Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/qtz05o1Rsg6y8-Xf5snwEzPZdYs.roa
File: qtz05o1Rsg6y8-Xf5snwEzPZdYs.roa (raw, json)
Hash identifier: 09HW7zIqFD17wvnm4etrgzAW6D1/noo1c0gxl4EAfRg=
Subject key identifier: AA:DC:F4:E6:8D:51:B2:0E:B2:F3:E5:DF:E6:C9:F0:13:33:D9:75:8B
Certificate issuer: /CN=22423839f210721627641ae6b6cceacee8d9067b
Certificate serial: 018D597B281083082C9B5B093140154B9154
Authority key identifier: 22:42:38:39:F2:10:72:16:27:64:1A:E6:B6:CC:EA:CE:E8:D9:06:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/qtz05o1Rsg6y8-Xf5snwEzPZdYs.roa
Signing time: Tue 30 Jan 2024 08:27:39 +0000
ROA not before: Tue 30 Jan 2024 08:27:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202179
IP address blocks: 185.50.180.0/22 maxlen: 24
2a01:a960::/32 maxlen: 32
2a01:a960:8::/48 maxlen: 48
2a01:a960:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 30 Jan 2024 08:53:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:59:7b:28:10:83:08:2c:9b:5b:09:31:40:15:4b:91:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22423839f210721627641ae6b6cceacee8d9067b
Validity
Not Before: Jan 30 08:27:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aadcf4e68d51b20eb2f3e5dfe6c9f01333d9758b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e2:50:90:61:3b:83:75:a1:78:4a:b6:6f:66:
3d:16:08:55:12:f9:7f:ce:cb:77:af:88:fc:9e:80:
84:95:a2:ac:9c:12:fd:36:b5:ba:44:28:98:28:01:
27:77:7b:d1:8f:73:0b:eb:3e:05:63:10:03:2a:c8:
e1:24:69:b4:8e:ba:56:e3:ca:30:50:cd:17:a6:65:
f5:c0:a9:f4:75:fa:23:8d:44:e2:bf:15:5d:a5:9d:
13:c1:e9:74:8d:48:0a:a5:58:fe:6c:74:f5:2e:c5:
0b:03:6d:09:41:be:8d:b6:eb:64:1a:25:97:f8:c1:
1b:52:99:16:12:07:36:4a:67:91:b0:85:c5:f7:fe:
33:20:39:93:e6:76:2a:c0:c5:e3:6c:08:ab:b2:87:
7e:81:0b:41:de:96:cd:2a:eb:54:88:cf:c9:56:6d:
d9:79:2e:3c:61:42:f1:08:37:85:35:e4:38:69:a6:
8c:bc:b7:0e:b3:be:f9:5e:ea:42:96:b4:d2:4e:6d:
0f:c4:4e:ae:35:1a:19:c0:55:be:df:30:bb:2c:56:
22:ee:6c:af:b0:38:13:af:53:02:f9:8c:5e:61:69:
5e:6c:78:cc:cf:69:06:8f:cf:ff:0e:98:21:21:f6:
6f:8e:04:70:06:9c:d3:b1:4c:34:b0:2c:b3:18:82:
3e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DC:F4:E6:8D:51:B2:0E:B2:F3:E5:DF:E6:C9:F0:13:33:D9:75:8B
X509v3 Authority Key Identifier:
keyid:22:42:38:39:F2:10:72:16:27:64:1A:E6:B6:CC:EA:CE:E8:D9:06:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/qtz05o1Rsg6y8-Xf5snwEzPZdYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.50.180.0/22
IPv6:
2a01:a960::/32
Signature Algorithm: sha256WithRSAEncryption
