Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/eZESCmNC9tB1aS5ivM8zRt-suD0.roa
File: eZESCmNC9tB1aS5ivM8zRt-suD0.roa (raw, json)
Hash identifier: Spz1ALFBqlb7cWMRYxsINLMKTyNYVVqitJYvHh8DIq8=
Subject key identifier: 79:91:12:0A:63:42:F6:D0:75:69:2E:62:BC:CF:33:46:DF:AC:B8:3D
Certificate issuer: /CN=2cc25ff32918f0b49306259d483afb9e381a3915
Certificate serial: 018570674F53A015902DC8E56E364524E005
Authority key identifier: 2C:C2:5F:F3:29:18:F0:B4:93:06:25:9D:48:3A:FB:9E:38:1A:39:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMJf8ykY8LSTBiWdSDr7njgaORU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/eZESCmNC9tB1aS5ivM8zRt-suD0.roa
Signing time: Mon 02 Jan 2023 02:54:56 +0000
ROA not before: Mon 02 Jan 2023 02:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202391
IP address blocks: 185.158.172.0/24 maxlen: 24
185.158.174.0/24 maxlen: 24
185.158.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 13:16:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:4f:53:a0:15:90:2d:c8:e5:6e:36:45:24:e0:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cc25ff32918f0b49306259d483afb9e381a3915
Validity
Not Before: Jan 2 02:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7991120a6342f6d075692e62bccf3346dfacb83d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:27:85:49:52:67:1d:73:99:b3:04:fe:5f:61:
ab:25:a6:35:b9:d0:6f:55:15:cd:c6:21:34:29:54:
73:c7:b7:91:a7:fe:c6:fc:bf:c3:f1:6c:7c:79:cf:
be:ab:23:83:ff:ba:d2:62:8f:98:3f:d3:d3:ba:f3:
e6:97:c6:e7:35:2d:59:fc:eb:7d:5c:5e:50:d4:1d:
c8:26:26:ec:a4:67:9d:2a:30:ce:34:29:e4:5c:a1:
a1:d9:1f:60:be:6e:99:49:cf:15:cf:d2:12:c1:cb:
b1:49:46:ac:f4:b9:a6:33:e7:5a:1b:35:cd:56:2c:
12:62:e8:0e:b1:a5:d5:b6:88:69:15:e8:b4:d6:68:
8a:17:15:28:fa:21:af:10:8a:68:95:d9:2b:8b:ca:
4d:f0:89:cc:64:18:c5:65:da:da:be:45:0c:38:7c:
80:a1:ab:67:e5:ee:ca:e1:4a:28:d0:6c:36:2c:2b:
ed:85:f7:0d:f8:02:f4:c2:8f:be:61:f7:88:f1:50:
77:81:aa:8f:60:ea:b0:30:9a:8c:d2:31:5f:6b:1b:
67:21:1d:b1:3b:15:32:61:29:c4:ca:98:2a:a6:3e:
6c:45:20:0b:f6:0e:28:6a:09:37:99:60:37:e5:80:
c0:22:f2:3f:5c:cd:ab:be:96:17:d2:ec:d0:c1:47:
a4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:91:12:0A:63:42:F6:D0:75:69:2E:62:BC:CF:33:46:DF:AC:B8:3D
X509v3 Authority Key Identifier:
keyid:2C:C2:5F:F3:29:18:F0:B4:93:06:25:9D:48:3A:FB:9E:38:1A:39:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMJf8ykY8LSTBiWdSDr7njgaORU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/eZESCmNC9tB1aS5ivM8zRt-suD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/LMJf8ykY8LSTBiWdSDr7njgaORU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.172.0-185.158.174.255
