Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/sT_KJ25ra0Ikc5uNFRVJ877bv2o.roa
File: sT_KJ25ra0Ikc5uNFRVJ877bv2o.roa (raw, json)
Hash identifier: Shbd/I/TaD0IL+yMhGSbzPnNEsggjEqDf9+tQwQo3qk=
Subject key identifier: B1:3F:CA:27:6E:6B:6B:42:24:73:9B:8D:15:15:49:F3:BE:DB:BF:6A
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018D74B59FBED3E2F3E91039E4AB1082AE12
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/sT_KJ25ra0Ikc5uNFRVJ877bv2o.roa
Signing time: Sun 04 Feb 2024 15:21:16 +0000
ROA not before: Sun 04 Feb 2024 15:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210542
IP address blocks: 185.114.144.0/23 maxlen: 24
185.179.218.0/23 maxlen: 24
188.64.104.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 06:17:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:74:b5:9f:be:d3:e2:f3:e9:10:39:e4:ab:10:82:ae:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Feb 4 15:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b13fca276e6b6b4224739b8d151549f3bedbbf6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:63:a8:8b:9e:66:3c:9c:e7:3a:4b:98:59:14:
7d:68:82:a7:08:65:56:8e:de:28:56:e4:80:7d:68:
25:29:ea:37:d5:55:7d:a7:62:bd:13:82:17:59:54:
ea:09:74:55:67:69:2b:38:a3:5f:da:f4:06:fe:98:
51:93:a3:95:04:dd:7b:11:57:d5:df:67:33:c4:6e:
a2:59:bd:24:bc:91:ce:67:4a:dd:06:06:ec:45:8b:
f4:9f:97:02:ac:28:8b:79:06:8e:7d:96:4c:bb:a4:
a8:9a:36:88:ff:80:50:5b:d0:92:8e:85:70:1e:1e:
ae:e2:75:22:9e:51:92:7c:63:3a:c7:b7:6f:f3:03:
72:e2:86:aa:19:4d:17:22:c1:ee:59:8d:50:36:64:
fe:d6:f5:7d:9a:7b:80:78:4c:92:54:9c:2c:0d:9c:
46:94:df:86:8b:a6:e9:65:58:dd:b7:11:8c:f2:92:
47:60:d2:bc:4b:f5:a4:3e:a9:e5:99:f2:69:11:78:
82:07:71:ad:5e:a1:60:53:1d:4f:e5:6a:f9:72:75:
c4:db:25:48:db:7c:f6:fa:f6:a6:4a:3c:8b:e2:cd:
64:75:e1:fd:63:68:ce:f0:d3:b4:9e:db:67:9b:ba:
11:01:aa:50:dd:e2:a7:6e:35:1e:cc:7a:2e:2a:42:
89:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:3F:CA:27:6E:6B:6B:42:24:73:9B:8D:15:15:49:F3:BE:DB:BF:6A
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/sT_KJ25ra0Ikc5uNFRVJ877bv2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.144.0/23
185.179.218.0/23
188.64.104.0/22
Signature Algorithm: sha256WithRSAEncryption
15:a7:6d:f9:32:6c:5c:a2:28:8a:6d:21:72:19:57:5e:05:9f:
71:a3:60:98:97:c3:7d:c7:e0:14:32:da:4c:97:31:89:68:42:
ad:2f:78:ef:f8:f0:02:76:6a:0d:80:df:0d:44:9d:b5:40:57:
a7:0d:01:e9:e3:00:51:76:b8:c0:c0:b5:b9:5d:e2:10:5d:ee:
c3:f5:29:ac:37:c4:b4:0c:36:fc:c8:ab:fc:6c:62:2c:e1:3e:
6c:c3:b1:19:25:b0:8b:84:e2:66:3b:ee:f3:dd:4d:5e:f1:ad:
a4:3a:6a:63:49:2c:8b:a8:45:35:90:98:b7:43:ca:d8:d8:5b:
07:38:a2:19:73:a8:be:be:26:39:54:eb:61:38:f1:8e:fd:53:
00:03:15:d7:00:6a:9e:b4:4b:08:c6:64:ea:b8:37:d7:d7:5f:
99:32:9e:b8:cc:e0:9a:72:45:e0:08:b6:cc:26:1c:8e:06:68:
38:53:7e:8f:4c:bb:0a:c0:4d:de:5f:80:ec:eb:78:8c:c1:4d:
ac:e0:c2:43:b9:bd:85:fe:6f:64:9f:62:d7:ce:04:44:6d:bc:
0f:37:66:16:b9:33:b6:14:28:e7:66:14:e2:93:aa:2e:a9:7a:
00:22:69:b9:7a:0d:a9:a2:24:b8:22:87:45:2c:31:47:ee:7f:
f0:98:1d:79
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY10tZ++0+Lz6RA55KsQgq4SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjQwMjA0MTUyMTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTNmY2EyNzZlNmI2YjQyMjQ3MzliOGQxNTE1NDlmM2JlZGJiZjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhmOoi55mPJznOkuYWRR9aIKnCGVW
jt4oVuSAfWglKeo31VV9p2K9E4IXWVTqCXRVZ2krOKNf2vQG/phRk6OVBN17EVfV
32czxG6iWb0kvJHOZ0rdBgbsRYv0n5cCrCiLeQaOfZZMu6SomjaI/4BQW9CSjoVw
Hh6u4nUinlGSfGM6x7dv8wNy4oaqGU0XIsHuWY1QNmT+1vV9mnuAeEySVJwsDZxG
lN+Gi6bpZVjdtxGM8pJHYNK8S/WkPqnlmfJpEXiCB3GtXqFgUx1P5Wr5cnXE2yVI
23z2+vamSjyL4s1kdeH9Y2jO8NO0nttnm7oRAapQ3eKnbjUezHouKkKJVQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFLE/yidua2tCJHObjRUVSfO+279qMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvc1RfS0oyNXJhMElrYzV1TkZSVko4NzdidjJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBuXKQAwQB
ubPaAwQCvEBoMA0GCSqGSIb3DQEBCwUAA4IBAQAVp235MmxcoiiKbSFyGVdeBZ9x
o2CYl8N9x+AUMtpMlzGJaEKtL3jv+PACdmoNgN8NRJ21QFenDQHp4wBRdrjAwLW5
XeIQXe7D9SmsN8S0DDb8yKv8bGIs4T5sw7EZJbCLhOJmO+7z3U1e8a2kOmpjSSyL
qEU1kJi3Q8rY2FsHOKIZc6i+viY5VOthOPGO/VMAAxXXAGqetEsIxmTquDfX11+Z
Mp64zOCackXgCLbMJhyOBmg4U36PTLsKwE3eX4Ds63iMwU2s4MJDub2F/m9kn2LX
zgREbbwPN2YWuTO2FCjnZhTik6ouqXoAImm5eg2poiS4IodFLDFH7n/wmB15
-----END CERTIFICATE-----
Generated at Mon Apr 15 09:34:05 2024 by rpki-client on console-fra.rpki-client.org