Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/oW5NrxbxUaZckpWcKCosZZ8eOjY.roa
File: oW5NrxbxUaZckpWcKCosZZ8eOjY.roa (raw, json)
Hash identifier: RJfv6erhA6OnicrhhAFTNgzZU6AWByjTmHtTX+ar+qo=
Subject key identifier: A1:6E:4D:AF:16:F1:51:A6:5C:92:95:9C:28:2A:2C:65:9F:1E:3A:36
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018571DE7AE79DC5850383A538D72F2B53F7
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/oW5NrxbxUaZckpWcKCosZZ8eOjY.roa
Signing time: Mon 02 Jan 2023 09:44:43 +0000
ROA not before: Mon 02 Jan 2023 09:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149014
IP address blocks: 185.235.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 12 Aug 2023 09:28:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:7a:e7:9d:c5:85:03:83:a5:38:d7:2f:2b:53:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 09:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a16e4daf16f151a65c92959c282a2c659f1e3a36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ca:c1:1f:a4:63:b7:bf:ad:23:4b:60:04:48:
9c:40:e1:ec:31:8a:74:08:45:53:1b:46:55:7b:ae:
13:6d:d9:3c:50:a1:7a:63:e9:b9:c3:46:40:8a:63:
3f:91:e2:68:88:c1:11:63:be:25:3c:18:37:8e:54:
08:c7:a9:ec:d9:77:22:1e:1f:ce:25:ac:63:95:f8:
3b:78:ba:0a:d8:9e:82:1a:8b:fb:6a:5d:e2:f5:72:
f5:b8:74:30:23:fa:d7:d0:f6:4e:0a:02:49:d1:59:
5a:cb:66:bb:c5:28:79:b7:dc:8c:36:fa:81:6b:96:
61:47:75:a0:84:62:b1:00:b8:bd:8b:c6:7e:69:6e:
e3:a2:bc:57:21:1b:cd:59:5a:59:e9:b9:11:0a:d7:
cb:7a:d9:a7:2c:ff:29:cf:03:34:6f:7b:73:a7:56:
7b:e3:3c:76:f1:50:5c:e7:15:7c:8d:e4:2f:b2:c6:
d7:da:60:c6:b7:83:35:07:79:fb:89:60:13:f2:6f:
a7:e1:9d:0b:fa:05:09:96:c4:85:c0:c9:fb:15:70:
9e:47:9a:3f:06:60:5a:eb:d1:b8:ba:50:f6:3f:af:
01:15:e0:85:0f:3e:50:b5:c4:71:b1:82:1e:69:ec:
e0:7c:d2:f4:d1:53:c6:6f:04:f7:c4:01:b7:57:61:
d4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6E:4D:AF:16:F1:51:A6:5C:92:95:9C:28:2A:2C:65:9F:1E:3A:36
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/oW5NrxbxUaZckpWcKCosZZ8eOjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.164.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:2e:a5:94:2c:9f:b2:76:c3:30:ee:fd:e5:4e:4e:79:b5:20:
a6:6b:3e:b0:96:e6:f3:ac:82:04:aa:28:31:72:f6:05:9b:35:
61:b4:10:72:4b:0f:2d:5c:3b:f5:28:b0:b1:cf:43:74:c3:a8:
f8:1c:a3:c2:83:b7:c2:87:3c:3d:89:3b:e2:72:8c:25:de:5c:
0c:d5:1e:c6:fb:0c:98:8e:ad:5e:95:d0:eb:02:95:15:27:1d:
a3:4d:4a:0a:09:d6:f9:1b:8e:e4:54:96:91:43:a4:4b:a3:1e:
32:a1:d9:7c:c9:54:83:b1:a4:54:9a:0b:dd:31:a8:4c:73:d2:
62:a3:0a:10:2d:dd:7a:0f:cf:62:bd:8b:69:63:22:65:cc:9b:
92:df:d7:2e:34:99:a0:15:1a:42:e6:3b:d3:32:e1:f4:fa:ef:
35:5c:4d:26:e1:cb:d5:9d:ea:20:59:ad:5b:ab:84:a0:3f:21:
02:e6:06:7c:13:d8:85:24:cf:e8:86:53:e0:b8:dc:9a:c8:8d:
cb:a8:91:10:a3:b9:c0:93:e9:de:47:5f:87:be:3b:13:5e:7e:
a3:6d:9b:fc:f3:c6:39:f8:70:26:ad:dc:8c:90:5c:7a:3c:59:
94:b3:27:af:70:8e:03:38:4e:15:7f:37:e3:4f:2b:2b:b0:77:
cd:68:12:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx3nrnncWFA4OlONcvK1P3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2
YzhkY2MwHhcNMjMwMTAyMDk0NDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTZlNGRhZjE2ZjE1MWE2NWM5Mjk1OWMyODJhMmM2NTlmMWUzYTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm8rBH6Rjt7+tI0tgBEicQOHsMYp0
CEVTG0ZVe64Tbdk8UKF6Y+m5w0ZAimM/keJoiMERY74lPBg3jlQIx6ns2XciHh/O
Jaxjlfg7eLoK2J6CGov7al3i9XL1uHQwI/rX0PZOCgJJ0Vlay2a7xSh5t9yMNvqB
a5ZhR3WghGKxALi9i8Z+aW7jorxXIRvNWVpZ6bkRCtfLetmnLP8pzwM0b3tzp1Z7
4zx28VBc5xV8jeQvssbX2mDGt4M1B3n7iWAT8m+n4Z0L+gUJlsSFwMn7FXCeR5o/
BmBa69G4ulD2P68BFeCFDz5QtcRxsYIeaezgfNL00VPGbwT3xAG3V2HUIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKFuTa8W8VGmXJKVnCgqLGWfHjo2MB8GA1UdIwQY
MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt
OTE4YWM2NDYyNjc5LzEvb1c1TnJ4YnhVYVpja3BXY0tDb3NaWjhlT2pZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5
LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueukMA0G
CSqGSIb3DQEBCwUAA4IBAQCdLqWULJ+ydsMw7v3lTk55tSCmaz6wlubzrIIEqigx
cvYFmzVhtBBySw8tXDv1KLCxz0N0w6j4HKPCg7fChzw9iTvicowl3lwM1R7G+wyY
jq1eldDrApUVJx2jTUoKCdb5G47kVJaRQ6RLox4yodl8yVSDsaRUmgvdMahMc9Ji
owoQLd16D89ivYtpYyJlzJuS39cuNJmgFRpC5jvTMuH0+u81XE0m4cvVneogWa1b
q4SgPyEC5gZ8E9iFJM/ohlPguNyayI3LqJEQo7nAk+neR1+HvjsTXn6jbZv888Y5
+HAmrdyMkFx6PFmUsyevcI4DOE4VfzfjTysrsHfNaBLF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org