Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/CmudiN7ylNKKGQwdXQCaiMm7Qhw.roa
File: CmudiN7ylNKKGQwdXQCaiMm7Qhw.roa (raw, json)
Hash identifier: 69B7qCrtWx0Cwn8xvIt7vXMRPlC1JO+4e1l4sQSKHko=
Subject key identifier: 0A:6B:9D:88:DE:F2:94:D2:8A:19:0C:1D:5D:00:9A:88:C9:BB:42:1C
Certificate issuer: /CN=946733318c62c47920fe375ad99cb729ee90a1ad
Certificate serial: 018CC26D229E5D720E77740B3FE4ADF7E7ED
Authority key identifier: 94:67:33:31:8C:62:C4:79:20:FE:37:5A:D9:9C:B7:29:EE:90:A1:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lGczMYxixHkg_jda2Zy3Ke6Qoa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/CmudiN7ylNKKGQwdXQCaiMm7Qhw.roa
Signing time: Mon 01 Jan 2024 00:29:41 +0000
ROA not before: Mon 01 Jan 2024 00:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207894
IP address blocks: 185.114.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:22:9e:5d:72:0e:77:74:0b:3f:e4:ad:f7:e7:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=946733318c62c47920fe375ad99cb729ee90a1ad
Validity
Not Before: Jan 1 00:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a6b9d88def294d28a190c1d5d009a88c9bb421c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ed:14:25:d0:9a:b0:e0:7e:dd:ea:0f:e2:db:
60:fd:ee:dc:ef:7c:a0:23:aa:59:68:53:b6:4f:d8:
59:b8:6f:3f:97:c3:c6:57:6d:98:d4:f4:d3:50:a3:
79:e1:a0:85:52:15:b2:29:ea:a8:5a:b4:83:7d:b9:
d5:90:f5:2a:ae:43:f6:ec:a9:eb:c9:c5:47:0f:db:
74:1c:e1:61:d6:30:fe:7a:a8:80:6a:3f:b9:eb:de:
c3:4f:ca:d1:d7:ab:a3:bd:d8:2b:d2:dc:6e:c6:74:
9f:5e:3e:bc:0c:27:11:1c:70:d4:da:c5:62:2e:9a:
4f:2b:43:ab:55:93:3f:62:00:b2:df:99:4e:8c:2a:
5f:02:af:5a:7e:01:21:17:f4:61:96:54:45:e5:df:
2a:ee:1b:2b:59:de:0e:7c:c0:ab:b2:30:6a:fe:60:
28:e1:09:0d:68:73:5a:63:f7:4c:5c:e4:c3:9a:a7:
d9:d4:8d:60:30:93:fd:bc:ee:0e:b8:4b:0a:52:a4:
13:4a:e8:f2:a3:db:b9:d3:70:03:fa:d2:1b:89:6c:
7b:62:81:40:75:19:15:9e:f5:e5:2b:5f:c4:c2:d3:
7c:14:6b:ef:fb:bb:15:2a:85:1f:4d:92:20:5b:92:
1b:01:f1:bd:9d:c9:a4:30:da:a6:aa:4f:74:3a:6e:
a1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:6B:9D:88:DE:F2:94:D2:8A:19:0C:1D:5D:00:9A:88:C9:BB:42:1C
X509v3 Authority Key Identifier:
keyid:94:67:33:31:8C:62:C4:79:20:FE:37:5A:D9:9C:B7:29:EE:90:A1:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lGczMYxixHkg_jda2Zy3Ke6Qoa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/CmudiN7ylNKKGQwdXQCaiMm7Qhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/lGczMYxixHkg_jda2Zy3Ke6Qoa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.197.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:38:ec:d8:dc:03:17:31:6b:da:33:62:03:5d:9f:4d:da:e4:
