Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/17272d-2234-42ce-b51b-74f6a2eae175/1/bIAPNq7rTS2-g0p7UvnnJvce5eE.roa
File: bIAPNq7rTS2-g0p7UvnnJvce5eE.roa (raw, json)
Hash identifier: 0l10YP+5LFrpE+HCYGUpKfn+HI26V16FP38oX+FBbrQ=
Subject key identifier: 6C:80:0F:36:AE:EB:4D:2D:BE:83:4A:7B:52:F9:E7:26:F7:1E:E5:E1
Certificate issuer: /CN=f4dff8b1bd0724ba130f86b848e33caea8e9f11d
Certificate serial: 0190073BF51AAFF4A2804925AD2D3E22855C
Authority key identifier: F4:DF:F8:B1:BD:07:24:BA:13:0F:86:B8:48:E3:3C:AE:A8:E9:F1:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9N_4sb0HJLoTD4a4SOM8rqjp8R0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/17272d-2234-42ce-b51b-74f6a2eae175/1/bIAPNq7rTS2-g0p7UvnnJvce5eE.roa
Signing time: Tue 11 Jun 2024 12:18:08 +0000
ROA not before: Tue 11 Jun 2024 12:18:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204100
IP address blocks: 185.114.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jun 2024 12:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:07:3b:f5:1a:af:f4:a2:80:49:25:ad:2d:3e:22:85:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4dff8b1bd0724ba130f86b848e33caea8e9f11d
Validity
Not Before: Jun 11 12:18:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c800f36aeeb4d2dbe834a7b52f9e726f71ee5e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0d:8e:61:57:b6:8d:d8:4f:38:d8:e4:99:5c:
04:03:f1:61:6f:c4:18:69:1f:c8:76:3e:29:37:0d:
71:56:a2:60:b6:69:5d:e3:ba:60:ec:4d:4b:f6:34:
6d:4b:97:a3:90:b3:79:f2:dc:ca:2a:c8:bf:98:83:
91:a7:fa:79:0d:19:76:8d:75:1d:d1:72:d7:f5:7d:
23:ec:eb:0d:30:52:fa:6d:e5:12:d1:3f:26:fe:c0:
a5:08:c4:ca:82:7f:05:27:cf:b5:60:51:3b:09:88:
5a:61:ab:8e:df:c5:d3:34:20:b2:9f:71:3f:50:88:
28:ad:0f:5c:d3:6e:34:8c:e4:2d:15:78:65:69:b7:
ea:90:03:8d:7e:db:fe:43:ab:0d:3d:b3:3d:7e:28:
74:2c:43:40:c9:36:c4:90:1f:8f:dd:4b:08:f6:2a:
bf:05:16:47:d6:b8:d4:73:df:71:5b:11:5f:25:e4:
e3:ac:6e:47:b9:d5:15:ec:06:cb:27:9b:e0:dc:42:
4b:eb:f9:13:c0:86:03:03:6f:d4:81:f5:f2:62:82:
c8:22:d9:54:e8:c7:ff:5f:74:62:c7:d9:80:31:62:
40:67:57:de:42:48:9c:67:d9:5d:71:76:a3:ce:4e:
aa:ea:77:ea:02:97:92:6a:51:aa:d0:de:4d:b7:01:
3e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:80:0F:36:AE:EB:4D:2D:BE:83:4A:7B:52:F9:E7:26:F7:1E:E5:E1
X509v3 Authority Key Identifier:
keyid:F4:DF:F8:B1:BD:07:24:BA:13:0F:86:B8:48:E3:3C:AE:A8:E9:F1:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9N_4sb0HJLoTD4a4SOM8rqjp8R0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/17272d-2234-42ce-b51b-74f6a2eae175/1/bIAPNq7rTS2-g0p7UvnnJvce5eE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/17272d-2234-42ce-b51b-74f6a2eae175/1/9N_4sb0HJLoTD4a4SOM8rqjp8R0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.115.0/24
