Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/sSLPMOncfyFSF58hoII7sPzpJ_E.roa
File: sSLPMOncfyFSF58hoII7sPzpJ_E.roa (raw, json)
Hash identifier: hp3w7bEY6A169yiZInb9TJu7ilfVVIKmhFVZ8PDcTUM=
Subject key identifier: B1:22:CF:30:E9:DC:7F:21:52:17:9F:21:A0:82:3B:B0:FC:E9:27:F1
Certificate issuer: /CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c
Certificate serial: 0185708CD8760C70BFB3EE6C228BB1C42981
Authority key identifier: 1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/sSLPMOncfyFSF58hoII7sPzpJ_E.roa
Signing time: Mon 02 Jan 2023 03:35:56 +0000
ROA not before: Mon 02 Jan 2023 03:35:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205944
IP address blocks: 185.250.96.0/24 maxlen: 24
185.250.98.0/24 maxlen: 24
185.250.97.0/24 maxlen: 24
185.250.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:d8:76:0c:70:bf:b3:ee:6c:22:8b:b1:c4:29:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c
Validity
Not Before: Jan 2 03:35:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b122cf30e9dc7f2152179f21a0823bb0fce927f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:93:2c:ec:4c:84:0d:78:95:1a:75:00:7e:e2:
b2:41:23:7c:67:b1:12:81:79:cf:2d:36:a0:32:39:
0e:86:08:87:66:17:88:ea:30:59:23:54:d6:0f:d7:
f9:43:88:44:2a:48:55:b3:7f:3e:4f:c7:ec:df:d5:
84:42:7e:79:ff:02:40:d3:0f:7f:e0:e3:dd:1d:39:
9a:21:f8:47:9f:6b:9d:56:5c:7f:80:ff:cf:c8:5f:
0b:9b:4d:f6:37:38:00:5a:30:ba:8a:21:ba:7e:18:
3b:5c:22:96:0e:3b:6b:8e:d9:5a:dc:0d:64:6c:de:
76:38:3f:8f:64:ed:c2:5b:88:58:32:1b:5a:89:e2:
97:04:dd:c4:83:8b:d1:d8:56:e6:ae:f7:51:a9:aa:
30:95:5a:be:e8:80:26:ff:e0:30:20:3d:c9:ac:25:
63:4d:d1:07:b8:1d:9c:bd:5f:be:a2:c2:7b:33:6d:
d6:de:fd:37:2a:ba:7f:9b:db:85:a1:a3:17:c5:b4:
cf:0a:c2:b5:37:30:9c:1d:4b:f3:e8:7f:ad:8f:74:
fc:dc:47:54:96:56:cb:ca:2f:05:79:d0:98:b7:fb:
49:a7:e5:47:f9:4f:8c:6b:a7:ab:1b:c2:d2:85:88:
f4:aa:2d:c5:a3:84:97:51:77:42:bf:ea:f7:cd:26:
cc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:22:CF:30:E9:DC:7F:21:52:17:9F:21:A0:82:3B:B0:FC:E9:27:F1
X509v3 Authority Key Identifier:
keyid:1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/sSLPMOncfyFSF58hoII7sPzpJ_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.96.0/22
Signature Algorithm: sha256WithRSAEncryption
69:e9:83:14:e9:27:b3:99:1f:a8:b2:df:ab:e2:dc:51:ef:d2:
61:ac:7e:ca:8a:33:ba:3b:15:26:e3:d8:a6:11:fc:b8:19:91:
6e:28:12:e6:4e:29:f5:f3:df:58:0b:0f:5a:a7:dc:19:7c:06:
