Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/guLAsVArgIdBrk81M2pkr7CE9-0.roa
File: guLAsVArgIdBrk81M2pkr7CE9-0.roa (raw, json)
Hash identifier: t0G404QrCCqrQHYyv81h5eAOlq50QrclR7oHHB8V0oY=
Subject key identifier: 82:E2:C0:B1:50:2B:80:87:41:AE:4F:35:33:6A:64:AF:B0:84:F7:ED
Certificate issuer: /CN=708029a674177efd99252275094618c0c9cfbd1d
Certificate serial: 018D204ABA99812ADB4B76B53552647BAF55
Authority key identifier: 70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/guLAsVArgIdBrk81M2pkr7CE9-0.roa
Signing time: Fri 19 Jan 2024 05:56:24 +0000
ROA not before: Fri 19 Jan 2024 05:56:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 185.167.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Mar 2024 12:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:20:4a:ba:99:81:2a:db:4b:76:b5:35:52:64:7b:af:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=708029a674177efd99252275094618c0c9cfbd1d
Validity
Not Before: Jan 19 05:56:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82e2c0b1502b808741ae4f35336a64afb084f7ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:af:2f:db:71:9b:1c:19:5c:c3:1d:ab:fe:ca:
ff:ab:28:d8:9d:66:06:42:62:7f:ee:31:08:16:ad:
cf:7c:a5:87:dc:cf:7e:54:2e:6a:72:9e:74:5d:39:
93:8f:88:a3:d5:95:9c:45:a8:dd:ba:14:a5:0d:5c:
48:6c:08:c8:22:c5:5d:ff:4c:a2:37:a9:7b:28:d8:
0f:81:11:bb:c9:be:3b:cc:2a:e0:50:b8:ef:42:cb:
7e:13:98:92:e4:0b:d6:93:2c:14:28:4f:c5:d0:36:
c9:a3:e9:0c:56:5f:e1:9f:7c:28:f0:31:e0:89:7a:
e0:04:65:1f:31:37:47:7e:d3:44:2f:9d:a2:65:99:
dd:f4:8e:36:81:48:a4:0d:95:9d:a1:6b:02:b6:a9:
81:ff:9f:60:e2:5b:41:30:bc:60:bb:57:9f:21:a8:
e4:4f:f2:42:c1:70:b8:9a:20:dd:9d:8d:f7:c2:17:
ca:b3:21:8a:d5:18:9a:3f:61:47:55:5e:c2:5c:46:
ea:c2:2a:f6:a2:e3:8f:35:14:35:1a:00:5e:66:a8:
ac:18:11:87:22:60:6f:e5:88:3d:8d:e4:71:56:92:
2d:c3:71:f9:c4:6d:3a:97:80:8e:9c:52:a1:68:63:
19:15:fa:1c:b6:fa:7e:d3:e3:54:13:37:2e:a9:8e:
50:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E2:C0:B1:50:2B:80:87:41:AE:4F:35:33:6A:64:AF:B0:84:F7:ED
X509v3 Authority Key Identifier:
keyid:70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/guLAsVArgIdBrk81M2pkr7CE9-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.253.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:4a:05:a2:aa:37:68:70:07:17:73:a0:24:44:92:3e:ee:56:
48:55:98:95:e5:78:f1:e4:8b:ec:91:80:e2:2c:55:d8:22:c2:
3d:16:26:81:f6:36:18:d4:8a:40:9b:8d:0c:94:1e:a7:ba:ab:
a6:1c:6f:66:b5:ad:f6:1c:f0:a7:28:19:ff:e0:43:b6:e4:e8:
62:88:f9:cc:43:0a:77:ec:b1:91:86:90:32:41:b1:3c:4d:ce:
c0:ed:df:79:3d:30:33:3f:cb:09:02:f1:ff:2c:cb:a1:82:fd:
7a:f0:55:77:b9:96:3f:6d:1e:e2:cb:85:7d:f6:8a:d6:45:1e:
3a:18:21:08:1f:0a:f0:aa:5a:89:49:dc:f2:45:2e:c6:9d:15:
2c:fd:71:ed:af:d8:8d:89:ad:ef:c7:d4:99:e0:38:41:c9:13:
e0:f9:3b:a9:6d:e5:d3:9d:3b:83:b5:65:f7:56:75:81:76:65:
e7:18:48:77:21:5b:b2:6e:85:86:29:10:d3:52:fa:63:d7:73:
4d:be:da:79:dc:f1:4e:a0:e9:5a:d7:a8:59:e4:56:50:c4:03:
af:e0:4b:59:c8:e4:11:31:94:d2:54:e0:c8:27:39:5e:6e:3d:
c5:c7:98:0d:7d:b3:cd:90:a9:59:f0:09:c7:b9:59:93:18:47:
58:0f:d3:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0gSrqZgSrbS3a1NVJke69VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwODAyOWE2NzQxNzdlZmQ5OTI1MjI3NTA5NDYxOGMwYzlj
ZmJkMWQwHhcNMjQwMTE5MDU1NjI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmUyYzBiMTUwMmI4MDg3NDFhZTRmMzUzMzZhNjRhZmIwODRmN2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjK8v23GbHBlcwx2r/sr/qyjYnWYG
QmJ/7jEIFq3PfKWH3M9+VC5qcp50XTmTj4ij1ZWcRajduhSlDVxIbAjIIsVd/0yi
N6l7KNgPgRG7yb47zCrgULjvQst+E5iS5AvWkywUKE/F0DbJo+kMVl/hn3wo8DHg
iXrgBGUfMTdHftNEL52iZZnd9I42gUikDZWdoWsCtqmB/59g4ltBMLxgu1efIajk
T/JCwXC4miDdnY33whfKsyGK1RiaP2FHVV7CXEbqwir2ouOPNRQ1GgBeZqisGBGH
ImBv5Yg9jeRxVpItw3H5xG06l4COnFKhaGMZFfoctvp+0+NUEzcuqY5Q+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFILiwLFQK4CHQa5PNTNqZK+whPftMB8GA1UdIwQY
MBaAFHCAKaZ0F379mSUidQlGGMDJz70dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0lBcHBuUVhmdjJaSlNKMUNVWVl3TW5QdlIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8wOGQ0NGMtZjEwMi00YjcwLThkYjAt
NzJhYmVlZmVkYTRhLzEvZ3VMQXNWQXJnSWRCcms4MU0ycGtyN0NFOS0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC8wOGQ0NGMtZjEwMi00YjcwLThkYjAtNzJhYmVlZmVkYTRh
LzEvY0lBcHBuUVhmdjJaSlNKMUNVWVl3TW5QdlIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaf9MA0G
CSqGSIb3DQEBCwUAA4IBAQCeSgWiqjdocAcXc6AkRJI+7lZIVZiV5Xjx5IvskYDi
LFXYIsI9FiaB9jYY1IpAm40MlB6nuqumHG9mta32HPCnKBn/4EO25OhiiPnMQwp3
7LGRhpAyQbE8Tc7A7d95PTAzP8sJAvH/LMuhgv168FV3uZY/bR7iy4V99orWRR46
GCEIHwrwqlqJSdzyRS7GnRUs/XHtr9iNia3vx9SZ4DhByRPg+TupbeXTnTuDtWX3
VnWBdmXnGEh3IVuyboWGKRDTUvpj13NNvtp53PFOoOla16hZ5FZQxAOv4EtZyOQR
MZTSVODIJzlebj3Fx5gNfbPNkKlZ8AnHuVmTGEdYD9PP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:05 2024 by rpki-client on console-ams.rpki-client.org