Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/25-bUKtJlCrjbAcG4tgzc7gtyMc.roa
File: 25-bUKtJlCrjbAcG4tgzc7gtyMc.roa (raw, json)
Hash identifier: S43dcJ7NyBO8lN8I2luxsVW6TZWh8t0RbIpHC4yJYbg=
Subject key identifier: DB:9F:9B:50:AB:49:94:2A:E3:6C:07:06:E2:D8:33:73:B8:2D:C8:C7
Certificate issuer: /CN=36b55fb34d29f962545132a025b52644fdffbf6f
Certificate serial: 01856F8B7445013A0CAC3D36549DA261C928
Authority key identifier: 36:B5:5F:B3:4D:29:F9:62:54:51:32:A0:25:B5:26:44:FD:FF:BF:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NrVfs00p-WJUUTKgJbUmRP3_v28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/25-bUKtJlCrjbAcG4tgzc7gtyMc.roa
Signing time: Sun 01 Jan 2023 22:54:48 +0000
ROA not before: Sun 01 Jan 2023 22:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212217
IP address blocks: 185.206.123.0/24 maxlen: 24
2a10:ca00:4::/48 maxlen: 48
2a10:ca00:2::/48 maxlen: 48
2a10:ca00:3::/48 maxlen: 48
2a10:ca00:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:74:45:01:3a:0c:ac:3d:36:54:9d:a2:61:c9:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36b55fb34d29f962545132a025b52644fdffbf6f
Validity
Not Before: Jan 1 22:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db9f9b50ab49942ae36c0706e2d83373b82dc8c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ec:22:da:6f:27:81:47:8e:5e:e7:74:4c:be:
2a:9d:1d:d5:09:6a:3c:8a:13:dc:5b:26:0d:8c:1e:
6d:9d:5c:69:ab:4f:c4:34:ba:89:bc:ee:ae:c5:71:
f9:55:f5:f5:31:93:60:2b:0d:8a:39:a6:95:0d:21:
0d:57:7c:83:81:4e:42:b1:f8:2e:15:ce:f0:3f:1c:
35:85:13:b9:39:b1:22:2f:27:1b:87:72:28:06:43:
a0:af:5f:f4:af:1a:3a:94:69:1c:38:18:da:28:d3:
3e:f4:7a:8c:84:91:35:91:eb:16:e7:40:26:38:40:
2d:7a:d5:f4:53:9b:d6:61:b9:cd:23:7e:07:56:f4:
b5:bc:93:0c:93:58:63:53:7f:4d:0f:bc:67:4c:3e:
c0:8f:9b:95:fb:f6:91:76:a7:3d:d9:d2:bf:d9:79:
4a:96:a0:34:0f:bb:34:06:a0:85:33:ee:6d:26:5d:
89:cc:ad:3d:79:b3:69:8e:b2:80:ba:d2:ea:84:ed:
78:a9:e9:26:25:31:af:8c:e0:b5:a7:53:57:60:75:
0c:e5:ae:37:b2:d3:20:d3:81:41:02:b2:d2:7d:23:
ba:19:3f:1f:fe:51:dd:df:9e:06:2d:6e:ed:6a:0b:
43:89:ba:8b:c0:be:00:a3:90:a7:37:77:28:20:6e:
49:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:9F:9B:50:AB:49:94:2A:E3:6C:07:06:E2:D8:33:73:B8:2D:C8:C7
X509v3 Authority Key Identifier:
keyid:36:B5:5F:B3:4D:29:F9:62:54:51:32:A0:25:B5:26:44:FD:FF:BF:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NrVfs00p-WJUUTKgJbUmRP3_v28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/25-bUKtJlCrjbAcG4tgzc7gtyMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2bf00b-bfbc-4f6b-a13e-f10f73a9ecb3/1/NrVfs00p-WJUUTKgJbUmRP3_v28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.123.0/24
IPv6:
