Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/e9c8e9-b954-4d20-a426-8e0c31223db8/1/rcXnzDqOtQCFhD-GL2q4AYhYnVw.roa
File: rcXnzDqOtQCFhD-GL2q4AYhYnVw.roa (raw, json)
Hash identifier: /qAXN4SafKGqWQdPoDUEZccVnRd/+qzPyVoECxU6GDw=
Subject key identifier: AD:C5:E7:CC:3A:8E:B5:00:85:84:3F:86:2F:6A:B8:01:88:58:9D:5C
Certificate issuer: /CN=efa842e67147252505f41551f0f735b7f72e3e97
Certificate serial: 018E96083A65B8EE50D0F675738DF9D58174
Authority key identifier: EF:A8:42:E6:71:47:25:25:05:F4:15:51:F0:F7:35:B7:F7:2E:3E:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/76hC5nFHJSUF9BVR8Pc1t_cuPpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/e9c8e9-b954-4d20-a426-8e0c31223db8/1/rcXnzDqOtQCFhD-GL2q4AYhYnVw.roa
Signing time: Sun 31 Mar 2024 19:41:45 +0000
ROA not before: Sun 31 Mar 2024 19:41:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30058
IP address blocks: 185.165.190.0/24 maxlen: 24
2a07:85c5::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Apr 2024 07:47:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:96:08:3a:65:b8:ee:50:d0:f6:75:73:8d:f9:d5:81:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efa842e67147252505f41551f0f735b7f72e3e97
Validity
Not Before: Mar 31 19:41:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=adc5e7cc3a8eb50085843f862f6ab80188589d5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:09:13:8e:11:82:a4:cd:77:23:92:26:86:df:
d6:64:64:3e:c6:cf:9a:ef:03:55:ae:3a:11:56:8f:
e6:d4:90:fb:aa:77:d6:ba:de:65:d6:40:86:47:a3:
31:10:97:dc:f5:a7:ad:7d:f3:5c:6c:97:5e:c7:e3:
ce:e9:8b:ee:ca:16:68:21:f2:ce:ba:d2:7a:87:8c:
5d:6d:2f:e6:d2:53:cb:05:79:82:d1:28:fa:da:e8:
a2:b4:fa:84:cf:87:90:20:94:3a:7b:69:91:6a:f9:
8c:25:79:58:6e:bf:e7:ff:b5:11:e2:f3:ba:1a:63:
50:c8:9b:d8:06:ca:4f:11:38:6b:e8:ce:3f:b5:8c:
f0:39:e0:41:28:59:6a:5c:c7:22:a0:80:6c:05:62:
29:07:87:95:1d:d0:62:44:2c:9a:e8:00:74:28:d8:
19:b8:db:14:cd:61:05:3c:12:fd:f6:d4:bf:22:45:
67:71:dc:9c:b7:2b:c9:82:74:53:92:95:9e:25:73:
83:45:36:f1:83:ea:2d:23:51:49:7a:b6:79:a8:e1:
c6:54:46:b6:15:50:86:33:f3:8b:17:f8:68:06:98:
e7:c1:fb:39:b5:ad:94:84:d4:8b:ff:f4:09:15:00:
1d:4f:36:d3:fc:fb:8e:6b:fd:3e:f3:ba:3d:df:72:
e3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C5:E7:CC:3A:8E:B5:00:85:84:3F:86:2F:6A:B8:01:88:58:9D:5C
X509v3 Authority Key Identifier:
keyid:EF:A8:42:E6:71:47:25:25:05:F4:15:51:F0:F7:35:B7:F7:2E:3E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/76hC5nFHJSUF9BVR8Pc1t_cuPpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e9c8e9-b954-4d20-a426-8e0c31223db8/1/rcXnzDqOtQCFhD-GL2q4AYhYnVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e9c8e9-b954-4d20-a426-8e0c31223db8/1/76hC5nFHJSUF9BVR8Pc1t_cuPpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.190.0/24
