Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/0LwTt90RStA5_qY-JRF0_JHpQt8.roa
File: 0LwTt90RStA5_qY-JRF0_JHpQt8.roa (raw, json)
Hash identifier: DvUvK85Z3HaLLLEhqoF1SKHefd10AQrxeMoJCjBWtw0=
Subject key identifier: D0:BC:13:B7:DD:11:4A:D0:39:FE:A6:3E:25:11:74:FC:91:E9:42:DF
Certificate issuer: /CN=2cc25ff32918f0b49306259d483afb9e381a3915
Certificate serial: 01896E4B778A20C48B000947CB94493445B3
Authority key identifier: 2C:C2:5F:F3:29:18:F0:B4:93:06:25:9D:48:3A:FB:9E:38:1A:39:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMJf8ykY8LSTBiWdSDr7njgaORU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/0LwTt90RStA5_qY-JRF0_JHpQt8.roa
Signing time: Wed 19 Jul 2023 13:16:26 +0000
ROA not before: Wed 19 Jul 2023 13:16:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202391
IP address blocks: 185.158.172.0/24 maxlen: 24
185.158.175.0/24 maxlen: 24
185.158.174.0/24 maxlen: 24
185.158.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6e:4b:77:8a:20:c4:8b:00:09:47:cb:94:49:34:45:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cc25ff32918f0b49306259d483afb9e381a3915
Validity
Not Before: Jul 19 13:16:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0bc13b7dd114ad039fea63e251174fc91e942df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:69:9c:52:fe:2c:41:e1:c4:9e:44:9d:99:a1:
57:a0:a1:ea:51:40:7e:2c:3e:01:bc:b2:f8:3b:ec:
47:cf:ca:25:c5:44:3c:99:c2:83:3d:ad:68:2a:13:
55:1b:ff:2c:3a:df:50:75:b6:11:f0:94:9a:ab:79:
5b:8f:51:84:36:82:95:12:0b:fb:94:92:14:80:ac:
e8:54:db:a9:bb:90:d0:29:98:32:ed:d5:5a:02:f1:
dd:7b:74:a0:58:ff:a5:6d:56:f8:53:92:a3:e5:98:
45:a1:3a:41:31:8c:7a:5a:64:93:3d:b6:0d:cf:7d:
2c:63:c9:78:f4:99:39:4f:98:a6:2b:93:35:70:6a:
ee:87:ac:13:ae:ae:1c:bb:98:3b:d4:aa:b0:98:14:
cf:15:12:12:53:14:65:42:f5:e8:37:2e:d0:0b:c3:
79:52:43:0c:0b:85:b4:30:34:5d:a6:2a:de:13:6f:
20:34:b8:5d:bf:61:eb:73:9f:62:67:5d:f7:9f:53:
5d:6c:53:f1:db:83:34:28:ee:8b:87:5e:e8:6f:44:
77:cd:91:cb:1a:fe:a7:00:60:b6:b3:55:c2:dd:65:
0a:5d:43:5c:7f:4e:eb:f2:0c:a4:57:e0:4a:94:32:
26:fd:54:7e:80:95:6d:4b:a9:cc:53:50:73:53:5c:
50:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:BC:13:B7:DD:11:4A:D0:39:FE:A6:3E:25:11:74:FC:91:E9:42:DF
X509v3 Authority Key Identifier:
keyid:2C:C2:5F:F3:29:18:F0:B4:93:06:25:9D:48:3A:FB:9E:38:1A:39:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMJf8ykY8LSTBiWdSDr7njgaORU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/0LwTt90RStA5_qY-JRF0_JHpQt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/LMJf8ykY8LSTBiWdSDr7njgaORU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.172.0/22
