Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/5qZ7I9Kufanq75jOcjRJZlrY3Ek.roa
File: 5qZ7I9Kufanq75jOcjRJZlrY3Ek.roa (raw, json)
Hash identifier: K5SgwzdTTouaFH9/uBL4vQcjOQsjXL9XPkbIMuIHKMk=
Subject key identifier: E6:A6:7B:23:D2:AE:7D:A9:EA:EF:98:CE:72:34:49:66:5A:D8:DC:49
Certificate issuer: /CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Certificate serial: 0191FDA7595044F34B3202B9F10B751B5C27
Authority key identifier: 1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/5qZ7I9Kufanq75jOcjRJZlrY3Ek.roa
Signing time: Tue 17 Sep 2024 01:44:48 +0000
ROA not before: Tue 17 Sep 2024 01:44:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.138.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:47:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fd:a7:59:50:44:f3:4b:32:02:b9:f1:0b:75:1b:5c:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Validity
Not Before: Sep 17 01:44:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6a67b23d2ae7da9eaef98ce723449665ad8dc49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e6:b7:b3:f7:a9:66:30:55:82:59:10:56:45:
29:99:31:d5:08:c7:4a:c9:22:2b:cd:52:88:2a:d6:
0a:4f:33:2e:30:75:aa:1e:79:fb:fb:d3:ec:b8:91:
74:41:88:a8:56:ee:fa:b4:84:c3:e5:98:72:0e:47:
7d:b2:c1:1e:a3:ce:bf:ca:7b:dd:9c:ad:b4:c8:5e:
c0:36:41:b1:06:6d:3c:f8:24:eb:28:27:32:72:72:
76:6d:0e:22:a1:77:28:9e:f1:d7:d7:71:38:02:93:
51:69:7a:99:0f:fb:87:44:3e:0a:5a:bb:e0:38:5a:
e9:a2:86:33:66:59:a4:a3:2e:19:5f:79:03:10:0e:
cc:76:a7:23:de:ac:6d:3e:b7:1e:6a:89:8d:40:64:
b8:16:e4:d1:45:b1:70:87:23:de:c9:f9:4d:ca:27:
f7:5e:0f:78:c0:0b:98:69:aa:41:8b:99:13:75:8e:
50:59:e7:99:51:23:58:f2:5e:d3:c0:2f:84:97:63:
82:84:dc:47:06:9d:1a:ae:5e:b1:a3:da:8a:79:41:
6d:94:92:98:0c:e9:eb:ae:2f:a5:8f:58:04:f7:96:
e9:7f:9c:11:77:8e:4f:64:29:01:02:c7:cb:a5:de:
f0:a3:f8:89:45:19:56:f4:f6:12:0e:19:51:1a:6c:
d1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A6:7B:23:D2:AE:7D:A9:EA:EF:98:CE:72:34:49:66:5A:D8:DC:49
X509v3 Authority Key Identifier:
keyid:1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/5qZ7I9Kufanq75jOcjRJZlrY3Ek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.234.0/24
Signature Algorithm: sha256WithRSAEncryption
49:85:4f:1b:d1:da:d0:e6:0c:02:a3:1b:00:af:e9:c2:bb:11:
b3:39:36:d5:7d:b6:10:06:97:81:87:7f:63:01:e3:6f:0b:41:
ff:2b:e9:fd:ee:16:18:d0:28:08:38:24:2c:c5:d8:38:9a:01:
2d:59:66:2f:71:8c:8a:37:8a:46:76:e3:ef:62:da:77:cd:8b:
d7:19:67:a9:59:8d:a1:0b:70:5b:12:77:b1:92:a4:b1:b9:0f:
d7:c8:0b:e8:b9:58:59:b8:71:89:59:dd:e3:a8:be:cb:f2:23:
34:87:ce:98:4b:66:cb:e4:78:a0:c7:b6:98:60:ee:21:25:fb:
5f:e2:a4:57:03:f2:1c:cd:af:72:81:20:a4:1a:49:24:10:a5:
6d:2d:ab:5d:79:8c:e7:1c:de:48:f7:3a:67:22:c8:bc:23:b7:
8c:88:64:b2:ac:0a:77:0f:26:a0:da:ee:e7:ec:f2:b7:fc:f8:
0d:d8:80:09:ec:22:fe:4a:bb:bd:a9:ab:04:5b:eb:a2:70:76:
e7:1c:08:61:3a:92:34:46:d0:79:9e:2c:ff:c4:a9:1b:0f:8d:
01:69:7f:a0:28:f4:14:44:6b:02:7e:56:26:5f:1e:23:1a:30:
3c:5b:c8:75:2c:17:96:17:77:e6:33:91:d7:c7:fb:04:fc:61:
53:08:ae:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZH9p1lQRPNLMgK58Qt1G1wnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMDZhODJiYjExNWQ3MzkzZTM5ZmQ1OGI3M2JiZjIwZjZj
ZDBiMWYwHhcNMjQwOTE3MDE0NDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNmE2N2IyM2QyYWU3ZGE5ZWFlZjk4Y2U3MjM0NDk2NjVhZDhkYzQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoea3s/epZjBVglkQVkUpmTHVCMdK
ySIrzVKIKtYKTzMuMHWqHnn7+9PsuJF0QYioVu76tITD5ZhyDkd9ssEeo86/ynvd
nK20yF7ANkGxBm08+CTrKCcycnJ2bQ4ioXconvHX13E4ApNRaXqZD/uHRD4KWrvg
OFrpooYzZlmkoy4ZX3kDEA7Mdqcj3qxtPrceaomNQGS4FuTRRbFwhyPeyflNyif3
Xg94wAuYaapBi5kTdY5QWeeZUSNY8l7TwC+El2OChNxHBp0arl6xo9qKeUFtlJKY
DOnrri+lj1gE95bpf5wRd45PZCkBAsfLpd7wo/iJRRlW9PYSDhlRGmzR/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOameyPSrn2p6u+YznI0SWZa2NxJMB8GA1UdIwQY
MBaAFBwGqCuxFdc5Pjn9WLc7vyD2zQsfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEFhb0s3RVYxemstT2YxWXR6dV9JUGJOQ3g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy8xMmVhYWQtOGE0NS00Nzg5LWJhYjUt
NzI2MDU3YTFmMmE0LzEvNXFaN0k5S3VmYW5xNzVqT2NqUkpabHJZM0VrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy8xMmVhYWQtOGE0NS00Nzg5LWJhYjUtNzI2MDU3YTFmMmE0
LzEvSEFhb0s3RVYxemstT2YxWXR6dV9JUGJOQ3g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYrqMA0G
CSqGSIb3DQEBCwUAA4IBAQBJhU8b0drQ5gwCoxsAr+nCuxGzOTbVfbYQBpeBh39j
AeNvC0H/K+n97hYY0CgIOCQsxdg4mgEtWWYvcYyKN4pGduPvYtp3zYvXGWepWY2h
C3BbEnexkqSxuQ/XyAvouVhZuHGJWd3jqL7L8iM0h86YS2bL5Higx7aYYO4hJftf
4qRXA/Icza9ygSCkGkkkEKVtLatdeYznHN5I9zpnIsi8I7eMiGSyrAp3Dyag2u7n
7PK3/PgN2IAJ7CL+Sru9qasEW+uicHbnHAhhOpI0RtB5niz/xKkbD40BaX+gKPQU
RGsCflYmXx4jGjA8W8h1LBeWF3fmM5HXx/sE/GFTCK7D
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:24:50 2025 by rpki-client