Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/Pq8g4-2BVRpR1hUNMek8AL7osVM.roa
File: Pq8g4-2BVRpR1hUNMek8AL7osVM.roa (raw, json)
Hash identifier: FzB6HBvCsY3cVLAF0RopWLkMYAlaLUprL6/s9IO7vcI=
Subject key identifier: 3E:AF:20:E3:ED:81:55:1A:51:D6:15:0D:31:E9:3C:00:BE:E8:B1:53
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0190B1375FA5D9C8888D3D54174F49943C7E
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/Pq8g4-2BVRpR1hUNMek8AL7osVM.roa
Signing time: Sun 14 Jul 2024 12:28:34 +0000
ROA not before: Sun 14 Jul 2024 12:28:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200436
IP address blocks: 185.3.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b1:37:5f:a5:d9:c8:88:8d:3d:54:17:4f:49:94:3c:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jul 14 12:28:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3eaf20e3ed81551a51d6150d31e93c00bee8b153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:90:89:18:f8:18:c2:9e:1a:2a:00:56:3b:f9:
79:c0:13:dc:52:d8:85:52:f7:c9:39:ea:ce:b2:3f:
2b:17:91:4e:60:48:ed:42:e1:12:b3:33:54:1e:da:
9a:44:3b:27:f1:a2:27:86:45:62:52:bf:78:30:44:
98:61:2c:b7:c9:6e:82:b5:58:6c:78:5b:b4:3b:86:
98:c9:eb:f4:44:31:46:35:5a:7d:4a:2d:91:eb:d9:
74:90:a6:73:7e:33:f4:9e:ff:98:dc:d3:14:e2:af:
8e:e8:58:5f:43:be:83:c3:c6:64:19:ec:12:de:52:
b6:4b:fb:cd:31:b7:ab:53:de:ec:a6:b8:0b:dd:8e:
cc:99:81:ab:36:32:67:ce:06:2a:d8:66:76:15:87:
cd:ac:db:77:2f:e1:10:0f:03:29:80:76:c9:18:97:
d6:ae:62:0f:9e:ad:d9:35:68:d7:41:29:8a:a4:5b:
70:90:06:9c:61:d3:78:a1:ab:82:85:e0:98:b2:0d:
1f:ab:63:f6:b3:a3:ea:e8:02:51:fe:55:37:b7:e7:
be:2f:37:ea:e6:08:08:b2:75:8c:a3:6d:00:70:6f:
45:6b:a9:31:62:d9:53:0f:d6:5b:a6:e6:c1:e6:16:
09:81:6c:65:dc:a7:34:56:e7:75:ae:67:d5:b3:43:
85:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AF:20:E3:ED:81:55:1A:51:D6:15:0D:31:E9:3C:00:BE:E8:B1:53
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/Pq8g4-2BVRpR1hUNMek8AL7osVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.200.0/24
Signature Algorithm: sha256WithRSAEncryption
22:2c:4c:67:d0:3c:01:ee:2e:dd:97:f6:40:4f:63:43:20:57:
a8:83:d2:f3:8d:2f:74:94:87:36:b1:68:f3:de:5c:b0:2e:66:
49:aa:b5:76:9f:7f:b0:81:7a:e4:61:54:7a:0c:55:d5:22:ed:
44:24:21:64:99:f0:b6:0d:79:7c:af:49:01:ad:01:0d:96:cf:
39:cd:d1:20:c8:81:cf:3a:fc:26:75:8d:65:55:b4:37:a4:12:
82:06:1b:f8:64:67:50:12:43:9b:d9:f3:cd:37:ba:86:e4:25:
f0:cd:d3:f2:1f:3b:c0:4c:2a:78:9b:e6:d9:5c:63:db:f0:05:
05:6c:90:a0:96:00:29:29:cd:e4:6d:9a:5b:f5:13:b7:d0:27:
9c:f3:9d:6a:8a:f4:d2:e9:aa:a1:db:a3:07:ff:c6:e6:74:13:
21:34:db:c3:cf:ec:d6:22:a3:95:0e:e7:2e:eb:5f:d4:26:6c:
da:07:0b:eb:22:8a:2a:ab:df:40:dc:22:23:a3:ff:a6:f0:b5:
c9:0e:cf:59:90:0f:f8:f4:74:ac:a1:24:ee:1a:d3:b4:31:22:
44:37:14:a4:a0:40:79:f8:70:1c:54:25:65:df:1b:5f:06:85:
73:fd:53:e4:66:60:c6:14:b5:ae:9f:d0:48:54:b2:34:15:3c:
2f:bf:dd:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCxN1+l2ciIjT1UF09JlDx+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz
MjdlYmUwHhcNMjQwNzE0MTIyODM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWFmMjBlM2VkODE1NTFhNTFkNjE1MGQzMWU5M2MwMGJlZThiMTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZCJGPgYwp4aKgBWO/l5wBPcUtiF
UvfJOerOsj8rF5FOYEjtQuESszNUHtqaRDsn8aInhkViUr94MESYYSy3yW6CtVhs
eFu0O4aYyev0RDFGNVp9Si2R69l0kKZzfjP0nv+Y3NMU4q+O6FhfQ76Dw8ZkGewS
3lK2S/vNMberU97sprgL3Y7MmYGrNjJnzgYq2GZ2FYfNrNt3L+EQDwMpgHbJGJfW
rmIPnq3ZNWjXQSmKpFtwkAacYdN4oauCheCYsg0fq2P2s6Pq6AJR/lU3t+e+Lzfq
5ggIsnWMo20AcG9Fa6kxYtlTD9ZbpubB5hYJgWxl3Kc0Vud1rmfVs0OFKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD6vIOPtgVUaUdYVDTHpPAC+6LFTMB8GA1UdIwQY
MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt
M2RmYTUxMGQ2YjE2LzEvUHE4ZzQtMkJWUnBSMWhVTk1lazhBTDdvc1ZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2
LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQPIMA0G
CSqGSIb3DQEBCwUAA4IBAQAiLExn0DwB7i7dl/ZAT2NDIFeog9LzjS90lIc2sWjz
3lywLmZJqrV2n3+wgXrkYVR6DFXVIu1EJCFkmfC2DXl8r0kBrQENls85zdEgyIHP
OvwmdY1lVbQ3pBKCBhv4ZGdQEkOb2fPNN7qG5CXwzdPyHzvATCp4m+bZXGPb8AUF
bJCglgApKc3kbZpb9RO30Cec851qivTS6aqh26MH/8bmdBMhNNvDz+zWIqOVDucu
61/UJmzaBwvrIooqq99A3CIjo/+m8LXJDs9ZkA/49HSsoSTuGtO0MSJENxSkoEB5
+HAcVCVl3xtfBoVz/VPkZmDGFLWun9BIVLI0FTwvv92i
-----END CERTIFICATE-----
Generated at Mon Jul 22 11:14:30 2024 by rpki-client on console-ams.rpki-client.org