Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/OfMFr6d9Ce7l0q44kqHmpyX236w.roa
File: OfMFr6d9Ce7l0q44kqHmpyX236w.roa (raw, json)
Hash identifier: fXw1zqQvqnpvxDHV5zuMu6REI3SsleCTCR6TGM395QA=
Subject key identifier: 39:F3:05:AF:A7:7D:09:EE:E5:D2:AE:38:92:A1:E6:A7:25:F6:DF:AC
Certificate issuer: /CN=682c842dfa2a1e714727bccb95f165347103f277
Certificate serial: 018CC8DF5308EA70ECD6D1A6592108F8E7FE
Authority key identifier: 68:2C:84:2D:FA:2A:1E:71:47:27:BC:CB:95:F1:65:34:71:03:F2:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/OfMFr6d9Ce7l0q44kqHmpyX236w.roa
Signing time: Tue 02 Jan 2024 06:32:08 +0000
ROA not before: Tue 02 Jan 2024 06:32:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 11185
IP address blocks: 185.69.169.0/24 maxlen: 24
2a05:2241::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 22 May 2024 17:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:53:08:ea:70:ec:d6:d1:a6:59:21:08:f8:e7:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=682c842dfa2a1e714727bccb95f165347103f277
Validity
Not Before: Jan 2 06:32:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39f305afa77d09eee5d2ae3892a1e6a725f6dfac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:54:5d:ee:a3:bb:a0:27:6c:1f:53:b9:3e:62:
0a:5f:47:0c:99:25:7c:0c:c6:2e:bb:a2:9b:2e:62:
ee:9b:16:b5:a3:54:79:1f:f9:6c:81:11:96:ba:59:
14:19:a8:cd:69:07:8a:59:2a:89:5c:85:5f:9e:50:
f7:dd:63:f5:e1:98:f9:53:16:c0:3c:95:48:a1:75:
11:4a:49:dd:34:37:bf:be:5e:97:5b:c4:d6:46:a6:
13:c2:d2:e3:ae:15:92:dc:e3:0a:5d:26:a1:79:13:
3f:30:1f:9a:08:cf:71:92:55:5e:0a:f7:01:a1:f2:
70:8c:cd:3a:18:5f:01:7d:f7:4d:56:0c:99:5e:ca:
b2:18:37:00:dd:76:67:f8:d7:6c:28:e5:d3:5f:93:
cc:a8:5d:7b:b3:82:a4:19:8a:26:16:1d:e9:d6:0c:
22:2b:28:a0:ec:c2:85:98:51:ce:f1:18:c2:d4:ec:
98:8e:1d:0d:fd:ab:8f:74:c9:16:79:af:69:24:25:
19:02:8b:94:70:cf:c4:00:f7:13:27:ba:88:1f:66:
db:77:63:d5:1a:5a:10:66:cd:51:9e:14:4e:ee:12:
5f:1a:bf:04:c4:2a:cd:55:31:60:d5:97:55:77:bc:
2a:89:bd:37:a4:52:55:13:62:6c:e9:14:d3:b8:56:
34:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F3:05:AF:A7:7D:09:EE:E5:D2:AE:38:92:A1:E6:A7:25:F6:DF:AC
X509v3 Authority Key Identifier:
keyid:68:2C:84:2D:FA:2A:1E:71:47:27:BC:CB:95:F1:65:34:71:03:F2:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/OfMFr6d9Ce7l0q44kqHmpyX236w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/aCyELfoqHnFHJ7zLlfFlNHED8nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.169.0/24
IPv6:
2a05:2241::/32
Signature Algorithm: sha256WithRSAEncryption
