Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/10ea98-78bf-4897-9756-83f156c7ef92/1/ov3htvQIbeuEgFkQepaIdGoqle8.roa
File: ov3htvQIbeuEgFkQepaIdGoqle8.roa (raw, json)
Hash identifier: d3MkLeM20y4olVf83QnLuIrmPNk5yIVYda6BHF5H290=
Subject key identifier: A2:FD:E1:B6:F4:08:6D:EB:84:80:59:10:7A:96:88:74:6A:2A:95:EF
Certificate issuer: /CN=b8f7f24de3a9e52c94c6ca680312441dd9c08804
Certificate serial: 01856F9DFCB3FE0F88BBF6A0951B0AC3E3F2
Authority key identifier: B8:F7:F2:4D:E3:A9:E5:2C:94:C6:CA:68:03:12:44:1D:D9:C0:88:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uPfyTeOp5SyUxspoAxJEHdnAiAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/10ea98-78bf-4897-9756-83f156c7ef92/1/ov3htvQIbeuEgFkQepaIdGoqle8.roa
Signing time: Sun 01 Jan 2023 23:15:02 +0000
ROA not before: Sun 01 Jan 2023 23:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20530
IP address blocks: 185.196.15.0/24 maxlen: 24
185.196.12.0/24 maxlen: 24
185.196.13.0/24 maxlen: 24
185.1.103.0/24 maxlen: 24
2001:7f8:49:1::/64 maxlen: 64
2001:7f8:49::/48 maxlen: 64
2001:7f8:49::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:fc:b3:fe:0f:88:bb:f6:a0:95:1b:0a:c3:e3:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8f7f24de3a9e52c94c6ca680312441dd9c08804
Validity
Not Before: Jan 1 23:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2fde1b6f4086deb848059107a9688746a2a95ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:20:c6:d2:96:31:b1:a8:9a:14:76:1d:60:a7:
ff:d0:c1:d3:a5:68:99:b9:5b:4e:2d:16:b0:d2:66:
63:c1:72:a4:3b:56:68:2e:50:15:44:6f:74:e4:6e:
bd:95:f8:bc:20:fe:34:7d:e1:b3:7c:3a:b8:2a:d9:
b9:56:92:30:87:9a:b4:2d:ee:46:27:f7:a0:06:2d:
f7:03:e0:8e:b2:fa:9b:68:6f:5c:e6:89:61:01:9a:
88:03:b2:5d:5a:3e:02:7e:2b:d4:82:b6:ce:0d:8f:
04:f6:04:3b:06:f9:6e:b6:c4:e8:7d:f6:45:3f:15:
77:c3:a3:30:ea:58:09:53:4b:ad:36:cf:84:85:4c:
a4:f6:67:31:46:21:af:c3:27:fa:0c:06:81:ea:f7:
7c:e3:74:6b:b3:05:72:70:a3:13:de:8d:da:a3:00:
8b:16:f4:f6:4b:42:da:d7:d2:c8:6b:f1:ff:ce:a5:
d6:b3:9c:b6:23:0d:0b:4f:fb:60:36:ee:f7:ba:90:
2c:b6:c5:53:c6:ce:34:4d:68:45:e2:ca:1e:5e:66:
cd:1e:31:32:02:b9:49:bc:40:ef:74:93:2b:f4:92:
48:c7:99:d5:46:80:67:b4:34:7a:00:16:87:77:bc:
e5:5d:a5:7b:03:c1:a3:10:24:cd:87:43:77:64:e5:
85:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:FD:E1:B6:F4:08:6D:EB:84:80:59:10:7A:96:88:74:6A:2A:95:EF
X509v3 Authority Key Identifier:
keyid:B8:F7:F2:4D:E3:A9:E5:2C:94:C6:CA:68:03:12:44:1D:D9:C0:88:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uPfyTeOp5SyUxspoAxJEHdnAiAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/10ea98-78bf-4897-9756-83f156c7ef92/1/ov3htvQIbeuEgFkQepaIdGoqle8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/10ea98-78bf-4897-9756-83f156c7ef92/1/uPfyTeOp5SyUxspoAxJEHdnAiAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.103.0/24
