Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/DiEXc0QOKXywpOMjmJpBuJDzAWM.roa
File: DiEXc0QOKXywpOMjmJpBuJDzAWM.roa (raw, json)
Hash identifier: fRWPmvLgO5K8v75/GLVMglqOsUlhzPO+kH1EZlZNE6Y=
Subject key identifier: 0E:21:17:73:44:0E:29:7C:B0:A4:E3:23:98:9A:41:B8:90:F3:01:63
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 019006FC4621EFB4F2D2C15E660A98529018
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/DiEXc0QOKXywpOMjmJpBuJDzAWM.roa
Signing time: Tue 11 Jun 2024 11:08:34 +0000
ROA not before: Tue 11 Jun 2024 11:08:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214790
IP address blocks: 185.36.140.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 03:47:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:06:fc:46:21:ef:b4:f2:d2:c1:5e:66:0a:98:52:90:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jun 11 11:08:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e211773440e297cb0a4e323989a41b890f30163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0e:2c:ef:ba:08:9e:bf:0f:b2:1e:89:76:f5:
31:13:9e:fb:a0:26:9a:93:e5:01:88:80:20:e4:28:
cf:d7:97:95:97:65:3f:8d:da:66:d1:58:10:d9:96:
ab:a8:f6:82:29:ac:68:0e:ec:81:82:57:7e:3b:62:
f9:2e:dd:ca:41:55:71:bc:93:10:5d:d3:d2:31:6b:
84:a0:a4:f3:e8:72:4c:dc:7d:42:8c:c4:9f:11:e4:
92:38:68:7e:9b:f5:e3:71:a3:b8:7d:ad:fb:24:40:
04:c0:a8:c1:6a:2c:4a:98:6d:e5:bd:ee:4c:d7:24:
6d:ae:6a:c1:91:e5:7d:b3:5c:fc:f7:02:03:51:07:
39:26:f1:4f:d9:c5:35:f2:fc:a6:18:df:a0:f3:87:
97:37:2b:9a:67:03:a6:30:c3:24:e1:8e:a9:b3:b6:
1f:31:e1:8b:61:fe:27:ec:52:83:1a:a6:f6:a1:80:
2a:52:c9:b6:ef:a4:77:45:f1:22:b7:71:3d:57:1e:
45:c5:45:0f:5d:99:6d:13:0a:c7:9c:4c:de:2f:4f:
8a:4b:8f:26:f9:45:e0:3d:4b:83:35:a9:a2:a6:f6:
f8:f6:f6:fe:a5:ce:19:5b:27:fd:02:18:40:84:c0:
54:65:16:cc:ed:0a:7e:fd:c7:dd:ed:17:91:70:0a:
85:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:21:17:73:44:0E:29:7C:B0:A4:E3:23:98:9A:41:B8:90:F3:01:63
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/DiEXc0QOKXywpOMjmJpBuJDzAWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.140.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:7e:fb:79:27:13:6e:ee:69:f0:a5:6a:c4:d9:bb:c6:49:13:
68:2d:e5:d0:02:45:70:9c:8f:18:5f:74:54:11:ae:da:d8:80:
b7:5b:37:94:fe:c0:c3:de:53:a5:12:c5:34:30:6e:95:b8:7e:
06:32:28:2b:95:71:51:06:a7:5a:ec:b5:88:b0:68:06:77:0a:
9c:62:d7:b0:96:c9:d6:31:7b:b4:3a:0e:18:32:00:86:d6:4e:
35:6e:7b:1a:26:c9:1d:9b:63:36:3e:1d:98:7c:ad:ba:9c:92:
e7:67:68:71:d9:2a:03:6d:1b:ed:fe:59:ec:53:7e:27:f1:31:
d6:8c:f8:bf:ea:bd:84:d3:fe:cd:66:fc:94:1f:fb:c5:86:7b:
af:1b:89:23:c0:da:1f:7c:5d:fb:80:79:75:ad:e5:80:c0:f9:
ae:23:2f:b5:57:f2:96:94:24:6b:e7:94:50:a5:cf:b0:ba:a7:
10:0d:54:66:9c:f8:43:a0:ac:9f:8a:45:01:62:97:2c:1a:1e:
36:eb:fe:1a:69:6f:ae:cc:25:98:6c:4c:13:82:51:fd:c9:02:
7f:a2:42:ef:89:85:b2:55:76:27:a8:bf:d3:11:69:bb:4b:29:
1e:fd:12:14:6a:eb:9c:c2:53:47:36:01:d9:5c:b1:8d:bb:d1:
c8:9a:79:d9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZAG/EYh77Ty0sFeZgqYUpAYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NmQ5ZDUwYjNiODlkNTFjOGFhMjQ5M2U3ZWY0NzAxZDYy
NTFkYWQwHhcNMjQwNjExMTEwODM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTIxMTc3MzQ0MGUyOTdjYjBhNGUzMjM5ODlhNDFiODkwZjMwMTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtg4s77oInr8Psh6JdvUxE577oCaa
k+UBiIAg5CjP15eVl2U/jdpm0VgQ2ZarqPaCKaxoDuyBgld+O2L5Lt3KQVVxvJMQ
XdPSMWuEoKTz6HJM3H1CjMSfEeSSOGh+m/XjcaO4fa37JEAEwKjBaixKmG3lve5M
1yRtrmrBkeV9s1z89wIDUQc5JvFP2cU18vymGN+g84eXNyuaZwOmMMMk4Y6ps7Yf
MeGLYf4n7FKDGqb2oYAqUsm276R3RfEit3E9Vx5FxUUPXZltEwrHnEzeL0+KS48m
+UXgPUuDNamipvb49vb+pc4ZWyf9AhhAhMBUZRbM7Qp+/cfd7ReRcAqFoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA4hF3NEDil8sKTjI5iaQbiQ8wFjMB8GA1UdIwQY
MBaAFMZtnVCzuJ1RyKokk+fvRwHWJR2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMt
YjdjNTc4Yjc0ZTM1LzEvRGlFWGMwUU9LWHl3cE9Nam1KcEJ1SkR6QVdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMtYjdjNTc4Yjc0ZTM1
LzEveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuSSMMA0G
CSqGSIb3DQEBCwUAA4IBAQCMfvt5JxNu7mnwpWrE2bvGSRNoLeXQAkVwnI8YX3RU
Ea7a2IC3WzeU/sDD3lOlEsU0MG6VuH4GMigrlXFRBqda7LWIsGgGdwqcYtewlsnW
MXu0Og4YMgCG1k41bnsaJskdm2M2Ph2YfK26nJLnZ2hx2SoDbRvt/lnsU34n8THW
jPi/6r2E0/7NZvyUH/vFhnuvG4kjwNoffF37gHl1reWAwPmuIy+1V/KWlCRr55RQ
pc+wuqcQDVRmnPhDoKyfikUBYpcsGh426/4aaW+uzCWYbEwTglH9yQJ/okLviYWy
VXYnqL/TEWm7Syke/RIUauucwlNHNgHZXLGNu9HImnnZ
-----END CERTIFICATE-----
Generated at Mon Aug 19 07:21:24 2024 by rpki-client on console-ams.rpki-client.org