Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/W-6I4xvMWGANaw8JKw9pd848ncA.roa
File: W-6I4xvMWGANaw8JKw9pd848ncA.roa (raw, json)
Hash identifier: yDl5SmuAL8SFF8oOQMSGMVIYxqYttjNQgyK/vi+Xl0o=
Subject key identifier: 5B:EE:88:E3:1B:CC:58:60:0D:6B:0F:09:2B:0F:69:77:CE:3C:9D:C0
Certificate issuer: /CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Certificate serial: 018DB24941F9CF86710B7B6B0737A754ABF1
Authority key identifier: 7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/W-6I4xvMWGANaw8JKw9pd848ncA.roa
Signing time: Fri 16 Feb 2024 14:19:21 +0000
ROA not before: Fri 16 Feb 2024 14:19:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8220
IP address blocks: 185.154.148.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 21 Feb 2024 11:25:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b2:49:41:f9:cf:86:71:0b:7b:6b:07:37:a7:54:ab:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Validity
Not Before: Feb 16 14:19:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5bee88e31bcc58600d6b0f092b0f6977ce3c9dc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8d:1c:77:a5:33:0a:82:6b:4e:70:8d:dc:f2:
6a:cf:cf:a3:fb:28:a0:42:61:04:80:c8:a9:51:1e:
d7:b2:3d:d3:14:c0:53:d8:5c:48:99:cf:57:4a:3c:
2a:91:c5:ca:ef:5f:3b:13:06:85:64:2b:9e:32:2f:
79:6f:63:cd:5f:2b:2b:72:d0:ae:01:fe:73:32:99:
2d:86:de:a4:85:7f:ce:9e:b2:55:82:42:34:7c:50:
33:90:be:b2:a7:e3:79:ef:56:f3:09:c9:4b:fd:9e:
db:8a:ba:cf:35:dd:60:a9:bb:1e:7d:35:c8:27:a3:
7c:d4:64:3c:67:e3:0b:0d:f7:a9:3f:63:93:19:5a:
c4:a9:57:08:2f:0d:fe:c7:fa:e2:de:ae:f0:06:00:
0b:a7:bd:df:07:0c:0d:6e:0e:a2:d7:a8:ea:ea:82:
27:ab:bc:1d:da:e8:b5:10:50:53:53:d8:c3:ea:c6:
57:90:74:fa:90:6a:0f:a8:d2:34:ac:14:dc:d4:29:
4b:5d:b1:8d:4c:9f:13:78:8a:4f:7a:99:56:e5:58:
ae:07:4c:33:f9:13:5d:d2:07:8b:70:2e:3f:69:54:
88:c4:70:db:7b:4c:69:51:97:2e:d5:9b:77:93:a8:
f0:b5:25:14:e6:69:34:17:3b:a0:62:03:82:1e:53:
7a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:EE:88:E3:1B:CC:58:60:0D:6B:0F:09:2B:0F:69:77:CE:3C:9D:C0
X509v3 Authority Key Identifier:
keyid:7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/W-6I4xvMWGANaw8JKw9pd848ncA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.148.0/23
Signature Algorithm: sha256WithRSAEncryption
66:6b:fa:15:b8:1c:f7:0f:b8:ec:40:22:61:23:06:2e:3e:c0:
61:89:1b:40:14:7b:46:b6:c2:e0:bf:3e:61:6b:d2:d3:db:cb:
b8:86:bb:82:5d:49:9c:e2:8e:39:6e:6d:72:5c:90:94:85:15:
81:59:0f:55:89:c1:92:a0:58:9e:c8:1f:b2:70:e5:34:0f:a1:
4a:c7:02:2f:d1:7a:eb:83:eb:47:fd:d8:81:36:93:d5:05:59:
e7:e3:7e:42:de:22:6f:56:46:3d:82:55:2a:44:fd:77:4e:c3:
94:ee:46:3b:dd:77:e6:59:32:60:cd:3f:57:fe:b1:67:d4:a7:
d4:08:2d:53:8e:17:4b:6b:c5:23:03:40:eb:c4:46:20:bc:d3:
34:92:76:0d:09:ea:5e:98:dd:ae:ac:52:19:41:35:81:58:57:
1f:76:61:41:78:ba:44:d4:aa:cd:11:71:c7:6a:6f:a8:d2:96:
e4:17:90:3b:b6:bf:42:1f:1c:8c:a0:03:73:6d:5e:8e:e2:f8:
70:1a:d4:c8:99:38:23:0c:1d:77:02:b9:6f:a0:d6:58:49:73:
d0:d7:60:6e:78:7c:36:af:ab:30:a4:f9:66:8c:ab:32:1f:91:
14:09:7f:38:62:ea:d3:31:70:1a:6a:3c:4a:a1:95:cb:9c:a7:
37:9e:80:37
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2ySUH5z4ZxC3trBzenVKvxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhOTFiMzQxNTNkYTBkNWQxMjFjZmY0MzI1OWZjZDllM2Ri
ZmM3ZDQwHhcNMjQwMjE2MTQxOTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmVlODhlMzFiY2M1ODYwMGQ2YjBmMDkyYjBmNjk3N2NlM2M5ZGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg40cd6UzCoJrTnCN3PJqz8+j+yig
QmEEgMipUR7Xsj3TFMBT2FxImc9XSjwqkcXK7187EwaFZCueMi95b2PNXysrctCu
Af5zMpktht6khX/OnrJVgkI0fFAzkL6yp+N571bzCclL/Z7birrPNd1gqbsefTXI
J6N81GQ8Z+MLDfepP2OTGVrEqVcILw3+x/ri3q7wBgALp73fBwwNbg6i16jq6oIn
q7wd2ui1EFBTU9jD6sZXkHT6kGoPqNI0rBTc1ClLXbGNTJ8TeIpPeplW5ViuB0wz
+RNd0geLcC4/aVSIxHDbe0xpUZcu1Zt3k6jwtSUU5mk0FzugYgOCHlN6QQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFvuiOMbzFhgDWsPCSsPaXfOPJ3AMB8GA1UdIwQY
MBaAFHqRs0FT2g1dEhz/QyWfzZ49v8fUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXBHelFWUGFEVjBTSFA5REpaX05uajJfeDlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC81M2Y2NTItMDFiMS00MmYyLTg1ZTkt
NGRjYjIzZmRiMDZhLzEvVy02STR4dk1XR0FOYXc4Skt3OXBkODQ4bmNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC81M2Y2NTItMDFiMS00MmYyLTg1ZTktNGRjYjIzZmRiMDZh
LzEvZXBHelFWUGFEVjBTSFA5REpaX05uajJfeDlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuZqUMA0G
CSqGSIb3DQEBCwUAA4IBAQBma/oVuBz3D7jsQCJhIwYuPsBhiRtAFHtGtsLgvz5h
a9LT28u4hruCXUmc4o45bm1yXJCUhRWBWQ9VicGSoFieyB+ycOU0D6FKxwIv0Xrr
g+tH/diBNpPVBVnn435C3iJvVkY9glUqRP13TsOU7kY73XfmWTJgzT9X/rFn1KfU
CC1TjhdLa8UjA0DrxEYgvNM0knYNCepemN2urFIZQTWBWFcfdmFBeLpE1KrNEXHH
am+o0pbkF5A7tr9CHxyMoANzbV6O4vhwGtTImTgjDB13ArlvoNZYSXPQ12BueHw2
r6swpPlmjKsyH5EUCX84YurTMXAaajxKoZXLnKc3noA3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org