Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/f8KNsay1mbb9orBc5BIyhmAISYo.roa
File: f8KNsay1mbb9orBc5BIyhmAISYo.roa (raw, json)
Hash identifier: v4HvqSHtnata+yWtWPyTH6hlpciS0qCZN7XdLOzvt8U=
Subject key identifier: 7F:C2:8D:B1:AC:B5:99:B6:FD:A2:B0:5C:E4:12:32:86:60:08:49:8A
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0187FF42A11631E66AA0EEAFBB26D003247C
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/f8KNsay1mbb9orBc5BIyhmAISYo.roa
Signing time: Tue 09 May 2023 06:46:09 +0000
ROA not before: Tue 09 May 2023 06:46:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.199.212.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
185.225.170.0/24 maxlen: 24
185.225.171.0/24 maxlen: 24
79.98.246.0/24 maxlen: 24
185.199.148.0/24 maxlen: 24
185.199.149.0/24 maxlen: 24
79.98.247.0/24 maxlen: 24
185.226.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 May 2023 12:46:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ff:42:a1:16:31:e6:6a:a0:ee:af:bb:26:d0:03:24:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: May 9 06:46:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7fc28db1acb599b6fda2b05ce41232866008498a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1e:3b:d0:9a:5b:7f:1c:f9:33:bc:60:2f:ca:
b6:82:0e:ca:69:b1:4b:82:5c:4f:f3:1a:d8:6e:cd:
1a:d2:c1:41:88:ab:90:40:21:b4:ae:f0:e5:d3:4a:
23:c8:fc:ad:2a:50:70:88:89:11:a6:67:c1:13:b7:
0c:70:f0:3e:d5:89:57:4e:a3:8e:59:05:55:be:93:
5d:df:5e:1d:49:f8:53:f6:67:0f:f2:ee:b4:29:a9:
c1:9a:3d:31:ea:ab:19:71:e5:ff:d8:47:91:f1:1d:
e1:24:d4:d1:33:80:00:1d:62:b1:9d:81:30:5c:0a:
66:0c:17:a1:ad:f9:c0:af:26:14:56:c0:8c:05:6f:
7c:a7:bd:8e:6d:0d:e4:b3:01:9e:99:4e:e8:7e:b7:
83:4e:c4:bf:6f:52:3c:f0:2a:d7:eb:a6:82:c7:ae:
6e:ad:64:ab:cc:2d:43:56:1a:7a:a0:06:eb:66:b5:
11:53:fe:12:85:f4:92:e1:2d:f1:8e:a3:2c:9e:bb:
73:14:c2:40:0a:bd:e2:08:92:b3:f3:85:11:ee:a6:
66:1d:44:b3:9c:0a:fe:3c:95:c3:20:00:6e:73:05:
40:e3:65:00:9c:a3:3b:ca:9e:32:5f:2e:17:e3:97:
56:73:32:14:6d:37:4c:45:41:5b:62:f0:f1:be:90:
6f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C2:8D:B1:AC:B5:99:B6:FD:A2:B0:5C:E4:12:32:86:60:08:49:8A
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/f8KNsay1mbb9orBc5BIyhmAISYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.246.0/23
185.199.148.0/23
185.199.212.0/24
185.225.170.0/23
185.226.180.0/24
194.146.92.0/24
Signature Algorithm: sha256WithRSAEncryption
31:11:93:12:d8:0f:c3:db:c5:33:99:2a:0e:3f:ad:fc:28:2c:
bd:70:23:cd:f2:0d:0a:25:bc:48:00:3d:34:76:66:0b:21:3e:
af:62:96:e1:bd:f5:a7:20:ce:4e:22:27:7e:df:85:1c:a0:4f:
86:2c:56:97:44:41:94:9c:c8:11:34:42:da:6d:e2:e6:dc:a0:
6f:a6:f7:40:c8:d9:e9:82:29:15:9e:8d:c7:52:54:c3:0e:53:
ee:f2:d3:76:c5:84:27:ca:e6:a4:0a:46:53:55:c9:5f:fc:5a:
6f:d3:a6:c3:40:2f:70:da:d8:d9:ad:3c:9c:74:4d:c7:a6:dd:
20:b3:b7:ac:00:77:16:8a:e6:8b:70:59:0a:eb:e0:82:0f:54:
a9:ab:e6:fd:b7:da:e6:3c:b8:ee:55:2a:21:eb:35:08:48:83:
7c:60:9c:21:4d:c3:d8:4f:9c:b6:61:1f:8f:94:39:0b:dc:95:
60:a5:ad:50:91:ec:13:b3:51:c8:18:ee:a0:49:42:0f:0b:91:
03:7e:20:65:ba:cb:17:56:8f:5e:75:a1:c3:46:c4:ad:00:7e:
b5:98:cf:29:50:aa:15:2d:ff:db:bb:9b:fe:9e:dc:f6:76:e6:
fb:45:2b:c7:10:68:0b:11:4f:39:1a:b6:29:0f:8d:06:89:37:
e4:a0:b4:86
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYf/QqEWMeZqoO6vuybQAyR8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjMwNTA5MDY0NjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmMyOGRiMWFjYjU5OWI2ZmRhMmIwNWNlNDEyMzI4NjYwMDg0OThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtR470Jpbfxz5M7xgL8q2gg7KabFL
glxP8xrYbs0a0sFBiKuQQCG0rvDl00ojyPytKlBwiIkRpmfBE7cMcPA+1YlXTqOO
WQVVvpNd314dSfhT9mcP8u60KanBmj0x6qsZceX/2EeR8R3hJNTRM4AAHWKxnYEw
XApmDBehrfnAryYUVsCMBW98p72ObQ3kswGemU7ofreDTsS/b1I88CrX66aCx65u
rWSrzC1DVhp6oAbrZrURU/4ShfSS4S3xjqMsnrtzFMJACr3iCJKz84UR7qZmHUSz
nAr+PJXDIABucwVA42UAnKM7yp4yXy4X45dWczIUbTdMRUFbYvDxvpBvJwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFH/CjbGstZm2/aKwXOQSMoZgCEmKMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvZjhLTnNheTFtYmI5b3JCYzVCSXlobUFJU1lvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQBT2L2AwQB
uceUAwQAucfUAwQBueGqAwQAueK0AwQAwpJcMA0GCSqGSIb3DQEBCwUAA4IBAQAx
EZMS2A/D28UzmSoOP638KCy9cCPN8g0KJbxIAD00dmYLIT6vYpbhvfWnIM5OIid+
34UcoE+GLFaXREGUnMgRNELabeLm3KBvpvdAyNnpgikVno3HUlTDDlPu8tN2xYQn
yuakCkZTVclf/Fpv06bDQC9w2tjZrTycdE3Hpt0gs7esAHcWiuaLcFkK6+CCD1Sp
q+b9t9rmPLjuVSoh6zUISIN8YJwhTcPYT5y2YR+PlDkL3JVgpa1QkewTs1HIGO6g
SUIPC5EDfiBlussXVo9edaHDRsStAH61mM8pUKoVLf/bu5v+ntz2dub7RSvHEGgL
EU85GrYpD40GiTfkoLSG
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org