Signature Algorithm: sha256WithRSAEncryption
11:84:7f:0a:4c:e0:5a:9b:99:bd:b6:0e:60:9d:09:cf:f3:f1:
f7:7b:bd:09:90:8d:3b:b1:0c:7a:74:61:ab:4f:1a:cc:b2:79:
42:10:ac:39:ee:53:24:93:ad:90:03:f3:8e:d6:be:28:a7:43:
bc:70:b7:cd:85:84:d2:90:69:1a:db:cb:ef:b1:a7:e3:41:d0:
22:3b:d6:19:4f:61:61:43:1c:b3:e1:fc:6b:05:30:c0:74:71:
0c:06:da:fe:f9:ef:f4:5f:f5:93:87:59:62:01:cb:07:af:89:
56:73:40:15:95:05:db:43:59:04:44:b3:c3:6a:be:ad:70:ec:
cd:e8:a0:05:fc:95:62:3d:ef:bb:48:05:6e:5a:cd:a6:8c:29:
6c:4c:ba:a3:7a:4e:8c:81:3d:94:fa:e0:2c:17:6d:5b:ba:ae:
19:dd:82:6d:f1:c1:cb:ae:b3:7f:63:9d:ac:34:8d:a6:64:42:
cf:a1:a6:b9:75:ee:60:d4:fd:fb:e3:22:61:ed:68:d3:cc:f8:
08:e0:00:8e:cf:02:a4:35:34:74:05:9c:8d:18:9a:bc:26:a3:
e4:8c:70:e7:4c:e6:2d:04:3b:70:06:cf:52:03:dd:f1:35:41:
23:2f:17:cf:e5:f1:e1:e2:5b:16:8e:61:52:b5:ab:c2:30:23:
be:74:4b:f7
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVwZ09ToBWQLcjlbjZFJOAFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjYzI1ZmYzMjkxOGYwYjQ5MzA2MjU5ZDQ4M2FmYjllMzgx
YTM5MTUwHhcNMjMwMTAyMDI1NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTkxMTIwYTYzNDJmNmQwNzU2OTJlNjJiY2NmMzM0NmRmYWNiODNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4CeFSVJnHXOZswT+X2GrJaY1udBv
VRXNxiE0KVRzx7eRp/7G/L/D8Wx8ec++qyOD/7rSYo+YP9PTuvPml8bnNS1Z/Ot9
XF5Q1B3IJibspGedKjDONCnkXKGh2R9gvm6ZSc8Vz9ISwcuxSUas9LmmM+daGzXN
ViwSYugOsaXVtohpFei01miKFxUo+iGvEIpoldkri8pN8InMZBjFZdravkUMOHyA
oatn5e7K4Uoo0Gw2LCvthfcN+AL0wo++YfeI8VB3gaqPYOqwMJqM0jFfaxtnIR2x
OxUyYSnEypgqpj5sRSAL9g4oagk3mWA35YDAIvI/XM2rvpYX0uzQwUekDQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFHmREgpjQvbQdWkuYrzPM0bfrLg9MB8GA1UdIwQY
MBaAFCzCX/MpGPC0kwYlnUg6+544GjkVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTE1KZjh5a1k4TFNUQmlXZFNEcjduamdhT1JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8xMjc3ZWMtMTU2YS00NmM0LTlmMDMt
ZTI1NzUxYjNmZmQ1LzEvZVpFU0NtTkM5dEIxYVM1aXZNOHpSdC1zdUQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS8xMjc3ZWMtMTU2YS00NmM0LTlmMDMtZTI1NzUxYjNmZmQ1
LzEvTE1KZjh5a1k4TFNUQmlXZFNEcjduamdhT1JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAK5nqwD
BAC5nq4wDQYJKoZIhvcNAQELBQADggEBABGEfwpM4Fqbmb22DmCdCc/z8fd7vQmQ
jTuxDHp0YatPGsyyeUIQrDnuUySTrZAD847WviinQ7xwt82FhNKQaRrby++xp+NB
0CI71hlPYWFDHLPh/GsFMMB0cQwG2v757/Rf9ZOHWWIByweviVZzQBWVBdtDWQRE
s8Nqvq1w7M3ooAX8lWI977tIBW5azaaMKWxMuqN6ToyBPZT64CwXbVu6rhndgm3x
wcuus39jnaw0jaZkQs+hprl17mDU/fvjImHtaNPM+AjgAI7PAqQ1NHQFnI0Ymrwm
o+SMcOdM5i0EO3AGz1ID3fE1QSMvF8/l8eHiWxaOYVK1q8IwI750S/c=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:15 2024 by rpki-client on console-fra.rpki-client.org