Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/bcbd03-d231-4d33-b3c5-98fa827186a9/1/jJgx99Gp8pipFJ85w8f6IuKqBNo.roa
File: jJgx99Gp8pipFJ85w8f6IuKqBNo.roa (raw, json)
Hash identifier: 8shoEZcMy8b3VhmwKhel1DP4cqJJyvnCTTgbmxlkRoM=
Subject key identifier: 8C:98:31:F7:D1:A9:F2:98:A9:14:9F:39:C3:C7:FA:22:E2:AA:04:DA
Certificate issuer: /CN=162d78249b721b4d2ce8cf6dfcfbc4422213ac9d
Certificate serial: 01875BE1442706F614216540B0DCAAE2C19B
Authority key identifier: 16:2D:78:24:9B:72:1B:4D:2C:E8:CF:6D:FC:FB:C4:42:22:13:AC:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fi14JJtyG00s6M9t_PvEQiITrJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/bcbd03-d231-4d33-b3c5-98fa827186a9/1/jJgx99Gp8pipFJ85w8f6IuKqBNo.roa
Signing time: Fri 07 Apr 2023 13:21:42 +0000
ROA not before: Fri 07 Apr 2023 13:21:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203944
IP address blocks: 185.118.218.0/23 maxlen: 23
185.118.216.0/22 maxlen: 22
185.118.216.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:5b:e1:44:27:06:f6:14:21:65:40:b0:dc:aa:e2:c1:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162d78249b721b4d2ce8cf6dfcfbc4422213ac9d
Validity
Not Before: Apr 7 13:21:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c9831f7d1a9f298a9149f39c3c7fa22e2aa04da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d2:9d:1b:29:dc:eb:31:4b:89:a7:6b:b6:15:
64:af:5a:43:6c:14:ae:78:36:e7:31:ad:59:a2:03:
7d:40:df:5a:da:27:d2:9f:9a:5b:7b:6b:79:3d:7f:
42:64:e3:d8:32:e6:7b:fa:cc:d7:c9:2b:a9:c9:b2:
a3:e0:d2:03:ec:6f:18:05:1c:79:b5:7b:ea:dd:34:
85:7a:f5:43:45:48:46:61:38:2b:7f:1e:1a:71:d3:
71:8b:a3:6e:24:38:cc:3a:71:18:1a:21:ad:05:6c:
14:10:ee:10:f8:46:44:f6:f3:d2:5e:0f:5a:81:7f:
b3:20:49:9c:07:d0:dc:1e:89:08:37:d9:bd:f3:90:
5e:90:05:a1:8f:31:d3:7a:ce:5f:59:70:66:ab:a2:
b7:44:86:85:e6:11:ab:71:12:10:52:55:77:db:09:
46:71:3a:45:f2:67:da:c3:94:7d:55:15:8b:15:a3:
51:f3:38:fc:6b:41:95:40:f3:82:f1:04:3d:86:a1:
0e:8b:09:30:fb:2c:a2:c6:c4:de:a0:35:ce:50:09:
f3:47:34:8d:97:53:a3:57:b4:5f:7b:5e:c0:a0:71:
7a:f1:6e:df:53:0c:8e:98:26:18:66:25:88:88:bf:
03:9b:68:a2:35:62:94:90:b7:1f:3e:f4:47:6b:e9:
f7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:98:31:F7:D1:A9:F2:98:A9:14:9F:39:C3:C7:FA:22:E2:AA:04:DA
X509v3 Authority Key Identifier:
keyid:16:2D:78:24:9B:72:1B:4D:2C:E8:CF:6D:FC:FB:C4:42:22:13:AC:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fi14JJtyG00s6M9t_PvEQiITrJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/bcbd03-d231-4d33-b3c5-98fa827186a9/1/jJgx99Gp8pipFJ85w8f6IuKqBNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/bcbd03-d231-4d33-b3c5-98fa827186a9/1/Fi14JJtyG00s6M9t_PvEQiITrJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.216.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:81:8a:8e:6c:32:5e:b9:ca:c2:f1:2a:eb:ca:8e:61:7e:9c:
