Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/ed879b-e3c4-4b7a-bd0c-34e4e0679333/1/7xUBc9gSLb7wiqwmw4lPpnm_Kik.roa
File: 7xUBc9gSLb7wiqwmw4lPpnm_Kik.roa (raw, json)
Hash identifier: hoDo3DXaFTJAMpIu1W/3mo+OlfUdd1DyreoszgmxqdE=
Subject key identifier: EF:15:01:73:D8:12:2D:BE:F0:8A:AC:26:C3:89:4F:A6:79:BF:2A:29
Certificate issuer: /CN=c7b623bbc54e9846748cd77b2b8b343827e5aeaa
Certificate serial: 01906602811F237788C3102D6C174B04A34E
Authority key identifier: C7:B6:23:BB:C5:4E:98:46:74:8C:D7:7B:2B:8B:34:38:27:E5:AE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x7Yju8VOmEZ0jNd7K4s0OCflrqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/ed879b-e3c4-4b7a-bd0c-34e4e0679333/1/7xUBc9gSLb7wiqwmw4lPpnm_Kik.roa
Signing time: Sat 29 Jun 2024 21:59:18 +0000
ROA not before: Sat 29 Jun 2024 21:59:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 185.233.164.0/24 maxlen: 24
185.233.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 07:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:66:02:81:1f:23:77:88:c3:10:2d:6c:17:4b:04:a3:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7b623bbc54e9846748cd77b2b8b343827e5aeaa
Validity
Not Before: Jun 29 21:59:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef150173d8122dbef08aac26c3894fa679bf2a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ce:7a:05:22:b4:7a:73:35:32:27:97:a9:cc:
87:83:64:18:ef:9b:9c:df:aa:ec:55:b5:66:bf:53:
5c:a6:e1:3d:b6:33:1d:ee:a5:18:b2:0c:8f:af:fc:
b3:ad:14:55:bc:ed:3e:45:82:bc:1a:07:3a:21:d1:
1b:36:5d:65:57:21:7e:a4:13:ad:37:3d:38:36:b1:
c4:89:10:68:6b:86:f7:d4:27:1e:8a:02:45:db:46:
35:74:41:4d:d7:57:a4:86:2b:94:11:0a:cf:32:b5:
2f:b0:58:97:57:3b:1a:f5:a2:96:dc:3e:4e:96:f4:
a7:04:38:7b:bc:6e:4e:c1:d3:ba:e5:79:cc:74:e8:
40:8a:0f:e1:c9:f4:c4:52:ee:0c:73:04:ea:1d:4d:
61:e1:50:b3:5d:ab:3c:62:19:20:1f:2a:06:3d:c3:
4e:3e:38:65:bb:91:3b:da:80:ff:b0:4c:64:e2:a3:
f6:e8:76:90:d5:ef:2f:75:a8:2f:1e:6d:96:6f:40:
de:a2:e2:ea:70:e5:49:c0:72:c1:7c:9a:03:81:fe:
1f:e6:1f:8f:c0:25:89:af:b2:ed:b0:ae:09:62:e6:
d5:14:fc:98:d1:65:26:b1:18:c6:0f:cc:54:ae:8a:
cc:eb:4e:b0:89:61:52:e4:32:2a:7d:43:6b:cc:de:
a8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:15:01:73:D8:12:2D:BE:F0:8A:AC:26:C3:89:4F:A6:79:BF:2A:29
X509v3 Authority Key Identifier:
keyid:C7:B6:23:BB:C5:4E:98:46:74:8C:D7:7B:2B:8B:34:38:27:E5:AE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x7Yju8VOmEZ0jNd7K4s0OCflrqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/ed879b-e3c4-4b7a-bd0c-34e4e0679333/1/7xUBc9gSLb7wiqwmw4lPpnm_Kik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/ed879b-e3c4-4b7a-bd0c-34e4e0679333/1/x7Yju8VOmEZ0jNd7K4s0OCflrqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.164.0/24
