Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/mBtNxBFtleJdVv1DlUFFbrvdf80.roa
File: mBtNxBFtleJdVv1DlUFFbrvdf80.roa (raw, json)
Hash identifier: RIs1A9AF497ScsZSLjT0u1pOkecLlEeciUT1fh6nraw=
Subject key identifier: 98:1B:4D:C4:11:6D:95:E2:5D:56:FD:43:95:41:45:6E:BB:DD:7F:CD
Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Certificate serial: 018B941F387B5A28FC11A51889BB82AE5E68
Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/mBtNxBFtleJdVv1DlUFFbrvdf80.roa
Signing time: Fri 03 Nov 2023 07:39:15 +0000
ROA not before: Fri 03 Nov 2023 07:39:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216097
IP address blocks: 185.188.18.0/24 maxlen: 24
2a0a:d6c0:185::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:1f:38:7b:5a:28:fc:11:a5:18:89:bb:82:ae:5e:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Validity
Not Before: Nov 3 07:39:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=981b4dc4116d95e25d56fd439541456ebbdd7fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:da:1e:e2:d3:5f:f0:c8:c7:5c:2e:86:27:02:
ea:48:72:5d:52:f8:e9:c7:fc:de:b8:77:52:2a:d6:
4d:b7:80:1f:f5:82:d7:59:b5:5f:85:c7:55:4c:1d:
1b:00:6b:46:01:4b:40:c8:22:5b:fd:09:62:4e:c4:
f7:a6:00:6e:64:fe:ea:d1:ca:4a:39:81:e1:1d:c8:
ee:2b:f5:7d:12:a4:7e:70:41:10:1a:ab:5c:81:b8:
2e:45:e7:ae:ad:ec:22:fa:14:3d:6b:69:a4:10:80:
b8:c1:8f:40:33:e8:02:4b:ca:94:bf:ad:dc:ce:02:
7b:91:bf:c4:97:2a:0e:d2:52:f0:77:70:eb:ee:4d:
94:b7:73:0c:f7:0f:2b:46:56:88:99:2f:4e:4e:9f:
45:9b:73:84:ee:5f:3d:7d:0f:fb:04:11:52:bc:08:
31:77:4a:36:66:58:34:f3:64:1c:d4:7e:be:87:7b:
24:a1:5d:2e:70:51:e4:7f:d0:36:f7:42:e2:c7:26:
07:3b:e5:97:50:65:9c:20:d0:e1:cd:8a:aa:65:ae:
fe:c1:dc:df:d2:b9:cf:6c:68:7b:d4:96:f8:d6:9f:
ce:15:9c:2f:a6:68:24:cf:ff:cf:d4:e3:79:10:ab:
da:8d:65:d1:82:62:e4:16:b2:df:2a:8b:f2:42:dd:
62:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1B:4D:C4:11:6D:95:E2:5D:56:FD:43:95:41:45:6E:BB:DD:7F:CD
X509v3 Authority Key Identifier:
keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/mBtNxBFtleJdVv1DlUFFbrvdf80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.18.0/24
IPv6:
2a0a:d6c0:185::/48
Signature Algorithm: sha256WithRSAEncryption
47:98:2d:89:96:d5:fa:d3:0d:cd:e5:bd:b2:3c:6b:b3:7d:0f:
ad:b7:43:65:6c:08:15:39:36:a0:88:4f:b7:b3:98:d2:38:8d:
c7:be:4b:3b:4a:47:c1:7a:0b:93:cd:96:54:35:8a:9f:d1:0c:
c3:f0:6a:0a:36:68:ee:43:40:61:bf:8d:c5:86:f7:a6:00:72:
6f:96:8d:0d:90:23:d5:17:a2:c9:8f:b7:39:f7:21:c0:2f:d6:
7a:99:04:eb:1a:13:97:f9:39:e2:aa:96:d4:42:a7:a0:22:b4:
db:60:bc:fc:69:4b:3b:63:0e:4c:94:72:30:7e:d5:4a:9d:23:
f2:1a:ff:39:8e:26:1f:a3:4a:aa:68:bc:fc:ec:6d:04:0e:62:
d2:c1:0c:34:ef:20:1a:4b:31:e1:02:d8:da:b2:f5:6f:05:4c:
64:53:f3:fe:59:08:fe:68:27:7c:5d:60:e2:7a:11:bc:c3:6b:
1e:ff:f9:f5:1f:3d:49:18:aa:91:ed:64:de:b6:3d:b0:4d:8c:
4a:55:55:7c:ac:30:5f:70:f4:57:cc:fd:25:3b:7c:0c:60:ff:
4b:a7:0d:53:f9:95:7d:a6:3c:96:c3:0b:b9:07:52:0e:83:20:
35:21:08:5c:f0:20:64:57:9e:03:71:34:b7:00:ac:95:47:f2:
dd:75:68:e2
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYuUHzh7Wij8EaUYibuCrl5oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm
OGNiZDgwHhcNMjMxMTAzMDczOTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODFiNGRjNDExNmQ5NWUyNWQ1NmZkNDM5NTQxNDU2ZWJiZGQ3ZmNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl9oe4tNf8MjHXC6GJwLqSHJdUvjp
x/zeuHdSKtZNt4Af9YLXWbVfhcdVTB0bAGtGAUtAyCJb/QliTsT3pgBuZP7q0cpK
OYHhHcjuK/V9EqR+cEEQGqtcgbguReeurewi+hQ9a2mkEIC4wY9AM+gCS8qUv63c
zgJ7kb/ElyoO0lLwd3Dr7k2Ut3MM9w8rRlaImS9OTp9Fm3OE7l89fQ/7BBFSvAgx
d0o2Zlg082Qc1H6+h3skoV0ucFHkf9A290LixyYHO+WXUGWcINDhzYqqZa7+wdzf
0rnPbGh71Jb41p/OFZwvpmgkz//P1ON5EKvajWXRgmLkFrLfKovyQt1iWwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJgbTcQRbZXiXVb9Q5VBRW673X/NMB8GA1UdIwQY
MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt
NjA5YTQ4YjJiMTRkLzEvbUJ0TnhCRnRsZUpkVnYxRGxVRkZicnZkZjgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk
LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAubwSMA8E
AgACMAkDBwAqCtbAAYUwDQYJKoZIhvcNAQELBQADggEBAEeYLYmW1frTDc3lvbI8
a7N9D623Q2VsCBU5NqCIT7ezmNI4jce+SztKR8F6C5PNllQ1ip/RDMPwago2aO5D
QGG/jcWG96YAcm+WjQ2QI9UXosmPtzn3IcAv1nqZBOsaE5f5OeKqltRCp6AitNtg
vPxpSztjDkyUcjB+1UqdI/Ia/zmOJh+jSqpovPzsbQQOYtLBDDTvIBpLMeEC2Nqy
9W8FTGRT8/5ZCP5oJ3xdYOJ6EbzDax7/+fUfPUkYqpHtZN62PbBNjEpVVXysMF9w
9FfM/SU7fAxg/0unDVP5lX2mPJbDC7kHUg6DIDUhCFzwIGRXngNxNLcArJVH8t11
aOI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:38 2024 by rpki-client on console-fra.rpki-client.org