Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/69e6qAyN6XwS3zgdBQwRfBphOho.roa
File: 69e6qAyN6XwS3zgdBQwRfBphOho.roa (raw, json)
Hash identifier: 8MoUhZ9foKZf5oO0dqXB5MYzMbzB47ISSrnXV5oZkWU=
Subject key identifier: EB:D7:BA:A8:0C:8D:E9:7C:12:DF:38:1D:05:0C:11:7C:1A:61:3A:1A
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 018ED48CE36EA5C640C64D7093D354FBFCBF
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/69e6qAyN6XwS3zgdBQwRfBphOho.roa
Signing time: Fri 12 Apr 2024 23:03:06 +0000
ROA not before: Fri 12 Apr 2024 23:03:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34465
IP address blocks: 185.188.28.0/24 maxlen: 24
2a12:8fc6::/32 maxlen: 32
2a12:8fc6:5ee::/48 maxlen: 48
2a12:8fc6:a051::/48 maxlen: 48
2a12:8fc6:a1c3::/48 maxlen: 48
2a12:8fc6:a517::/48 maxlen: 48
2a12:8fc6:aa00::/48 maxlen: 48
2a12:8fc6:ace1::/48 maxlen: 48
2a12:8fc6:ace2::/48 maxlen: 48
2a12:8fc6:ace3::/48 maxlen: 48
2a12:8fc6:ae00::/48 maxlen: 48
2a12:8fc6:ae44::/48 maxlen: 48
2a12:8fc6:bab0::/48 maxlen: 48
2a12:8fc6:bdee::/48 maxlen: 48
2a12:8fc6:be01::/48 maxlen: 48
2a12:8fc6:c31a::/48 maxlen: 48
2a12:8fc6:c31e::/48 maxlen: 48
2a12:8fc6:ca00::/48 maxlen: 48
2a12:8fc6:caa0::/48 maxlen: 48
2a12:8fc6:cae1::/48 maxlen: 48
2a12:8fc6:cc00::/48 maxlen: 48
2a12:8fc6:cc21::/48 maxlen: 48
2a12:8fc6:cd00::/48 maxlen: 48
2a12:8fc6:cd01::/48 maxlen: 48
2a12:8fc6:cd02::/48 maxlen: 48
2a12:8fc6:cd04::/48 maxlen: 48
2a12:8fc6:ce00::/48 maxlen: 48
2a12:8fc6:ce01::/48 maxlen: 48
2a12:8fc6:daa0::/48 maxlen: 48
2a12:8fc6:dae0::/48 maxlen: 48
2a12:8fc6:db00::/48 maxlen: 48
2a12:8fc6:dbaa::/48 maxlen: 48
2a12:8fc6:eaca::/48 maxlen: 48
2a12:8fc6:ee01::/48 maxlen: 48
2a12:8fc6:efdf::/48 maxlen: 48
2a12:8fc6:faa0::/48 maxlen: 48
2a12:8fc6:fae0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 16 Jun 2024 17:41:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d4:8c:e3:6e:a5:c6:40:c6:4d:70:93:d3:54:fb:fc:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Apr 12 23:03:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ebd7baa80c8de97c12df381d050c117c1a613a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:02:e9:86:c5:a2:ac:59:cf:48:07:75:88:
15:e1:a5:14:9d:93:ac:78:6e:2a:7d:62:b7:b5:83:
19:1f:8a:d7:f2:1f:ac:0a:bd:4b:4f:da:49:d3:8f:
2d:e6:02:f0:91:d8:c3:89:4b:3f:0c:b5:77:ce:40:
ea:32:46:20:69:b0:6d:0b:c3:22:18:28:a6:cb:92:
a0:ea:f6:ae:cb:ef:30:d1:d8:6d:d4:3d:58:0c:e6:
a5:6f:ae:e5:4b:b9:36:f6:34:3f:5e:14:4f:3d:ef:
d1:f3:8c:4d:05:96:88:0d:ec:e6:1c:4d:c6:e9:98:
fd:45:52:11:56:6e:70:81:4b:d1:77:b9:aa:25:76:
ba:88:d9:a7:e4:f2:41:3f:73:7d:65:bd:2e:32:a7:
c6:1e:87:7b:3c:f1:de:53:d2:98:04:4b:32:8c:eb:
94:b6:cd:9c:d3:63:90:30:e5:ca:16:fc:75:e4:ab:
ab:fc:a0:56:cc:6f:3a:68:97:6e:d8:6f:c4:a6:63:
be:0b:21:f8:02:38:18:68:e9:70:2f:be:bc:d6:6b:
12:f5:3e:59:49:4e:92:60:ba:d3:d5:35:59:b1:e7:
b8:4e:5b:48:29:9e:33:56:95:08:1c:4a:92:32:cc:
62:9c:bb:a9:66:41:7c:26:5c:6a:e0:f5:a8:1f:be:
