Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/8d4fd5-db94-4c36-a60b-bae0c2045120/1/F58pw5kgjgDv9g3BdfD0WETfqJY.roa
File: F58pw5kgjgDv9g3BdfD0WETfqJY.roa (raw, json)
Hash identifier: IqPgnELUY+hdrMoND7ocQ11RNWcro56kfL3ym3OfdwA=
Subject key identifier: 17:9F:29:C3:99:20:8E:00:EF:F6:0D:C1:75:F0:F4:58:44:DF:A8:96
Certificate issuer: /CN=f5e9a5772dfe2d3946f9959a72d393fafe2ef8bb
Certificate serial: 0186E5DBB6CB4BBC45843DE9320F7CB15519
Authority key identifier: F5:E9:A5:77:2D:FE:2D:39:46:F9:95:9A:72:D3:93:FA:FE:2E:F8:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9emldy3-LTlG-ZWactOT-v4u-Ls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/8d4fd5-db94-4c36-a60b-bae0c2045120/1/F58pw5kgjgDv9g3BdfD0WETfqJY.roa
Signing time: Wed 15 Mar 2023 15:20:27 +0000
ROA not before: Wed 15 Mar 2023 15:20:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208124
IP address blocks: 185.160.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e5:db:b6:cb:4b:bc:45:84:3d:e9:32:0f:7c:b1:55:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5e9a5772dfe2d3946f9959a72d393fafe2ef8bb
Validity
Not Before: Mar 15 15:20:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=179f29c399208e00eff60dc175f0f45844dfa896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f2:15:54:09:b9:89:35:89:29:27:53:6c:d4:
bc:cc:22:03:7d:cd:92:89:35:bb:85:b3:c6:80:ad:
7f:d7:ba:ad:c4:fa:99:ac:3e:d9:e5:4d:b9:7c:82:
fd:d7:20:d7:38:45:03:bd:1f:35:50:99:28:f4:eb:
b3:3d:34:e2:fe:e9:2f:ba:cf:98:3a:b4:05:9c:78:
d3:6c:ea:0b:fb:81:a9:44:9e:23:10:28:f7:8c:05:
d7:98:c2:0d:b6:4d:a6:76:6a:b8:eb:58:22:b9:10:
10:59:72:40:86:25:d1:fb:62:00:3c:c3:a4:df:af:
5e:76:0c:58:d7:c1:90:8d:dd:44:21:34:19:0b:d7:
46:67:77:5e:6c:1f:3a:21:34:4d:50:99:1d:e2:54:
cf:74:d0:46:f7:42:94:67:33:f7:de:35:bf:2f:b7:
c5:27:e6:9c:bc:20:29:81:59:fe:0b:e7:4c:50:90:
ac:03:c3:ef:3a:0e:19:a4:61:e1:eb:e7:87:b2:87:
5a:86:ef:65:5f:9d:c4:6a:f5:ce:69:f4:b9:0e:37:
61:19:65:4f:dd:4a:34:45:86:5b:66:71:47:ac:e8:
ae:1e:60:9d:9e:74:86:23:92:2a:05:52:e5:96:ba:
ce:88:d9:2b:b3:56:3e:54:a0:64:da:98:31:23:58:
e7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:9F:29:C3:99:20:8E:00:EF:F6:0D:C1:75:F0:F4:58:44:DF:A8:96
X509v3 Authority Key Identifier:
keyid:F5:E9:A5:77:2D:FE:2D:39:46:F9:95:9A:72:D3:93:FA:FE:2E:F8:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9emldy3-LTlG-ZWactOT-v4u-Ls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/8d4fd5-db94-4c36-a60b-bae0c2045120/1/F58pw5kgjgDv9g3BdfD0WETfqJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/8d4fd5-db94-4c36-a60b-bae0c2045120/1/9emldy3-LTlG-ZWactOT-v4u-Ls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.205.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:29:a7:ba:98:2a:0f:1d:19:19:0c:5c:db:22:4e:30:5a:9f:
