Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/q0Ee3xNEOenVIzMR5J47ENhqcig.roa
File: q0Ee3xNEOenVIzMR5J47ENhqcig.roa (raw, json)
Hash identifier: FF7s7eGAIe2Wm5+kTsXFi6j4jxjjelcQHnof4m9NcNo=
Subject key identifier: AB:41:1E:DF:13:44:39:E9:D5:23:33:11:E4:9E:3B:10:D8:6A:72:28
Certificate issuer: /CN=344fdad10ee55b3282a64246a41dc61a8922d25d
Certificate serial: 018CC5004D31CF55FAFD50DFA7E34BBCF1E5
Authority key identifier: 34:4F:DA:D1:0E:E5:5B:32:82:A6:42:46:A4:1D:C6:1A:89:22:D2:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NE_a0Q7lWzKCpkJGpB3GGoki0l0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/q0Ee3xNEOenVIzMR5J47ENhqcig.roa
Signing time: Mon 01 Jan 2024 12:29:40 +0000
ROA not before: Mon 01 Jan 2024 12:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43395
IP address blocks: 185.145.184.0/22 maxlen: 22
185.186.50.0/24 maxlen: 24
185.186.51.0/24 maxlen: 24
185.186.48.0/24 maxlen: 24
185.186.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 10:36:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:4d:31:cf:55:fa:fd:50:df:a7:e3:4b:bc:f1:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=344fdad10ee55b3282a64246a41dc61a8922d25d
Validity
Not Before: Jan 1 12:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab411edf134439e9d5233311e49e3b10d86a7228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:bc:a3:0a:6b:67:bc:a5:f2:1e:dc:5c:8e:27:
11:91:4d:7b:51:85:58:b0:89:c8:90:3a:8c:24:1c:
ea:9f:b6:de:80:4b:d7:a7:68:51:d5:1a:50:78:78:
4b:2e:07:a1:58:f7:aa:71:9e:0a:e5:48:de:79:d6:
e0:e7:bf:ec:7f:56:71:c5:65:35:06:71:86:c4:f4:
f7:ac:8e:14:2e:04:34:0d:77:84:3b:6c:8f:3a:97:
75:fb:09:61:08:52:ab:5a:84:80:75:0b:24:41:64:
0c:61:97:a0:83:ce:00:73:1f:2c:d0:d5:04:94:f4:
f8:ac:35:e2:37:b3:56:ae:4d:ef:0e:df:57:79:ce:
ca:39:58:61:57:b8:20:d2:e5:02:9d:f0:a2:58:dd:
8f:40:65:fb:b6:2e:79:9d:03:49:4f:86:e5:48:b9:
e7:bd:3a:2f:b4:b7:c7:4c:19:0d:d0:02:d2:f9:92:
f3:07:ee:71:10:53:c8:81:92:49:6d:1c:81:5e:70:
86:c6:3e:50:96:6e:00:b2:69:1e:4a:2d:e9:63:ec:
79:04:81:9c:64:f1:c8:dd:23:9b:2f:aa:84:3d:ce:
1d:49:bc:e8:2b:93:f7:d5:ae:85:3d:b1:7e:0a:b4:
58:5a:e4:9f:6e:be:28:e1:aa:d8:83:a8:31:3d:02:
c0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:41:1E:DF:13:44:39:E9:D5:23:33:11:E4:9E:3B:10:D8:6A:72:28
X509v3 Authority Key Identifier:
keyid:34:4F:DA:D1:0E:E5:5B:32:82:A6:42:46:A4:1D:C6:1A:89:22:D2:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NE_a0Q7lWzKCpkJGpB3GGoki0l0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/q0Ee3xNEOenVIzMR5J47ENhqcig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/NE_a0Q7lWzKCpkJGpB3GGoki0l0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.184.0/22
