Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/H7vgYXVr6n9v38yVzuX2iV-v_3E.roa
File: H7vgYXVr6n9v38yVzuX2iV-v_3E.roa (raw, json)
Hash identifier: ZKDol0kHJJwRdJu6vEwjGsUhRMlLo11gybJDEHE5tWQ=
Subject key identifier: 1F:BB:E0:61:75:6B:EA:7F:6F:DF:CC:95:CE:E5:F6:89:5F:AF:FF:71
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018CC8DFA83B8E6226172F81DDC95E49546D
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/H7vgYXVr6n9v38yVzuX2iV-v_3E.roa
Signing time: Tue 02 Jan 2024 06:32:29 +0000
ROA not before: Tue 02 Jan 2024 06:32:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 149457
IP address blocks: 185.233.17.0/24 maxlen: 24
194.76.0.0/24 maxlen: 24
185.233.18.0/24 maxlen: 24
85.92.114.0/24 maxlen: 24
193.107.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 13:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:a8:3b:8e:62:26:17:2f:81:dd:c9:5e:49:54:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 06:32:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1fbbe061756bea7f6fdfcc95cee5f6895fafff71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:32:01:64:86:c7:6b:b6:52:cc:e4:49:4f:76:
a0:fe:d2:40:71:c6:a7:27:bf:f6:ad:2c:63:33:d7:
a2:df:5f:19:2b:e0:b9:41:d2:84:ec:94:2f:bb:9a:
9d:1d:26:36:c4:25:78:f9:d4:e9:1e:13:df:47:c6:
3b:00:7f:4f:24:97:e4:ef:5d:64:86:10:13:3a:43:
65:72:5a:60:5e:e6:8f:84:30:82:ca:58:d2:70:ba:
47:ea:00:ff:0c:2d:e9:41:3f:a8:f2:5c:03:2d:c6:
50:12:b9:8d:59:bd:5b:dc:c7:a9:79:e1:40:68:a2:
f5:8a:ce:0d:d5:2e:79:71:93:12:3c:54:e0:ca:27:
bb:c5:28:a5:1f:08:14:3f:b2:cd:3b:78:fb:a3:4b:
37:c4:ff:ec:9e:a8:73:85:ef:fc:0f:be:fa:81:f9:
61:95:96:00:fe:b5:3c:8b:e3:06:2c:d4:61:44:d4:
32:50:04:e2:ac:27:13:f3:f5:fa:67:ec:c6:e1:22:
f2:1e:b8:89:50:d5:4a:09:04:d2:d2:99:85:08:42:
18:e2:7c:87:db:38:40:92:5c:9b:37:7f:12:e6:30:
64:bf:1f:6b:ea:2e:25:da:1d:22:e9:04:eb:5f:2a:
f2:53:54:0c:26:e5:e3:bd:ea:bf:45:14:5b:cb:f8:
db:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:BB:E0:61:75:6B:EA:7F:6F:DF:CC:95:CE:E5:F6:89:5F:AF:FF:71
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/H7vgYXVr6n9v38yVzuX2iV-v_3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.114.0/24
185.233.17.0-185.233.18.255
193.107.218.0/24
194.76.0.0/24
Signature Algorithm: sha256WithRSAEncryption
91:80:aa:3a:f2:d4:c2:e0:e6:a8:a1:0f:fb:4b:57:cc:73:b1:
25:cb:06:81:62:51:0d:07:4d:eb:ac:2c:b6:2a:ca:5f:bf:9b:
3f:af:36:3f:36:d6:57:a3:3b:5a:60:85:35:58:43:7f:9c:76:
ec:07:9e:87:6e:cd:e0:7d:de:54:2e:88:9f:4e:89:06:0c:e9:
a5:36:81:4a:26:03:27:c8:66:1a:b9:49:21:6a:38:2f:73:3f:
1e:bb:41:f5:1e:aa:fd:9a:05:86:20:6e:9a:86:76:d4:ed:d7:
d6:fc:4b:85:fe:3e:eb:fd:7f:9d:f4:74:bb:78:2a:df:8d:84:
07:fd:93:e2:27:49:0a:b5:30:3e:00:3f:ac:f4:76:0e:a6:d3:
04:d6:d9:07:e9:5c:00:e5:83:18:20:f5:54:1d:d2:ac:6b:e6:
1b:75:51:9d:84:fc:2f:34:62:f2:94:0f:56:ed:ea:df:6e:91:
3a:e4:9d:2b:35:25:ea:e8:ae:f3:88:a0:f2:01:d4:8f:8d:fc:
4d:28:9c:47:0f:a5:d2:d7:a0:5c:e7:d9:83:5c:ca:1c:59:9e:
fe:4c:ac:ae:1d:9a:35:a2:9b:4b:26:e4:5e:a0:45:26:47:16:
a1:e7:02:63:94:c4:b9:b0:f9:c7:42:24:7b:8a:db:50:0a:cd:
3a:66:81:13
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYzI36g7jmImFy+B3cleSVRtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2
YzhkY2MwHhcNMjQwMTAyMDYzMjI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZmJiZTA2MTc1NmJlYTdmNmZkZmNjOTVjZWU1ZjY4OTVmYWZmZjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDIBZIbHa7ZSzORJT3ag/tJAccan
J7/2rSxjM9ei318ZK+C5QdKE7JQvu5qdHSY2xCV4+dTpHhPfR8Y7AH9PJJfk711k
hhATOkNlclpgXuaPhDCCyljScLpH6gD/DC3pQT+o8lwDLcZQErmNWb1b3MepeeFA
aKL1is4N1S55cZMSPFTgyie7xSilHwgUP7LNO3j7o0s3xP/snqhzhe/8D776gflh
lZYA/rU8i+MGLNRhRNQyUATirCcT8/X6Z+zG4SLyHriJUNVKCQTS0pmFCEIY4nyH
2zhAklybN38S5jBkvx9r6i4l2h0i6QTrXyryU1QMJuXjveq/RRRby/jbZQIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFB+74GF1a+p/b9/Mlc7l9olfr/9xMB8GA1UdIwQY
MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt
OTE4YWM2NDYyNjc5LzEvSDd2Z1lYVnI2bjl2Mzh5Vnp1WDJpVi12XzNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5
LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAVVxyMAwD
BAC56REDBAC56RIDBADBa9oDBADCTAAwDQYJKoZIhvcNAQELBQADggEBAJGAqjry
1MLg5qihD/tLV8xzsSXLBoFiUQ0HTeusLLYqyl+/mz+vNj821lejO1pghTVYQ3+c
duwHnoduzeB93lQuiJ9OiQYM6aU2gUomAyfIZhq5SSFqOC9zPx67QfUeqv2aBYYg
bpqGdtTt19b8S4X+Puv9f530dLt4Kt+NhAf9k+InSQq1MD4AP6z0dg6m0wTW2Qfp
XADlgxgg9VQd0qxr5ht1UZ2E/C80YvKUD1bt6t9ukTrknSs1JerorvOIoPIB1I+N
/E0onEcPpdLXoFzn2YNcyhxZnv5MrK4dmjWim0sm5F6gRSZHFqHnAmOUxLmw+cdC
JHuK21AKzTpmgRM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org