46:34:e6:74:1d:56:87:22:df:88:4a:4e:ab:f2:06:74:bb:5f:
54:d2:e2:72:0a:f5:f8:12:e1:88:ff:e8:0a:ee:39:7f:f3:8a:
2d:7c:c6:67:17:25:05:95:3b:03:62:63:f2:f9:c0:31:01:cb:
6a:da:99:1a:56:c3:07:ad:3c:66:9e:f1:bc:cc:aa:0e:b4:2d:
46:10:0d:69:7c:43:51:22:90:c2:63:2c:aa:23:99:68:bb:66:
45:51:76:b4:f8:e5:d6:1c:fc:7d:35:97:2f:6c:8d:d6:7d:1a:
9b:bb:82:a0:ef:d7:3b:df:ed:1f:c5:53:d4:0b:00:4b:0c:79:
3a:b1:d8:fb:8c:93:4d:40:26:be:cb:c5:de:d9:58:fc:e6:b4:
5f:97:58:2d:c0:51:11:e6:8b:0c:63:f1:92:d3:16:50:ab:8b:
45:b1:92:cc:78:ee:42:ff:39:12:eb:ab:ff:f7:fa:e6:37:69:
7c:99:06:1a:0e:bf:97:8d:b5:66:74:64:01:36:82:55:0f:01:
1d:77:77:23:a7:82:42:81:24:8e:f8:c5:6b:9b:aa:58:88:e5:
63:d7:7c:f5:ff:23:e3:4a:85:81:67:07:15:2d:e3:ee:b7:10:
58:02:60:8e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzCbSKeXXIOd3QLP+St9+ftMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0NjczMzMxOGM2MmM0NzkyMGZlMzc1YWQ5OWNiNzI5ZWU5
MGExYWQwHhcNMjQwMTAxMDAyOTQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTZiOWQ4OGRlZjI5NGQyOGExOTBjMWQ1ZDAwOWE4OGM5YmI0MjFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAje0UJdCasOB+3eoP4ttg/e7c73yg
I6pZaFO2T9hZuG8/l8PGV22Y1PTTUKN54aCFUhWyKeqoWrSDfbnVkPUqrkP27Knr
ycVHD9t0HOFh1jD+eqiAaj+5697DT8rR16ujvdgr0txuxnSfXj68DCcRHHDU2sVi
LppPK0OrVZM/YgCy35lOjCpfAq9afgEhF/RhllRF5d8q7hsrWd4OfMCrsjBq/mAo
4QkNaHNaY/dMXOTDmqfZ1I1gMJP9vO4OuEsKUqQTSujyo9u503AD+tIbiWx7YoFA
dRkVnvXlK1/EwtN8FGvv+7sVKoUfTZIgW5IbAfG9ncmkMNqmqk90Om6hvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAprnYje8pTSihkMHV0AmojJu0IcMB8GA1UdIwQY
MBaAFJRnMzGMYsR5IP43WtmctynukKGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEdjek1ZeGl4SGtnX2pkYTJaeTNLZTZRb2EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9kNzYwOWUtNjM5Ni00MTU1LWFkMzUt
Yjc0MDg5ZDhlNTllLzEvQ211ZGlON3lsTktLR1F3ZFhRQ2FpTW03UWh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9kNzYwOWUtNjM5Ni00MTU1LWFkMzUtYjc0MDg5ZDhlNTll
LzEvbEdjek1ZeGl4SGtnX2pkYTJaeTNLZTZRb2EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXLFMA0G
CSqGSIb3DQEBCwUAA4IBAQA8OOzY3AMXMWvaM2IDXZ9N2uRGNOZ0HVaHIt+ISk6r
8gZ0u19U0uJyCvX4EuGI/+gK7jl/84otfMZnFyUFlTsDYmPy+cAxActq2pkaVsMH
rTxmnvG8zKoOtC1GEA1pfENRIpDCYyyqI5lou2ZFUXa0+OXWHPx9NZcvbI3WfRqb
u4Kg79c73+0fxVPUCwBLDHk6sdj7jJNNQCa+y8Xe2Vj85rRfl1gtwFER5osMY/GS
0xZQq4tFsZLMeO5C/zkS66v/9/rmN2l8mQYaDr+XjbVmdGQBNoJVDwEdd3cjp4JC
gSSO+MVrm6pYiOVj13z1/yPjSoWBZwcVLePutxBYAmCO
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:26 2025 by rpki-client