Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c05d4c-96d3-4b57-ae34-3477c7fcd4d9/1/DoV5C18uL8HG2PTrkySWsb1kBHA.roa
File: DoV5C18uL8HG2PTrkySWsb1kBHA.roa (raw, json)
Hash identifier: CwuwEIB0uyn4M3BIqtTxkRE3uk9lOOpqIswunYergD4=
Subject key identifier: 0E:85:79:0B:5F:2E:2F:C1:C6:D8:F4:EB:93:24:96:B1:BD:64:04:70
Certificate issuer: /CN=21c1672dbbbf7165a6a83b3227a7119f0d31e8ee
Certificate serial: 0185712792A4FD8DC973F04DBAC3F15FE0A1
Authority key identifier: 21:C1:67:2D:BB:BF:71:65:A6:A8:3B:32:27:A7:11:9F:0D:31:E8:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IcFnLbu_cWWmqDsyJ6cRnw0x6O4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c05d4c-96d3-4b57-ae34-3477c7fcd4d9/1/DoV5C18uL8HG2PTrkySWsb1kBHA.roa
Signing time: Mon 02 Jan 2023 06:24:56 +0000
ROA not before: Mon 02 Jan 2023 06:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16371
IP address blocks: 185.25.112.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:92:a4:fd:8d:c9:73:f0:4d:ba:c3:f1:5f:e0:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21c1672dbbbf7165a6a83b3227a7119f0d31e8ee
Validity
Not Before: Jan 2 06:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e85790b5f2e2fc1c6d8f4eb932496b1bd640470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:70:dc:52:b9:01:2d:8a:b5:45:c7:b7:20:5e:
13:28:0f:70:14:ce:57:5a:68:b8:5b:9b:4e:b2:74:
a2:a2:d3:ce:b7:f6:1e:eb:86:93:aa:0e:99:80:64:
02:f9:3e:f2:f3:48:19:6d:2b:da:e6:82:fc:02:29:
c4:76:43:43:95:11:f6:a9:b3:ef:44:f2:d0:44:37:
60:12:4a:e0:45:ae:83:94:40:34:e1:48:97:77:8f:
15:7a:07:23:f4:4d:df:26:fa:29:03:b7:9a:f1:a9:
81:a1:29:d2:6c:d0:a2:12:6c:05:4f:97:90:93:3e:
74:e8:b6:ce:d9:7d:c9:3d:d8:64:d5:a7:60:2f:6d:
fd:a9:27:1e:6b:d8:eb:75:cb:b1:13:60:5f:fa:66:
1f:39:89:93:9b:ce:c1:85:3e:b8:40:5e:ff:c3:9b:
99:a2:6d:86:ec:a2:03:44:11:83:8f:52:f7:1f:1c:
73:19:af:6c:21:94:24:31:0d:09:8a:5c:20:64:92:
37:6e:83:22:fa:4c:cc:c0:0b:48:a9:be:6b:9a:d1:
2a:5c:c4:a0:0d:d1:38:a2:ca:48:1e:66:9b:b2:03:
b3:5c:7e:fb:d7:ce:1b:20:00:4b:57:b5:43:55:17:
a1:8e:c8:43:1d:d2:ce:55:b0:5a:be:bc:02:55:5e:
cc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:85:79:0B:5F:2E:2F:C1:C6:D8:F4:EB:93:24:96:B1:BD:64:04:70
X509v3 Authority Key Identifier:
keyid:21:C1:67:2D:BB:BF:71:65:A6:A8:3B:32:27:A7:11:9F:0D:31:E8:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IcFnLbu_cWWmqDsyJ6cRnw0x6O4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c05d4c-96d3-4b57-ae34-3477c7fcd4d9/1/DoV5C18uL8HG2PTrkySWsb1kBHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c05d4c-96d3-4b57-ae34-3477c7fcd4d9/1/IcFnLbu_cWWmqDsyJ6cRnw0x6O4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.112.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:18:f2:45:77:90:5d:e4:58:e0:ed:81:2b:96:9c:71:04:0b:
69:8f:26:f1:7e:d1:3f:c0:fc:93:37:f8:50:e8:d9:0c:fa:dd:
b0:b8:3b:05:8d:7c:a1:15:23:c5:f6:8b:a5:2a:be:be:22:d4:
30:07:41:54:1b:04:65:56:ea:fa:ef:ff:69:d0:fe:ee:07:25:
1b:88:ff:86:95:a3:05:43:94:6e:0f:91:5b:08:fb:cb:42:f5:
9b:19:68:ee:1e:80:bb:81:78:38:ca:2a:68:15:87:8d:d8:87:
a3:7d:31:55:54:1d:52:f8:a4:f2:b1:49:52:35:2b:27:9d:3f:
07:2e:1b:bb:49:67:ef:0c:bd:62:01:7e:fa:95:d6:3f:10:93:
f5:50:4f:c1:c8:76:0f:28:37:bf:2a:13:4b:17:e5:18:8b:7b:
cf:22:ee:63:31:a5:b6:56:1f:05:c7:d2:b5:5e:29:f6:ea:f7:
52:71:73:5f:cf:5b:00:f4:15:56:97:e3:92:c4:3d:48:8a:29:
d2:7c:35:71:a2:9e:52:b9:23:00:d0:ad:20:09:7a:54:ca:3f:
89:b8:70:f8:84:dd:f5:b9:5d:5c:f1:80:36:9e:75:2d:47:84:
60:ef:ed:d6:b4:c4:17:63:09:91:d9:06:70:d1:b2:97:a3:1b:
79:30:27:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxJ5Kk/Y3Jc/BNusPxX+ChMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYzE2NzJkYmJiZjcxNjVhNmE4M2IzMjI3YTcxMTlmMGQz
MWU4ZWUwHhcNMjMwMTAyMDYyNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTg1NzkwYjVmMmUyZmMxYzZkOGY0ZWI5MzI0OTZiMWJkNjQwNDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHDcUrkBLYq1Rce3IF4TKA9wFM5X
Wmi4W5tOsnSiotPOt/Ye64aTqg6ZgGQC+T7y80gZbSva5oL8AinEdkNDlRH2qbPv
RPLQRDdgEkrgRa6DlEA04UiXd48Vegcj9E3fJvopA7ea8amBoSnSbNCiEmwFT5eQ
kz506LbO2X3JPdhk1adgL239qScea9jrdcuxE2Bf+mYfOYmTm87BhT64QF7/w5uZ
om2G7KIDRBGDj1L3HxxzGa9sIZQkMQ0JilwgZJI3boMi+kzMwAtIqb5rmtEqXMSg
DdE4ospIHmabsgOzXH77184bIABLV7VDVRehjshDHdLOVbBavrwCVV7MnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA6FeQtfLi/Bxtj065MklrG9ZARwMB8GA1UdIwQY
MBaAFCHBZy27v3Flpqg7MienEZ8NMejuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWNGbkxidV9jV1dtcURzeUo2Y1JudzB4Nk80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9jMDVkNGMtOTZkMy00YjU3LWFlMzQt
MzQ3N2M3ZmNkNGQ5LzEvRG9WNUMxOHVMOEhHMlBUcmt5U1dzYjFrQkhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi9jMDVkNGMtOTZkMy00YjU3LWFlMzQtMzQ3N2M3ZmNkNGQ5
LzEvSWNGbkxidV9jV1dtcURzeUo2Y1JudzB4Nk80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRlwMA0G
CSqGSIb3DQEBCwUAA4IBAQBMGPJFd5Bd5Fjg7YErlpxxBAtpjybxftE/wPyTN/hQ
6NkM+t2wuDsFjXyhFSPF9oulKr6+ItQwB0FUGwRlVur67/9p0P7uByUbiP+GlaMF
Q5RuD5FbCPvLQvWbGWjuHoC7gXg4yipoFYeN2IejfTFVVB1S+KTysUlSNSsnnT8H
Lhu7SWfvDL1iAX76ldY/EJP1UE/ByHYPKDe/KhNLF+UYi3vPIu5jMaW2Vh8Fx9K1
Xin26vdScXNfz1sA9BVWl+OSxD1IiinSfDVxop5SuSMA0K0gCXpUyj+JuHD4hN31
uV1c8YA2nnUtR4Rg7+3WtMQXYwmR2QZw0bKXoxt5MCcr
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:48 2024 by rpki-client on console-fra.rpki-client.org