Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/XYl-mFmlG5Y2FM2ypKAcqz_4HOA.roa
File: XYl-mFmlG5Y2FM2ypKAcqz_4HOA.roa (raw, json)
Hash identifier: IGBai/JauyENBVtEkqO8V5R3plzMt2frNDw2HHytN0w=
Subject key identifier: 5D:89:7E:98:59:A5:1B:96:36:14:CD:B2:A4:A0:1C:AB:3F:F8:1C:E0
Certificate issuer: /CN=b6ae61814f7150c9b8117f498cab94db72a8339c
Certificate serial: 018CC5014F8AE6202726A8BD0ADE4647C555
Authority key identifier: B6:AE:61:81:4F:71:50:C9:B8:11:7F:49:8C:AB:94:DB:72:A8:33:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tq5hgU9xUMm4EX9JjKuU23KoM5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/XYl-mFmlG5Y2FM2ypKAcqz_4HOA.roa
Signing time: Mon 01 Jan 2024 12:30:46 +0000
ROA not before: Mon 01 Jan 2024 12:30:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 185.214.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 12:22:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:4f:8a:e6:20:27:26:a8:bd:0a:de:46:47:c5:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ae61814f7150c9b8117f498cab94db72a8339c
Validity
Not Before: Jan 1 12:30:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d897e9859a51b963614cdb2a4a01cab3ff81ce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8a:f3:90:63:8a:8c:b6:fa:ce:68:14:02:10:
aa:6b:d2:c6:9b:74:3e:34:45:8f:7c:00:16:1e:a1:
77:0d:53:47:19:df:3c:75:ab:4c:0c:4f:6a:1f:1b:
eb:2e:c6:98:1c:ad:41:eb:d7:81:44:dc:89:6c:cb:
44:9a:e9:51:9d:50:ff:cd:39:8c:cb:4d:fb:6c:2b:
2d:20:fa:ed:e3:40:31:9f:17:76:90:34:7c:7e:a2:
ad:a5:9d:50:3f:39:19:46:ad:c9:b2:dd:cf:f7:23:
b2:63:d5:27:5d:f7:a9:e2:a3:e1:31:a5:a6:c5:6d:
51:fd:86:f2:48:c9:20:9c:2d:81:e4:09:65:08:12:
bd:2a:d8:d4:3d:e2:7a:5d:53:6a:ad:ee:8c:4e:71:
25:e9:cd:50:5e:a0:42:f6:7f:b1:17:f8:85:c9:15:
e7:3d:bd:f4:95:b3:e3:3c:4d:74:e1:17:95:ce:5d:
a2:c4:97:e8:92:e5:c6:4f:fc:c0:8d:c3:78:25:c7:
75:db:5e:7a:e5:a9:d5:5c:ac:ba:75:94:1e:69:3c:
a8:12:00:01:d9:6a:a7:22:cf:ce:30:33:5c:2c:6b:
06:43:29:87:02:3d:ec:bc:96:26:8a:a2:0a:18:ff:
98:f0:5a:10:40:be:aa:cc:bb:95:41:9d:84:e9:13:
4e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:89:7E:98:59:A5:1B:96:36:14:CD:B2:A4:A0:1C:AB:3F:F8:1C:E0
X509v3 Authority Key Identifier:
keyid:B6:AE:61:81:4F:71:50:C9:B8:11:7F:49:8C:AB:94:DB:72:A8:33:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tq5hgU9xUMm4EX9JjKuU23KoM5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/XYl-mFmlG5Y2FM2ypKAcqz_4HOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/tq5hgU9xUMm4EX9JjKuU23KoM5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.166.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:e4:15:25:23:b9:8d:98:0c:2a:ba:05:8e:e9:e1:22:af:63:
29:98:4c:9b:04:5f:2f:3e:cd:51:77:f5:75:07:9b:78:bc:2d:
b1:f0:64:21:9b:f7:f0:f5:6e:62:14:55:29:69:83:75:6c:dd:
33:ab:35:10:6e:20:3b:07:6b:50:3b:aa:4d:c2:25:71:37:ab:
39:ad:67:49:36:9a:7e:3a:3c:be:b2:36:a0:b0:c6:10:e9:79:
67:1a:0d:61:c2:50:82:11:86:5a:5e:94:4a:f3:f6:e1:96:fe:
72:fd:04:9b:55:10:4d:20:41:03:27:b3:a1:83:e0:1b:f3:a0:
e3:d6:18:77:f5:b8:a2:0c:7c:85:1a:20:8c:8c:f5:0b:7e:1d:
3c:da:08:de:e3:c9:87:38:42:e6:d3:5f:e0:8e:1b:9d:02:c3:
b3:8d:32:7b:a7:35:16:10:52:81:1a:15:56:7d:1f:ea:e6:69:
1e:7b:d9:2b:91:1d:a2:3f:10:ed:75:c6:a9:e9:41:dc:f6:ba:
ed:15:05:26:07:1c:08:c3:82:46:dd:b2:e9:b9:2d:58:9d:cf:
1f:95:a8:dd:e9:9e:7e:f2:cd:ed:10:e1:f1:a9:00:20:0b:3d:
9d:d0:5c:72:ba:98:48:3b:94:6e:fe:b5:0c:1e:46:e5:b2:d7:
45:e8:b3:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFAU+K5iAnJqi9Ct5GR8VVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2YWU2MTgxNGY3MTUwYzliODExN2Y0OThjYWI5NGRiNzJh
ODMzOWMwHhcNMjQwMTAxMTIzMDQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZDg5N2U5ODU5YTUxYjk2MzYxNGNkYjJhNGEwMWNhYjNmZjgxY2UwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIrzkGOKjLb6zmgUAhCqa9LGm3Q+
NEWPfAAWHqF3DVNHGd88datMDE9qHxvrLsaYHK1B69eBRNyJbMtEmulRnVD/zTmM
y037bCstIPrt40Axnxd2kDR8fqKtpZ1QPzkZRq3Jst3P9yOyY9UnXfep4qPhMaWm
xW1R/YbySMkgnC2B5AllCBK9KtjUPeJ6XVNqre6MTnEl6c1QXqBC9n+xF/iFyRXn
Pb30lbPjPE104ReVzl2ixJfokuXGT/zAjcN4Jcd121565anVXKy6dZQeaTyoEgAB
2WqnIs/OMDNcLGsGQymHAj3svJYmiqIKGP+Y8FoQQL6qzLuVQZ2E6RNORQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF2JfphZpRuWNhTNsqSgHKs/+BzgMB8GA1UdIwQY
MBaAFLauYYFPcVDJuBF/SYyrlNtyqDOcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHE1aGdVOXhVTW00RVg5SmpLdVUyM0tvTTV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85ZGU4YjAtNmNjNS00NThiLWIyM2Ut
MTZlMTBkNzJiNTY3LzEvWFlsLW1GbWxHNVkyRk0yeXBLQWNxel80SE9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85ZGU4YjAtNmNjNS00NThiLWIyM2UtMTZlMTBkNzJiNTY3
LzEvdHE1aGdVOXhVTW00RVg5SmpLdVUyM0tvTTV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudamMA0G
CSqGSIb3DQEBCwUAA4IBAQA75BUlI7mNmAwqugWO6eEir2MpmEybBF8vPs1Rd/V1
B5t4vC2x8GQhm/fw9W5iFFUpaYN1bN0zqzUQbiA7B2tQO6pNwiVxN6s5rWdJNpp+
Ojy+sjagsMYQ6XlnGg1hwlCCEYZaXpRK8/bhlv5y/QSbVRBNIEEDJ7Ohg+Ab86Dj
1hh39biiDHyFGiCMjPULfh082gje48mHOELm01/gjhudAsOzjTJ7pzUWEFKBGhVW
fR/q5mkee9krkR2iPxDtdcap6UHc9rrtFQUmBxwIw4JG3bLpuS1Ync8flajd6Z5+
8s3tEOHxqQAgCz2d0FxyuphIO5Ru/rUMHkblstdF6LMF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org