185.233.166.0/24
Signature Algorithm: sha256WithRSAEncryption
57:e5:3c:76:0c:29:e7:4d:1f:8c:8b:f3:80:1a:d3:d6:24:27:
9f:5c:36:d7:24:4b:1c:02:ea:56:b9:39:d0:0d:45:bb:87:b2:
f5:67:53:73:d1:57:e6:2d:56:1a:81:74:27:76:f9:5f:1a:c4:
c0:1c:ce:fc:14:42:3d:db:78:fb:69:a7:ce:fb:f3:94:e1:35:
c8:f3:50:33:1d:ae:e8:5e:2d:50:53:0c:c9:5e:35:59:d1:fd:
d7:32:8d:1f:81:2e:d3:e6:98:da:a8:0b:92:ad:9c:9f:31:ec:
70:37:87:a9:6f:79:b9:5f:29:1a:c1:0f:e3:6a:58:e8:8b:d7:
07:b2:ae:ca:6e:4e:74:00:0f:19:17:8e:3a:42:fc:18:14:6b:
9c:77:1a:84:b7:e5:1c:3e:5e:1a:3b:58:df:ac:22:b6:93:51:
ff:5c:5f:07:7f:c8:eb:fe:9e:ae:75:db:aa:72:8f:95:5d:55:
ac:95:b9:e3:f8:d7:54:ae:cd:e3:a5:2c:5f:04:d1:af:d4:f7:
c4:a7:06:8f:d2:a9:e2:b1:0c:2b:cd:b8:d1:1e:b6:79:aa:5c:
81:e7:74:b1:2f:eb:d3:aa:e4:59:b2:5b:56:98:46:4c:5e:75:
66:46:47:14:31:db:f2:1f:ba:39:ec:22:f6:73:5d:6b:44:81:
82:b2:f1:9f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZBmAoEfI3eIwxAtbBdLBKNOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3YjYyM2JiYzU0ZTk4NDY3NDhjZDc3YjJiOGIzNDM4Mjdl
NWFlYWEwHhcNMjQwNjI5MjE1OTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjE1MDE3M2Q4MTIyZGJlZjA4YWFjMjZjMzg5NGZhNjc5YmYyYTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAss56BSK0enM1MieXqcyHg2QY75uc
36rsVbVmv1NcpuE9tjMd7qUYsgyPr/yzrRRVvO0+RYK8Ggc6IdEbNl1lVyF+pBOt
Nz04NrHEiRBoa4b31CceigJF20Y1dEFN11ekhiuUEQrPMrUvsFiXVzsa9aKW3D5O
lvSnBDh7vG5OwdO65XnMdOhAig/hyfTEUu4McwTqHU1h4VCzXas8YhkgHyoGPcNO
Pjhlu5E72oD/sExk4qP26HaQ1e8vdagvHm2Wb0DeouLqcOVJwHLBfJoDgf4f5h+P
wCWJr7LtsK4JYubVFPyY0WUmsRjGD8xUrorM606wiWFS5DIqfUNrzN6ogwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFO8VAXPYEi2+8IqsJsOJT6Z5vyopMB8GA1UdIwQY
MBaAFMe2I7vFTphGdIzXeyuLNDgn5a6qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDdZanU4Vk9tRVowak5kN0s0czBPQ2ZscnFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9lZDg3OWItZTNjNC00YjdhLWJkMGMt
MzRlNGUwNjc5MzMzLzEvN3hVQmM5Z1NMYjd3aXF3bXc0bFBwbm1fS2lrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi9lZDg3OWItZTNjNC00YjdhLWJkMGMtMzRlNGUwNjc5MzMz
LzEveDdZanU4Vk9tRVowak5kN0s0czBPQ2ZscnFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuemkAwQA
uemmMA0GCSqGSIb3DQEBCwUAA4IBAQBX5Tx2DCnnTR+Mi/OAGtPWJCefXDbXJEsc
AupWuTnQDUW7h7L1Z1Nz0VfmLVYagXQndvlfGsTAHM78FEI923j7aafO+/OU4TXI
81AzHa7oXi1QUwzJXjVZ0f3XMo0fgS7T5pjaqAuSrZyfMexwN4epb3m5XykawQ/j
aljoi9cHsq7Kbk50AA8ZF446QvwYFGucdxqEt+UcPl4aO1jfrCK2k1H/XF8Hf8jr
/p6udduqco+VXVWslbnj+NdUrs3jpSxfBNGv1PfEpwaP0qnisQwrzbjRHrZ5qlyB
53SxL+vTquRZsltWmEZMXnVmRkcUMdvyH7o57CL2c11rRIGCsvGf
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:10 2024 by rpki-client on console-ams.rpki-client.org