Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f9dd1c-317b-41c1-8fcb-7d9eabee15ac/1/rKOGMiKujRQGyFl6uItJHW_7yv0.roa
File: rKOGMiKujRQGyFl6uItJHW_7yv0.roa (raw, json)
Hash identifier: cahJ5fb7eNPJ3FV4+znPGYGn5qgROKTC76EmpbuAa74=
Subject key identifier: AC:A3:86:32:22:AE:8D:14:06:C8:59:7A:B8:8B:49:1D:6F:FB:CA:FD
Certificate issuer: /CN=5316590a0eaf48df2b1ae23b9d559e9cac25997e
Certificate serial: 01856D13D3B3092D711E432E335B03B63551
Authority key identifier: 53:16:59:0A:0E:AF:48:DF:2B:1A:E2:3B:9D:55:9E:9C:AC:25:99:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UxZZCg6vSN8rGuI7nVWenKwlmX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f9dd1c-317b-41c1-8fcb-7d9eabee15ac/1/rKOGMiKujRQGyFl6uItJHW_7yv0.roa
Signing time: Sun 01 Jan 2023 11:24:53 +0000
ROA not before: Sun 01 Jan 2023 11:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204521
IP address blocks: 185.168.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:d3:b3:09:2d:71:1e:43:2e:33:5b:03:b6:35:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5316590a0eaf48df2b1ae23b9d559e9cac25997e
Validity
Not Before: Jan 1 11:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aca3863222ae8d1406c8597ab88b491d6ffbcafd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fb:0d:64:a5:34:13:e5:e0:e9:7e:f0:ec:63:
b0:89:4b:1f:13:7b:e1:68:e5:89:92:36:42:28:8a:
55:e8:48:86:48:37:15:95:75:19:59:be:37:5f:dd:
23:dd:2b:be:f3:2c:e2:4c:8c:6c:99:9b:7a:0d:cf:
72:2e:c4:c9:25:6e:d7:21:69:c4:0e:a2:a1:a1:49:
3e:30:cb:4b:b2:1b:07:dd:39:a4:ec:25:8e:4c:36:
1d:eb:e4:bd:5d:b9:d1:de:82:31:1e:97:e5:13:87:
59:76:4b:2d:89:e7:a9:e1:e6:3a:d0:7c:f9:35:0f:
79:ef:74:28:51:a8:28:ef:4e:88:39:a0:c8:59:92:
c0:2d:55:14:ee:38:be:49:1a:2b:3e:c0:6a:0d:88:
5d:ad:af:45:cd:6d:ca:6f:50:de:d8:7d:c2:68:09:
34:d1:d9:c0:1c:4a:f3:e3:6c:e2:a4:4b:b2:96:1c:
24:8b:11:79:81:d0:42:a7:a9:5a:05:a2:98:fd:ab:
b2:f7:b1:28:1e:8c:25:9a:df:35:4f:27:8a:f2:8c:
79:2e:7b:89:43:60:5e:2a:73:87:24:63:df:72:e5:
4d:67:9d:20:36:f2:ca:63:b5:54:99:d8:9a:10:81:
a4:3e:14:5a:c2:2a:87:02:7a:f6:61:43:0e:cd:13:
21:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A3:86:32:22:AE:8D:14:06:C8:59:7A:B8:8B:49:1D:6F:FB:CA:FD
X509v3 Authority Key Identifier:
keyid:53:16:59:0A:0E:AF:48:DF:2B:1A:E2:3B:9D:55:9E:9C:AC:25:99:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UxZZCg6vSN8rGuI7nVWenKwlmX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f9dd1c-317b-41c1-8fcb-7d9eabee15ac/1/rKOGMiKujRQGyFl6uItJHW_7yv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f9dd1c-317b-41c1-8fcb-7d9eabee15ac/1/UxZZCg6vSN8rGuI7nVWenKwlmX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.216.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:e2:5f:86:a9:9c:51:bb:14:46:8b:13:aa:2f:55:e6:64:f5:
