Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c27300-fb95-49d4-8657-099bf7343e2c/1/Ks0j08Miqy8gEH5S1Tm7Fi0ZVPo.roa
File: Ks0j08Miqy8gEH5S1Tm7Fi0ZVPo.roa (raw, json)
Hash identifier: //+k2vD0voNWKoRB9m0yThV6a9t8IAmFfj8s9K9sYJs=
Subject key identifier: 2A:CD:23:D3:C3:22:AB:2F:20:10:7E:52:D5:39:BB:16:2D:19:54:FA
Certificate issuer: /CN=2445ef0cf2e297489d197370f885d59f89e95aab
Certificate serial: 018BAD96B8F7BD109385FB22A945CBFDBC8B
Authority key identifier: 24:45:EF:0C:F2:E2:97:48:9D:19:73:70:F8:85:D5:9F:89:E9:5A:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JEXvDPLil0idGXNw-IXVn4npWqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c27300-fb95-49d4-8657-099bf7343e2c/1/Ks0j08Miqy8gEH5S1Tm7Fi0ZVPo.roa
Signing time: Wed 08 Nov 2023 06:20:18 +0000
ROA not before: Wed 08 Nov 2023 06:20:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206596
IP address blocks: 185.181.181.0/24 maxlen: 24
185.181.180.128/25 maxlen: 25
185.181.182.0/23 maxlen: 23
185.181.182.0/24 maxlen: 24
185.181.180.0/25 maxlen: 25
185.181.180.0/24 maxlen: 24
185.181.180.0/23 maxlen: 23
185.181.183.0/24 maxlen: 24
185.181.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ad:96:b8:f7:bd:10:93:85:fb:22:a9:45:cb:fd:bc:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2445ef0cf2e297489d197370f885d59f89e95aab
Validity
Not Before: Nov 8 06:20:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2acd23d3c322ab2f20107e52d539bb162d1954fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f4:b0:8f:1d:45:f1:ea:d6:ff:cf:62:0f:d2:
94:25:1e:93:22:ab:77:5f:5d:0d:88:14:c2:47:4a:
9a:77:1e:68:c3:53:0a:2a:0f:34:7b:95:b4:63:76:
b4:e7:3e:13:64:9b:8a:19:f6:18:dd:cc:08:4c:09:
a2:34:97:7d:60:59:b8:76:d2:98:18:10:f6:2d:94:
9c:35:e6:fc:ca:2d:c7:a5:6f:0c:8c:8a:5f:84:65:
35:b2:9c:50:ce:03:60:b7:0f:86:e0:5f:ba:8d:99:
f9:d7:21:f6:b0:34:89:55:dc:11:70:99:56:e0:a1:
2b:a4:07:4d:d1:1f:9f:b9:39:f2:d4:df:9d:0c:fb:
9e:72:86:65:c2:2c:a2:47:38:fc:0d:1b:39:2e:4a:
5a:75:13:a2:26:1c:56:14:f6:79:bd:4b:b1:b6:ce:
e6:88:40:46:57:5f:3a:ec:1e:25:61:24:24:44:fe:
22:ee:17:66:d6:8f:5c:7a:06:d6:08:db:fc:20:08:
3c:dc:0a:12:9c:10:84:e7:f3:f7:fd:a6:3f:9f:c0:
ca:b9:40:af:da:d7:c5:ac:ac:e5:97:0a:60:11:8b:
ab:c3:d0:93:3b:93:0b:a4:9c:b5:6d:33:b2:6a:8f:
ce:44:a2:79:40:e0:37:6a:b5:88:ba:f1:dd:79:f1:
ee:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:CD:23:D3:C3:22:AB:2F:20:10:7E:52:D5:39:BB:16:2D:19:54:FA
X509v3 Authority Key Identifier:
keyid:24:45:EF:0C:F2:E2:97:48:9D:19:73:70:F8:85:D5:9F:89:E9:5A:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JEXvDPLil0idGXNw-IXVn4npWqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c27300-fb95-49d4-8657-099bf7343e2c/1/Ks0j08Miqy8gEH5S1Tm7Fi0ZVPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c27300-fb95-49d4-8657-099bf7343e2c/1/JEXvDPLil0idGXNw-IXVn4npWqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.180.0/22