185.196.12.0/23
185.196.15.0/24
IPv6:
2001:7f8:49::/48
Signature Algorithm: sha256WithRSAEncryption
8d:1f:2c:8e:05:e1:22:90:d9:42:9b:97:b1:26:6e:68:3a:9f:
e2:fc:1b:e6:6f:b1:13:2c:0c:41:40:b5:07:d7:f5:e9:f0:ff:
33:b7:6b:8b:da:ee:9b:30:d0:9e:86:08:2e:ae:f7:99:ab:f6:
0b:07:76:7b:ac:8f:0f:c1:7c:ec:ba:5d:2a:e8:0c:68:41:10:
fb:fe:50:2a:4e:37:06:d8:8b:01:cd:d9:d3:9e:27:8d:aa:57:
d9:06:bc:ff:04:05:c8:fb:c9:28:e3:ec:b5:3c:d7:32:36:b0:
3b:a2:d7:72:90:70:ab:7f:75:d7:fa:17:2c:2c:1a:78:22:4f:
17:ce:b8:7e:cc:e7:4a:c1:6a:05:ee:1e:cc:54:87:d2:3d:4d:
94:27:ff:b2:6b:75:59:a9:f1:97:53:7d:a7:b0:8b:bd:6f:5c:
a6:df:fc:e4:b9:2f:87:7b:a7:f2:4e:b7:66:e3:f4:4a:0a:6d:
83:c5:ac:30:d9:62:6b:c3:c8:fe:11:25:41:94:82:18:03:18:
89:37:65:db:1c:54:b4:29:6e:13:93:02:21:36:77:fe:0b:44:
d2:15:a7:7a:d9:25:db:6e:a2:65:c3:79:4b:71:a3:aa:3d:e1:
b8:d0:3e:11:dd:78:8a:d8:b2:88:d8:4c:2b:55:5c:fd:8b:53:
eb:0e:17:96
-----BEGIN CERTIFICATE-----
MIIFGjCCBAKgAwIBAgISAYVvnfyz/g+Iu/aglRsKw+PyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4ZjdmMjRkZTNhOWU1MmM5NGM2Y2E2ODAzMTI0NDFkZDlj
MDg4MDQwHhcNMjMwMTAxMjMxNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmZkZTFiNmY0MDg2ZGViODQ4MDU5MTA3YTk2ODg3NDZhMmE5NWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmyDG0pYxsaiaFHYdYKf/0MHTpWiZ
uVtOLRaw0mZjwXKkO1ZoLlAVRG905G69lfi8IP40feGzfDq4Ktm5VpIwh5q0Le5G
J/egBi33A+COsvqbaG9c5olhAZqIA7JdWj4CfivUgrbODY8E9gQ7BvlutsToffZF
PxV3w6Mw6lgJU0utNs+EhUyk9mcxRiGvwyf6DAaB6vd843RrswVycKMT3o3aowCL
FvT2S0La19LIa/H/zqXWs5y2Iw0LT/tgNu73upAstsVTxs40TWhF4soeXmbNHjEy
ArlJvEDvdJMr9JJIx5nVRoBntDR6ABaHd7zlXaV7A8GjECTNh0N3ZOWFRwIDAQAB
o4ICJjCCAiIwHQYDVR0OBBYEFKL94bb0CG3rhIBZEHqWiHRqKpXvMB8GA1UdIwQY
MBaAFLj38k3jqeUslMbKaAMSRB3ZwIgEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVBmeVRlT3A1U3lVeHNwb0F4SkVIZG5BaUFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8xMGVhOTgtNzhiZi00ODk3LTk3NTYt
ODNmMTU2YzdlZjkyLzEvb3YzaHR2UUliZXVFZ0ZrUWVwYUlkR29xbGU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS8xMGVhOTgtNzhiZi00ODk3LTk3NTYtODNmMTU2YzdlZjky
LzEvdVBmeVRlT3A1U3lVeHNwb0F4SkVIZG5BaUFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIAATASAwQAuQFnAwQB
ucQMAwQAucQPMA8EAgACMAkDBwAgAQf4AEkwDQYJKoZIhvcNAQELBQADggEBAI0f
LI4F4SKQ2UKbl7Embmg6n+L8G+ZvsRMsDEFAtQfX9enw/zO3a4va7psw0J6GCC6u
95mr9gsHdnusjw/BfOy6XSroDGhBEPv+UCpONwbYiwHN2dOeJ42qV9kGvP8EBcj7
ySjj7LU81zI2sDui13KQcKt/ddf6FywsGngiTxfOuH7M50rBagXuHsxUh9I9TZQn
/7JrdVmp8ZdTfaewi71vXKbf/OS5L4d7p/JOt2bj9EoKbYPFrDDZYmvDyP4RJUGU
ghgDGIk3ZdscVLQpbhOTAiE2d/4LRNIVp3rZJdtuomXDeUtxo6o94bjQPhHdeIrY
sojYTCtVXP2LU+sOF5Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:13 2024 by rpki-client on console-ams.rpki-client.org