Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/wQYedjLCmlbwwhaM_gChab1goAs.roa
File: wQYedjLCmlbwwhaM_gChab1goAs.roa (raw, json)
Hash identifier: iL+MtkpY/ce1+LEXlh27Rs8Z8iJo+2GJwxayDSrzsZU=
Subject key identifier: C1:06:1E:76:32:C2:9A:56:F0:C2:16:8C:FE:00:A1:69:BD:60:A0:0B
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 018963B40F1DEFB4B56B7C68B6A71B1901B1
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/wQYedjLCmlbwwhaM_gChab1goAs.roa
Signing time: Mon 17 Jul 2023 11:54:52 +0000
ROA not before: Mon 17 Jul 2023 11:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 185.212.206.0/23 maxlen: 24
185.212.204.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Oct 2023 06:38:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:b4:0f:1d:ef:b4:b5:6b:7c:68:b6:a7:1b:19:01:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Jul 17 11:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1061e7632c29a56f0c2168cfe00a169bd60a00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ff:7b:10:b1:28:82:67:f5:ef:4b:58:93:6b:
10:68:b7:84:46:eb:64:2f:e6:16:d0:ef:49:df:81:
71:7b:3c:f7:a2:36:ac:fb:ec:18:73:4f:3e:ee:b3:
fd:7c:0c:03:13:c0:37:95:9f:64:98:2c:68:31:9c:
c7:7a:54:b5:54:a5:af:68:f8:a0:a3:51:65:b3:74:
37:a2:ee:e8:c0:66:92:ba:c5:c3:a8:f3:09:0c:d2:
b1:e6:00:e8:17:6f:d6:9a:f4:75:07:a8:f0:f5:3a:
1f:a1:32:94:d4:b3:d7:88:5b:09:02:ca:e8:81:f1:
29:84:7b:b4:ff:1e:95:87:5b:25:76:6b:37:9c:a4:
66:27:a7:e6:98:f1:4e:a8:15:90:33:40:bd:d8:27:
18:21:da:78:b3:c9:93:0b:28:93:12:d8:c2:7b:8c:
12:79:3d:d9:38:62:3a:a6:57:bf:5d:de:cc:24:b4:
75:22:d8:2b:cf:d8:67:64:8a:d9:f6:9e:e7:68:c0:
3b:66:81:93:e9:25:e5:e3:36:94:e6:6e:fd:a1:77:
41:c8:82:28:95:97:3f:99:58:f5:42:f0:5e:76:84:
1b:12:52:d4:43:f7:ed:e4:47:f7:64:df:a9:79:de:
92:cc:59:0e:ba:25:73:d3:11:bf:d6:4f:db:73:a1:
4e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:06:1E:76:32:C2:9A:56:F0:C2:16:8C:FE:00:A1:69:BD:60:A0:0B
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/wQYedjLCmlbwwhaM_gChab1goAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.204.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:9a:11:cd:8b:b8:8d:c2:34:4f:48:75:29:37:c9:5d:46:2a:
12:ea:b9:06:0e:d6:eb:31:5f:b9:14:b5:54:3c:b1:5d:6c:0f:
34:b0:96:a7:32:57:44:cf:4e:e8:64:76:b7:c7:2a:6b:90:bc:
51:40:0f:07:2d:f4:69:6a:aa:5a:10:c1:c4:04:bc:c2:2e:e1:
8d:29:dd:9d:d4:72:80:f8:a2:1a:a0:d2:7f:8b:56:7f:8d:5d:
6c:ec:7e:87:ad:b4:53:56:5a:84:d2:01:53:71:d0:44:bc:d4:
88:d2:cc:7f:c8:49:77:5a:ea:fb:8a:20:7f:02:76:76:c1:f6:
d0:d0:88:b2:b9:72:2b:63:e9:48:50:b8:a1:e5:39:f6:1e:92:
76:99:e5:8c:bd:c4:e0:54:b4:3d:b6:be:79:7f:26:12:fa:96:
d2:c8:db:c3:bb:32:81:fe:ee:ed:ed:3b:a6:9f:8a:0e:5c:d0:
9d:d7:0c:8d:dd:af:00:91:4d:f3:fb:45:1b:e7:7e:ae:4f:85:
db:2f:1c:23:c4:8e:95:37:c6:57:6f:8a:1e:3b:99:42:37:10:
70:6d:6e:76:00:1e:bc:ef:6d:f1:5b:94:18:4c:b7:6a:f8:4b:
ef:42:14:a3:ec:66:31:65:4c:5a:b2:69:2d:3e:78:34:be:d9:
8e:34:aa:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYljtA8d77S1a3xotqcbGQGxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3MGZiMGYxZDhiOGMxOThiMGRjODYxNThhZmJjYmM1Mjlj
ZjE2YmUwHhcNMjMwNzE3MTE1NDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMTA2MWU3NjMyYzI5YTU2ZjBjMjE2OGNmZTAwYTE2OWJkNjBhMDBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5P97ELEogmf170tYk2sQaLeERutk
L+YW0O9J34Fxezz3ojas++wYc08+7rP9fAwDE8A3lZ9kmCxoMZzHelS1VKWvaPig
o1Fls3Q3ou7owGaSusXDqPMJDNKx5gDoF2/WmvR1B6jw9TofoTKU1LPXiFsJAsro
gfEphHu0/x6Vh1sldms3nKRmJ6fmmPFOqBWQM0C92CcYIdp4s8mTCyiTEtjCe4wS
eT3ZOGI6ple/Xd7MJLR1Itgrz9hnZIrZ9p7naMA7ZoGT6SXl4zaU5m79oXdByIIo
lZc/mVj1QvBedoQbElLUQ/ft5Ef3ZN+ped6SzFkOuiVz0xG/1k/bc6FOzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMEGHnYywppW8MIWjP4AoWm9YKALMB8GA1UdIwQY
MBaAFFcPsPHYuMGYsNyGFYr7y8Upzxa+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnctdzhkaTR3Wml3M0lZVml2dkx4U25QRnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8wOTQ5ZmMtYWNjZC00NzFmLWE5Y2Qt
OTcyNDNlMzE2MjcyLzEvd1FZZWRqTENtbGJ3d2hhTV9nQ2hhYjFnb0FzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8wOTQ5ZmMtYWNjZC00NzFmLWE5Y2QtOTcyNDNlMzE2Mjcy
LzEvVnctdzhkaTR3Wml3M0lZVml2dkx4U25QRnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCudTMMA0G
CSqGSIb3DQEBCwUAA4IBAQB/mhHNi7iNwjRPSHUpN8ldRioS6rkGDtbrMV+5FLVU
PLFdbA80sJanMldEz07oZHa3xyprkLxRQA8HLfRpaqpaEMHEBLzCLuGNKd2d1HKA
+KIaoNJ/i1Z/jV1s7H6HrbRTVlqE0gFTcdBEvNSI0sx/yEl3Wur7iiB/AnZ2wfbQ
0IiyuXIrY+lIULih5Tn2HpJ2meWMvcTgVLQ9tr55fyYS+pbSyNvDuzKB/u7t7Tum
n4oOXNCd1wyN3a8AkU3z+0Ub536uT4XbLxwjxI6VN8ZXb4oeO5lCNxBwbW52AB68
723xW5QYTLdq+EvvQhSj7GYxZUxasmktPng0vtmONKpA
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:21 2024 by rpki-client on console-fra.rpki-client.org