Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/c0HU49Hsa0YLAvVIrD0MvQtQmNA.roa
File: c0HU49Hsa0YLAvVIrD0MvQtQmNA.roa (raw, json)
Hash identifier: EQZcnVBhseKiI7wJhZWDUEBH6+3bsQ2hirKFqkuw820=
Subject key identifier: 73:41:D4:E3:D1:EC:6B:46:0B:02:F5:48:AC:3D:0C:BD:0B:50:98:D0
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 0191E667821848986232CB2CE0574A32E497
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/c0HU49Hsa0YLAvVIrD0MvQtQmNA.roa
Signing time: Thu 12 Sep 2024 13:23:48 +0000
ROA not before: Thu 12 Sep 2024 13:23:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209078
IP address blocks: 185.210.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 19:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e6:67:82:18:48:98:62:32:cb:2c:e0:57:4a:32:e4:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Sep 12 13:23:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7341d4e3d1ec6b460b02f548ac3d0cbd0b5098d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:f8:30:22:e1:e9:53:51:af:e1:b2:08:43:9c:
89:e5:85:87:98:73:51:c2:b9:e8:89:7e:b1:ad:9d:
2b:2d:bb:4f:73:ec:bf:19:59:f2:8b:39:9b:ab:33:
97:19:31:5b:66:8c:43:71:11:bc:a2:12:a7:0a:5d:
a4:ec:6a:4d:47:c4:de:f8:e9:ed:f3:2e:28:57:b7:
21:bd:e5:64:b9:8e:55:bd:7f:10:b2:f4:0a:12:06:
cf:4d:77:75:51:d3:d1:0e:25:db:8d:27:13:03:97:
ea:2e:9a:3c:2c:ae:ba:7f:ce:32:9b:65:db:4f:31:
09:0b:41:78:50:71:27:7a:04:34:e2:42:ea:b4:7b:
28:34:85:b7:19:0e:49:a6:f1:84:9e:9e:aa:6e:ce:
c4:44:4c:56:88:09:9f:34:80:bf:45:13:84:d7:42:
e0:14:ce:24:bd:c9:bf:c6:19:c1:f6:ca:1a:3c:11:
9e:7b:9b:7f:fb:09:60:7e:fd:32:e7:ca:be:a5:d8:
ad:61:53:a7:b1:54:4f:72:a4:c8:62:e7:a9:dd:d4:
1f:c6:d3:61:fd:8f:b8:9a:c3:3e:c7:a0:75:6b:69:
f0:d9:7c:13:3f:f6:93:f6:69:f8:06:f1:ef:6c:fe:
36:0a:f9:c8:3d:15:b9:09:04:38:51:07:af:9b:e2:
b8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:41:D4:E3:D1:EC:6B:46:0B:02:F5:48:AC:3D:0C:BD:0B:50:98:D0
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/c0HU49Hsa0YLAvVIrD0MvQtQmNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.138.0/24
Signature Algorithm: sha256WithRSAEncryption
61:a7:dc:24:35:b0:b4:4e:72:e0:ab:9b:51:ca:8f:e9:d6:17:
d2:19:ba:b5:29:da:29:f1:88:51:d9:cc:3b:5b:c2:4d:17:a3:
f8:e3:f3:a2:b1:dd:a2:77:7e:a8:a0:9f:79:b2:05:e3:63:53:
2c:16:a5:33:ec:53:1b:f1:94:0b:a8:fa:0e:e8:da:0b:97:55:
b2:3d:62:25:3f:fd:66:c5:e0:8b:ed:2c:57:52:1e:de:fb:53:
26:60:b3:cf:a2:75:c9:3c:a8:53:83:21:c9:c9:7a:d7:38:8a:
a6:62:f7:ec:56:96:a1:fc:91:a6:aa:c7:e5:c6:df:53:af:eb:
31:cd:40:64:c9:6b:54:de:db:7a:6d:e9:8d:f3:99:f0:ee:02:
12:75:d4:c7:70:66:4f:cf:35:89:8e:49:30:07:90:7f:ba:5e:
af:2d:bd:2f:d0:5f:7d:c6:f3:2d:75:7f:05:7d:d7:98:26:67:
56:6a:19:0e:f0:39:f8:e0:65:90:9d:b7:9b:e6:f4:bf:46:e9:
be:ee:e7:52:83:cc:a7:81:ce:b7:3c:00:8b:0e:d0:5a:6d:0f:
09:38:05:55:7c:be:fe:a6:7b:08:47:e5:16:1d:6b:27:cc:7a:
c8:0c:9f:36:31:9c:52:d4:e9:71:e9:c3:96:a6:12:1f:97:9d:
4c:30:b2:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHmZ4IYSJhiMsss4FdKMuSXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4
YWJjYzUwHhcNMjQwOTEyMTMyMzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzQxZDRlM2QxZWM2YjQ2MGIwMmY1NDhhYzNkMGNiZDBiNTA5OGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/vgwIuHpU1Gv4bIIQ5yJ5YWHmHNR
wrnoiX6xrZ0rLbtPc+y/GVnyizmbqzOXGTFbZoxDcRG8ohKnCl2k7GpNR8Te+Ont
8y4oV7chveVkuY5VvX8QsvQKEgbPTXd1UdPRDiXbjScTA5fqLpo8LK66f84ym2Xb
TzEJC0F4UHEnegQ04kLqtHsoNIW3GQ5JpvGEnp6qbs7ERExWiAmfNIC/RROE10Lg
FM4kvcm/xhnB9soaPBGee5t/+wlgfv0y58q+pditYVOnsVRPcqTIYuep3dQfxtNh
/Y+4msM+x6B1a2nw2XwTP/aT9mn4BvHvbP42CvnIPRW5CQQ4UQevm+K4JQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHNB1OPR7GtGCwL1SKw9DL0LUJjQMB8GA1UdIwQY
MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt
NmZlOWJmNjA1NjFjLzEvYzBIVTQ5SHNhMFlMQXZWSXJEME12UXRRbU5BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj
LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudKKMA0G
CSqGSIb3DQEBCwUAA4IBAQBhp9wkNbC0TnLgq5tRyo/p1hfSGbq1Kdop8YhR2cw7
W8JNF6P44/Oisd2id36ooJ95sgXjY1MsFqUz7FMb8ZQLqPoO6NoLl1WyPWIlP/1m
xeCL7SxXUh7e+1MmYLPPonXJPKhTgyHJyXrXOIqmYvfsVpah/JGmqsflxt9Tr+sx
zUBkyWtU3tt6bemN85nw7gISddTHcGZPzzWJjkkwB5B/ul6vLb0v0F99xvMtdX8F
fdeYJmdWahkO8Dn44GWQnbeb5vS/Rum+7udSg8yngc63PACLDtBabQ8JOAVVfL7+
pnsIR+UWHWsnzHrIDJ82MZxS1Olx6cOWphIfl51MMLJk
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:22:24 2025 by rpki-client