c7:ad:93:18:36:ed:11:e2:13:cc:da:0d:f9:dc:01:86:6b:2d:
ab:81:6b:b0:41:48:19:90:e4:f6:1a:40:6e:7e:76:f3:1b:cb:
cb:4d:b5:21:21:68:14:92:16:41:4a:41:7b:35:8f:ad:e0:a5:
37:5a:06:c8:6b:75:0b:f9:bf:1b:a6:79:9c:28:12:46:7b:8a:
6a:90:63:23:6b:2a:d5:e0:b3:95:77:0b:46:0b:87:ea:1e:51:
ec:a0:d1:fa:50:78:e7:14:87:17:3e:43:e1:21:99:a6:2a:8b:
2f:b3:5f:03:77:b2:d3:e5:c2:cd:ce:91:db:0d:1c:e5:ab:04:
2e:fd:cc:48:b7:58:cc:cb:b6:09:5c:ed:b6:d8:c7:22:6d:91:
8d:ba:f9:e9:e3:5e:f8:4d:b3:bd:35:c5:df:9a:6b:64:e6:36:
32:d5:8a:ee:56:a5:60:1f:0f:b4:2e:9c:b5:7b:61:c4:fc:d0:
18:b0:1d:cd:4c:cd:4a:c5:b4:b8:67:8e:b5:bf:a5:f2:24:03:
83:72:19:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwjNh2DHC/s+5sIouxxCmBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlZDkzMDg0Y2VjNDQ5YmVkOGE2ZmMwMDhiYzdkZDk5NWVi
MzczMWMwHhcNMjMwMTAyMDMzNTU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTIyY2YzMGU5ZGM3ZjIxNTIxNzlmMjFhMDgyM2JiMGZjZTkyN2YxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZMs7EyEDXiVGnUAfuKyQSN8Z7ES
gXnPLTagMjkOhgiHZheI6jBZI1TWD9f5Q4hEKkhVs38+T8fs39WEQn55/wJA0w9/
4OPdHTmaIfhHn2udVlx/gP/PyF8Lm032NzgAWjC6iiG6fhg7XCKWDjtrjtla3A1k
bN52OD+PZO3CW4hYMhtaieKXBN3Eg4vR2FbmrvdRqaowlVq+6IAm/+AwID3JrCVj
TdEHuB2cvV++osJ7M23W3v03Krp/m9uFoaMXxbTPCsK1NzCcHUvz6H+tj3T83EdU
llbLyi8FedCYt/tJp+VH+U+Ma6erG8LShYj0qi3Fo4SXUXdCv+r3zSbMsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLEizzDp3H8hUhefIaCCO7D86SfxMB8GA1UdIwQY
MBaAFB7ZMITOxEm+2Kb8AIvH3Zles3McMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHRrd2hNN0VTYjdZcHZ3QWk4ZmRtVjZ6Y3h3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9mMGI3MjMtNzdmMS00NGMwLThmY2Et
N2M2NDY3OTUwOTBiLzEvc1NMUE1PbmNmeUZTRjU4aG9JSTdzUHpwSl9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS9mMGI3MjMtNzdmMS00NGMwLThmY2EtN2M2NDY3OTUwOTBi
LzEvSHRrd2hNN0VTYjdZcHZ3QWk4ZmRtVjZ6Y3h3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufpgMA0G
CSqGSIb3DQEBCwUAA4IBAQBp6YMU6SezmR+ost+r4txR79JhrH7KijO6OxUm49im
Efy4GZFuKBLmTin1899YCw9ap9wZfAbHrZMYNu0R4hPM2g353AGGay2rgWuwQUgZ
kOT2GkBufnbzG8vLTbUhIWgUkhZBSkF7NY+t4KU3WgbIa3UL+b8bpnmcKBJGe4pq
kGMjayrV4LOVdwtGC4fqHlHsoNH6UHjnFIcXPkPhIZmmKosvs18Dd7LT5cLNzpHb
DRzlqwQu/cxIt1jMy7YJXO222McibZGNuvnp4174TbO9NcXfmmtk5jYy1YruVqVg
Hw+0Lpy1e2HE/NAYsB3NTM1KxbS4Z461v6XyJAODchm5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:02 2024 by rpki-client on console-ams.rpki-client.org