Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/zAVprkhB88xkwfRUQfwGLB-vPAE.roa
File: zAVprkhB88xkwfRUQfwGLB-vPAE.roa (raw, json)
Hash identifier: aPJ5ctRN3d751Q2hDos1lQ2aYjoVGR3PgbWmcv7pKuk=
Subject key identifier: CC:05:69:AE:48:41:F3:CC:64:C1:F4:54:41:FC:06:2C:1F:AF:3C:01
Certificate issuer: /CN=382528ab1cd1b6dc73c0b09b67d3e7e3584f363d
Certificate serial: 01870962DD3219FCBA447E110E9FDD6E70EF
Authority key identifier: 38:25:28:AB:1C:D1:B6:DC:73:C0:B0:9B:67:D3:E7:E3:58:4F:36:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/zAVprkhB88xkwfRUQfwGLB-vPAE.roa
Signing time: Wed 22 Mar 2023 12:54:46 +0000
ROA not before: Wed 22 Mar 2023 12:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7155
IP address blocks: 185.116.248.0/24 maxlen: 24
5.145.186.0/24 maxlen: 24
5.145.189.0/24 maxlen: 24
5.145.187.0/24 maxlen: 24
5.145.190.0/24 maxlen: 24
5.145.188.0/24 maxlen: 24
5.145.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Jun 2023 13:13:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:09:62:dd:32:19:fc:ba:44:7e:11:0e:9f:dd:6e:70:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382528ab1cd1b6dc73c0b09b67d3e7e3584f363d
Validity
Not Before: Mar 22 12:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc0569ae4841f3cc64c1f45441fc062c1faf3c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fd:5b:13:93:99:03:2c:13:eb:5d:69:5a:b2:
e4:28:fa:77:e8:13:38:21:ef:aa:97:7f:96:fb:c7:
97:41:61:5e:a7:e0:51:80:1a:1a:5a:e4:d6:59:36:
8c:a3:f1:6e:21:eb:1e:ed:c3:ca:39:42:08:6d:62:
93:ec:88:36:16:09:c7:ab:56:3a:5d:d8:03:70:a8:
d7:24:3b:2b:75:2d:a0:6a:e9:bc:1d:ee:df:73:41:
49:40:46:69:eb:49:76:f1:76:60:d3:bb:8c:25:19:
89:05:88:d2:c8:8e:e5:0f:b4:f2:6b:7b:fc:ad:f0:
d2:c8:78:b7:f4:27:c9:91:8a:db:e9:e2:ca:84:bf:
6c:1e:46:d9:8d:03:33:8a:c1:f0:8c:d7:bb:0c:e0:
ad:94:cb:40:b5:92:b6:51:ba:1d:4c:fa:20:cd:8f:
9c:f5:f9:25:1b:f7:ae:3a:06:95:b5:a8:85:12:db:
04:0c:fa:3f:f2:d7:d9:75:14:aa:9b:d7:40:d4:80:
fa:cf:6c:7b:f3:a4:b9:3f:5b:8b:de:5f:0c:0e:ef:
e0:49:aa:ea:e0:fb:ef:50:14:6f:8f:15:e3:a7:21:
d9:16:41:7b:0a:1a:ad:78:7d:d8:ab:c8:ed:c3:6b:
9a:98:7e:03:e0:8a:71:7d:06:55:06:19:93:c3:73:
67:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:05:69:AE:48:41:F3:CC:64:C1:F4:54:41:FC:06:2C:1F:AF:3C:01
X509v3 Authority Key Identifier:
keyid:38:25:28:AB:1C:D1:B6:DC:73:C0:B0:9B:67:D3:E7:E3:58:4F:36:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/zAVprkhB88xkwfRUQfwGLB-vPAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.186.0-5.145.191.255
185.116.248.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:39:05:d8:1e:29:b8:5b:be:9e:0d:38:bd:82:cf:89:5a:83:
