Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/6WDyhFHXpEevLU8VdMVY8F8qNN8.roa
File: 6WDyhFHXpEevLU8VdMVY8F8qNN8.roa (raw, json)
Hash identifier: 6IXJNcxWrkn0SXwW6e8HbiBKLwp6lIkRyWiBgk1MEPo=
Subject key identifier: E9:60:F2:84:51:D7:A4:47:AF:2D:4F:15:74:C5:58:F0:5F:2A:34:DF
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018DC5DE59AEA6033963154812019DD710B6
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/6WDyhFHXpEevLU8VdMVY8F8qNN8.roa
Signing time: Tue 20 Feb 2024 09:34:59 +0000
ROA not before: Tue 20 Feb 2024 09:34:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21245
IP address blocks: 144.208.206.0/24 maxlen: 24
185.2.176.0/24 maxlen: 24
217.146.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Feb 2024 14:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c5:de:59:ae:a6:03:39:63:15:48:12:01:9d:d7:10:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Feb 20 09:34:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e960f28451d7a447af2d4f1574c558f05f2a34df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5a:6e:a4:91:8f:c3:54:3e:64:6a:7b:bf:51:
6a:11:1a:35:c8:61:89:91:69:e6:38:ea:c0:a7:da:
1f:45:c6:e3:8c:78:46:cf:5a:c7:ab:43:64:3b:ac:
6c:05:f8:98:e8:07:3e:6d:7b:9e:ff:c8:ca:b5:d9:
4c:53:f1:77:bb:5a:74:98:4d:61:2b:c1:f7:12:29:
62:70:5c:58:5e:71:b9:89:d5:9c:8c:27:de:03:93:
0e:98:a3:26:98:80:9a:19:c0:2e:5e:e2:04:59:9e:
d3:14:a2:b0:43:af:2e:37:d8:70:33:e8:1e:40:2d:
24:b0:de:60:7f:cf:2d:69:2d:fa:a9:b1:93:e7:ae:
94:95:ee:72:d9:55:06:71:b6:ad:7e:51:57:30:3f:
bb:dc:a4:f1:4b:73:d0:7b:12:0b:5c:36:2b:43:ba:
17:48:a8:7e:8b:a5:b5:71:40:9b:cc:7e:11:a3:7f:
27:2a:25:a5:6a:55:bb:07:20:0f:e5:11:8d:24:49:
ae:0c:1a:1f:2a:4c:d1:ed:a1:57:26:a9:37:e0:80:
f9:fd:9e:e6:dd:b6:2e:b4:2a:f0:82:ae:4f:63:ef:
e2:b4:40:12:26:91:ee:88:d4:73:92:23:ae:55:a2:
ed:82:90:ea:05:d7:03:79:52:f0:88:16:c4:8b:0f:
aa:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:60:F2:84:51:D7:A4:47:AF:2D:4F:15:74:C5:58:F0:5F:2A:34:DF
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/6WDyhFHXpEevLU8VdMVY8F8qNN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.206.0/24
185.2.176.0/24
217.146.6.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:91:a9:af:e9:8f:cc:3b:ef:4e:1b:fe:56:4f:ab:72:15:82:
5d:00:12:72:23:d2:ce:20:d3:3a:93:5a:3a:11:e5:86:5e:5f:
d1:61:21:d9:1b:0f:49:01:92:33:a9:e9:68:f6:b0:25:eb:66:
cc:91:87:a8:e2:1c:09:cd:d0:d0:b5:26:cd:ad:9c:a9:03:3a:
62:69:08:9d:af:dd:d9:ed:5b:ce:80:96:13:4b:0a:df:ef:cc:
78:8e:99:c5:99:50:16:ad:8a:44:7a:97:ef:6e:18:d8:69:a1:
9d:32:3b:8c:3f:16:7c:6c:18:b7:fa:70:e9:cf:ff:8e:98:fe:
f1:5a:1b:ff:2c:08:db:93:fb:36:eb:bb:1f:1f:7f:95:de:29:
bd:b6:66:28:d8:6c:88:9d:0c:c4:75:c1:1f:63:df:cf:97:55:
80:32:58:9d:20:64:dc:f2:af:77:6d:c7:31:95:41:b5:85:51:
8f:68:58:fe:53:1f:11:54:ed:b3:9f:c6:30:c9:42:cc:0b:da:
38:26:cb:02:3c:1f:33:40:af:a5:67:1d:d6:16:9d:4e:8e:b7:
99:45:cc:02:64:1d:fc:5f:bc:8c:61:eb:d8:f0:b4:39:e0:2b:
fc:1e:51:d6:7c:51:9b:7b:8c:87:de:bd:9a:9d:19:98:44:aa:
b9:3a:a3:44
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY3F3lmupgM5YxVIEgGd1xC2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MzlhZmViYWNlODk5YThlZTBiYjRmOGJiNDQ3NWZlMjQ3
YTE1MjgwHhcNMjQwMjIwMDkzNDU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTYwZjI4NDUxZDdhNDQ3YWYyZDRmMTU3NGM1NThmMDVmMmEzNGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlpupJGPw1Q+ZGp7v1FqERo1yGGJ
kWnmOOrAp9ofRcbjjHhGz1rHq0NkO6xsBfiY6Ac+bXue/8jKtdlMU/F3u1p0mE1h
K8H3EilicFxYXnG5idWcjCfeA5MOmKMmmICaGcAuXuIEWZ7TFKKwQ68uN9hwM+ge
QC0ksN5gf88taS36qbGT566Ule5y2VUGcbatflFXMD+73KTxS3PQexILXDYrQ7oX
SKh+i6W1cUCbzH4Ro38nKiWlalW7ByAP5RGNJEmuDBofKkzR7aFXJqk34ID5/Z7m
3bYutCrwgq5PY+/itEASJpHuiNRzkiOuVaLtgpDqBdcDeVLwiBbEiw+qQQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFOlg8oRR16RHry1PFXTFWPBfKjTfMB8GA1UdIwQY
MBaAFKU5r+us6Jmo7gu0+LtEdf4kehUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYt
NzQxMzk1OTEzMTJlLzEvNldEeWhGSFhwRWV2TFU4VmRNVlk4RjhxTk44LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYtNzQxMzk1OTEzMTJl
LzEvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAkNDOAwQA
uQKwAwQA2ZIGMA0GCSqGSIb3DQEBCwUAA4IBAQC8kamv6Y/MO+9OG/5WT6tyFYJd
ABJyI9LOINM6k1o6EeWGXl/RYSHZGw9JAZIzqelo9rAl62bMkYeo4hwJzdDQtSbN
rZypAzpiaQidr93Z7VvOgJYTSwrf78x4jpnFmVAWrYpEepfvbhjYaaGdMjuMPxZ8
bBi3+nDpz/+OmP7xWhv/LAjbk/s267sfH3+V3im9tmYo2GyInQzEdcEfY9/Pl1WA
MlidIGTc8q93bccxlUG1hVGPaFj+Ux8RVO2zn8YwyULMC9o4JssCPB8zQK+lZx3W
Fp1OjreZRcwCZB38X7yMYevY8LQ54Cv8HlHWfFGbe4yH3r2anRmYRKq5OqNE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org