Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/2ehFrrMBuE8PAEu0jzxnvNW9bSY.roa
File: 2ehFrrMBuE8PAEu0jzxnvNW9bSY.roa (raw, json)
Hash identifier: KGCa2rrOmKp7m+gWoQcSqLincjPOZR1nXnW8/TYQ/bs=
Subject key identifier: D9:E8:45:AE:B3:01:B8:4F:0F:00:4B:B4:8F:3C:67:BC:D5:BD:6D:26
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 018C8C57DF975FC69A19A47B2CEB631B9FE3
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/2ehFrrMBuE8PAEu0jzxnvNW9bSY.roa
Signing time: Thu 21 Dec 2023 12:26:58 +0000
ROA not before: Thu 21 Dec 2023 12:26:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 147.185.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8c:57:df:97:5f:c6:9a:19:a4:7b:2c:eb:63:1b:9f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Dec 21 12:26:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9e845aeb301b84f0f004bb48f3c67bcd5bd6d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ef:71:1f:55:11:c4:8e:3d:42:ed:b7:f5:fb:
66:f2:e5:2f:3a:26:7a:fa:d4:ba:e5:1f:f3:ea:18:
55:2a:e9:95:16:f8:9b:45:f9:75:dd:33:d6:a1:25:
58:85:7c:1d:8a:0f:bd:e1:89:b6:af:76:82:64:fd:
c1:b5:fc:5a:78:3d:cc:8e:7b:2f:38:b0:e0:d9:35:
b7:98:5e:38:f6:e8:8a:7d:0f:53:a4:23:12:a3:ca:
c8:1f:b9:4c:82:4e:03:f6:14:7b:34:ba:57:3e:c3:
ae:20:e5:61:d9:ba:0d:9d:6c:2c:c2:c3:e0:b6:4b:
5d:c7:d7:3a:a8:5d:65:fe:67:cf:ca:48:6e:d3:b4:
17:7e:df:38:ee:35:5c:64:99:f0:4f:f3:63:67:60:
77:86:06:2a:85:ff:32:b2:f0:e8:5a:ca:69:bc:48:
c8:e4:6b:1f:f2:02:59:03:bf:43:73:7d:02:22:a7:
86:f3:8d:5a:e3:d7:ac:89:9b:b0:de:27:78:41:7f:
d1:9d:e8:2d:59:dc:c2:9f:46:a1:3a:84:05:aa:dd:
5c:91:fd:de:be:55:43:49:d5:d5:5a:a5:0f:c0:10:
ce:46:46:8d:a5:02:9c:ff:dd:e7:d9:e9:f2:76:3a:
8e:4d:fe:ab:21:8b:43:6b:c2:89:b6:bf:ea:ef:2e:
9f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E8:45:AE:B3:01:B8:4F:0F:00:4B:B4:8F:3C:67:BC:D5:BD:6D:26
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/2ehFrrMBuE8PAEu0jzxnvNW9bSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.106.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:b7:48:e7:9f:85:e0:c4:ff:3a:fa:05:90:55:38:07:78:06:
7b:9a:02:b1:b2:71:5f:a6:ec:a8:a1:12:da:cd:b9:e4:29:39:
fc:3e:86:05:aa:49:a7:2a:bf:b6:2a:55:6f:17:0f:a9:f1:af:
7d:bc:a9:a4:d5:5b:53:5b:bf:a3:03:f2:5a:0a:17:81:90:d1:
34:2c:25:cf:61:fa:2d:0c:05:e9:da:ec:0b:b0:d2:26:c1:1f:
de:90:be:5d:d9:1b:3c:bc:ed:39:1f:60:30:16:04:8a:fa:b3:
8b:e4:a7:5a:e6:11:05:30:c4:7c:92:42:58:27:f1:e2:ae:dc:
99:35:85:4b:0d:72:d1:6a:30:bd:24:a3:1a:cf:f4:c5:d6:5d:
34:52:89:93:1e:3e:1b:49:2d:55:42:5d:c6:2f:ca:12:b1:07:
07:08:68:e7:bc:8b:c7:69:ae:dd:ac:d4:44:fb:49:ab:d1:a8:
c6:dc:19:10:75:8e:ef:8b:78:9d:1d:33:c8:8b:fe:7c:a7:8c:
b6:5b:65:14:67:b7:2e:4d:7f:46:58:87:30:49:3e:21:67:bb:
c1:47:36:0c:68:7f:6c:72:1d:44:0c:f3:07:b3:2b:fc:53:3a:
90:a1:e1:68:55:63:a7:77:ab:c3:27:5d:bc:dc:a2:bf:42:54:
32:35:48:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyMV9+XX8aaGaR7LOtjG5/jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYzJjMWFmZDRiZGVjOTgwNTA2ZmEwN2RmN2M4NjYyZDU1
NGZhNDYwHhcNMjMxMjIxMTIyNjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOWU4NDVhZWIzMDFiODRmMGYwMDRiYjQ4ZjNjNjdiY2Q1YmQ2ZDI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxe9xH1URxI49Qu239ftm8uUvOiZ6
+tS65R/z6hhVKumVFvibRfl13TPWoSVYhXwdig+94Ym2r3aCZP3BtfxaeD3Mjnsv
OLDg2TW3mF449uiKfQ9TpCMSo8rIH7lMgk4D9hR7NLpXPsOuIOVh2boNnWwswsPg
tktdx9c6qF1l/mfPykhu07QXft847jVcZJnwT/NjZ2B3hgYqhf8ysvDoWsppvEjI
5Gsf8gJZA79Dc30CIqeG841a49esiZuw3id4QX/RnegtWdzCn0ahOoQFqt1ckf3e
vlVDSdXVWqUPwBDORkaNpQKc/93n2enydjqOTf6rIYtDa8KJtr/q7y6f7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNnoRa6zAbhPDwBLtI88Z7zVvW0mMB8GA1UdIwQY
MBaAFOrCwa/UveyYBQb6B998hmLVVPpGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnNMQnI5Uzk3SmdGQnZvSDMzeUdZdFZVLWtZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS81ODlhNmItNGQ3ZS00MDEyLWEwZmMt
YzBjZWIwMzdhZDQyLzEvMmVoRnJyTUJ1RThQQUV1MGp6eG52Tlc5YlNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS81ODlhNmItNGQ3ZS00MDEyLWEwZmMtYzBjZWIwMzdhZDQy
LzEvNnNMQnI5Uzk3SmdGQnZvSDMzeUdZdFZVLWtZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk7lqMA0G
CSqGSIb3DQEBCwUAA4IBAQAqt0jnn4XgxP86+gWQVTgHeAZ7mgKxsnFfpuyooRLa
zbnkKTn8PoYFqkmnKr+2KlVvFw+p8a99vKmk1VtTW7+jA/JaCheBkNE0LCXPYfot
DAXp2uwLsNImwR/ekL5d2Rs8vO05H2AwFgSK+rOL5Kda5hEFMMR8kkJYJ/HirtyZ
NYVLDXLRajC9JKMaz/TF1l00UomTHj4bSS1VQl3GL8oSsQcHCGjnvIvHaa7drNRE
+0mr0ajG3BkQdY7vi3idHTPIi/58p4y2W2UUZ7cuTX9GWIcwST4hZ7vBRzYMaH9s
ch1EDPMHsyv8UzqQoeFoVWOnd6vDJ1283KK/QlQyNUiz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:48 2024 by rpki-client on console-ams.rpki-client.org