28:e5:53:12:32:e5:50:9a:e3:c5:76:b1:a1:84:2e:20:a3:70:
43:8b:db:df:6f:c6:81:d8:64:fc:1c:b3:a8:da:db:25:a3:9e:
45:e7:91:e3:7b:0c:1a:65:1a:5e:de:56:74:2a:e5:72:bc:c5:
58:16:5f:7f:47:87:e5:93:61:69:d5:6e:a5:6b:9a:06:2b:31:
c4:83:df:31:2d:b3:5b:80:cb:d5:09:9e:69:40:70:19:12:de:
18:f1:4a:87:f0:74:de:4c:52:55:ba:18:e3:42:f0:45:db:11:
7c:30:42:5e:ca:cf:dc:ce:2a:b4:ba:7e:01:63:2b:79:ad:10:
a1:c8:2e:ba:79:2b:d8:ce:81:09:f5:4a:6d:fa:80:fa:d1:70:
2d:e7:d1:78:bf:be:bd:8f:3d:79:19:75:bf:2d:53:53:8f:c8:
b6:ea:19:96:1b:41:5f:e1:9b:91:57:7a:c0:72:03:f2:60:7a:
17:39:d0:df:45:8d:c4:5e:26:5f:73:a5:c9:8b:97:37:c5:96:
43:a2:2a:6d:72:b7:fb:e4:04:b2:c2:1b:93:db:e6:ae:9f:66:
fc:bc:02:b3:0c:2b:f4:e1:0c:47:bf:36:cf:d0:0a:8b:a0:8f:
98:5c:95:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtE9OzCS1xHkMuM1sDtjVRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzMTY1OTBhMGVhZjQ4ZGYyYjFhZTIzYjlkNTU5ZTljYWMy
NTk5N2UwHhcNMjMwMTAxMTEyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhY2EzODYzMjIyYWU4ZDE0MDZjODU5N2FiODhiNDkxZDZmZmJjYWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPsNZKU0E+Xg6X7w7GOwiUsfE3vh
aOWJkjZCKIpV6EiGSDcVlXUZWb43X90j3Su+8yziTIxsmZt6Dc9yLsTJJW7XIWnE
DqKhoUk+MMtLshsH3Tmk7CWOTDYd6+S9XbnR3oIxHpflE4dZdkstieep4eY60Hz5
NQ9573QoUago706IOaDIWZLALVUU7ji+SRorPsBqDYhdra9FzW3Kb1De2H3CaAk0
0dnAHErz42zipEuylhwkixF5gdBCp6laBaKY/auy97EoHowlmt81TyeK8ox5LnuJ
Q2BeKnOHJGPfcuVNZ50gNvLKY7VUmdiaEIGkPhRawiqHAnr2YUMOzRMhtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKyjhjIiro0UBshZeriLSR1v+8r9MB8GA1UdIwQY
MBaAFFMWWQoOr0jfKxriO51VnpysJZl+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXhaWkNnNnZTTjhyR3VJN25WV2VuS3dsbVg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9mOWRkMWMtMzE3Yi00MWMxLThmY2It
N2Q5ZWFiZWUxNWFjLzEvcktPR01pS3VqUlFHeUZsNnVJdEpIV183eXYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi9mOWRkMWMtMzE3Yi00MWMxLThmY2ItN2Q5ZWFiZWUxNWFj
LzEvVXhaWkNnNnZTTjhyR3VJN25WV2VuS3dsbVg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuajYMA0G
CSqGSIb3DQEBCwUAA4IBAQBc4l+GqZxRuxRGixOqL1XmZPUo5VMSMuVQmuPFdrGh
hC4go3BDi9vfb8aB2GT8HLOo2tslo55F55HjewwaZRpe3lZ0KuVyvMVYFl9/R4fl
k2Fp1W6la5oGKzHEg98xLbNbgMvVCZ5pQHAZEt4Y8UqH8HTeTFJVuhjjQvBF2xF8
MEJeys/cziq0un4BYyt5rRChyC66eSvYzoEJ9Upt+oD60XAt59F4v769jz15GXW/
LVNTj8i26hmWG0Ff4ZuRV3rAcgPyYHoXOdDfRY3EXiZfc6XJi5c3xZZDoiptcrf7
5ASywhuT2+aun2b8vAKzDCv04QxHvzbP0AqLoI+YXJX6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:13 2024 by rpki-client on console-ams.rpki-client.org