Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ALNZaOgVgbrKlOlq5-puiQwTcZc.roa
File: ALNZaOgVgbrKlOlq5-puiQwTcZc.roa (raw, json)
Hash identifier: XJZLJLV3dSECJ7lDHYnIAPMfdR6nldAgQ4HsUyB0hpA=
Subject key identifier: 00:B3:59:68:E8:15:81:BA:CA:94:E9:6A:E7:EA:6E:89:0C:13:71:97
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CC493408174207D9EB2CE9EC89E1C2A70
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ALNZaOgVgbrKlOlq5-puiQwTcZc.roa
Signing time: Mon 01 Jan 2024 10:30:33 +0000
ROA not before: Mon 01 Jan 2024 10:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211138
IP address blocks: 185.112.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jan 2024 13:02:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:40:81:74:20:7d:9e:b2:ce:9e:c8:9e:1c:2a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 10:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00b35968e81581baca94e96ae7ea6e890c137197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5c:91:10:de:1f:49:f9:7e:0b:0f:17:1c:ac:
94:5f:26:3c:a0:19:c9:2f:ee:52:a0:d0:a0:58:58:
b6:19:fb:a7:e7:80:83:bf:7f:0b:f7:2f:01:a3:6d:
d1:a6:90:01:9d:d8:b3:a5:d6:4a:04:a8:cd:17:7e:
c0:36:37:21:74:26:86:83:67:41:e2:dd:05:55:c8:
f4:b1:38:84:6b:8b:aa:5c:1c:a0:8b:b8:5c:47:a8:
c1:34:25:af:66:80:83:46:04:f3:2c:0f:1f:e2:cc:
99:7d:a2:08:e0:93:25:d1:36:1f:20:8b:99:e9:ea:
87:5d:e8:80:3a:0a:dc:54:7b:e0:26:dc:f4:4d:f4:
38:f6:20:81:4a:83:f9:86:4f:26:84:37:68:35:74:
6b:f4:c7:c1:bf:b1:57:53:54:42:e4:aa:c0:d2:20:
54:8c:d1:b5:a6:18:0f:fc:1d:82:f7:c3:dc:e1:81:
9a:09:fb:8a:66:ed:1c:08:1f:ab:b1:a1:a0:4d:3b:
1b:d6:a3:b5:07:26:5e:ac:ea:9f:b3:31:a7:fd:52:
f7:44:e7:06:f3:cf:ed:12:d2:5e:49:6f:86:fd:bc:
31:28:3f:d7:cb:10:07:49:6c:02:66:7e:23:8e:d0:
9e:f5:0b:d7:30:23:54:c8:6e:9d:3e:cd:0e:c9:c3:
14:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B3:59:68:E8:15:81:BA:CA:94:E9:6A:E7:EA:6E:89:0C:13:71:97
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ALNZaOgVgbrKlOlq5-puiQwTcZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.249.0/24
Signature Algorithm: sha256WithRSAEncryption
96:70:67:79:49:ad:07:ae:92:03:0e:d0:7a:73:d8:7b:69:e4:
52:07:68:15:d7:b7:51:98:0c:36:7a:89:18:e6:f3:d1:6a:a6:
43:6d:54:10:22:77:17:21:e4:c3:b6:b2:6f:6f:3a:12:c5:ed:
62:62:83:4f:10:08:31:72:27:e3:20:ba:96:b8:0c:79:51:b4:
bb:e1:b7:6a:c5:d3:c2:74:7b:b2:3b:cf:4d:fa:e2:9d:8d:b5:
0e:bd:28:e6:a3:93:85:8e:c3:de:e6:ce:cf:35:c9:db:90:ba:
9a:4e:5f:da:fd:a8:ea:3b:2e:94:7f:ca:2a:80:51:c0:ff:d6:
b7:db:01:56:0e:e0:87:bf:f7:d6:bd:83:f5:b1:86:3e:84:9c:
8a:75:61:29:76:4c:46:5f:27:76:d1:ca:ef:9a:55:dc:13:e9:
ec:03:3c:81:bc:44:0d:a0:19:ed:a7:34:0a:4c:fc:fa:e4:b1:
a5:3d:2c:f4:a2:26:bc:e0:38:ae:0d:52:06:aa:03:70:5e:9b:
07:21:ed:c7:e8:15:db:b2:5f:51:ee:1e:99:f5:b4:8a:66:59:
a1:59:bd:eb:29:ee:e6:e9:f1:fa:b5:18:65:32:b1:1e:21:ad:
79:90:7d:06:40:cb:d7:04:3a:17:74:69:e8:3c:3c:3d:47:fa:
87:7b:57:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEk0CBdCB9nrLOnsieHCpwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwMTAxMTAzMDMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGIzNTk2OGU4MTU4MWJhY2E5NGU5NmFlN2VhNmU4OTBjMTM3MTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1yREN4fSfl+Cw8XHKyUXyY8oBnJ
L+5SoNCgWFi2Gfun54CDv38L9y8Bo23RppABndizpdZKBKjNF37ANjchdCaGg2dB
4t0FVcj0sTiEa4uqXBygi7hcR6jBNCWvZoCDRgTzLA8f4syZfaII4JMl0TYfIIuZ
6eqHXeiAOgrcVHvgJtz0TfQ49iCBSoP5hk8mhDdoNXRr9MfBv7FXU1RC5KrA0iBU
jNG1phgP/B2C98Pc4YGaCfuKZu0cCB+rsaGgTTsb1qO1ByZerOqfszGn/VL3ROcG
88/tEtJeSW+G/bwxKD/XyxAHSWwCZn4jjtCe9QvXMCNUyG6dPs0OycMUvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFACzWWjoFYG6ypTpaufqbokME3GXMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvQUxOWmFPZ1ZnYnJLbE9scTUtcHVpUXdUY1pjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXD5MA0G
CSqGSIb3DQEBCwUAA4IBAQCWcGd5Sa0HrpIDDtB6c9h7aeRSB2gV17dRmAw2eokY
5vPRaqZDbVQQIncXIeTDtrJvbzoSxe1iYoNPEAgxcifjILqWuAx5UbS74bdqxdPC
dHuyO89N+uKdjbUOvSjmo5OFjsPe5s7PNcnbkLqaTl/a/ajqOy6Uf8oqgFHA/9a3
2wFWDuCHv/fWvYP1sYY+hJyKdWEpdkxGXyd20crvmlXcE+nsAzyBvEQNoBntpzQK
TPz65LGlPSz0oia84DiuDVIGqgNwXpsHIe3H6BXbsl9R7h6Z9bSKZlmhWb3rKe7m
6fH6tRhlMrEeIa15kH0GQMvXBDoXdGnoPDw9R/qHe1cT
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org