2a10:ca00:1::-2a10:ca00:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
69:ab:a5:c6:e8:5e:9a:13:68:50:75:db:93:a6:90:a1:33:c7:
e9:8c:2d:69:8d:bd:76:f4:35:1b:cf:6e:27:a5:60:61:bf:a5:
e2:7c:eb:08:9b:9e:9a:5d:01:b5:93:7d:a6:65:13:bf:67:88:
0e:34:c5:51:c3:5e:73:5f:c3:2e:da:13:b2:92:3c:cf:27:e8:
e3:0f:69:bc:9e:fd:42:9c:79:df:57:42:4b:9a:b8:73:d5:ed:
57:05:6a:56:27:94:c4:2a:89:39:04:82:54:f5:e2:5c:7d:4e:
f3:fb:cd:e4:88:58:c3:7f:5e:c8:83:44:83:f4:ec:98:11:35:
48:9f:2f:27:4b:61:06:f5:e7:70:96:6f:53:fa:0a:df:d1:f2:
25:db:bc:61:54:56:2e:11:6d:bf:b6:f2:bb:30:67:c4:f0:5d:
69:60:1f:88:c1:fb:42:ce:1c:3e:5c:67:d4:45:aa:99:18:36:
c4:27:6f:d6:22:9d:fe:35:71:73:12:76:38:52:e0:ab:19:6d:
55:eb:21:de:3e:77:5d:4a:3a:5c:b7:1d:16:05:f7:7d:ac:2f:
e1:3e:ac:0d:3f:df:07:27:19:2f:1d:ac:24:b0:b0:05:17:74:
55:8d:11:5f:66:5e:4f:5b:ce:c7:03:3c:0f:30:79:fa:9d:36:
07:e4:bb:1b
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAYVvi3RFAToMrD02VJ2iYckoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YjU1ZmIzNGQyOWY5NjI1NDUxMzJhMDI1YjUyNjQ0ZmRm
ZmJmNmYwHhcNMjMwMTAxMjI1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjlmOWI1MGFiNDk5NDJhZTM2YzA3MDZlMmQ4MzM3M2I4MmRjOGM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiuwi2m8ngUeOXud0TL4qnR3VCWo8
ihPcWyYNjB5tnVxpq0/ENLqJvO6uxXH5VfX1MZNgKw2KOaaVDSENV3yDgU5Csfgu
Fc7wPxw1hRO5ObEiLycbh3IoBkOgr1/0rxo6lGkcOBjaKNM+9HqMhJE1kesW50Am
OEAtetX0U5vWYbnNI34HVvS1vJMMk1hjU39ND7xnTD7Aj5uV+/aRdqc92dK/2XlK
lqA0D7s0BqCFM+5tJl2JzK09ebNpjrKAutLqhO14qekmJTGvjOC1p1NXYHUM5a43
stMg04FBArLSfSO6GT8f/lHd354GLW7tagtDibqLwL4Ao5CnN3coIG5J6QIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFNufm1CrSZQq42wHBuLYM3O4LcjHMB8GA1UdIwQY
MBaAFDa1X7NNKfliVFEyoCW1JkT9/79vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnJWZnMwMHAtV0pVVVRLZ0piVW1SUDNfdjI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8yYmYwMGItYmZiYy00ZjZiLWExM2Ut
ZjEwZjczYTllY2IzLzEvMjUtYlVLdEpsQ3JqYkFjRzR0Z3pjN2d0eU1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8yYmYwMGItYmZiYy00ZjZiLWExM2UtZjEwZjczYTllY2Iz
LzEvTnJWZnMwMHAtV0pVVVRLZ0piVW1SUDNfdjI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAMBAIAATAGAwQAuc57MBoE
AgACMBQwEgMHACoQygAAAQMHACoQygAABDANBgkqhkiG9w0BAQsFAAOCAQEAaaul
xuhemhNoUHXbk6aQoTPH6YwtaY29dvQ1G89uJ6VgYb+l4nzrCJueml0BtZN9pmUT
v2eIDjTFUcNec1/DLtoTspI8zyfo4w9pvJ79Qpx531dCS5q4c9XtVwVqVieUxCqJ
OQSCVPXiXH1O8/vN5IhYw39eyINEg/TsmBE1SJ8vJ0thBvXncJZvU/oK39HyJdu8
YVRWLhFtv7byuzBnxPBdaWAfiMH7Qs4cPlxn1EWqmRg2xCdv1iKd/jVxcxJ2OFLg
qxltVesh3j53XUo6XLcdFgX3fawv4T6sDT/fBycZLx2sJLCwBRd0VY0RX2ZeT1vO
xwM8DzB5+p02B+S7Gw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:00 2024 by rpki-client on console-ams.rpki-client.org