Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/mAulotqcb3aA6MUmLfwVC8mLvJk.roa
File: mAulotqcb3aA6MUmLfwVC8mLvJk.roa (raw, json)
Hash identifier: mETk5ZjulWsIaEHimdf1UFjPgk0uCTCAIaJb+ZGC+Hc=
Subject key identifier: 98:0B:A5:A2:DA:9C:6F:76:80:E8:C5:26:2D:FC:15:0B:C9:8B:BC:99
Certificate issuer: /CN=598fa4201344d4107f792eee2566c62d65714e2d
Certificate serial: 018572959C1F72048B510F7D174D224E45BE
Authority key identifier: 59:8F:A4:20:13:44:D4:10:7F:79:2E:EE:25:66:C6:2D:65:71:4E:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WY-kIBNE1BB_eS7uJWbGLWVxTi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/mAulotqcb3aA6MUmLfwVC8mLvJk.roa
Signing time: Mon 02 Jan 2023 13:04:45 +0000
ROA not before: Mon 02 Jan 2023 13:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50926
IP address blocks: 185.50.199.0/24 maxlen: 24
185.50.198.0/24 maxlen: 24
185.50.197.0/24 maxlen: 24
185.50.196.0/22 maxlen: 22
185.50.196.0/24 maxlen: 24
5.145.175.0/24 maxlen: 24
5.145.174.0/24 maxlen: 24
217.61.130.0/24 maxlen: 24
217.61.129.0/24 maxlen: 24
217.61.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Jan 2023 09:51:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:9c:1f:72:04:8b:51:0f:7d:17:4d:22:4e:45:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=598fa4201344d4107f792eee2566c62d65714e2d
Validity
Not Before: Jan 2 13:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=980ba5a2da9c6f7680e8c5262dfc150bc98bbc99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4e:ac:99:11:1d:c9:50:a1:88:f4:d2:e2:36:
b4:d0:43:35:97:98:50:98:66:10:93:51:53:fc:03:
b2:2a:a5:9d:68:8a:dc:2c:64:67:57:97:7a:e9:5d:
10:85:c2:59:06:04:07:34:52:79:51:0c:df:2b:6a:
a7:e2:e9:2c:61:e7:73:03:65:b5:f6:78:14:cd:07:
71:f2:90:2c:8d:89:f9:04:f5:59:74:02:3e:00:e2:
9f:f5:4c:57:12:fe:a8:ea:4d:b9:1e:96:27:ab:5d:
3c:09:83:b8:cf:89:c4:70:01:7b:12:04:52:cc:1d:
91:ba:36:a9:3a:3d:81:ec:fa:62:1f:55:d2:bc:44:
3c:a8:b2:ff:69:99:4a:d5:1a:0f:da:7a:cc:5c:94:
2b:60:1f:ff:01:e7:96:c3:82:db:f2:fe:bb:6c:21:
09:97:b3:ce:b3:6e:05:23:b7:a2:1b:8e:a8:e6:c1:
14:f9:22:75:cb:a7:8f:f8:6b:b7:c0:2f:5f:c2:d1:
ea:8d:37:7b:03:c2:e9:af:ce:a6:17:0a:a9:78:07:
3f:f1:63:cd:70:70:1a:42:bf:ee:e7:41:da:5d:a4:
3b:44:7b:1b:cc:8f:11:ad:07:ee:a5:5e:b7:f7:2c:
79:55:06:e1:11:b1:8d:1b:5a:7e:bd:79:67:f9:08:
9b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:0B:A5:A2:DA:9C:6F:76:80:E8:C5:26:2D:FC:15:0B:C9:8B:BC:99
X509v3 Authority Key Identifier:
keyid:59:8F:A4:20:13:44:D4:10:7F:79:2E:EE:25:66:C6:2D:65:71:4E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WY-kIBNE1BB_eS7uJWbGLWVxTi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/mAulotqcb3aA6MUmLfwVC8mLvJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/WY-kIBNE1BB_eS7uJWbGLWVxTi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.174.0/23