5f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D7:BA:A8:0C:8D:E9:7C:12:DF:38:1D:05:0C:11:7C:1A:61:3A:1A
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/69e6qAyN6XwS3zgdBQwRfBphOho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.28.0/24
IPv6:
2a12:8fc6::/32
Signature Algorithm: sha256WithRSAEncryption
a2:01:b0:88:59:ef:bd:23:d9:23:85:11:e6:6a:9e:fe:fa:19:
6a:07:3a:dd:ed:ef:e5:50:7f:f7:ea:f1:b5:c7:c4:3f:9b:4a:
f3:ae:ff:f3:88:2e:bd:89:66:5b:2b:58:46:d1:36:80:b2:aa:
5d:67:47:0b:2b:e7:8d:7e:da:61:54:1b:4d:86:7b:39:39:3f:
00:22:b1:db:f5:95:54:12:7a:93:34:7c:60:d9:cc:2d:88:96:
8c:53:08:4d:57:2a:13:52:f3:ba:c3:25:92:8e:c7:e2:db:00:
4c:d0:6b:27:12:d5:46:05:12:ec:c3:dc:6b:4c:14:21:6f:ad:
88:25:cf:6f:a8:48:d2:53:f5:87:0b:f6:09:fb:82:40:46:40:
54:14:b6:59:62:16:ab:0c:be:c4:8a:6d:da:a4:ac:75:9b:0a:
51:03:bc:1f:4f:fc:ef:72:4f:50:2c:a2:b2:90:88:5f:ba:81:
2c:da:ae:d5:27:2b:2e:9b:71:d4:55:c0:10:e9:99:df:60:3c:
cd:fe:1f:5d:69:e3:68:e9:d0:9a:cb:42:d1:b3:28:77:af:58:
bb:4c:7a:58:4e:68:31:f0:d7:cf:0a:86:af:34:ef:97:d7:1f:
b9:63:46:d2:71:0a:79:d5:d2:dc:06:63:6e:02:44:91:25:83:
ff:f9:91:2d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAY7UjONupcZAxk1wk9NU+/y/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiOTY3ZTc3MmNjNzI5ODMwNWExMWZmYTY1ZGQxODVmNmE1
ODkxMGIwHhcNMjQwNDEyMjMwMzA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYmQ3YmFhODBjOGRlOTdjMTJkZjM4MWQwNTBjMTE3YzFhNjEzYTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZ4C6YbFoqxZz0gHdYgV4aUUnZOs
eG4qfWK3tYMZH4rX8h+sCr1LT9pJ048t5gLwkdjDiUs/DLV3zkDqMkYgabBtC8Mi
GCimy5Kg6vauy+8w0dht1D1YDOalb67lS7k29jQ/XhRPPe/R84xNBZaIDezmHE3G
6Zj9RVIRVm5wgUvRd7mqJXa6iNmn5PJBP3N9Zb0uMqfGHod7PPHeU9KYBEsyjOuU
ts2c02OQMOXKFvx15Kur/KBWzG86aJdu2G/EpmO+CyH4AjgYaOlwL7681msS9T5Z
SU6SYLrT1TVZsee4TltIKZ4zVpUIHEqSMsxinLupZkF8Jlxq4PWoH75feQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFOvXuqgMjel8Et84HQUMEXwaYToaMB8GA1UdIwQY
MBaAFCuWfncsxymDBaEf+mXdGF9qWJELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzVaLWR5ekhLWU1Gb1JfNlpkMFlYMnBZa1FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS82NjBlNzQtYTNiYy00NDRiLTljNmEt
NThjOTZkNjZmMGExLzEvNjllNnFBeU42WHdTM3pnZEJRd1JmQnBoT2hvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS82NjBlNzQtYTNiYy00NDRiLTljNmEtNThjOTZkNjZmMGEx
LzEvSzVaLWR5ekhLWU1Gb1JfNlpkMFlYMnBZa1FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAubwcMA0E
AgACMAcDBQAqEo/GMA0GCSqGSIb3DQEBCwUAA4IBAQCiAbCIWe+9I9kjhRHmap7+
+hlqBzrd7e/lUH/36vG1x8Q/m0rzrv/ziC69iWZbK1hG0TaAsqpdZ0cLK+eNftph
VBtNhns5OT8AIrHb9ZVUEnqTNHxg2cwtiJaMUwhNVyoTUvO6wyWSjsfi2wBM0Gsn
EtVGBRLsw9xrTBQhb62IJc9vqEjSU/WHC/YJ+4JARkBUFLZZYharDL7Eim3apKx1
mwpRA7wfT/zvck9QLKKykIhfuoEs2q7VJysum3HUVcAQ6ZnfYDzN/h9daeNo6dCa
y0LRsyh3r1i7THpYTmgx8NfPCoavNO+X1x+5Y0bScQp51dLcBmNuAkSRJYP/+ZEt
-----END CERTIFICATE-----
Generated at Sun Jun 16 19:22:49 2024 by rpki-client on console-ams.rpki-client.org