Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/mSHqHI8OVvMu2fn56107QB9w9-0.roa
File: mSHqHI8OVvMu2fn56107QB9w9-0.roa (raw, json)
Hash identifier: r0HdlRL110US8+k1Y+BSnqUXhtyDVyUJ6STWcvqk4Og=
Subject key identifier: 99:21:EA:1C:8F:0E:56:F3:2E:D9:F9:F9:EB:5D:3B:40:1F:70:F7:ED
Certificate issuer: /CN=fad949f66253543ee89b9196390736b5a6ed7cb8
Certificate serial: 018C6D3394E293CF545956098540D0A63FED
Authority key identifier: FA:D9:49:F6:62:53:54:3E:E8:9B:91:96:39:07:36:B5:A6:ED:7C:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tlJ9mJTVD7om5GWOQc2tabtfLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/mSHqHI8OVvMu2fn56107QB9w9-0.roa
Signing time: Fri 15 Dec 2023 11:19:06 +0000
ROA not before: Fri 15 Dec 2023 11:19:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14445
IP address blocks: 185.218.2.0/24 maxlen: 24
2a11:2800:661f::/48 maxlen: 48
2a11:2800:1f33::/48 maxlen: 48
2a11:2800:ad3::/48 maxlen: 48
2a11:2800:792e::/48 maxlen: 48
2a11:2800:1bce::/48 maxlen: 48
2a11:2800:3472::/48 maxlen: 48
2a11:2800:e02b::/48 maxlen: 48
2a11:2800:26b::/48 maxlen: 48
2a11:2800:3dc6::/48 maxlen: 48
2a11:2800:bc6::/48 maxlen: 48
2a11:2800:761::/48 maxlen: 48
2a11:2801:422a::/48 maxlen: 48
2a11:2800:131c::/48 maxlen: 48
2a11:2800:239::/48 maxlen: 48
2a11:2800:2047::/48 maxlen: 48
2a11:2800:4f07::/48 maxlen: 48
2a11:2800:e822::/48 maxlen: 48
2a11:2800:6ce2::/48 maxlen: 48
2a11:2800:b41d::/48 maxlen: 48
2a11:2800:285d::/48 maxlen: 48
2a11:2800:18b8::/48 maxlen: 48
2a11:2800:215b::/48 maxlen: 48
2a11:2800:10db::/48 maxlen: 48
2a11:2800:9e16::/48 maxlen: 48
2a11:2800:d2d1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6d:33:94:e2:93:cf:54:59:56:09:85:40:d0:a6:3f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad949f66253543ee89b9196390736b5a6ed7cb8
Validity
Not Before: Dec 15 11:19:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9921ea1c8f0e56f32ed9f9f9eb5d3b401f70f7ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6f:af:de:a7:b9:1e:dc:30:b0:c9:92:0f:0e:
9b:48:f4:cd:c0:db:a4:10:f8:aa:94:fd:fd:86:74:
ee:ff:1e:49:16:25:4b:e6:c3:1a:bd:3a:bb:f2:a6:
cd:2f:5c:6d:ff:e0:90:41:15:10:aa:69:8c:f0:f4:
d3:cf:11:54:41:3b:4f:0d:bf:fc:c8:71:8a:85:1b:
40:e8:2e:30:e9:a7:2a:06:f3:e8:a0:56:9b:8f:6c:
7d:41:25:3e:6d:5d:4c:3e:9b:cb:c2:f1:70:da:26:
12:4c:71:8c:d0:b5:f1:71:71:2b:6c:dd:ae:cc:08:
b4:69:48:58:30:05:6e:4c:9a:5c:fa:2e:68:2e:c8:
47:ae:ee:aa:2c:3f:81:7d:14:3e:ae:34:dc:a7:76:
1b:fc:c9:25:59:2a:9e:45:d1:9b:4e:51:97:9f:1c:
03:09:72:4f:65:fc:dd:27:e9:57:d9:86:c6:aa:80:
3d:cc:ae:4a:9c:ba:c8:93:6b:53:4e:59:1e:22:38:
5f:05:70:0b:1d:61:10:ec:c9:60:0a:08:99:f7:e1:
e6:43:c7:05:6c:5f:8e:16:6e:ee:6d:cf:42:c1:16:
10:75:61:24:8d:56:07:e9:e9:e4:b6:f2:30:fc:05:
8a:db:00:f4:31:8c:58:9c:db:24:9c:d6:0f:11:1f:
da:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:21:EA:1C:8F:0E:56:F3:2E:D9:F9:F9:EB:5D:3B:40:1F:70:F7:ED
X509v3 Authority Key Identifier:
keyid:FA:D9:49:F6:62:53:54:3E:E8:9B:91:96:39:07:36:B5:A6:ED:7C:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tlJ9mJTVD7om5GWOQc2tabtfLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/mSHqHI8OVvMu2fn56107QB9w9-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/1-tlJ9mJTVD7om5GWOQc2tabtfLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.2.0/24
IPv6:
2a11:2800:239::/48
2a11:2800:26b::/48
2a11:2800:761::/48
2a11:2800:ad3::/48
