Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/2a-JIJPs9acZ6UmdSCIWurwIsks.roa
File: 2a-JIJPs9acZ6UmdSCIWurwIsks.roa (raw, json)
Hash identifier: izda4CoT1ttGUn0Et9RY5f80p72FZennC5W9eybAJcg=
Subject key identifier: D9:AF:89:20:93:EC:F5:A7:19:E9:49:9D:48:22:16:BA:BC:08:B2:4B
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018B1E709200C5C257F7ADA05896B85CBD11
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/2a-JIJPs9acZ6UmdSCIWurwIsks.roa
Signing time: Wed 11 Oct 2023 11:12:55 +0000
ROA not before: Wed 11 Oct 2023 11:12:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212027
IP address blocks: 185.199.148.0/24 maxlen: 24
79.98.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Dec 2023 23:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:70:92:00:c5:c2:57:f7:ad:a0:58:96:b8:5c:bd:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Oct 11 11:12:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9af892093ecf5a719e9499d482216babc08b24b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9f:66:e4:11:dd:16:94:2a:2f:6d:e2:68:f5:
83:5a:72:75:d6:10:02:4a:ed:8d:24:f6:49:66:8f:
e6:6e:9d:4a:16:21:8e:92:28:af:a3:4c:65:c8:2e:
83:79:17:e9:c3:2f:24:a0:15:0c:45:a3:0b:2f:38:
19:67:95:e5:e0:0f:34:43:44:84:c2:1a:a7:68:ea:
4e:36:84:82:da:14:a0:c8:3f:e6:59:da:95:ff:12:
67:71:1f:88:60:d6:a6:69:8d:10:c6:c5:89:44:56:
43:db:3e:c1:25:9a:fe:34:4c:3f:90:95:f6:70:5a:
f1:38:b3:bc:11:05:66:03:a1:50:1b:05:38:54:2f:
ab:d5:85:13:1a:3c:82:2e:c4:22:21:18:45:8e:40:
d8:e1:6b:83:ef:43:9a:15:84:48:5f:44:da:7a:b1:
a1:cd:f6:18:5e:25:0a:a6:9b:9e:48:a3:fc:8c:7d:
e8:91:d9:33:75:ea:10:4f:0f:ad:32:d7:f6:04:3f:
a7:d7:b6:29:91:aa:78:b0:18:80:74:0d:a0:ce:62:
60:a3:9e:2b:32:c5:56:67:95:16:a5:44:c6:aa:97:
82:12:b3:a5:46:f9:e9:7e:e2:d1:97:94:3f:bb:91:
f9:d8:c0:53:06:6e:14:2b:40:8b:dd:cb:c1:16:6a:
55:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:AF:89:20:93:EC:F5:A7:19:E9:49:9D:48:22:16:BA:BC:08:B2:4B
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/2a-JIJPs9acZ6UmdSCIWurwIsks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.247.0/24
185.199.148.0/24
Signature Algorithm: sha256WithRSAEncryption
73:29:74:6e:0c:a1:96:1b:67:77:60:4c:6c:4f:f0:51:f8:6e:
28:7d:a4:cb:1c:9f:25:e8:c9:e2:09:cb:42:bf:e1:1d:72:ec:
c4:70:2d:82:b8:95:3d:3e:9f:1a:db:68:0d:4e:a4:c3:9e:b8:
82:bf:90:e3:5a:d6:16:60:5e:75:49:7e:17:08:19:e2:90:75:
f1:07:74:60:c9:36:56:95:f5:16:04:14:32:1b:84:61:a7:98:
a0:f5:6e:9b:2e:45:be:3c:b8:8f:c7:2c:22:d8:d4:cc:d9:6d:
97:61:cd:b6:75:a3:1e:c1:5a:1f:37:79:8b:51:7b:8c:ff:ea:
05:a6:50:99:04:af:0a:a4:8e:65:3f:c0:6e:2b:ce:fc:27:36:
11:d9:f3:df:89:f4:3f:62:0e:0e:db:e9:33:b9:94:5c:f4:78:
79:25:64:bd:2d:be:55:18:c2:83:c0:61:d3:17:6d:96:d6:68:
b1:b2:89:e1:65:d7:33:61:3f:28:c1:25:55:64:e8:89:5a:30:
ac:7f:c5:6a:20:ab:02:9b:30:19:98:d2:c4:88:48:99:e6:54:
26:4b:a9:07:f3:a5:fd:67:0c:1a:ad:91:fd:ff:81:cd:fb:d2:
d8:84:e1:43:27:ce:12:7f:90:67:90:00:60:3d:7f:d3:71:04:
b3:f4:13:ed
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYsecJIAxcJX962gWJa4XL0RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjMxMDExMTExMjU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOWFmODkyMDkzZWNmNWE3MTllOTQ5OWQ0ODIyMTZiYWJjMDhiMjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJ9m5BHdFpQqL23iaPWDWnJ11hAC
Su2NJPZJZo/mbp1KFiGOkiivo0xlyC6DeRfpwy8koBUMRaMLLzgZZ5Xl4A80Q0SE
whqnaOpONoSC2hSgyD/mWdqV/xJncR+IYNamaY0QxsWJRFZD2z7BJZr+NEw/kJX2
cFrxOLO8EQVmA6FQGwU4VC+r1YUTGjyCLsQiIRhFjkDY4WuD70OaFYRIX0TaerGh
zfYYXiUKppueSKP8jH3okdkzdeoQTw+tMtf2BD+n17Ypkap4sBiAdA2gzmJgo54r
MsVWZ5UWpUTGqpeCErOlRvnpfuLRl5Q/u5H52MBTBm4UK0CL3cvBFmpVuwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNmviSCT7PWnGelJnUgiFrq8CLJLMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvMmEtSklKUHM5YWNaNlVtZFNDSVd1cndJc2tzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAT2L3AwQA
uceUMA0GCSqGSIb3DQEBCwUAA4IBAQBzKXRuDKGWG2d3YExsT/BR+G4ofaTLHJ8l
6MniCctCv+EdcuzEcC2CuJU9Pp8a22gNTqTDnriCv5DjWtYWYF51SX4XCBnikHXx
B3RgyTZWlfUWBBQyG4Rhp5ig9W6bLkW+PLiPxywi2NTM2W2XYc22daMewVofN3mL
UXuM/+oFplCZBK8KpI5lP8BuK878JzYR2fPfifQ/Yg4O2+kzuZRc9Hh5JWS9Lb5V
GMKDwGHTF22W1mixsonhZdczYT8owSVVZOiJWjCsf8VqIKsCmzAZmNLEiEiZ5lQm
S6kH86X9ZwwarZH9/4HN+9LYhOFDJ84Sf5BnkABgPX/TcQSz9BPt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org