Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/uEyL3Ae-1IvAmsY2d_X_lrLM-jQ.roa
File: uEyL3Ae-1IvAmsY2d_X_lrLM-jQ.roa (raw, json)
Hash identifier: boHNyeCuIwl8pcCfyCLGOZOrmTC86jD8cSL/IPvfBnQ=
Subject key identifier: B8:4C:8B:DC:07:BE:D4:8B:C0:9A:C6:36:77:F5:FF:96:B2:CC:FA:34
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018B6045E9375B0A60A0ECBFEECFF6E924EA
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/uEyL3Ae-1IvAmsY2d_X_lrLM-jQ.roa
Signing time: Tue 24 Oct 2023 06:01:16 +0000
ROA not before: Tue 24 Oct 2023 06:01:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396073
IP address blocks: 185.199.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Dec 2023 10:14:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:60:45:e9:37:5b:0a:60:a0:ec:bf:ee:cf:f6:e9:24:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Oct 24 06:01:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b84c8bdc07bed48bc09ac63677f5ff96b2ccfa34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:70:f3:b3:d4:99:cf:16:0e:99:e4:ac:a0:6d:
26:24:db:f4:6e:c7:65:55:1c:83:97:52:5a:aa:a5:
2b:a1:e9:09:b5:5a:b4:c6:38:64:3d:23:ed:50:ac:
22:2e:4b:59:85:a7:96:44:f0:4c:03:a7:dd:28:fe:
be:af:2a:21:2a:a6:c5:ea:30:7b:02:42:2e:85:6b:
e6:04:2c:c4:74:ab:c3:e8:31:8b:d5:61:e8:af:7f:
89:28:32:72:cb:78:75:4a:b7:86:a5:ac:2f:cb:e2:
10:8b:fe:13:b0:35:8d:ce:88:bb:59:a2:3b:27:e0:
55:aa:3c:88:7e:9e:9f:c3:7a:62:ff:c6:87:7b:bc:
f0:20:bb:ee:58:a9:f0:01:9e:b0:1a:46:fe:d0:40:
f3:85:33:dd:1a:39:40:2f:2a:de:4a:10:67:a7:67:
7c:7b:2b:d5:8f:1c:e3:39:9a:41:e5:b9:08:23:08:
a9:8a:bf:38:e6:16:1d:76:2a:9d:25:4d:d9:d7:fe:
ad:c6:d2:00:8c:45:28:13:26:a6:b4:d6:29:57:0e:
c5:99:e4:59:34:6e:1d:f7:12:f9:55:0c:b3:8b:e1:
0c:67:09:7a:44:01:f1:ac:f4:ab:77:16:29:86:02:
09:78:72:c1:1a:08:1b:5a:c3:65:d7:fd:57:04:9c:
97:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:4C:8B:DC:07:BE:D4:8B:C0:9A:C6:36:77:F5:FF:96:B2:CC:FA:34
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/uEyL3Ae-1IvAmsY2d_X_lrLM-jQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.213.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:65:14:4d:f2:cc:9d:f1:f2:d9:01:d2:54:92:04:aa:bc:24:
68:1b:8f:67:9e:bf:e2:cc:91:ca:aa:46:54:79:c9:b2:4b:6f:
71:f7:c5:36:2b:e5:1b:8e:36:11:0d:e4:26:4d:fe:f4:f0:6d:
cf:a8:a7:79:43:2e:22:2f:92:f0:e9:6c:75:0e:ec:74:98:62:
d2:74:a8:41:e4:82:b0:67:dc:39:bb:a3:4c:57:7c:01:12:65:
40:cb:52:4d:75:83:21:5f:1f:a2:c0:d8:d2:ce:f3:f5:26:8e:
2d:ef:12:b5:38:c1:2b:4e:73:c6:01:84:c3:73:f4:46:e3:f9:
fa:09:4c:d7:ee:cf:30:05:37:48:bf:00:3a:33:eb:16:2b:9b:
d4:2b:99:69:43:ed:08:74:7e:44:4a:0a:24:51:ad:2c:f5:50:
2d:6b:bc:81:d6:4d:c1:64:e9:ce:bd:65:54:55:e8:99:1f:df:
49:2d:e3:ba:00:10:94:19:0f:88:95:54:c3:90:98:44:d7:e8:
b3:c4:d7:48:20:ba:c0:42:2e:0f:9b:a9:43:ad:63:c9:2f:4d:
49:5f:b5:1c:b4:4f:7c:54:b1:c0:a7:7f:5c:89:ad:39:2e:88:
00:95:ce:f6:2d:5d:2a:86:4f:f6:c2:7b:99:bb:40:b2:b9:cd:
56:3f:0c:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtgRek3WwpgoOy/7s/26STqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjMxMDI0MDYwMTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODRjOGJkYzA3YmVkNDhiYzA5YWM2MzY3N2Y1ZmY5NmIyY2NmYTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHDzs9SZzxYOmeSsoG0mJNv0bsdl
VRyDl1JaqqUroekJtVq0xjhkPSPtUKwiLktZhaeWRPBMA6fdKP6+ryohKqbF6jB7
AkIuhWvmBCzEdKvD6DGL1WHor3+JKDJyy3h1SreGpawvy+IQi/4TsDWNzoi7WaI7
J+BVqjyIfp6fw3pi/8aHe7zwILvuWKnwAZ6wGkb+0EDzhTPdGjlALyreShBnp2d8
eyvVjxzjOZpB5bkIIwipir845hYddiqdJU3Z1/6txtIAjEUoEyamtNYpVw7FmeRZ
NG4d9xL5VQyzi+EMZwl6RAHxrPSrdxYphgIJeHLBGggbWsNl1/1XBJyXIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLhMi9wHvtSLwJrGNnf1/5ayzPo0MB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvdUV5TDNBZS0xSXZBbXNZMmRfWF9sckxNLWpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucfVMA0G
CSqGSIb3DQEBCwUAA4IBAQC2ZRRN8syd8fLZAdJUkgSqvCRoG49nnr/izJHKqkZU
ecmyS29x98U2K+UbjjYRDeQmTf708G3PqKd5Qy4iL5Lw6Wx1Dux0mGLSdKhB5IKw
Z9w5u6NMV3wBEmVAy1JNdYMhXx+iwNjSzvP1Jo4t7xK1OMErTnPGAYTDc/RG4/n6
CUzX7s8wBTdIvwA6M+sWK5vUK5lpQ+0IdH5ESgokUa0s9VAta7yB1k3BZOnOvWVU
VeiZH99JLeO6ABCUGQ+IlVTDkJhE1+izxNdIILrAQi4Pm6lDrWPJL01JX7UctE98
VLHAp39cia05LogAlc72LV0qhk/2wnuZu0Cyuc1WPwzL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:36 2024 by rpki-client on console-ams.rpki-client.org