Signature Algorithm: sha256WithRSAEncryption
14:69:d2:4d:4e:20:82:d4:aa:ac:d7:35:67:da:cb:bd:e3:24:
d2:34:a4:fa:e8:59:9b:08:4b:23:f3:8f:fe:ab:f8:73:19:24:
d6:50:ad:1c:e4:19:a7:87:77:cf:79:c8:01:2a:b1:ba:e9:17:
b1:7a:88:55:35:0c:7b:2a:1b:b6:d7:8b:60:d4:21:da:93:33:
27:66:22:b0:eb:06:8f:2e:88:91:f6:51:d1:23:d8:79:12:40:
d7:f9:38:9b:84:33:79:c1:fc:bf:ba:2a:3e:ce:a0:8a:5c:23:
18:73:49:88:62:67:d8:d2:5d:d0:2d:f1:3a:a1:db:93:bd:3e:
05:2c:91:e7:8e:a3:4a:22:97:9f:9d:7f:0e:23:d8:20:57:a8:
15:a7:5f:8f:09:4a:90:c1:e2:94:4c:4a:3b:ec:9b:94:2b:dc:
0b:58:26:c9:3b:26:60:e9:8b:75:34:6e:ae:8f:4b:da:64:cb:
f8:b4:96:8a:2f:1f:f6:83:8c:6a:21:2c:5a:37:b6:70:d7:30:
3a:74:59:d5:57:72:04:03:5e:a1:29:08:c2:c0:40:bc:53:f1:
36:24:3a:a7:8b:26:33:81:05:8e:d4:af:88:50:1e:a9:b7:56:
b4:79:35:61:99:67:d6:04:a3:5c:59:b9:68:6b:8f:f1:3a:16:
ba:4e:3a:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYutlrj3vRCThfsiqUXL/byLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0NDVlZjBjZjJlMjk3NDg5ZDE5NzM3MGY4ODVkNTlmODll
OTVhYWIwHhcNMjMxMTA4MDYyMDE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYWNkMjNkM2MzMjJhYjJmMjAxMDdlNTJkNTM5YmIxNjJkMTk1NGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhvSwjx1F8erW/89iD9KUJR6TIqt3
X10NiBTCR0qadx5ow1MKKg80e5W0Y3a05z4TZJuKGfYY3cwITAmiNJd9YFm4dtKY
GBD2LZScNeb8yi3HpW8MjIpfhGU1spxQzgNgtw+G4F+6jZn51yH2sDSJVdwRcJlW
4KErpAdN0R+fuTny1N+dDPuecoZlwiyiRzj8DRs5LkpadROiJhxWFPZ5vUuxts7m
iEBGV1867B4lYSQkRP4i7hdm1o9cegbWCNv8IAg83AoSnBCE5/P3/aY/n8DKuUCv
2tfFrKzllwpgEYurw9CTO5MLpJy1bTOyao/ORKJ5QOA3arWIuvHdefHu0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCrNI9PDIqsvIBB+UtU5uxYtGVT6MB8GA1UdIwQY
MBaAFCRF7wzy4pdInRlzcPiF1Z+J6VqrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkVYdkRQTGlsMGlkR1hOdy1JWFZuNG5wV3FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jMjczMDAtZmI5NS00OWQ0LTg2NTct
MDk5YmY3MzQzZTJjLzEvS3MwajA4TWlxeThnRUg1UzFUbTdGaTBaVlBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9jMjczMDAtZmI5NS00OWQ0LTg2NTctMDk5YmY3MzQzZTJj
LzEvSkVYdkRQTGlsMGlkR1hOdy1JWFZuNG5wV3FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubW0MA0G
CSqGSIb3DQEBCwUAA4IBAQAUadJNTiCC1Kqs1zVn2su94yTSNKT66FmbCEsj84/+
q/hzGSTWUK0c5Bmnh3fPecgBKrG66RexeohVNQx7Khu214tg1CHakzMnZiKw6waP
LoiR9lHRI9h5EkDX+TibhDN5wfy/uio+zqCKXCMYc0mIYmfY0l3QLfE6oduTvT4F
LJHnjqNKIpefnX8OI9ggV6gVp1+PCUqQweKUTEo77JuUK9wLWCbJOyZg6Yt1NG6u
j0vaZMv4tJaKLx/2g4xqISxaN7Zw1zA6dFnVV3IEA16hKQjCwEC8U/E2JDqniyYz
gQWO1K+IUB6pt1a0eTVhmWfWBKNcWbloa4/xOha6Tjri
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:52 2024 by rpki-client on console-ams.rpki-client.org