Signature Algorithm: sha256WithRSAEncryption
90:9b:0f:3f:d7:85:cb:10:98:07:c7:d3:76:4a:5e:01:14:13:
a2:51:82:4a:5d:f5:d1:a0:0a:2a:c7:7f:99:db:c5:35:b8:a3:
66:7c:ed:8d:0e:36:73:66:87:1a:89:30:6c:ab:58:76:ac:54:
35:3b:ab:fa:9c:be:7b:02:9e:99:d3:b3:2a:f5:e6:a8:6e:ba:
3f:df:54:e9:ee:70:4d:a6:1b:5b:8a:df:98:4c:a9:e6:28:2a:
6d:62:c5:92:6a:0e:2c:b3:d1:59:5b:76:86:b1:62:75:6b:4b:
f3:c6:f9:fc:cc:fe:dd:ed:f7:3e:c3:54:c2:ea:e1:a1:e7:8c:
5a:b6:0e:9c:c8:33:f8:68:3e:c1:11:e3:b4:a1:dd:b7:e3:52:
c7:46:58:c4:78:6a:c5:23:b0:39:68:5f:5e:cf:10:00:2f:cb:
81:3a:48:57:95:e5:65:9d:85:91:84:ea:8b:e1:7e:27:fc:70:
b4:b2:f3:6a:93:60:8e:a1:c9:9a:94:9a:2e:e5:db:d3:75:76:
09:3c:77:27:15:68:e5:5b:e2:b6:a6:55:f4:68:1a:97:87:ba:
e5:92:0a:d2:8a:3c:e6:44:d3:e8:a7:d0:99:ad:0c:a7:13:68:
87:19:dc:ad:78:79:d3:86:e4:48:57:c7:20:ce:bf:4c:b8:14:
66:97:49:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZAHO/Uar/SigEklrS0+IoVcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZGZmOGIxYmQwNzI0YmExMzBmODZiODQ4ZTMzY2FlYThl
OWYxMWQwHhcNMjQwNjExMTIxODA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzgwMGYzNmFlZWI0ZDJkYmU4MzRhN2I1MmY5ZTcyNmY3MWVlNWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvw2OYVe2jdhPONjkmVwEA/Fhb8QY
aR/Idj4pNw1xVqJgtmld47pg7E1L9jRtS5ejkLN58tzKKsi/mIORp/p5DRl2jXUd
0XLX9X0j7OsNMFL6beUS0T8m/sClCMTKgn8FJ8+1YFE7CYhaYauO38XTNCCyn3E/
UIgorQ9c0240jOQtFXhlabfqkAONftv+Q6sNPbM9fih0LENAyTbEkB+P3UsI9iq/
BRZH1rjUc99xWxFfJeTjrG5HudUV7AbLJ5vg3EJL6/kTwIYDA2/UgfXyYoLIItlU
6Mf/X3Rix9mAMWJAZ1feQkicZ9ldcXajzk6q6nfqApeSalGq0N5NtwE+4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGyADzau600tvoNKe1L55yb3HuXhMB8GA1UdIwQY
MBaAFPTf+LG9ByS6Ew+GuEjjPK6o6fEdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU5fNHNiMEhKTG9URDRhNFNPTThycWpwOFIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8xNzI3MmQtMjIzNC00MmNlLWI1MWIt
NzRmNmEyZWFlMTc1LzEvYklBUE5xN3JUUzItZzBwN1V2bm5KdmNlNWVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8xNzI3MmQtMjIzNC00MmNlLWI1MWItNzRmNmEyZWFlMTc1
LzEvOU5fNHNiMEhKTG9URDRhNFNPTThycWpwOFIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXJzMA0G
CSqGSIb3DQEBCwUAA4IBAQCQmw8/14XLEJgHx9N2Sl4BFBOiUYJKXfXRoAoqx3+Z
28U1uKNmfO2NDjZzZocaiTBsq1h2rFQ1O6v6nL57Ap6Z07Mq9eaobro/31Tp7nBN
phtbit+YTKnmKCptYsWSag4ss9FZW3aGsWJ1a0vzxvn8zP7d7fc+w1TC6uGh54xa
tg6cyDP4aD7BEeO0od2341LHRljEeGrFI7A5aF9ezxAAL8uBOkhXleVlnYWRhOqL
4X4n/HC0svNqk2COocmalJou5dvTdXYJPHcnFWjlW+K2plX0aBqXh7rlkgrSijzm
RNPop9CZrQynE2iHGdyteHnThuRIV8cgzr9MuBRml0nY
-----END CERTIFICATE-----
Generated at Tue Jun 18 15:33:22 2024 by rpki-client on console-fra.rpki-client.org