Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/5Nq9jiTpxSFnUL1bImQZJ-P5Ljk.roa
File: 5Nq9jiTpxSFnUL1bImQZJ-P5Ljk.roa (raw, json)
Hash identifier: cOPvYCUIPKE7/canJVe1gLs9YjhO9StzfApSj9di73g=
Subject key identifier: E4:DA:BD:8E:24:E9:C5:21:67:50:BD:5B:22:64:19:27:E3:F9:2E:39
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018B13E54014F7FB1D96F7C4ADEC7E2923E6
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/5Nq9jiTpxSFnUL1bImQZJ-P5Ljk.roa
Signing time: Mon 09 Oct 2023 10:04:33 +0000
ROA not before: Mon 09 Oct 2023 10:04:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.73.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:13:e5:40:14:f7:fb:1d:96:f7:c4:ad:ec:7e:29:23:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Oct 9 10:04:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4dabd8e24e9c5216750bd5b22641927e3f92e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0b:84:4b:31:c3:d8:aa:be:3a:df:a0:b6:16:
fd:95:a8:9b:25:f9:1d:24:dc:a0:cb:6e:91:81:d3:
31:e8:4d:77:fd:2e:07:8d:3b:a9:01:bd:ae:c3:77:
55:fc:04:e0:e4:4e:62:d8:d3:bc:97:8f:98:c4:f0:
26:fd:1e:9f:c5:2c:ea:4d:22:76:e5:23:f0:6f:0b:
51:57:76:63:64:0a:82:62:95:ce:f5:c2:30:38:d3:
83:84:21:ce:ce:e9:03:cd:ba:80:65:57:c1:82:81:
3c:45:f9:9b:f5:ed:e1:42:9e:26:44:c4:0a:88:47:
ff:7b:77:ea:dd:fb:19:d7:8b:fe:3c:0f:3f:51:61:
fb:7d:d6:6d:50:e0:6d:fd:62:80:19:3b:8f:46:46:
dc:3c:44:3f:cf:6c:ca:42:f8:34:c8:75:02:6a:1d:
19:34:ad:5e:57:db:44:ed:1c:cc:43:8a:fd:d6:69:
ca:c7:aa:df:61:68:a4:60:51:5c:f4:68:5c:14:29:
4d:52:10:9a:18:a8:4c:cc:d2:33:19:ba:5c:a9:b0:
27:1f:19:e7:b8:98:3d:e4:5a:ec:93:a8:0e:b1:89:
f4:a0:76:4c:78:61:04:d9:6e:f4:c0:e0:bf:ba:77:
03:a7:02:f5:44:0c:f6:1e:36:e6:2c:9d:d0:67:b2:
d8:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DA:BD:8E:24:E9:C5:21:67:50:BD:5B:22:64:19:27:E3:F9:2E:39
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/5Nq9jiTpxSFnUL1bImQZJ-P5Ljk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.218.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:2b:f8:ac:c8:a5:2f:64:52:b3:ab:9d:67:8f:71:84:02:db:
3f:0c:27:93:e3:d6:c3:9d:27:dd:98:14:5f:7c:33:81:a9:25:
54:e9:3b:25:9f:08:3a:86:c8:f8:88:f9:0f:57:0e:85:f0:c1:
42:23:1f:f5:4d:82:02:24:85:57:e5:64:64:3a:98:b6:86:e8:
a1:5f:66:ca:a3:93:44:6c:3c:2f:53:82:90:a4:c0:1c:94:51:
c1:81:e4:4c:8c:1a:4b:e4:f7:1a:af:9a:e0:23:a2:6a:cb:c1:
18:68:b0:fe:40:cb:62:81:bc:9f:9a:52:62:e6:9f:bd:27:e4:
7d:7e:2e:e8:b7:e4:ce:4d:d6:f8:6a:39:39:8e:6d:11:1f:10:
12:bb:1e:2b:1a:c6:67:f9:5f:f1:82:7a:bc:a6:7a:b5:ba:db:
f3:54:ae:78:51:3a:b2:41:74:33:84:04:e4:4f:fe:5a:00:ba:
6a:54:16:d2:e2:b1:2b:ed:30:e2:74:1c:bc:93:c9:ad:c0:8f:
eb:c2:11:2e:fe:22:ec:32:a2:c5:ad:7f:1c:72:10:58:83:fb:
ee:4f:2a:bd:3c:72:a5:f0:4b:4d:ed:06:ba:9c:2d:8b:9b:cf:
a8:0e:0b:95:16:8c:29:f6:9d:5e:bb:c7:80:1d:a0:1c:d1:49:
f4:9f:50:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsT5UAU9/sdlvfErex+KSPmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjMxMDA5MTAwNDMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNGRhYmQ4ZTI0ZTljNTIxNjc1MGJkNWIyMjY0MTkyN2UzZjkyZTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwuESzHD2Kq+Ot+gthb9laibJfkd
JNygy26RgdMx6E13/S4HjTupAb2uw3dV/ATg5E5i2NO8l4+YxPAm/R6fxSzqTSJ2
5SPwbwtRV3ZjZAqCYpXO9cIwONODhCHOzukDzbqAZVfBgoE8Rfmb9e3hQp4mRMQK
iEf/e3fq3fsZ14v+PA8/UWH7fdZtUOBt/WKAGTuPRkbcPEQ/z2zKQvg0yHUCah0Z
NK1eV9tE7RzMQ4r91mnKx6rfYWikYFFc9GhcFClNUhCaGKhMzNIzGbpcqbAnHxnn
uJg95Frsk6gOsYn0oHZMeGEE2W70wOC/uncDpwL1RAz2HjbmLJ3QZ7LYcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOTavY4k6cUhZ1C9WyJkGSfj+S45MB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvNU5xOWppVHB4U0ZuVUwxYkltUVpKLVA1TGprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUnaMA0G
CSqGSIb3DQEBCwUAA4IBAQAsK/isyKUvZFKzq51nj3GEAts/DCeT49bDnSfdmBRf
fDOBqSVU6Tslnwg6hsj4iPkPVw6F8MFCIx/1TYICJIVX5WRkOpi2huihX2bKo5NE
bDwvU4KQpMAclFHBgeRMjBpL5Pcar5rgI6Jqy8EYaLD+QMtigbyfmlJi5p+9J+R9
fi7ot+TOTdb4ajk5jm0RHxASux4rGsZn+V/xgnq8pnq1utvzVK54UTqyQXQzhATk
T/5aALpqVBbS4rEr7TDidBy8k8mtwI/rwhEu/iLsMqLFrX8cchBYg/vuTyq9PHKl
8EtN7Qa6nC2Lm8+oDguVFowp9p1eu8eAHaAc0Un0n1CR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org