Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/32z3PH9U2fNfk_uVHtcFQW-eiyU.roa
File: 32z3PH9U2fNfk_uVHtcFQW-eiyU.roa (raw, json)
Hash identifier: R2WHy0XH/V7m5do/JUaWRiFJB62VwiOEYFcY6ovUjV0=
Subject key identifier: DF:6C:F7:3C:7F:54:D9:F3:5F:93:FB:95:1E:D7:05:41:6F:9E:8B:25
Certificate issuer: /CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Certificate serial: 01856FF0467C22C6F3153A80F1FF9DF89F9A
Authority key identifier: 85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/32z3PH9U2fNfk_uVHtcFQW-eiyU.roa
Signing time: Mon 02 Jan 2023 00:44:55 +0000
ROA not before: Mon 02 Jan 2023 00:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210301
IP address blocks: 185.146.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:46:7c:22:c6:f3:15:3a:80:f1:ff:9d:f8:9f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Validity
Not Before: Jan 2 00:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df6cf73c7f54d9f35f93fb951ed705416f9e8b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c6:17:c3:4b:93:33:5d:46:22:3f:3f:7e:78:
88:5f:8e:52:22:32:50:22:08:68:80:6d:77:71:af:
0f:47:6e:8c:ef:e2:df:4a:54:a5:b5:c8:1c:92:0d:
8b:2c:ec:b2:b9:6b:7f:2e:bd:9c:0e:b7:2f:94:0f:
fc:c2:58:1a:17:5a:f0:f6:52:30:f1:23:99:48:2a:
91:38:aa:c4:c8:2f:5e:df:1b:82:96:cc:e8:f2:02:
89:a4:e8:a3:9b:ac:73:70:1b:7e:b8:8d:11:33:20:
e1:d8:d3:51:f7:39:6b:4e:14:ba:f9:d3:1b:5b:c8:
a3:10:90:2c:2e:8f:62:48:b7:bd:f0:b3:2a:fe:17:
b4:04:3c:d1:b9:12:5f:36:06:0a:6f:2c:e6:d4:57:
31:60:fa:75:70:96:98:16:89:05:0e:38:21:ec:b4:
56:43:03:09:d8:e4:a3:40:96:6f:ae:b8:8b:b2:ac:
ff:23:47:cd:f7:b8:47:2c:d3:2b:06:12:8d:ee:7c:
d0:fe:7f:62:fb:ac:28:0c:7c:bd:fb:b1:16:0b:0e:
7d:b5:96:0d:91:8b:ab:cd:86:07:c0:7c:76:19:f2:
34:b9:9a:39:67:36:b9:3e:0d:4c:65:e9:60:4b:1d:
c8:8f:79:3c:d4:e7:15:1c:82:52:4a:e5:11:7c:9e:
db:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:6C:F7:3C:7F:54:D9:F3:5F:93:FB:95:1E:D7:05:41:6F:9E:8B:25
X509v3 Authority Key Identifier:
keyid:85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/32z3PH9U2fNfk_uVHtcFQW-eiyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.227.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:c4:1a:17:1b:16:9f:d8:c0:b7:30:1f:52:1d:12:82:f6:b0:
b1:b9:3d:46:ac:6d:9f:80:16:3b:37:12:5a:16:55:3f:62:a9:
b1:ca:c2:92:57:df:2b:73:81:3d:e8:22:12:b0:43:e7:16:27:
8d:c4:37:2a:5b:73:63:45:6c:6f:ea:85:55:fa:4b:2d:c2:9c:
c1:16:4b:e2:1c:c9:71:64:13:92:b2:7a:0a:c8:19:bc:2a:34:
c8:90:b4:6b:a8:c2:1f:40:42:2c:33:bf:2a:5b:2b:05:b9:75:
6d:22:31:a4:11:03:fe:99:07:45:1d:0d:03:a6:b7:a2:3b:65:
49:4d:e4:d4:56:b6:1c:08:85:28:58:39:ed:34:7b:57:c3:a6:
18:52:38:2c:27:64:e8:df:06:65:67:bd:2b:42:4a:ae:37:30:
63:b5:d3:10:c1:14:2d:e0:0a:2d:58:75:07:5c:34:ea:d3:7f:
98:25:4e:59:e4:b1:4f:8f:bf:89:b1:64:8a:0b:ab:3e:32:bb:
07:d9:ef:01:f8:50:c1:42:99:53:66:2c:4d:b1:74:db:ea:64:
db:b0:8b:41:18:43:9b:c1:f2:24:ad:b7:63:0d:74:6b:d3:ee:
1c:6f:29:9f:45:a5:64:13:10:a7:a6:ca:aa:17:d6:95:94:dc:
46:e9:69:51
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv8EZ8IsbzFTqA8f+d+J+aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZjRlZTE0ZjZkMzhhN2NmMDcxMjc5ZGZmN2IzOTE3MDJl
MzcxMzUwHhcNMjMwMTAyMDA0NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjZjZjczYzdmNTRkOWYzNWY5M2ZiOTUxZWQ3MDU0MTZmOWU4YjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcYXw0uTM11GIj8/fniIX45SIjJQ
IghogG13ca8PR26M7+LfSlSltcgckg2LLOyyuWt/Lr2cDrcvlA/8wlgaF1rw9lIw
8SOZSCqROKrEyC9e3xuClszo8gKJpOijm6xzcBt+uI0RMyDh2NNR9zlrThS6+dMb
W8ijEJAsLo9iSLe98LMq/he0BDzRuRJfNgYKbyzm1FcxYPp1cJaYFokFDjgh7LRW
QwMJ2OSjQJZvrriLsqz/I0fN97hHLNMrBhKN7nzQ/n9i+6woDHy9+7EWCw59tZYN
kYurzYYHwHx2GfI0uZo5Zza5Pg1MZelgSx3Ij3k81OcVHIJSSuURfJ7bKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN9s9zx/VNnzX5P7lR7XBUFvnoslMB8GA1UdIwQY
MBaAFIX07hT204p88HEnnf97ORcC43E1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGZUdUZQYlRpbnp3Y1NlZF8zczVGd0xqY1RVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi80ZGYzOWEtNzgzYy00ZDdkLWIxYmUt
YmZkOTVhOWE2ZTY0LzEvMzJ6M1BIOVUyZk5ma191Vkh0Y0ZRVy1laXlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi80ZGYzOWEtNzgzYy00ZDdkLWIxYmUtYmZkOTVhOWE2ZTY0
LzEvaGZUdUZQYlRpbnp3Y1NlZF8zczVGd0xqY1RVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZLjMA0G
CSqGSIb3DQEBCwUAA4IBAQB+xBoXGxaf2MC3MB9SHRKC9rCxuT1GrG2fgBY7NxJa
FlU/YqmxysKSV98rc4E96CISsEPnFieNxDcqW3NjRWxv6oVV+kstwpzBFkviHMlx
ZBOSsnoKyBm8KjTIkLRrqMIfQEIsM78qWysFuXVtIjGkEQP+mQdFHQ0DpreiO2VJ
TeTUVrYcCIUoWDntNHtXw6YYUjgsJ2To3wZlZ70rQkquNzBjtdMQwRQt4AotWHUH
XDTq03+YJU5Z5LFPj7+JsWSKC6s+MrsH2e8B+FDBQplTZixNsXTb6mTbsItBGEOb
wfIkrbdjDXRr0+4cbymfRaVkExCnpsqqF9aVlNxG6WlR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:03 2024 by rpki-client on console-fra.rpki-client.org