Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/XEUVhr4HcMU_y5vNfTwO6bYAg3E.roa
File: XEUVhr4HcMU_y5vNfTwO6bYAg3E.roa (raw, json)
Hash identifier: j4h58VfjBIFWRrgdnti71I++vFng26rgNoegc8ALnuM=
Subject key identifier: 5C:45:15:86:BE:07:70:C5:3F:CB:9B:CD:7D:3C:0E:E9:B6:00:83:71
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018F26D76B877ADF77B4383FD50813E330BC
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/XEUVhr4HcMU_y5vNfTwO6bYAg3E.roa
Signing time: Sun 28 Apr 2024 22:33:22 +0000
ROA not before: Sun 28 Apr 2024 22:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152700
IP address blocks: 185.199.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 22:47:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:26:d7:6b:87:7a:df:77:b4:38:3f:d5:08:13:e3:30:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 28 22:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c451586be0770c53fcb9bcd7d3c0ee9b6008371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:74:94:a0:fa:a2:e3:91:2c:39:03:89:a6:6b:
5b:62:56:c2:cd:0c:15:3e:df:a4:e1:4e:71:e8:1c:
21:63:a0:aa:76:87:6b:82:9c:ce:23:2d:46:de:33:
82:ab:aa:0d:c3:1d:9d:8d:f1:1d:15:45:fb:62:87:
73:87:4f:22:47:b0:4d:26:71:b4:f2:78:7f:7b:ab:
03:5c:78:d0:f3:c7:60:f0:ee:60:31:1f:dd:31:77:
6e:45:aa:93:f0:94:89:95:7d:a8:ca:cc:66:40:d5:
d2:6e:c1:5d:c6:cc:2d:c4:b2:87:42:40:50:3e:b0:
af:74:e3:bb:0a:6a:99:08:aa:e2:b2:82:f2:57:07:
a6:13:30:52:cb:b2:ad:e7:77:1c:70:69:57:b7:f3:
d3:66:54:d7:d0:be:a3:08:0d:6e:f7:f4:9d:46:d6:
4a:3c:9f:8a:4d:1f:cd:87:4e:38:81:70:d8:90:13:
1b:94:b3:9c:91:6a:b4:f0:10:48:f8:61:72:59:60:
e9:50:7a:b4:bc:17:a1:83:80:fa:67:bf:73:ab:c6:
b3:92:20:2d:38:0f:15:7c:4f:c2:85:14:63:b2:d1:
86:44:cd:e5:41:64:b8:8c:32:68:17:80:63:2a:cf:
54:eb:92:63:34:40:48:03:46:6d:9c:02:68:76:f7:
6a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:45:15:86:BE:07:70:C5:3F:CB:9B:CD:7D:3C:0E:E9:B6:00:83:71
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/XEUVhr4HcMU_y5vNfTwO6bYAg3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.151.0/24
Signature Algorithm: sha256WithRSAEncryption
22:30:1d:8d:d0:42:4a:71:fe:52:bb:75:38:73:89:79:49:a1:
ed:e8:f5:e1:79:95:69:65:7a:7a:fe:ad:d5:55:80:53:ab:07:
de:a7:16:b2:85:3f:2a:8a:ec:4d:c6:b8:6d:52:76:9e:ce:c0:
1b:e4:7e:1b:ac:a5:77:f2:d2:36:c8:e8:20:56:f0:6c:79:53:
58:92:a6:b7:9a:7f:d0:7d:27:e1:5b:c8:c4:57:48:b9:18:90:
29:77:44:2d:40:54:cb:61:4c:05:8d:ed:ab:87:fa:85:f0:e8:
33:8a:73:01:13:57:21:7d:78:6a:91:20:be:f8:fd:1f:48:d2:
4a:ec:e6:2e:c1:69:0b:53:6d:e7:8f:40:b5:da:61:ad:f5:07:
a5:43:ad:62:ee:75:7f:42:ab:45:5b:47:b1:4f:7b:47:49:10:
94:f9:43:66:23:29:3a:8b:f5:df:fd:52:c5:8a:12:4e:df:39:
cb:94:f0:de:fd:83:e5:a8:7c:6f:f5:0a:fd:a0:06:47:33:11:
71:09:90:33:43:1a:87:27:02:cd:5d:a3:51:62:b4:ff:18:4f:
d6:09:54:26:46:77:c2:3e:0b:f2:b6:23:cf:71:54:b7:9b:c2:
e0:d4:38:98:c6:00:03:02:e3:3d:5c:94:ef:46:ad:38:2e:90:
5b:d8:fa:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY8m12uHet93tDg/1QgT4zC8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjQwNDI4MjIzMzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YzQ1MTU4NmJlMDc3MGM1M2ZjYjliY2Q3ZDNjMGVlOWI2MDA4MzcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXSUoPqi45EsOQOJpmtbYlbCzQwV
Pt+k4U5x6BwhY6CqdodrgpzOIy1G3jOCq6oNwx2djfEdFUX7Yodzh08iR7BNJnG0
8nh/e6sDXHjQ88dg8O5gMR/dMXduRaqT8JSJlX2oysxmQNXSbsFdxswtxLKHQkBQ
PrCvdOO7CmqZCKrisoLyVwemEzBSy7Kt53cccGlXt/PTZlTX0L6jCA1u9/SdRtZK
PJ+KTR/Nh044gXDYkBMblLOckWq08BBI+GFyWWDpUHq0vBehg4D6Z79zq8azkiAt
OA8VfE/ChRRjstGGRM3lQWS4jDJoF4BjKs9U65JjNEBIA0ZtnAJodvdqwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFxFFYa+B3DFP8ubzX08Dum2AINxMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvWEVVVmhyNEhjTVVfeTV2TmZUd082YllBZzNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuceXMA0G
CSqGSIb3DQEBCwUAA4IBAQAiMB2N0EJKcf5Su3U4c4l5SaHt6PXheZVpZXp6/q3V
VYBTqwfepxayhT8qiuxNxrhtUnaezsAb5H4brKV38tI2yOggVvBseVNYkqa3mn/Q
fSfhW8jEV0i5GJApd0QtQFTLYUwFje2rh/qF8OgzinMBE1chfXhqkSC++P0fSNJK
7OYuwWkLU23nj0C12mGt9QelQ61i7nV/QqtFW0exT3tHSRCU+UNmIyk6i/Xf/VLF
ihJO3znLlPDe/YPlqHxv9Qr9oAZHMxFxCZAzQxqHJwLNXaNRYrT/GE/WCVQmRnfC
PgvytiPPcVS3m8Lg1DiYxgADAuM9XJTvRq04LpBb2PqK
-----END CERTIFICATE-----
Generated at Thu Jun 6 23:33:21 2024 by rpki-client on console-fra.rpki-client.org