185.186.48.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:dd:83:2e:65:10:63:c8:2f:00:96:4a:2c:d5:56:6c:98:0b:
f7:70:65:17:0d:d9:24:6f:08:d8:c8:3d:a1:20:8d:48:13:ec:
27:b2:31:01:9e:55:47:c8:05:e5:0b:53:2f:8d:65:c9:5b:d2:
64:e2:5c:87:8e:1a:55:1e:ae:95:69:08:90:e1:8d:cc:7b:4a:
05:1f:19:8e:3d:4d:60:6f:2d:2d:74:80:6e:ce:8e:74:7a:3c:
d4:b5:5f:69:76:a7:85:42:71:d4:23:ec:be:92:61:cd:8b:ad:
6d:92:c6:a9:c6:1c:e4:bd:80:d0:15:c2:f4:e3:02:ea:b6:e0:
15:76:5a:3f:99:65:69:75:6e:fd:8a:7e:f5:4f:ae:05:7a:02:
c8:76:d0:07:ea:a0:c2:67:0d:33:0d:00:33:e1:95:dc:df:26:
9a:38:e1:ff:3d:b8:f4:bb:3a:c3:a0:74:cc:1f:4b:4e:1e:c2:
c1:03:32:2b:92:1f:56:ce:ad:4b:f1:4a:51:36:3b:21:b2:b2:
f1:0b:99:1c:2d:3f:e6:7b:b8:2a:26:d8:b2:7c:c1:f7:1f:b2:
a6:3f:14:13:16:34:dc:e1:07:f3:29:93:97:7b:e8:2d:cf:31:
c8:92:7e:9e:40:c3:d2:29:7f:fe:2b:39:3a:8b:d8:00:1f:53:
6b:0a:c6:fa
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzFAE0xz1X6/VDfp+NLvPHlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0NGZkYWQxMGVlNTViMzI4MmE2NDI0NmE0MWRjNjFhODky
MmQyNWQwHhcNMjQwMTAxMTIyOTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjQxMWVkZjEzNDQzOWU5ZDUyMzMzMTFlNDllM2IxMGQ4NmE3MjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ryjCmtnvKXyHtxcjicRkU17UYVY
sInIkDqMJBzqn7begEvXp2hR1RpQeHhLLgehWPeqcZ4K5Ujeedbg57/sf1ZxxWU1
BnGGxPT3rI4ULgQ0DXeEO2yPOpd1+wlhCFKrWoSAdQskQWQMYZegg84Acx8s0NUE
lPT4rDXiN7NWrk3vDt9Xec7KOVhhV7gg0uUCnfCiWN2PQGX7ti55nQNJT4blSLnn
vTovtLfHTBkN0ALS+ZLzB+5xEFPIgZJJbRyBXnCGxj5Qlm4AsmkeSi3pY+x5BIGc
ZPHI3SObL6qEPc4dSbzoK5P31a6FPbF+CrRYWuSfbr4o4arYg6gxPQLAnwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKtBHt8TRDnp1SMzEeSeOxDYanIoMB8GA1UdIwQY
MBaAFDRP2tEO5VsygqZCRqQdxhqJItJdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkVfYTBRN2xXektDcGtKR3BCM0dHb2tpMGwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS8wNjc2MzAtMzA2ZS00YzM3LThiY2Mt
NGYwMjFjNzNlZjc0LzEvcTBFZTN4TkVPZW5WSXpNUjVKNDdFTmhxY2lnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS8wNjc2MzAtMzA2ZS00YzM3LThiY2MtNGYwMjFjNzNlZjc0
LzEvTkVfYTBRN2xXektDcGtKR3BCM0dHb2tpMGwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuZG4AwQC
ubowMA0GCSqGSIb3DQEBCwUAA4IBAQCL3YMuZRBjyC8Alkos1VZsmAv3cGUXDdkk
bwjYyD2hII1IE+wnsjEBnlVHyAXlC1MvjWXJW9Jk4lyHjhpVHq6VaQiQ4Y3Me0oF
HxmOPU1gby0tdIBuzo50ejzUtV9pdqeFQnHUI+y+kmHNi61tksapxhzkvYDQFcL0
4wLqtuAVdlo/mWVpdW79in71T64FegLIdtAH6qDCZw0zDQAz4ZXc3yaaOOH/Pbj0
uzrDoHTMH0tOHsLBAzIrkh9Wzq1L8UpRNjshsrLxC5kcLT/me7gqJtiyfMH3H7Km
PxQTFjTc4QfzKZOXe+gtzzHIkn6eQMPSKX/+Kzk6i9gAH1NrCsb6
-----END CERTIFICATE-----
Generated at Fri Apr 18 15:23:55 2025 by rpki-client