185.50.196.0/22
217.61.128.0-217.61.130.255
Signature Algorithm: sha256WithRSAEncryption
16:77:f5:7a:ae:07:2d:da:f8:13:e5:0d:16:ce:af:66:5c:2a:
b9:3e:25:90:4f:c1:db:70:29:8d:d0:4e:28:e2:85:0c:0a:2d:
cb:44:ca:ff:9a:e3:25:4d:f8:97:02:90:9a:e1:e8:3a:0a:fc:
77:7c:73:5a:a7:61:18:da:d8:94:f3:f7:52:23:9e:5f:24:20:
7b:54:7f:47:c7:b1:ab:c6:d8:a6:2f:fb:4e:44:38:72:f1:95:
95:a4:12:32:df:aa:f4:a3:3a:0a:8d:a5:10:1c:e9:60:c4:8b:
66:56:74:4f:93:4f:29:8d:a3:22:31:7f:12:74:ef:76:94:ae:
da:42:c7:41:32:0f:14:e3:8d:e8:70:8e:e1:8f:e7:14:8c:70:
f9:95:f3:78:06:46:9c:3d:6e:08:6d:05:0d:49:3c:e6:f0:0f:
a9:b8:de:d6:2b:30:48:1c:f8:7f:5a:8c:f4:c5:09:02:26:f1:
95:8f:26:05:3e:30:2a:a2:b9:fc:bf:31:62:44:86:57:08:0e:
86:a6:98:4e:4c:b7:b1:37:53:80:68:8a:56:f3:c2:00:e8:f7:
a8:1c:2f:1d:35:55:88:a4:b7:20:61:14:1c:21:7a:99:0e:6d:
85:57:ce:ed:7f:6b:0c:33:0a:47:04:b0:cb:6a:81:59:7d:32:
b4:c2:d4:14
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAYVylZwfcgSLUQ99F00iTkW+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5OGZhNDIwMTM0NGQ0MTA3Zjc5MmVlZTI1NjZjNjJkNjU3
MTRlMmQwHhcNMjMwMTAyMTMwNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODBiYTVhMmRhOWM2Zjc2ODBlOGM1MjYyZGZjMTUwYmM5OGJiYzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs06smREdyVChiPTS4ja00EM1l5hQ
mGYQk1FT/AOyKqWdaIrcLGRnV5d66V0QhcJZBgQHNFJ5UQzfK2qn4uksYedzA2W1
9ngUzQdx8pAsjYn5BPVZdAI+AOKf9UxXEv6o6k25HpYnq108CYO4z4nEcAF7EgRS
zB2RujapOj2B7PpiH1XSvEQ8qLL/aZlK1RoP2nrMXJQrYB//AeeWw4Lb8v67bCEJ
l7POs24FI7eiG46o5sEU+SJ1y6eP+Gu3wC9fwtHqjTd7A8Lpr86mFwqpeAc/8WPN
cHAaQr/u50HaXaQ7RHsbzI8RrQfupV639yx5VQbhEbGNG1p+vXln+QibWQIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFJgLpaLanG92gOjFJi38FQvJi7yZMB8GA1UdIwQY
MBaAFFmPpCATRNQQf3ku7iVmxi1lcU4tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV1kta0lCTkUxQkJfZVM3dUpXYkdMV1Z4VGkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS84MzhlZjEtNzM5My00ZmJkLWI2N2It
NjY0YjhmMDNkMTgwLzEvbUF1bG90cWNiM2FBNk1VbUxmd1ZDOG1MdkprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS84MzhlZjEtNzM5My00ZmJkLWI2N2ItNjY0YjhmMDNkMTgw
LzEvV1kta0lCTkUxQkJfZVM3dUpXYkdMV1Z4VGkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQBBZGuAwQC
uTLEMAwDBAfZPYADBADZPYIwDQYJKoZIhvcNAQELBQADggEBABZ39XquBy3a+BPl
DRbOr2ZcKrk+JZBPwdtwKY3QTijihQwKLctEyv+a4yVN+JcCkJrh6DoK/Hd8c1qn
YRja2JTz91Ijnl8kIHtUf0fHsavG2KYv+05EOHLxlZWkEjLfqvSjOgqNpRAc6WDE
i2ZWdE+TTymNoyIxfxJ073aUrtpCx0EyDxTjjehwjuGP5xSMcPmV83gGRpw9bght
BQ1JPObwD6m43tYrMEgc+H9ajPTFCQIm8ZWPJgU+MCqiufy/MWJEhlcIDoammE5M
t7E3U4BoilbzwgDo96gcLx01VYiktyBhFBwhepkObYVXzu1/awwzCkcEsMtqgVl9
MrTC1BQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:44 2024 by rpki-client on console-fra.rpki-client.org