2e:c3:88:46:d5:59:72:28:3d:9c:73:a9:ea:17:1f:ef:20:4a:
91:5c:68:72:0b:ba:66:12:1b:f1:ef:5e:d2:22:c1:c3:a8:67:
b3:ee:76:4e:e5:43:16:b3:1d:2e:41:16:bd:cc:1c:20:8e:68:
34:66:ce:28:cc:c1:a9:53:82:e7:e5:0d:57:7e:ea:89:af:25:
dc:32:44:44:4d:1e:de:c6:be:54:c9:77:d5:3f:88:6a:d3:06:
c8:af:37:89:eb:0d:94:98:dd:9c:c3:49:cf:f2:ac:32:b1:3c:
f3:0e:4a:4b:ee:c1:f6:a9:ca:7b:25:e1:a8:e8:79:0b:6b:fc:
64:85:69:9f:b0:6e:46:41:d7:08:c0:3d:35:3d:62:8f:97:27:
ec:ae:3b:cf:89:56:ff:12:77:5d:2b:b2:87:2c:8c:b6:40:a3:
03:47:95:dc:b6:ca:48:2f:3d:90:6e:c6:2d:36:5c:3f:20:d6:
22:32:d4:be:8c:2b:68:4b:cf:1f:28:9d:79:cd:28:bf:ef:3f:
5b:0b:20:fb:30:95:d0:82:64:69:df:9b:13:4d:2d:d2:63:de:
ad:ff:ab:14:cd:55:2b:50:f0:ef:2a:87:a6:41:a5:5a:08:ee:
ba:47:57:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdb4UQnBvYUIWVAsNyq4sGbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2MmQ3ODI0OWI3MjFiNGQyY2U4Y2Y2ZGZjZmJjNDQyMjIx
M2FjOWQwHhcNMjMwNDA3MTMyMTQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Yzk4MzFmN2QxYTlmMjk4YTkxNDlmMzljM2M3ZmEyMmUyYWEwNGRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9KdGync6zFLiadrthVkr1pDbBSu
eDbnMa1ZogN9QN9a2ifSn5pbe2t5PX9CZOPYMuZ7+szXySupybKj4NID7G8YBRx5
tXvq3TSFevVDRUhGYTgrfx4acdNxi6NuJDjMOnEYGiGtBWwUEO4Q+EZE9vPSXg9a
gX+zIEmcB9DcHokIN9m985BekAWhjzHTes5fWXBmq6K3RIaF5hGrcRIQUlV32wlG
cTpF8mfaw5R9VRWLFaNR8zj8a0GVQPOC8QQ9hqEOiwkw+yyixsTeoDXOUAnzRzSN
l1OjV7Rfe17AoHF68W7fUwyOmCYYZiWIiL8Dm2iiNWKUkLcfPvRHa+n3nwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIyYMffRqfKYqRSfOcPH+iLiqgTaMB8GA1UdIwQY
MBaAFBYteCSbchtNLOjPbfz7xEIiE6ydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmkxNEpKdHlHMDBzNk05dF9QdkVRaUlUckowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9iY2JkMDMtZDIzMS00ZDMzLWIzYzUt
OThmYTgyNzE4NmE5LzEvakpneDk5R3A4cGlwRko4NXc4ZjZJdUtxQk5vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS9iY2JkMDMtZDIzMS00ZDMzLWIzYzUtOThmYTgyNzE4NmE5
LzEvRmkxNEpKdHlHMDBzNk05dF9QdkVRaUlUckowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXbYMA0G
CSqGSIb3DQEBCwUAA4IBAQA9gYqObDJeucrC8Srryo5hfpwuw4hG1VlyKD2cc6nq
Fx/vIEqRXGhyC7pmEhvx717SIsHDqGez7nZO5UMWsx0uQRa9zBwgjmg0Zs4ozMGp
U4Ln5Q1XfuqJryXcMkRETR7exr5UyXfVP4hq0wbIrzeJ6w2UmN2cw0nP8qwysTzz
DkpL7sH2qcp7JeGo6HkLa/xkhWmfsG5GQdcIwD01PWKPlyfsrjvPiVb/EnddK7KH
LIy2QKMDR5XctspILz2QbsYtNlw/INYiMtS+jCtoS88fKJ15zSi/7z9bCyD7MJXQ
gmRp35sTTS3SY96t/6sUzVUrUPDvKoemQaVaCO66R1ck
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:02 2024 by rpki-client on console-ams.rpki-client.org