56:76:18:a4:39:06:33:c3:10:91:dc:2a:2c:2d:50:82:46:b3:
40:da:03:33:c8:17:45:88:04:87:e3:e9:fd:f5:a7:f5:dd:d1:
a7:d8:18:a2:05:ab:54:75:14:6e:4a:85:d4:7c:72:71:63:dc:
88:ed:db:00:d9:3a:fe:68:1a:76:bb:23:bb:5d:f2:d8:a7:f3:
f0:c2:02:1b:ee:71:50:80:cb:6f:99:66:64:ba:94:dd:a4:81:
88:64:3c:bf:f9:4b:b4:52:0a:f5:e6:48:30:50:1f:fc:0d:a4:
58:84:3e:e1:a9:fc:a7:4b:db:2d:f9:11:b8:12:f5:bb:1c:9d:
e2:1b:11:59:c8:6a:91:1b:72:c0:7e:e0:14:e8:da:a9:d9:b7:
3f:96:8a:bc:6d:92:0b:6b:4c:67:7d:7b:95:07:13:87:39:9e:
52:ec:b1:61:61:10:3a:84:44:1b:85:a7:66:f4:f0:83:d0:bc:
73:0c:02:de:2a:53:52:ef:76:a2:b1:e8:36:db:4b:f0:95:f9:
62:f6:6a:30:19:6b:e6:14:fe:98:d1:7c:10:80:a1:3b:e1:34:
a4:37:a6:04:5c:da:87:a9:70:5f:76:8e:70:71:30:b3:5b:dd:
a7:39:d5:58
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbl27bLS7xFhD3pMg98sVUZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1ZTlhNTc3MmRmZTJkMzk0NmY5OTU5YTcyZDM5M2ZhZmUy
ZWY4YmIwHhcNMjMwMzE1MTUyMDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzlmMjljMzk5MjA4ZTAwZWZmNjBkYzE3NWYwZjQ1ODQ0ZGZhODk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgfIVVAm5iTWJKSdTbNS8zCIDfc2S
iTW7hbPGgK1/17qtxPqZrD7Z5U25fIL91yDXOEUDvR81UJko9OuzPTTi/ukvus+Y
OrQFnHjTbOoL+4GpRJ4jECj3jAXXmMINtk2mdmq461giuRAQWXJAhiXR+2IAPMOk
369edgxY18GQjd1EITQZC9dGZ3debB86ITRNUJkd4lTPdNBG90KUZzP33jW/L7fF
J+acvCApgVn+C+dMUJCsA8PvOg4ZpGHh6+eHsodahu9lX53EavXOafS5DjdhGWVP
3Uo0RYZbZnFHrOiuHmCdnnSGI5IqBVLllrrOiNkrs1Y+VKBk2pgxI1jnzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBefKcOZII4A7/YNwXXw9FhE36iWMB8GA1UdIwQY
MBaAFPXppXct/i05RvmVmnLTk/r+Lvi7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWVtbGR5My1MVGxHLVpXYWN0T1QtdjR1LUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi84ZDRmZDUtZGI5NC00YzM2LWE2MGIt
YmFlMGMyMDQ1MTIwLzEvRjU4cHc1a2dqZ0R2OWczQmRmRDBXRVRmcUpZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi84ZDRmZDUtZGI5NC00YzM2LWE2MGItYmFlMGMyMDQ1MTIw
LzEvOWVtbGR5My1MVGxHLVpXYWN0T1QtdjR1LUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaDNMA0G
CSqGSIb3DQEBCwUAA4IBAQDLKae6mCoPHRkZDFzbIk4wWp9WdhikOQYzwxCR3Cos
LVCCRrNA2gMzyBdFiASH4+n99af13dGn2BiiBatUdRRuSoXUfHJxY9yI7dsA2Tr+
aBp2uyO7XfLYp/PwwgIb7nFQgMtvmWZkupTdpIGIZDy/+Uu0Ugr15kgwUB/8DaRY
hD7hqfynS9st+RG4EvW7HJ3iGxFZyGqRG3LAfuAU6Nqp2bc/loq8bZILa0xnfXuV
BxOHOZ5S7LFhYRA6hEQbhadm9PCD0LxzDALeKlNS73aiseg220vwlfli9mowGWvm
FP6Y0XwQgKE74TSkN6YEXNqHqXBfdo5wcTCzW92nOdVY
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:47 2024 by rpki-client on console-ams.rpki-client.org