Signature Algorithm: sha256WithRSAEncryption
68:c0:c8:4f:47:07:d7:77:01:5b:ec:f0:44:54:54:f5:ca:dc:
6a:ba:bb:66:70:49:38:7d:e0:fb:b2:10:4e:69:6b:6f:de:c7:
a3:cf:00:e3:5b:21:e0:81:71:c7:ec:c9:88:b3:53:0f:5b:e5:
d2:36:00:89:4a:84:25:3d:77:2d:96:dd:99:5b:69:ff:d1:31:
64:a3:03:ea:21:08:1d:6c:f0:6c:5e:b8:a8:29:ad:c2:74:4b:
f4:1a:ab:2e:51:a0:59:c9:40:c5:96:4c:19:f4:e0:4c:85:2c:
76:b4:43:59:ad:5e:87:7d:25:b4:00:3d:be:0d:7b:16:71:c4:
83:b0:ad:21:44:0a:72:26:bf:38:10:a3:96:24:8e:c6:11:d8:
93:01:a2:8d:42:e4:da:8a:0a:20:c6:57:31:de:e4:7a:6f:a1:
57:a6:b0:82:bd:87:82:c8:58:c7:1f:13:6c:24:d4:0d:76:d0:
99:a8:d0:cf:b0:49:49:ea:69:d3:e8:50:10:cb:06:3a:ae:8a:
b7:fc:0b:87:97:0b:97:b9:3c:e5:bc:38:23:93:4f:09:d2:05:
9d:16:ec:7b:30:31:37:c8:d4:6a:6e:d1:a5:b3:9c:fb:a0:0e:
19:c8:10:86:61:22:70:09:03:02:e5:21:f4:69:01:dd:d6:e4:
28:78:0f:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYluS3eKIMSLAAlHy5RJNEWzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjYzI1ZmYzMjkxOGYwYjQ5MzA2MjU5ZDQ4M2FmYjllMzgx
YTM5MTUwHhcNMjMwNzE5MTMxNjI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGJjMTNiN2RkMTE0YWQwMzlmZWE2M2UyNTExNzRmYzkxZTk0MmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmmcUv4sQeHEnkSdmaFXoKHqUUB+
LD4BvLL4O+xHz8olxUQ8mcKDPa1oKhNVG/8sOt9QdbYR8JSaq3lbj1GENoKVEgv7
lJIUgKzoVNupu5DQKZgy7dVaAvHde3SgWP+lbVb4U5Kj5ZhFoTpBMYx6WmSTPbYN
z30sY8l49Jk5T5imK5M1cGruh6wTrq4cu5g71KqwmBTPFRISUxRlQvXoNy7QC8N5
UkMMC4W0MDRdpireE28gNLhdv2Hrc59iZ133n1NdbFPx24M0KO6Lh17ob0R3zZHL
Gv6nAGC2s1XC3WUKXUNcf07r8gykV+BKlDIm/VR+gJVtS6nMU1BzU1xQCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNC8E7fdEUrQOf6mPiURdPyR6ULfMB8GA1UdIwQY
MBaAFCzCX/MpGPC0kwYlnUg6+544GjkVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTE1KZjh5a1k4TFNUQmlXZFNEcjduamdhT1JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8xMjc3ZWMtMTU2YS00NmM0LTlmMDMt
ZTI1NzUxYjNmZmQ1LzEvMEx3VHQ5MFJTdEE1X3FZLUpSRjBfSkhwUXQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS8xMjc3ZWMtMTU2YS00NmM0LTlmMDMtZTI1NzUxYjNmZmQ1
LzEvTE1KZjh5a1k4TFNUQmlXZFNEcjduamdhT1JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZ6sMA0G
CSqGSIb3DQEBCwUAA4IBAQBowMhPRwfXdwFb7PBEVFT1ytxqurtmcEk4feD7shBO
aWtv3sejzwDjWyHggXHH7MmIs1MPW+XSNgCJSoQlPXctlt2ZW2n/0TFkowPqIQgd
bPBsXrioKa3CdEv0GqsuUaBZyUDFlkwZ9OBMhSx2tENZrV6HfSW0AD2+DXsWccSD
sK0hRApyJr84EKOWJI7GEdiTAaKNQuTaigogxlcx3uR6b6FXprCCvYeCyFjHHxNs
JNQNdtCZqNDPsElJ6mnT6FAQywY6roq3/AuHlwuXuTzlvDgjk08J0gWdFux7MDE3
yNRqbtGls5z7oA4ZyBCGYSJwCQMC5SH0aQHd1uQoeA/h
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:27 2024 by rpki-client on console-ams.rpki-client.org