Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/SNEn6biQKPqIYJAsRp00XvGZHsQ.roa
File: SNEn6biQKPqIYJAsRp00XvGZHsQ.roa (raw, json)
Hash identifier: zQScMU0tjV0jDRZQYP5uF5m2UO0/sD2m8Im4zW1z+tc=
Subject key identifier: 48:D1:27:E9:B8:90:28:FA:88:60:90:2C:46:9D:34:5E:F1:99:1E:C4
Certificate issuer: /CN=fbfcd4515b493039216758de738e4f1ae8e3224c
Certificate serial: 01889B8FCA8C2CDEAD1E21A3D781E5560CDE
Authority key identifier: FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/SNEn6biQKPqIYJAsRp00XvGZHsQ.roa
Signing time: Thu 08 Jun 2023 15:11:11 +0000
ROA not before: Thu 08 Jun 2023 15:11:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211873
IP address blocks: 185.105.40.0/22 maxlen: 24
185.149.28.0/22 maxlen: 22
2a06:34c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9b:8f:ca:8c:2c:de:ad:1e:21:a3:d7:81:e5:56:0c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbfcd4515b493039216758de738e4f1ae8e3224c
Validity
Not Before: Jun 8 15:11:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48d127e9b89028fa8860902c469d345ef1991ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f2:77:6d:66:e7:34:ff:1b:1a:93:50:48:bb:
a1:20:74:75:e5:70:6c:00:9f:2d:60:c8:d0:13:56:
6e:58:a4:53:8b:46:ce:88:64:65:f9:68:46:c3:00:
9d:86:c6:37:04:4c:5d:1b:5b:a2:d7:7b:c4:87:ca:
9d:3e:1c:7e:b4:25:80:61:ff:dc:e3:d6:a0:2e:ff:
3c:fc:d2:99:9d:ca:de:dc:3c:fd:c0:00:66:ab:82:
af:0d:f0:0a:00:59:21:6b:50:54:61:01:57:84:ac:
36:08:91:f1:b9:5d:4b:c2:47:96:98:74:2e:14:c0:
71:56:e4:63:2f:c4:d0:6d:44:77:05:83:2f:de:ac:
5c:3f:c5:b4:7b:f7:53:72:93:71:66:06:9a:c7:e2:
10:4d:97:98:81:43:97:09:ce:12:cb:a4:04:56:2c:
91:77:2e:c7:4f:47:7a:89:4c:67:75:b6:0b:8b:70:
cb:74:0d:02:78:1a:41:94:72:85:59:98:57:b2:14:
b9:2a:7e:bb:41:e7:25:08:62:49:59:1f:94:ae:a5:
4b:36:3f:be:d2:0e:bd:8c:67:b8:3d:b4:ee:8e:02:
05:64:1c:43:32:26:82:02:25:11:d3:b2:ff:14:3f:
d2:80:7c:7a:99:3c:ea:86:5e:d1:52:cd:01:ac:90:
78:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D1:27:E9:B8:90:28:FA:88:60:90:2C:46:9D:34:5E:F1:99:1E:C4
X509v3 Authority Key Identifier:
keyid:FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/SNEn6biQKPqIYJAsRp00XvGZHsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.40.0/22
185.149.28.0/22
IPv6:
2a06:34c0::/29
Signature Algorithm: sha256WithRSAEncryption
b6:66:da:d8:9b:5d:00:b6:18:ef:9a:07:6f:04:b2:69:43:f7:
49:24:a1:5c:bf:78:6f:cc:e9:91:c7:0d:f5:9f:54:01:a4:cc:
