Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/FwFprIlSHE3NjlMTqlEYFqT9VWg.roa
File: FwFprIlSHE3NjlMTqlEYFqT9VWg.roa (raw, json)
Hash identifier: VSkMB08qeCo/kgEGvfZ4iWXxTcYuDrOJfvvh7PS2WlY=
Subject key identifier: 17:01:69:AC:89:52:1C:4D:CD:8E:53:13:AA:51:18:16:A4:FD:55:68
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018FB4208ABD1A7F3CF0978450A116806289
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/FwFprIlSHE3NjlMTqlEYFqT9VWg.roa
Signing time: Sun 26 May 2024 08:59:42 +0000
ROA not before: Sun 26 May 2024 08:59:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.199.213.0/24 maxlen: 24
185.226.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jun 2024 09:54:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b4:20:8a:bd:1a:7f:3c:f0:97:84:50:a1:16:80:62:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: May 26 08:59:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=170169ac89521c4dcd8e5313aa511816a4fd5568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d7:52:b9:52:61:d7:9d:ad:bc:72:1c:70:46:
c4:46:da:f3:a6:15:f0:e0:4f:77:e9:61:8f:b1:76:
97:75:6b:d0:8f:af:c8:94:4a:52:ea:2f:3d:d2:a7:
87:df:0e:13:f2:b9:3a:ec:b9:fb:57:5e:9d:74:71:
7a:05:0b:d9:fc:5b:4b:de:f7:c0:82:ff:ff:41:54:
a2:08:ab:1e:41:69:c1:04:d5:0e:48:a8:43:48:d3:
8b:0a:3e:be:1c:03:41:71:d0:e6:52:2c:11:5b:6b:
46:cf:29:2e:f1:15:49:2d:41:e6:d7:d2:25:16:28:
bf:ea:b8:18:23:42:58:4d:d4:7e:45:41:56:01:86:
be:88:20:36:5d:67:c3:99:9c:14:57:91:ea:90:6f:
43:e5:a2:21:c4:f6:fb:6d:37:e7:0f:69:50:9f:d7:
56:03:c1:38:14:cd:d4:94:cb:46:eb:ba:88:b0:58:
a5:e3:6c:11:09:82:4e:97:98:21:a8:65:49:02:ef:
e8:0e:2f:d8:fb:7e:f3:82:a0:5c:48:b6:77:e8:e8:
5e:2e:88:93:b3:d7:a6:1d:cb:16:19:f7:72:ce:a7:
5e:3a:55:18:6b:0d:8d:29:11:26:d9:08:c9:85:5a:
4c:bd:ae:01:d3:67:57:a6:cf:a1:e4:2d:29:9d:be:
66:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:01:69:AC:89:52:1C:4D:CD:8E:53:13:AA:51:18:16:A4:FD:55:68
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/FwFprIlSHE3NjlMTqlEYFqT9VWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.213.0/24
185.226.182.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:b5:a1:5a:d5:f6:bd:e0:99:66:53:27:ee:c8:0b:f8:33:04:
ee:c0:28:76:f7:10:03:39:f6:35:57:34:db:2b:5f:0c:05:6a:
6c:61:b1:53:f7:d4:bf:45:70:3d:2f:38:13:b2:06:9c:05:e5:
50:21:c5:f5:81:54:bc:db:2e:0c:6a:53:2d:d0:81:9c:38:ec:
cc:a2:58:e4:3b:0a:eb:19:fb:2e:67:38:e4:cc:b4:98:08:12:
37:57:43:73:78:35:28:10:69:65:83:8b:be:0c:88:05:38:a7:
4d:7b:6b:4e:9f:8f:77:1b:92:b9:37:60:05:20:18:03:78:0e:
d4:a5:8b:74:15:d4:0c:3b:8d:b1:b9:aa:7d:c1:65:82:29:bb:
05:a2:cf:24:74:d0:85:ea:b4:74:96:01:16:7c:b5:6e:a5:ec:
cc:1c:60:67:84:81:ee:70:ab:c7:33:68:55:e6:79:c5:b9:aa:
8e:47:71:03:c6:69:e9:35:50:f8:5e:f1:86:66:74:63:10:9f:
0a:e3:ca:50:b5:14:b2:5a:0b:4b:3d:04:f7:fb:12:88:25:11:
e1:b9:b3:6c:b3:ee:4e:6e:04:c1:8b:c2:c5:6b:fa:0d:7e:33:
0b:d2:39:4d:07:b3:65:36:4d:70:11:4e:88:83:b4:4e:7f:ad:
ae:2e:04:c2
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY+0IIq9Gn888JeEUKEWgGKJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjQwNTI2MDg1OTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzAxNjlhYzg5NTIxYzRkY2Q4ZTUzMTNhYTUxMTgxNmE0ZmQ1NTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvddSuVJh152tvHIccEbERtrzphXw
4E936WGPsXaXdWvQj6/IlEpS6i890qeH3w4T8rk67Ln7V16ddHF6BQvZ/FtL3vfA
gv//QVSiCKseQWnBBNUOSKhDSNOLCj6+HANBcdDmUiwRW2tGzyku8RVJLUHm19Il
Fii/6rgYI0JYTdR+RUFWAYa+iCA2XWfDmZwUV5HqkG9D5aIhxPb7bTfnD2lQn9dW
A8E4FM3UlMtG67qIsFil42wRCYJOl5ghqGVJAu/oDi/Y+37zgqBcSLZ36OheLoiT
s9emHcsWGfdyzqdeOlUYaw2NKREm2QjJhVpMva4B02dXps+h5C0pnb5m9QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBcBaayJUhxNzY5TE6pRGBak/VVoMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvRndGcHJJbFNIRTNOamxNVHFsRVlGcVQ5VldnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAucfVAwQA
ueK2MA0GCSqGSIb3DQEBCwUAA4IBAQBqtaFa1fa94JlmUyfuyAv4MwTuwCh29xAD
OfY1VzTbK18MBWpsYbFT99S/RXA9LzgTsgacBeVQIcX1gVS82y4MalMt0IGcOOzM
oljkOwrrGfsuZzjkzLSYCBI3V0NzeDUoEGllg4u+DIgFOKdNe2tOn493G5K5N2AF
IBgDeA7UpYt0FdQMO42xuap9wWWCKbsFos8kdNCF6rR0lgEWfLVupezMHGBnhIHu
cKvHM2hV5nnFuaqOR3EDxmnpNVD4XvGGZnRjEJ8K48pQtRSyWgtLPQT3+xKIJRHh
ubNss+5ObgTBi8LFa/oNfjML0jlNB7NlNk1wEU6Ig7ROf62uLgTC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org