2a11:2800:bc6::/48
2a11:2800:10db::/48
2a11:2800:131c::/48
2a11:2800:18b8::/48
2a11:2800:1bce::/48
2a11:2800:1f33::/48
2a11:2800:2047::/48
2a11:2800:215b::/48
2a11:2800:285d::/48
2a11:2800:3472::/48
2a11:2800:3dc6::/48
2a11:2800:4f07::/48
2a11:2800:661f::/48
2a11:2800:6ce2::/48
2a11:2800:792e::/48
2a11:2800:9e16::/48
2a11:2800:b41d::/48
2a11:2800:d2d1::/48
2a11:2800:e02b::/48
2a11:2800:e822::/48
2a11:2801:422a::/48
Signature Algorithm: sha256WithRSAEncryption
7e:88:ae:6b:ff:61:6c:62:43:24:a3:ac:d9:43:bd:42:c7:18:
82:00:a2:c5:48:e7:6e:2d:0c:a3:a6:d0:3b:2c:b2:80:9a:f9:
3c:98:e6:1d:98:6b:48:d7:a2:9a:64:cc:3c:ba:d8:97:fa:95:
00:de:da:1d:4a:24:90:dc:7f:35:07:e6:ee:09:bd:65:83:e0:
17:1c:53:eb:44:42:18:79:e4:dc:9a:38:77:49:ff:a2:79:28:
38:e5:4e:1c:17:28:cd:c9:b2:1d:9b:0d:6e:e5:5d:6b:22:1c:
bb:f2:38:de:c7:8f:99:69:89:33:eb:f3:f5:8f:d7:ef:d4:1e:
05:2a:7b:1e:12:23:da:07:a3:e7:2d:82:ed:d6:40:fd:b0:ef:
20:35:b5:7f:f5:b1:32:8f:16:f1:c5:fb:a6:b1:e3:f4:5e:f7:
08:8a:8b:3a:1b:e5:40:1b:ba:e8:d1:93:3d:4d:46:a3:82:aa:
73:9b:44:e9:f7:64:f9:a2:fd:cf:d4:0e:df:7e:55:63:a7:39:
3b:cc:e9:6f:70:72:e3:81:ca:26:aa:6a:66:1a:b3:da:45:78:
cd:a6:8d:ec:7f:9a:71:59:6d:f0:a4:7d:73:c4:73:16:9d:8a:
15:2b:3b:1a:64:99:1a:06:a1:61:5a:30:77:3b:17:bd:46:22:
2f:86:01:50
-----BEGIN CERTIFICATE-----
MIIF7jCCBNagAwIBAgISAYxtM5Tik89UWVYJhUDQpj/tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhZDk0OWY2NjI1MzU0M2VlODliOTE5NjM5MDczNmI1YTZl
ZDdjYjgwHhcNMjMxMjE1MTExOTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTIxZWExYzhmMGU1NmYzMmVkOWY5ZjllYjVkM2I0MDFmNzBmN2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqG+v3qe5HtwwsMmSDw6bSPTNwNuk
EPiqlP39hnTu/x5JFiVL5sMavTq78qbNL1xt/+CQQRUQqmmM8PTTzxFUQTtPDb/8
yHGKhRtA6C4w6acqBvPooFabj2x9QSU+bV1MPpvLwvFw2iYSTHGM0LXxcXErbN2u
zAi0aUhYMAVuTJpc+i5oLshHru6qLD+BfRQ+rjTcp3Yb/MklWSqeRdGbTlGXnxwD
CXJPZfzdJ+lX2YbGqoA9zK5KnLrIk2tTTlkeIjhfBXALHWEQ7MlgCgiZ9+HmQ8cF
bF+OFm7ubc9CwRYQdWEkjVYH6enktvIw/AWK2wD0MYxYnNsknNYPER/alwIDAQAB
o4IC+jCCAvYwHQYDVR0OBBYEFJkh6hyPDlbzLtn5+etdO0AfcPftMB8GA1UdIwQY
MBaAFPrZSfZiU1Q+6JuRljkHNrWm7Xy4MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS10bEo5bUpUVkQ3b201R1dPUWMydGFidGZMZy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkvM2NjZTIyLWMzMDEtNGJiYy1iMDI3
LTY0ZWVjYWVkMTFkYy8xL21TSHFISThPVnZNdTJmbjU2MTA3UUI5dzktMC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNjkvM2NjZTIyLWMzMDEtNGJiYy1iMDI3LTY0ZWVjYWVkMTFk
Yy8xLzEtdGxKOW1KVFZEN29tNUdXT1FjMnRhYnRmTGcuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwggEMBggrBgEFBQcBBwEB/wSB/DCB+TAMBAIAATAGAwQA
udoCMIHoBAIAAjCB4QMHACoRKAACOQMHACoRKAACawMHACoRKAAHYQMHACoRKAAK
0wMHACoRKAALxgMHACoRKAAQ2wMHACoRKAATHAMHACoRKAAYuAMHACoRKAAbzgMH
ACoRKAAfMwMHACoRKAAgRwMHACoRKAAhWwMHACoRKAAoXQMHACoRKAA0cgMHACoR
KAA9xgMHACoRKABPBwMHACoRKABmHwMHACoRKABs4gMHACoRKAB5LgMHACoRKACe
FgMHACoRKAC0HQMHACoRKADS0QMHACoRKADgKwMHACoRKADoIgMHACoRKAFCKjAN
BgkqhkiG9w0BAQsFAAOCAQEAfoiua/9hbGJDJKOs2UO9QscYggCixUjnbi0Mo6bQ
OyyygJr5PJjmHZhrSNeimmTMPLrYl/qVAN7aHUokkNx/NQfm7gm9ZYPgFxxT60RC
GHnk3Jo4d0n/onkoOOVOHBcozcmyHZsNbuVdayIcu/I43sePmWmJM+vz9Y/X79Qe
BSp7HhIj2gej5y2C7dZA/bDvIDW1f/WxMo8W8cX7prHj9F73CIqLOhvlQBu66NGT
PU1Go4Kqc5tE6fdk+aL9z9QO335VY6c5O8zpb3By44HKJqpqZhqz2kV4zaaN7H+a
cVlt8KR9c8RzFp2KFSs7GmSZGgahYVowdzsXvUYiL4YBUA==
-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:47 2024 by rpki-client on console-fra.rpki-client.org