40:95:9e:db:9f:88:e1:18:b6:32:3b:72:25:db:b9:5c:17:cf:
7a:30:1c:0f:4f:11:6d:58:29:8f:18:00:70:22:c4:b4:36:19:
99:2b:e4:0e:62:f8:c2:26:fd:af:99:61:07:d6:b3:61:00:93:
fe:8b:be:9b:60:05:e4:8e:92:b7:4c:3d:66:da:b7:67:56:8f:
4d:6e:70:e3:0e:c5:a2:dd:32:33:39:08:66:5b:69:c4:7d:15:
de:6b:e4:aa:5a:37:83:4e:9a:a9:13:08:61:a5:61:ea:42:d3:
fd:09:e2:24:7d:e6:43:ad:2c:1f:c0:bf:e0:d6:9f:58:b5:b7:
9a:93:e9:8c:e2:b3:83:d3:34:35:66:a9:43:b5:1f:43:0a:c2:
ab:b2:e7:c3:67:f1:06:73:a2:6e:a5:3d:47:f1:a9:42:06:2a:
75:b1:b4:4a:a4:32:22:03:b9:59:97:6f:4e:86:7b:a4:24:bc:
ec:4c:82:52:d3:64:66:46:3f:d1:91:2b:83:b2:49:9d:b8:04:
bb:09:c6:9e:51:2c:61:fa:09:35:59:5d:bb:12:1b:05:51:8d:
6f:ae:12:fa
-----BEGIN CERTIFICATE-----
MIIFFDCCA/ygAwIBAgISAYibj8qMLN6tHiGj14HlVgzeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiZmNkNDUxNWI0OTMwMzkyMTY3NThkZTczOGU0ZjFhZThl
MzIyNGMwHhcNMjMwNjA4MTUxMTExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OGQxMjdlOWI4OTAyOGZhODg2MDkwMmM0NjlkMzQ1ZWYxOTkxZWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/J3bWbnNP8bGpNQSLuhIHR15XBs
AJ8tYMjQE1ZuWKRTi0bOiGRl+WhGwwCdhsY3BExdG1ui13vEh8qdPhx+tCWAYf/c
49agLv88/NKZncre3Dz9wABmq4KvDfAKAFkha1BUYQFXhKw2CJHxuV1LwkeWmHQu
FMBxVuRjL8TQbUR3BYMv3qxcP8W0e/dTcpNxZgaax+IQTZeYgUOXCc4Sy6QEViyR
dy7HT0d6iUxndbYLi3DLdA0CeBpBlHKFWZhXshS5Kn67QeclCGJJWR+UrqVLNj++
0g69jGe4PbTujgIFZBxDMiaCAiUR07L/FD/SgHx6mTzqhl7RUs0BrJB4OQIDAQAB
o4ICIDCCAhwwHQYDVR0OBBYEFEjRJ+m4kCj6iGCQLEadNF7xmR7EMB8GA1UdIwQY
MBaAFPv81FFbSTA5IWdY3nOOTxro4yJMMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1felVVVnRKTURraFoxamVjNDVQR3Vqaklrdy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjgvZDY0ODZhLThmZjctNDI2Zi04ZDg2
LTA5OGQwNGNlNTFiMi8xL1NORW42YmlRS1BxSVlKQXNScDAwWHZHWkhzUS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNjgvZDY0ODZhLThmZjctNDI2Zi04ZDg2LTA5OGQwNGNlNTFi
Mi8xLzEtX3pVVVZ0Sk1Ea2haMWplYzQ1UEd1ampJa3cuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAK5aSgD
BAK5lRwwDQQCAAIwBwMFAyoGNMAwDQYJKoZIhvcNAQELBQADggEBALZm2tibXQC2
GO+aB28EsmlD90kkoVy/eG/M6ZHHDfWfVAGkzECVntufiOEYtjI7ciXbuVwXz3ow
HA9PEW1YKY8YAHAixLQ2GZkr5A5i+MIm/a+ZYQfWs2EAk/6LvptgBeSOkrdMPWba
t2dWj01ucOMOxaLdMjM5CGZbacR9Fd5r5KpaN4NOmqkTCGGlYepC0/0J4iR95kOt
LB/Av+DWn1i1t5qT6Yzis4PTNDVmqUO1H0MKwquy58Nn8QZzom6lPUfxqUIGKnWx
tEqkMiIDuVmXb06Ge6QkvOxMglLTZGZGP9GRK4OySZ24BLsJxp5RLGH6CTVZXbsS
GwVRjW+uEvo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:28 2024 by rpki-client on console-fra.rpki-client.org