IPv6:
2a07:85c5::/48
Signature Algorithm: sha256WithRSAEncryption
b8:21:d7:d8:79:90:17:65:d4:5d:18:15:86:9a:74:9f:2b:b9:
62:65:6e:d1:ee:3b:8a:0b:0c:40:04:76:83:d8:68:75:68:62:
a3:c2:c3:51:11:0c:ca:5a:54:00:98:0e:92:fe:8a:6e:90:46:
a6:01:ed:4a:ea:e9:f4:77:ad:1e:56:10:be:2a:0d:ac:6e:61:
5d:0c:20:0b:11:5b:a4:be:89:64:59:80:b5:b7:d2:8b:c3:51:
a8:18:dc:29:a4:f7:76:01:85:a6:54:d1:ab:a8:47:98:57:6a:
f9:90:ae:f4:3e:b2:27:42:eb:be:b6:ff:db:a0:54:b8:82:ab:
7e:77:94:8d:44:e5:10:6f:01:0d:7d:54:9e:f5:68:26:c1:59:
30:2e:ca:66:b1:1a:03:ff:d7:e2:4a:23:e1:4c:20:d7:5b:86:
ab:28:0f:02:be:5e:73:81:3c:c7:ee:57:56:8e:d9:13:45:00:
d8:da:fd:a8:bb:5c:25:57:e8:90:47:86:73:9f:4e:09:9f:c3:
0e:62:eb:9e:99:2f:06:20:d5:fd:c6:aa:55:e5:42:43:0b:37:
89:c8:8b:96:09:7a:c1:6a:ab:58:b3:60:dd:09:5a:fb:da:7c:
5c:ab:fc:fb:d0:74:70:77:dc:bb:68:48:99:6a:fc:65:6b:c0:
2d:7f:4a:07
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY6WCDpluO5Q0PZ1c4351YF0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmYTg0MmU2NzE0NzI1MjUwNWY0MTU1MWYwZjczNWI3Zjcy
ZTNlOTcwHhcNMjQwMzMxMTk0MTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZGM1ZTdjYzNhOGViNTAwODU4NDNmODYyZjZhYjgwMTg4NTg5ZDVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwkTjhGCpM13I5Imht/WZGQ+xs+a
7wNVrjoRVo/m1JD7qnfWut5l1kCGR6MxEJfc9aetffNcbJdex+PO6YvuyhZoIfLO
utJ6h4xdbS/m0lPLBXmC0Sj62uiitPqEz4eQIJQ6e2mRavmMJXlYbr/n/7UR4vO6
GmNQyJvYBspPEThr6M4/tYzwOeBBKFlqXMcioIBsBWIpB4eVHdBiRCya6AB0KNgZ
uNsUzWEFPBL99tS/IkVncdyctyvJgnRTkpWeJXODRTbxg+otI1FJerZ5qOHGVEa2
FVCGM/OLF/hoBpjnwfs5ta2UhNSL//QJFQAdTzbT/PuOa/0+87o933LjFQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFK3F58w6jrUAhYQ/hi9quAGIWJ1cMB8GA1UdIwQY
MBaAFO+oQuZxRyUlBfQVUfD3Nbf3Lj6XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzZoQzVuRkhKU1VGOUJWUjhQYzF0X2N1UHBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9lOWM4ZTktYjk1NC00ZDIwLWE0MjYt
OGUwYzMxMjIzZGI4LzEvcmNYbnpEcU90UUNGaEQtR0wycTRBWWhZblZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9lOWM4ZTktYjk1NC00ZDIwLWE0MjYtOGUwYzMxMjIzZGI4
LzEvNzZoQzVuRkhKU1VGOUJWUjhQYzF0X2N1UHBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuaW+MA8E
AgACMAkDBwAqB4XFAAAwDQYJKoZIhvcNAQELBQADggEBALgh19h5kBdl1F0YFYaa
dJ8ruWJlbtHuO4oLDEAEdoPYaHVoYqPCw1ERDMpaVACYDpL+im6QRqYB7Urq6fR3
rR5WEL4qDaxuYV0MIAsRW6S+iWRZgLW30ovDUagY3Cmk93YBhaZU0auoR5hXavmQ
rvQ+sidC6762/9ugVLiCq353lI1E5RBvAQ19VJ71aCbBWTAuymaxGgP/1+JKI+FM
INdbhqsoDwK+XnOBPMfuV1aO2RNFANja/ai7XCVX6JBHhnOfTgmfww5i656ZLwYg
1f3GqlXlQkMLN4nIi5YJesFqq1izYN0JWvvafFyr/PvQdHB33LtoSJlq/GVrwC1/
Sgc=
-----END CERTIFICATE-----
Generated at Tue Apr 15 22:23:46 2025 by rpki-client