Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/501f2b-fd1f-45ea-b494-d73dc4b41ce1/1/KRoGMMwrzXqGxAf_yUrfFbWpoW0.roa
File: KRoGMMwrzXqGxAf_yUrfFbWpoW0.roa (raw, json)
Hash identifier: 5gVpgjTc9oONZbXH10Be/qAPTyDHBYhjr2mBFK4jJKQ=
Subject key identifier: 29:1A:06:30:CC:2B:CD:7A:86:C4:07:FF:C9:4A:DF:15:B5:A9:A1:6D
Certificate issuer: /CN=bc464ba9d26385f54df6254ac248926d370445b0
Certificate serial: 018571F9F85A5F20361EFBBCCF7ECFEF1881
Authority key identifier: BC:46:4B:A9:D2:63:85:F5:4D:F6:25:4A:C2:48:92:6D:37:04:45:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vEZLqdJjhfVN9iVKwkiSbTcERbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/501f2b-fd1f-45ea-b494-d73dc4b41ce1/1/KRoGMMwrzXqGxAf_yUrfFbWpoW0.roa
Signing time: Mon 02 Jan 2023 10:14:45 +0000
ROA not before: Mon 02 Jan 2023 10:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1764
IP address blocks: 185.236.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Dec 2023 21:33:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f9:f8:5a:5f:20:36:1e:fb:bc:cf:7e:cf:ef:18:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc464ba9d26385f54df6254ac248926d370445b0
Validity
Not Before: Jan 2 10:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=291a0630cc2bcd7a86c407ffc94adf15b5a9a16d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7a:02:af:8a:cc:bb:f9:f8:b1:69:d8:6b:ab:
b2:8b:a7:b8:81:e7:e8:a4:7a:dc:e6:3a:ea:70:ef:
77:ee:f2:c0:09:54:7b:91:ec:49:30:59:df:5e:a5:
68:0d:e5:fd:08:c5:98:d8:ee:f2:a6:39:c6:0b:90:
c9:48:04:60:2b:93:da:14:12:ee:16:16:f9:ba:2b:
80:42:67:e3:32:c5:74:05:68:28:b6:f5:d4:4e:90:
bd:7b:dc:bc:e2:e9:a7:2d:09:26:b5:2c:3f:ed:f0:
8a:ef:8a:4e:23:f4:9e:51:fb:a5:ce:d3:24:97:a7:
d9:8e:3b:cd:9d:a9:95:07:bc:6f:78:a3:51:ac:df:
6b:ae:17:1c:5c:50:9b:94:49:16:f5:0a:7e:2a:ba:
9c:a5:37:82:5c:56:a7:53:a4:48:96:e2:4f:45:9f:
82:a5:4e:25:9c:01:05:a6:46:92:60:b4:05:5c:09:
5a:6a:a2:4f:35:f0:41:d4:74:62:eb:8f:12:4c:9f:
de:0c:99:3f:e3:9f:ea:5b:9b:1d:6f:c2:f6:64:d1:
82:6f:90:5e:4c:92:db:86:b9:fd:b7:46:9e:ca:54:
2a:b0:fd:4b:94:82:6b:27:c6:c0:6f:b9:21:31:fe:
13:f7:c9:f2:c6:5d:c1:b0:13:4a:00:ac:18:48:6b:
93:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:1A:06:30:CC:2B:CD:7A:86:C4:07:FF:C9:4A:DF:15:B5:A9:A1:6D
X509v3 Authority Key Identifier:
keyid:BC:46:4B:A9:D2:63:85:F5:4D:F6:25:4A:C2:48:92:6D:37:04:45:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vEZLqdJjhfVN9iVKwkiSbTcERbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/501f2b-fd1f-45ea-b494-d73dc4b41ce1/1/KRoGMMwrzXqGxAf_yUrfFbWpoW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/501f2b-fd1f-45ea-b494-d73dc4b41ce1/1/vEZLqdJjhfVN9iVKwkiSbTcERbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.167.0/24