48:20:67:a1:f1:a1:8f:e8:6b:44:56:42:f9:72:05:a2:e3:eb:
cc:56:35:07:5f:a6:15:1c:23:78:b6:3e:74:40:17:f0:be:45:
83:bb:43:b9:f4:81:43:80:27:6a:3e:95:4b:fe:38:b6:5d:97:
71:4a:19:cf:4c:ef:6f:cf:dc:48:4a:da:01:26:c6:57:68:5a:
be:e9:47:b4:0d:68:d7:19:fb:ca:1e:71:ba:75:d5:91:6a:73:
87:3f:c4:67:b8:b1:29:05:a1:78:37:9f:0c:7e:e3:66:fd:8c:
b3:d6:b0:d6:6b:61:12:07:bd:a4:c6:ac:9a:47:82:79:7c:2a:
e7:fb:03:92:20:1e:07:8c:e5:97:8d:d7:dd:fd:a0:9c:e9:f8:
f5:3c:2b:a1:cb:94:db:eb:bc:2f:96:d2:cc:5c:20:9f:88:12:
90:e9:1f:e2:54:d7:ec:4d:4c:5f:09:eb:bf:f5:84:bd:8f:df:
d5:61:71:8b:89:b0:ba:35:ee:58:c3:dd:26:b0:9b:80:52:e4:
a4:73:6b:97:5a:8c:f5:8c:29:77:9f:59:c1:1e:0f:8c:88:11:
4a:49:63:ec:da:18:44:27:5c:b4:27:7f:13:60:5f:58:5e:6a:
9f:4a:a2:84:63:a3:f3:22:1b:03:e8:5b:fc:90:d2:33:8c:9e:
0f:3a:54:f8
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAY1ZeygQgwgsm1sJMUAVS5FUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNDIzODM5ZjIxMDcyMTYyNzY0MWFlNmI2Y2NlYWNlZThk
OTA2N2IwHhcNMjQwMTMwMDgyNzM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWRjZjRlNjhkNTFiMjBlYjJmM2U1ZGZlNmM5ZjAxMzMzZDk3NThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+JQkGE7g3WheEq2b2Y9FghVEvl/
zst3r4j8noCElaKsnBL9NrW6RCiYKAEnd3vRj3ML6z4FYxADKsjhJGm0jrpW48ow
UM0XpmX1wKn0dfojjUTivxVdpZ0Twel0jUgKpVj+bHT1LsULA20JQb6NtutkGiWX
+MEbUpkWEgc2SmeRsIXF9/4zIDmT5nYqwMXjbAirsod+gQtB3pbNKutUiM/JVm3Z
eS48YULxCDeFNeQ4aaaMvLcOs775XupClrTSTm0PxE6uNRoZwFW+3zC7LFYi7myv
sDgTr1MC+YxeYWlebHjMz2kGj8//DpghIfZvjgRwBpzTsUw0sCyzGII+QQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFKrc9OaNUbIOsvPl3+bJ8BMz2XWLMB8GA1UdIwQY
MBaAFCJCODnyEHIWJ2Qa5rbM6s7o2QZ7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWtJNE9mSVFjaFluWkJybXRzenF6dWpaQm5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9mOGFiNDgtMDVkMC00ZjljLThiMGYt
OThjODc1YWUzNWM5LzEvcXR6MDVvMVJzZzZ5OC1YZjVzbndFelBaZFlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS9mOGFiNDgtMDVkMC00ZjljLThiMGYtOThjODc1YWUzNWM5
LzEvSWtJNE9mSVFjaFluWkJybXRzenF6dWpaQm5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTK0MA0E
AgACMAcDBQAqAalgMA0GCSqGSIb3DQEBCwUAA4IBAQBIIGeh8aGP6GtEVkL5cgWi
4+vMVjUHX6YVHCN4tj50QBfwvkWDu0O59IFDgCdqPpVL/ji2XZdxShnPTO9vz9xI
StoBJsZXaFq+6Ue0DWjXGfvKHnG6ddWRanOHP8RnuLEpBaF4N58MfuNm/Yyz1rDW
a2ESB72kxqyaR4J5fCrn+wOSIB4HjOWXjdfd/aCc6fj1PCuhy5Tb67wvltLMXCCf
iBKQ6R/iVNfsTUxfCeu/9YS9j9/VYXGLibC6Ne5Yw90msJuAUuSkc2uXWoz1jCl3
n1nBHg+MiBFKSWPs2hhEJ1y0J38TYF9YXmqfSqKEY6PzIhsD6Fv8kNIzjJ4POlT4
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:04:46 2025 by rpki-client