Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/_dqHL8IUI8qc6-rM2XyksA1sjtU.roa
File: _dqHL8IUI8qc6-rM2XyksA1sjtU.roa (raw, json)
Hash identifier: RtUZJYshSoxCsO1qNfV3c6Sl0Jlw1sOUD/4JISRPBt4=
Subject key identifier: FD:DA:87:2F:C2:14:23:CA:9C:EB:EA:CC:D9:7C:A4:B0:0D:6C:8E:D5
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01857082C2FC674E8CE3DA1FD33192429F97
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/_dqHL8IUI8qc6-rM2XyksA1sjtU.roa
Signing time: Mon 02 Jan 2023 03:24:55 +0000
ROA not before: Mon 02 Jan 2023 03:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136923
IP address blocks: 185.199.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 08:57:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:c2:fc:67:4e:8c:e3:da:1f:d3:31:92:42:9f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jan 2 03:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdda872fc21423ca9cebeaccd97ca4b00d6c8ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0a:a5:9c:66:79:e2:c6:48:18:21:2c:b1:07:
ae:57:4b:27:74:42:b6:59:e6:ce:f5:b4:36:3c:11:
50:f3:55:3d:e7:6d:dc:98:1a:3f:2c:86:94:11:52:
df:ab:90:c0:28:75:2e:c8:80:61:e4:c7:0d:bf:7b:
83:75:96:05:82:5f:a0:57:17:9d:74:a0:bf:3f:5d:
c3:53:23:35:f3:46:99:a8:aa:f3:11:2f:6c:1c:0f:
a6:f9:84:33:a9:0a:f4:26:00:d7:e2:a8:a6:1f:78:
4c:a6:29:25:7f:58:d9:56:fa:53:5f:ac:4a:4c:5f:
87:03:12:92:65:30:79:81:f7:0c:e6:cc:7a:1b:62:
83:bf:b6:5c:7e:67:b0:03:19:5a:14:d1:4d:df:06:
ad:14:6f:1c:54:07:4d:68:51:12:a0:ae:74:58:a4:
fe:7c:06:6c:0a:56:8e:79:6a:4d:fa:6c:61:30:ef:
65:b6:aa:53:f4:b2:2e:50:97:05:ab:45:28:70:1f:
b6:2f:8a:2a:95:8c:9c:f4:2f:fb:5b:24:0f:80:da:
2c:15:83:e3:b4:cf:47:18:9a:ef:8f:c7:e3:04:53:
3a:ae:9d:ea:e8:f5:f8:87:13:04:76:c9:59:0a:82:
04:a8:65:2b:8b:1a:c5:ff:96:fb:1b:9b:8b:aa:53:
0c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:DA:87:2F:C2:14:23:CA:9C:EB:EA:CC:D9:7C:A4:B0:0D:6C:8E:D5
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/_dqHL8IUI8qc6-rM2XyksA1sjtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.149.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:bc:69:a1:04:a2:fd:84:ca:90:73:44:d7:0e:18:2c:25:9c:
3a:ba:3d:94:63:21:0b:2c:da:cb:b5:c8:27:62:06:97:d6:80:
6f:fd:dd:14:9e:bf:8e:21:3d:10:7e:e7:6b:7a:ff:bb:8e:d5:
63:32:7d:6e:39:5f:5b:d2:8d:ee:ea:83:1b:4a:6b:71:d0:77:
7b:41:d8:a5:1a:3b:0b:5d:61:58:57:72:e4:94:de:a2:e4:22:
ca:12:2d:9d:6c:f3:71:4c:a9:76:e6:2c:a9:83:92:84:9e:09:
8e:34:dc:46:14:0c:ce:92:d0:bb:64:a8:d2:71:f8:2a:7c:91:
19:8b:8a:10:3f:a7:fb:33:0b:01:f7:1c:95:8f:b4:36:4a:ed:
b5:97:8a:5a:fd:a2:4f:68:16:25:56:18:39:58:77:bd:47:9f:
c3:71:a2:4e:90:77:0b:a9:f8:bb:7a:c1:2a:78:ba:50:ee:a6:
8a:76:40:bf:19:f7:dc:6b:90:13:18:8c:05:7c:a3:74:9f:07:
ab:6a:8c:63:ac:39:9c:fc:29:06:c2:e6:51:5a:4a:8b:a5:03:
7a:6d:58:57:dc:e3:0d:f4:85:89:a2:8c:89:83:5b:3c:76:c3:
1c:1b:06:03:1b:c7:f9:ae:e8:75:0b:12:fb:bb:18:52:8b:9e:
91:88:20:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwgsL8Z06M49of0zGSQp+XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjMwMTAyMDMyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZGRhODcyZmMyMTQyM2NhOWNlYmVhY2NkOTdjYTRiMDBkNmM4ZWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAqlnGZ54sZIGCEssQeuV0sndEK2
WebO9bQ2PBFQ81U9523cmBo/LIaUEVLfq5DAKHUuyIBh5McNv3uDdZYFgl+gVxed
dKC/P13DUyM180aZqKrzES9sHA+m+YQzqQr0JgDX4qimH3hMpiklf1jZVvpTX6xK
TF+HAxKSZTB5gfcM5sx6G2KDv7ZcfmewAxlaFNFN3watFG8cVAdNaFESoK50WKT+
fAZsClaOeWpN+mxhMO9ltqpT9LIuUJcFq0UocB+2L4oqlYyc9C/7WyQPgNosFYPj
tM9HGJrvj8fjBFM6rp3q6PX4hxMEdslZCoIEqGUrixrF/5b7G5uLqlMM3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP3ahy/CFCPKnOvqzNl8pLANbI7VMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvX2RxSEw4SVVJOHFjNi1yTTJYeWtzQTFzanRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuceVMA0G
CSqGSIb3DQEBCwUAA4IBAQC1vGmhBKL9hMqQc0TXDhgsJZw6uj2UYyELLNrLtcgn
YgaX1oBv/d0Unr+OIT0Qfudrev+7jtVjMn1uOV9b0o3u6oMbSmtx0Hd7QdilGjsL
XWFYV3LklN6i5CLKEi2dbPNxTKl25iypg5KEngmONNxGFAzOktC7ZKjScfgqfJEZ
i4oQP6f7MwsB9xyVj7Q2Su21l4pa/aJPaBYlVhg5WHe9R5/DcaJOkHcLqfi7esEq
eLpQ7qaKdkC/Gffca5ATGIwFfKN0nweraoxjrDmc/CkGwuZRWkqLpQN6bVhX3OMN
9IWJooyJg1s8dsMcGwYDG8f5ruh1CxL7uxhSi56RiCA2
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org