Signature Algorithm: sha256WithRSAEncryption
58:a3:31:e5:fa:c3:ea:32:19:f2:53:92:25:92:41:ef:f2:94:
97:8b:0d:7a:a4:26:48:66:da:73:11:b8:ba:54:08:9d:f3:25:
01:fb:d6:00:0b:33:a4:74:7f:83:cb:62:84:ef:ec:7a:0c:cc:
7a:11:d2:ff:f4:ff:d4:f6:37:08:f1:de:18:3c:3d:35:61:22:
0e:91:33:14:63:af:3c:28:da:4e:58:bf:bf:6a:12:1c:ab:86:
c8:4a:d7:02:ae:5c:bf:64:2a:71:fc:dd:fd:19:62:98:ce:09:
13:73:90:bb:ca:a1:47:35:98:06:cf:df:ae:6e:43:57:db:49:
a8:66:b4:01:23:b0:86:50:09:db:78:5a:35:0a:2c:0d:a8:14:
68:ea:30:df:56:56:9f:9d:de:f5:c1:d6:20:75:93:d8:9e:d5:
7d:31:c6:b6:e8:35:a5:ad:6a:8c:54:17:66:50:09:8a:3f:db:
7e:03:ce:96:f5:7f:23:4e:a0:a6:e1:d9:33:3d:ee:60:e6:c0:
19:e3:2c:9f:c5:9e:f5:a9:10:b9:3e:26:5e:d7:f6:f4:75:dd:
89:ee:ec:e8:d5:f0:21:b8:43:8e:77:b6:90:db:6a:db:e8:3b:
e2:15:54:ed:f9:98:b7:9a:bb:3d:8c:22:d0:dd:9d:b0:7c:dc:
57:83:cd:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx+fhaXyA2Hvu8z37P7xiBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjNDY0YmE5ZDI2Mzg1ZjU0ZGY2MjU0YWMyNDg5MjZkMzcw
NDQ1YjAwHhcNMjMwMTAyMTAxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTFhMDYzMGNjMmJjZDdhODZjNDA3ZmZjOTRhZGYxNWI1YTlhMTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3oCr4rMu/n4sWnYa6uyi6e4gefo
pHrc5jrqcO937vLACVR7kexJMFnfXqVoDeX9CMWY2O7ypjnGC5DJSARgK5PaFBLu
Fhb5uiuAQmfjMsV0BWgotvXUTpC9e9y84umnLQkmtSw/7fCK74pOI/SeUfulztMk
l6fZjjvNnamVB7xveKNRrN9rrhccXFCblEkW9Qp+KrqcpTeCXFanU6RIluJPRZ+C
pU4lnAEFpkaSYLQFXAlaaqJPNfBB1HRi648STJ/eDJk/45/qW5sdb8L2ZNGCb5Be
TJLbhrn9t0aeylQqsP1LlIJrJ8bAb7khMf4T98nyxl3BsBNKAKwYSGuT3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCkaBjDMK816hsQH/8lK3xW1qaFtMB8GA1UdIwQY
MBaAFLxGS6nSY4X1TfYlSsJIkm03BEWwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkVaTHFkSmpoZlZOOWlWS3draVNiVGNFUmJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS81MDFmMmItZmQxZi00NWVhLWI0OTQt
ZDczZGM0YjQxY2UxLzEvS1JvR01Nd3J6WHFHeEFmX3lVcmZGYldwb1cwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS81MDFmMmItZmQxZi00NWVhLWI0OTQtZDczZGM0YjQxY2Ux
LzEvdkVaTHFkSmpoZlZOOWlWS3draVNiVGNFUmJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueynMA0G
CSqGSIb3DQEBCwUAA4IBAQBYozHl+sPqMhnyU5IlkkHv8pSXiw16pCZIZtpzEbi6
VAid8yUB+9YACzOkdH+Dy2KE7+x6DMx6EdL/9P/U9jcI8d4YPD01YSIOkTMUY688
KNpOWL+/ahIcq4bIStcCrly/ZCpx/N39GWKYzgkTc5C7yqFHNZgGz9+ubkNX20mo
ZrQBI7CGUAnbeFo1CiwNqBRo6jDfVlafnd71wdYgdZPYntV9Mca26DWlrWqMVBdm
UAmKP9t+A86W9X8jTqCm4dkzPe5g5sAZ4yyfxZ71qRC5PiZe1/b0dd2J7uzo1fAh
uEOOd7aQ22rb6DviFVTt+Zi3mrs9jCLQ3Z2wfNxXg82r
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:16 2024 by rpki-client on console-ams.rpki-client.org