Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/SqMZdSiqGLCX0XZlk1NYy5eAWdU.roa
File: SqMZdSiqGLCX0XZlk1NYy5eAWdU.roa (raw, json)
Hash identifier: 3zGFblGN8NZ7KqX9sEOJltqV4erCpIovbwGrYJluhJw=
Subject key identifier: 4A:A3:19:75:28:AA:18:B0:97:D1:76:65:93:53:58:CB:97:80:59:D5
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 019168BF241B25952D649FB3C6745E93E7EF
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/SqMZdSiqGLCX0XZlk1NYy5eAWdU.roa
Signing time: Mon 19 Aug 2024 03:47:22 +0000
ROA not before: Mon 19 Aug 2024 03:47:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214790
IP address blocks: 185.36.140.0/23 maxlen: 24
185.225.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 06:44:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:68:bf:24:1b:25:95:2d:64:9f:b3:c6:74:5e:93:e7:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Aug 19 03:47:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4aa3197528aa18b097d17665935358cb978059d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:85:61:27:b7:28:9a:8a:2c:f4:8e:81:f1:33:
0a:85:70:7c:3c:a9:6f:ef:6d:e5:3b:62:38:d9:e5:
90:93:7c:da:c5:09:0f:15:33:08:47:7f:cf:7d:b0:
6d:6b:02:70:40:e2:24:b7:e1:66:cd:52:7e:3a:04:
da:4f:95:91:c4:0b:6b:9e:b9:61:40:8d:08:09:26:
44:24:01:23:58:c9:af:4c:5e:b3:3d:fd:48:ee:a7:
f8:1c:26:f8:92:8b:aa:63:41:81:79:4b:0f:ca:a3:
73:2b:70:44:c3:9f:0f:cd:40:c3:23:89:e7:cc:e4:
f4:5a:04:81:7f:cb:b7:21:4b:a1:d4:6f:2b:0e:ea:
01:f3:79:88:cd:c2:60:38:4c:5e:16:71:02:88:c7:
5b:11:3d:8b:bd:21:08:5f:4b:57:91:1b:84:35:1b:
30:26:70:03:b5:57:56:f4:38:08:60:ba:ec:c6:dd:
4a:a7:4c:8f:99:f0:88:e6:71:0c:50:52:a8:6d:e7:
b4:07:bd:55:26:34:4e:8f:b0:6c:ab:00:c5:d7:93:
d4:2c:2f:3a:76:3e:7a:86:86:62:a1:93:af:09:7c:
73:ed:9a:aa:7d:ac:a4:e0:1c:eb:07:1d:04:d2:82:
0f:0f:a8:a8:55:e3:10:f9:08:70:9e:be:d7:0d:22:
b5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A3:19:75:28:AA:18:B0:97:D1:76:65:93:53:58:CB:97:80:59:D5
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/SqMZdSiqGLCX0XZlk1NYy5eAWdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.140.0/23
185.225.205.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:81:c6:d1:b3:5c:7f:cf:76:9d:3b:6f:c3:0b:51:7d:12:90:
0d:6a:6e:55:63:1a:03:23:61:a5:96:9b:a6:ac:64:eb:44:7b:
f2:17:1f:a9:ff:f6:a0:1a:a3:07:4a:56:64:8e:b6:93:1b:0e:
2f:9c:fe:bc:ed:46:65:2c:72:f2:a0:56:e9:31:ef:1e:99:e3:
e6:8c:2a:87:b8:2e:86:3c:88:45:11:78:70:10:52:5d:ee:85:
28:dd:30:4f:42:46:8b:95:10:c4:e3:90:fb:af:4f:5c:8e:19:
d0:31:37:b0:27:15:45:65:36:be:0c:81:2f:56:bd:82:0c:70:
37:11:f4:c9:f5:b1:a1:1c:f9:75:b8:dd:fe:93:08:e1:65:dc:
b3:bf:c6:10:f8:3a:a0:e4:a1:71:92:8e:56:da:0a:4c:ba:4f:
01:7b:4d:95:55:6e:e0:3c:9d:54:ee:9a:0d:fb:9a:d0:76:56:
69:7f:9c:a1:b3:7a:fc:89:8d:77:72:bf:65:0d:26:7f:3f:b4:
e1:0c:51:7b:62:e0:c7:12:a0:1d:52:44:c3:97:93:6b:ee:a9:
c1:d5:c4:33:0b:81:6f:19:ac:10:ba:68:cd:bd:3c:09:4b:b7:
a0:89:16:1a:ff:de:2f:e2:fc:e8:f8:30:e6:94:65:9a:64:cd:
40:c6:a2:2b
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZFovyQbJZUtZJ+zxnRek+fvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NmQ5ZDUwYjNiODlkNTFjOGFhMjQ5M2U3ZWY0NzAxZDYy
NTFkYWQwHhcNMjQwODE5MDM0NzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YWEzMTk3NTI4YWExOGIwOTdkMTc2NjU5MzUzNThjYjk3ODA1OWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoVhJ7comoos9I6B8TMKhXB8PKlv
723lO2I42eWQk3zaxQkPFTMIR3/PfbBtawJwQOIkt+FmzVJ+OgTaT5WRxAtrnrlh
QI0ICSZEJAEjWMmvTF6zPf1I7qf4HCb4kouqY0GBeUsPyqNzK3BEw58PzUDDI4nn
zOT0WgSBf8u3IUuh1G8rDuoB83mIzcJgOExeFnECiMdbET2LvSEIX0tXkRuENRsw
JnADtVdW9DgIYLrsxt1Kp0yPmfCI5nEMUFKobee0B71VJjROj7BsqwDF15PULC86
dj56hoZioZOvCXxz7Zqqfayk4BzrBx0E0oIPD6ioVeMQ+Qhwnr7XDSK1KwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEqjGXUoqhiwl9F2ZZNTWMuXgFnVMB8GA1UdIwQY
MBaAFMZtnVCzuJ1RyKokk+fvRwHWJR2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMt
YjdjNTc4Yjc0ZTM1LzEvU3FNWmRTaXFHTENYMFhabGsxTll5NWVBV2RVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMtYjdjNTc4Yjc0ZTM1
LzEveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBuSSMAwQA
ueHNMA0GCSqGSIb3DQEBCwUAA4IBAQBtgcbRs1x/z3adO2/DC1F9EpANam5VYxoD
I2GllpumrGTrRHvyFx+p//agGqMHSlZkjraTGw4vnP687UZlLHLyoFbpMe8emePm
jCqHuC6GPIhFEXhwEFJd7oUo3TBPQkaLlRDE45D7r09cjhnQMTewJxVFZTa+DIEv
Vr2CDHA3EfTJ9bGhHPl1uN3+kwjhZdyzv8YQ+Dqg5KFxko5W2gpMuk8Be02VVW7g
PJ1U7poN+5rQdlZpf5yhs3r8iY13cr9lDSZ/P7ThDFF7YuDHEqAdUkTDl5Nr7qnB
1cQzC4FvGawQumjNvTwJS7egiRYa/94v4vzo+DDmlGWaZM1AxqIr
-----END CERTIFICATE-----
Generated at Wed Sep 4 09:06:01 2024 by rpki-client on console-ams.rpki-client.org