS3ac7FTOHNhCVJddyHA7Ig8g6ao98pWm5F1Y696UiC7xaiAu/Aw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:09 2024 by rpki-client on console-fra.rpki-client.org