63:0c:30:89:23:dc:19:d0:b9:da:17:ea:dc:3a:e9:f1:1c:b8:
75:5c:c9:f9:2d:ba:47:63:cc:0e:b5:c7:ec:cf:d6:ef:c3:59:
e2:7a:82:bb:32:1c:2c:4a:e1:8d:cd:39:d8:93:63:a8:60:ed:
c6:7e:d7:78:a1:96:3d:d5:b5:c3:4f:f2:e0:55:41:bb:2c:08:
73:9a:5f:94:27:e2:73:cc:e5:38:5d:c6:18:c6:e2:ae:b2:1a:
2e:ef:d8:28:c4:e0:f9:93:e9:8f:5a:da:61:69:2a:15:4c:e9:
a6:40:1e:e0:a5:7d:c8:8d:5a:eb:21:b2:04:1f:1f:03:bd:34:
74:2f:1b:ad:ef:c4:6c:5b:c1:a2:1c:6b:a2:e7:45:ca:ef:f5:
a0:57:72:91:2b:de:a7:9a:ef:fc:6d:b3:1c:29:04:12:9c:e6:
4f:e4:7b:f8:07:2f:7f:25:bc:a1:0f:b5:52:ac:38:af:d3:e3:
b8:1d:09:5e:28:b9:a3:20:7b:11:0b:ff:18:1a:96:8e:e3:0d:
36:b0:91:6d:85:02:a6:05:30:0e:bb:2a:2f:4e:59:7b:50:33:
54:65:d1:ed:07:78:00:09:1b:38:41:29:17:dd:70:2e:6b:dc:
c3:05:88:75:c9:18:d9:77:8f:97:23:3f:08:c8:f1:88:90:bd:
78:b3:0f:5e
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzI31MI6nDs1tGmWSEI+Of+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MmM4NDJkZmEyYTFlNzE0NzI3YmNjYjk1ZjE2NTM0NzEw
M2YyNzcwHhcNMjQwMTAyMDYzMjA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOWYzMDVhZmE3N2QwOWVlZTVkMmFlMzg5MmExZTZhNzI1ZjZkZmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolRd7qO7oCdsH1O5PmIKX0cMmSV8
DMYuu6KbLmLumxa1o1R5H/lsgRGWulkUGajNaQeKWSqJXIVfnlD33WP14Zj5UxbA
PJVIoXURSkndNDe/vl6XW8TWRqYTwtLjrhWS3OMKXSaheRM/MB+aCM9xklVeCvcB
ofJwjM06GF8BffdNVgyZXsqyGDcA3XZn+NdsKOXTX5PMqF17s4KkGYomFh3p1gwi
Kyig7MKFmFHO8RjC1OyYjh0N/auPdMkWea9pJCUZAouUcM/EAPcTJ7qIH2bbd2PV
GloQZs1RnhRO7hJfGr8ExCrNVTFg1ZdVd7wqib03pFJVE2Js6RTTuFY0IQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFDnzBa+nfQnu5dKuOJKh5qcl9t+sMB8GA1UdIwQY
MBaAFGgshC36Kh5xRye8y5XxZTRxA/J3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUN5RUxmb3FIbkZISjd6TGxmRmxOSEVEOG5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8wMDA0NjUtODNjYi00MWI0LThlNjAt
MDhkNjViMzg2MzlkLzEvT2ZNRnI2ZDlDZTdsMHE0NGtxSG1weVgyMzZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi8wMDA0NjUtODNjYi00MWI0LThlNjAtMDhkNjViMzg2Mzlk
LzEvYUN5RUxmb3FIbkZISjd6TGxmRmxOSEVEOG5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuUWpMA0E
AgACMAcDBQAqBSJBMA0GCSqGSIb3DQEBCwUAA4IBAQBjDDCJI9wZ0LnaF+rcOunx
HLh1XMn5LbpHY8wOtcfsz9bvw1nieoK7MhwsSuGNzTnYk2OoYO3Gftd4oZY91bXD
T/LgVUG7LAhzml+UJ+JzzOU4XcYYxuKushou79goxOD5k+mPWtphaSoVTOmmQB7g
pX3IjVrrIbIEHx8DvTR0Lxut78RsW8GiHGui50XK7/WgV3KRK96nmu/8bbMcKQQS
nOZP5Hv4By9/JbyhD7VSrDiv0+O4HQleKLmjIHsRC/8YGpaO4w02sJFthQKmBTAO
uyovTll7UDNUZdHtB3gACRs4QSkX3XAua9zDBYh1yRjZd4+XIz8IyPGIkL14sw9e
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:20 2024 by rpki-client on console-ams.rpki-client.org