c3:4d:16:cd:c7:08:e5:30:59:09:45:5f:6f:29:4b:0e:b1:6a:
65:61:d1:d5:7c:ce:3b:6f:09:15:d6:1a:15:d9:8e:41:83:57:
6b:c8:c9:b3:ae:31:af:5d:90:12:66:11:95:d0:ba:a9:63:64:
9a:4a:92:10:f4:3a:b4:34:e5:09:e1:63:3b:b4:ec:19:71:71:
41:b1:72:b2:c1:c8:f6:58:7a:df:8d:36:27:8c:ff:39:4a:90:
92:31:09:ef:8e:61:e8:40:d6:b8:03:3b:5f:9d:90:f9:6c:46:
b0:b7:fb:3a:7a:75:b6:87:5c:ac:93:ae:1b:8a:2d:12:16:d4:
cd:f2:56:7b:35:45:eb:0f:20:1c:41:49:be:30:ae:5e:bc:5b:
a4:1a:8b:8e:8f:f8:52:df:2c:5e:4e:c8:f5:5d:f1:77:f3:12:
5f:8a:94:d7:e5:5e:b2:f8:5a:4c:d8:d9:c6:b3:9b:68:95:36:
29:6f:7f:9c:c6:60:0c:ab:b2:b3:66:76:b5:1f:5b:ab:ed:51:
9c:c6:cc:4e:0b:7b:d4:22:6f:e1:e5:af:14:88:b6:12:47:d4:
df:34:d5:c9:a3:68:91:c7:a3:d4:4d:ed:81:4f:db:8b:5c:93:
a4:2f:c9:8d
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYcJYt0yGfy6RH4RDp/dbnDvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MjUyOGFiMWNkMWI2ZGM3M2MwYjA5YjY3ZDNlN2UzNTg0
ZjM2M2QwHhcNMjMwMzIyMTI1NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzA1NjlhZTQ4NDFmM2NjNjRjMWY0NTQ0MWZjMDYyYzFmYWYzYzAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxf1bE5OZAywT611pWrLkKPp36BM4
Ie+ql3+W+8eXQWFep+BRgBoaWuTWWTaMo/FuIese7cPKOUIIbWKT7Ig2FgnHq1Y6
XdgDcKjXJDsrdS2gaum8He7fc0FJQEZp60l28XZg07uMJRmJBYjSyI7lD7Tya3v8
rfDSyHi39CfJkYrb6eLKhL9sHkbZjQMzisHwjNe7DOCtlMtAtZK2UbodTPogzY+c
9fklG/euOgaVtaiFEtsEDPo/8tfZdRSqm9dA1ID6z2x786S5P1uL3l8MDu/gSarq
4PvvUBRvjxXjpyHZFkF7ChqteH3Yq8jtw2uamH4D4IpxfQZVBhmTw3NnfQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFMwFaa5IQfPMZMH0VEH8BiwfrzwBMB8GA1UdIwQY
MBaAFDglKKsc0bbcc8Cwm2fT5+NYTzY9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0NVb3F4elJ0dHh6d0xDYlo5UG40MWhQTmowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8wMDgxNmEtZWVkZi00MTkwLWJjMzMt
M2EwMmEyNDJmNDQ0LzEvekFWcHJraEI4OHhrd2ZSVVFmd0dMQi12UEFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8wMDgxNmEtZWVkZi00MTkwLWJjMzMtM2EwMmEyNDJmNDQ0
LzEvT0NVb3F4elJ0dHh6d0xDYlo5UG40MWhQTmowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAEFkboD
BAYFkYADBAC5dPgwDQYJKoZIhvcNAQELBQADggEBALQ5BdgeKbhbvp4NOL2Cz4la
g8NNFs3HCOUwWQlFX28pSw6xamVh0dV8zjtvCRXWGhXZjkGDV2vIybOuMa9dkBJm
EZXQuqljZJpKkhD0OrQ05QnhYzu07BlxcUGxcrLByPZYet+NNieM/zlKkJIxCe+O
YehA1rgDO1+dkPlsRrC3+zp6dbaHXKyTrhuKLRIW1M3yVns1ResPIBxBSb4wrl68
W6Qai46P+FLfLF5OyPVd8XfzEl+KlNflXrL4WkzY2cazm2iVNilvf5zGYAyrsrNm
drUfW6vtUZzGzE4Le9Qib+HlrxSIthJH1N801cmjaJHHo9RN7YFP24tck6QvyY0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:08 2024 by rpki-client on console-ams.rpki-client.org