Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g5tnz2BNB6KpnRUnkPpsl4BqftU.roa
File: g5tnz2BNB6KpnRUnkPpsl4BqftU.roa (raw, json)
Hash identifier: pbTnBbUx+49Hre4H9TraBeOWArEmkQ/+vD2SaibkOCc=
Subject key identifier: 83:9B:67:CF:60:4D:07:A2:A9:9D:15:27:90:FA:6C:97:80:6A:7E:D5
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018DE6781FE624CEB8E9A072B95521633FD2
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g5tnz2BNB6KpnRUnkPpsl4BqftU.roa
Signing time: Mon 26 Feb 2024 17:30:48 +0000
ROA not before: Mon 26 Feb 2024 17:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205663
IP address blocks: 185.198.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 17:10:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e6:78:1f:e6:24:ce:b8:e9:a0:72:b9:55:21:63:3f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 26 17:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=839b67cf604d07a2a99d152790fa6c97806a7ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:70:83:23:5a:4f:a8:5a:72:39:43:81:64:77:
f2:93:e5:22:e6:31:1a:f7:f9:b2:40:1c:fa:94:06:
cd:5a:24:03:e9:1e:be:f6:90:0b:6b:4c:0a:8a:33:
e6:24:2e:19:f0:40:63:75:eb:72:67:41:c6:cb:c0:
bd:f1:59:d3:16:ac:f5:42:17:41:3e:43:1a:2c:6b:
d7:ed:f8:0d:52:a2:76:66:90:fb:5f:48:3d:c8:d8:
9c:f3:2f:32:78:c7:75:76:74:39:36:32:33:9e:fc:
34:6f:6e:02:9a:13:44:76:5d:8d:9e:72:81:aa:f7:
60:92:88:7e:04:d5:c9:3a:cd:39:33:64:f9:83:4b:
22:32:25:42:90:26:e3:ca:a4:cc:8d:a7:99:67:a3:
eb:09:01:aa:b8:c8:8b:91:9e:b5:6f:17:48:1c:81:
1a:f4:92:c0:db:59:b1:3f:dd:76:00:f8:b6:e4:06:
70:02:76:54:8d:20:08:c4:4f:e1:cb:59:9f:c8:c9:
71:f0:8b:09:18:45:60:02:62:50:f8:7b:4f:9e:b3:
e1:74:5c:2e:d0:2d:b3:bd:b1:6f:2e:ce:1d:3a:42:
b0:09:c7:7b:7f:59:9f:69:79:aa:f5:ab:01:4a:56:
80:d2:a4:a3:da:5e:6c:06:78:38:0e:98:7c:81:9b:
62:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9B:67:CF:60:4D:07:A2:A9:9D:15:27:90:FA:6C:97:80:6A:7E:D5
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g5tnz2BNB6KpnRUnkPpsl4BqftU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.234.0/24
Signature Algorithm: sha256WithRSAEncryption
07:7b:e8:cd:c2:64:9a:19:7a:eb:e1:5b:4c:31:1f:cf:7c:a6:
1f:67:59:e9:5e:72:32:e4:52:1e:72:62:0d:75:e9:2c:04:93:
e0:98:8a:b1:07:dd:94:77:99:3d:45:4a:4a:61:75:fe:78:26:
83:ec:55:57:7a:a3:8b:d9:dd:6c:02:33:ef:db:14:80:68:79:
56:df:ca:a5:89:88:27:12:43:19:6d:6d:6c:b7:42:f8:e1:22:
63:23:54:6d:24:58:c6:bd:0b:4a:a9:fb:25:ea:62:18:88:7d:
de:4d:31:a6:29:97:ba:da:f4:34:b1:1f:69:86:50:da:4d:22:
41:cd:9b:a6:d8:2c:35:ae:f4:3c:64:4a:88:29:32:69:50:5c:
41:0f:bc:ed:5c:25:2e:29:e4:92:25:b6:a3:64:b3:58:4d:29:
5e:87:bb:68:55:2b:ed:2d:4c:1c:5a:f2:ad:60:38:5e:ee:5d:
49:18:b7:d0:36:7b:9e:1d:9f:10:37:00:4f:d6:83:28:25:6d:
2f:b2:d5:06:b6:fb:5e:c0:2f:10:dc:79:aa:95:10:58:ba:75:
59:ec:78:c4:70:70:1f:2f:d3:01:5f:73:b9:95:33:1b:e7:76:
3f:96:3d:6d:7a:8f:47:85:61:87:6a:9d:13:6d:da:1f:1f:95:
36:92:73:26
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY3meB/mJM646aByuVUhYz/SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwMjI2MTczMDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzliNjdjZjYwNGQwN2EyYTk5ZDE1Mjc5MGZhNmM5NzgwNmE3ZWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXCDI1pPqFpyOUOBZHfyk+Ui5jEa
9/myQBz6lAbNWiQD6R6+9pALa0wKijPmJC4Z8EBjdetyZ0HGy8C98VnTFqz1QhdB
PkMaLGvX7fgNUqJ2ZpD7X0g9yNic8y8yeMd1dnQ5NjIznvw0b24CmhNEdl2NnnKB
qvdgkoh+BNXJOs05M2T5g0siMiVCkCbjyqTMjaeZZ6PrCQGquMiLkZ61bxdIHIEa
9JLA21mxP912APi25AZwAnZUjSAIxE/hy1mfyMlx8IsJGEVgAmJQ+HtPnrPhdFwu
0C2zvbFvLs4dOkKwCcd7f1mfaXmq9asBSlaA0qSj2l5sBng4Dph8gZti9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIObZ89gTQeiqZ0VJ5D6bJeAan7VMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvZzV0bnoyQk5CNktwblJVbmtQcHNsNEJxZnRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucbqMA0G
CSqGSIb3DQEBCwUAA4IBAQAHe+jNwmSaGXrr4VtMMR/PfKYfZ1npXnIy5FIecmIN
deksBJPgmIqxB92Ud5k9RUpKYXX+eCaD7FVXeqOL2d1sAjPv2xSAaHlW38qliYgn
EkMZbW1st0L44SJjI1RtJFjGvQtKqfsl6mIYiH3eTTGmKZe62vQ0sR9phlDaTSJB
zZum2Cw1rvQ8ZEqIKTJpUFxBD7ztXCUuKeSSJbajZLNYTSleh7toVSvtLUwcWvKt
YDhe7l1JGLfQNnueHZ8QNwBP1oMoJW0vstUGtvtewC8Q3HmqlRBYunVZ7HjEcHAf
L9MBX3O5lTMb53Y/lj1teo9HhWGHap0TbdofH5U2knMm
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org