Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/c02820-fb66-4792-9d8d-cc885857faf2/1/F17WFLm5zw4prTKK5Hiawpv3p7c.roa
File: F17WFLm5zw4prTKK5Hiawpv3p7c.roa (raw, json)
Hash identifier: v/qRIH1R3OVQWI6qzxTB6gt8Y6xYMHshTgHVKBNgKAE=
Subject key identifier: 17:5E:D6:14:B9:B9:CF:0E:29:AD:32:8A:E4:78:9A:C2:9B:F7:A7:B7
Certificate issuer: /CN=9be60d4ae70f6f559984c76b521ce377cc1ee721
Certificate serial: 018CCA29A25ADB2EBA4B78BBB4A694353BA6
Authority key identifier: 9B:E6:0D:4A:E7:0F:6F:55:99:84:C7:6B:52:1C:E3:77:CC:1E:E7:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m-YNSucPb1WZhMdrUhzjd8we5yE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/c02820-fb66-4792-9d8d-cc885857faf2/1/F17WFLm5zw4prTKK5Hiawpv3p7c.roa
Signing time: Tue 02 Jan 2024 12:32:55 +0000
ROA not before: Tue 02 Jan 2024 12:32:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204409
IP address blocks: 185.249.112.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 11 Jan 2024 17:20:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:a2:5a:db:2e:ba:4b:78:bb:b4:a6:94:35:3b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9be60d4ae70f6f559984c76b521ce377cc1ee721
Validity
Not Before: Jan 2 12:32:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=175ed614b9b9cf0e29ad328ae4789ac29bf7a7b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7d:5e:60:73:25:a6:d8:48:d4:86:1a:24:d1:
76:4b:40:c5:34:79:e9:82:cf:2b:47:2a:73:a3:5a:
0f:d3:ad:b2:70:f9:11:09:1b:3d:0f:e8:74:67:e1:
31:8f:a2:9d:da:06:e7:90:ae:9b:c1:0e:1c:9e:41:
85:6d:e2:25:e3:17:1c:d4:c6:8f:18:84:5f:e5:fe:
42:50:a2:01:e9:73:3f:57:10:86:92:9b:d1:1b:89:
ed:81:45:9f:d3:e6:ed:1e:f7:12:03:ec:fc:62:30:
43:e3:56:ec:4e:48:c0:e7:6c:52:ea:77:c1:fd:8c:
67:f2:c9:71:18:99:75:cb:7a:0a:ec:6f:2a:31:97:
4a:54:2e:8f:66:7b:71:e3:64:a3:10:48:88:6d:60:
83:e8:d9:64:7d:59:19:78:a0:ff:bd:7c:9d:7b:c0:
7a:af:dc:68:7c:45:f3:28:7d:78:ea:13:c2:98:86:
01:5f:e2:51:6d:d2:90:61:18:a8:28:8a:ab:6d:7e:
9d:c8:93:17:d7:18:3c:76:98:42:f1:0c:a8:3a:11:
cb:a2:2d:8b:db:22:51:61:08:5a:f8:3d:60:91:33:
37:a9:60:32:e0:07:44:d6:51:b0:2f:4a:cc:f9:fa:
ee:d3:d8:9e:62:bb:e0:c3:ec:fa:01:e9:ef:89:de:
17:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:5E:D6:14:B9:B9:CF:0E:29:AD:32:8A:E4:78:9A:C2:9B:F7:A7:B7
X509v3 Authority Key Identifier:
keyid:9B:E6:0D:4A:E7:0F:6F:55:99:84:C7:6B:52:1C:E3:77:CC:1E:E7:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m-YNSucPb1WZhMdrUhzjd8we5yE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/c02820-fb66-4792-9d8d-cc885857faf2/1/F17WFLm5zw4prTKK5Hiawpv3p7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/c02820-fb66-4792-9d8d-cc885857faf2/1/m-YNSucPb1WZhMdrUhzjd8we5yE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.112.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:ad:0f:b7:7b:dc:e6:fb:ed:ca:23:fc:4a:47:9a:73:e6:94:
46:09:0c:26:ce:a1:1c:07:b8:9b:96:a7:d4:37:0e:21:b0:fe:
18:62:31:a6:42:39:5d:b4:8a:5c:f8:9d:a9:a1:7b:2f:84:82:
fc:1c:5d:cd:4c:72:56:2d:c8:33:72:c1:25:c9:08:82:f2:da:
43:af:cb:99:af:c0:80:22:2b:de:1d:d4:32:52:cd:91:9f:6f:
c7:7e:88:f8:72:ba:5f:e0:47:8a:87:57:08:92:53:7c:80:0d:
3c:88:62:fe:63:da:53:e7:ee:74:7c:01:e1:1e:c9:07:b8:f8:
cc:59:dc:e3:ae:a9:dc:e3:23:d8:05:fc:fe:ac:ea:5d:45:ad:
7d:64:1a:d3:a6:b6:8c:64:28:26:bc:74:a4:53:da:cd:45:12:
ea:cd:d0:b3:35:23:49:cf:ef:3b:93:79:30:86:2a:9f:af:3d:
d0:86:77:ca:11:cf:1e:98:6a:0b:14:4c:3e:cf:c3:f5:53:ac:
c7:a6:cf:51:fd:b9:59:a8:2c:e1:1f:bf:6e:f2:1b:8e:b7:03:
37:cc:a8:8e:51:62:ed:45:43:22:55:8a:24:4b:47:13:9e:1e:
78:ca:2d:d6:1b:82:56:bb:bc:b1:df:1c:09:77:4f:6b:f3:84:
35:49:72:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKaJa2y66S3i7tKaUNTumMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliZTYwZDRhZTcwZjZmNTU5OTg0Yzc2YjUyMWNlMzc3Y2Mx
ZWU3MjEwHhcNMjQwMTAyMTIzMjU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzVlZDYxNGI5YjljZjBlMjlhZDMyOGFlNDc4OWFjMjliZjdhN2I3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2H1eYHMlpthI1IYaJNF2S0DFNHnp
gs8rRypzo1oP062ycPkRCRs9D+h0Z+Exj6Kd2gbnkK6bwQ4cnkGFbeIl4xcc1MaP
GIRf5f5CUKIB6XM/VxCGkpvRG4ntgUWf0+btHvcSA+z8YjBD41bsTkjA52xS6nfB
/Yxn8slxGJl1y3oK7G8qMZdKVC6PZntx42SjEEiIbWCD6NlkfVkZeKD/vXyde8B6
r9xofEXzKH146hPCmIYBX+JRbdKQYRioKIqrbX6dyJMX1xg8dphC8QyoOhHLoi2L
2yJRYQha+D1gkTM3qWAy4AdE1lGwL0rM+fru09ieYrvgw+z6Aenvid4XLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBde1hS5uc8OKa0yiuR4msKb96e3MB8GA1UdIwQY
MBaAFJvmDUrnD29VmYTHa1Ic43fMHuchMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbS1ZTlN1Y1BiMVdaaE1kclVoempkOHdlNXlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9jMDI4MjAtZmI2Ni00NzkyLTlkOGQt
Y2M4ODU4NTdmYWYyLzEvRjE3V0ZMbTV6dzRwclRLSzVIaWF3cHYzcDdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9jMDI4MjAtZmI2Ni00NzkyLTlkOGQtY2M4ODU4NTdmYWYy
LzEvbS1ZTlN1Y1BiMVdaaE1kclVoempkOHdlNXlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuflwMA0G
CSqGSIb3DQEBCwUAA4IBAQAMrQ+3e9zm++3KI/xKR5pz5pRGCQwmzqEcB7iblqfU
Nw4hsP4YYjGmQjldtIpc+J2poXsvhIL8HF3NTHJWLcgzcsElyQiC8tpDr8uZr8CA
IiveHdQyUs2Rn2/Hfoj4crpf4EeKh1cIklN8gA08iGL+Y9pT5+50fAHhHskHuPjM
Wdzjrqnc4yPYBfz+rOpdRa19ZBrTpraMZCgmvHSkU9rNRRLqzdCzNSNJz+87k3kw
hiqfrz3QhnfKEc8emGoLFEw+z8P1U6zHps9R/blZqCzhH79u8huOtwM3zKiOUWLt
RUMiVYokS0cTnh54yi3WG4JWu7yx3xwJd09r84Q1SXIc
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:12 2024 by rpki-client on console-ams.rpki-client.org