Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/361bae-ab14-4aab-bb8f-7418b92aa209/1/vat6U3otGnDGBJnItVXM2tft0OI.roa
File: vat6U3otGnDGBJnItVXM2tft0OI.roa (raw, json)
Hash identifier: TmiAIR6d5M5Mi6aKyhLic2jH41UlbBCLzDBShB/0Ngc=
Subject key identifier: BD:AB:7A:53:7A:2D:1A:70:C6:04:99:C8:B5:55:CC:DA:D7:ED:D0:E2
Certificate issuer: /CN=c0520cecba251cd37cdf3c4d5ab03625522bbaac
Certificate serial: 01856D2F3C232D5657E766CC2A20DD390F0C
Authority key identifier: C0:52:0C:EC:BA:25:1C:D3:7C:DF:3C:4D:5A:B0:36:25:52:2B:BA:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wFIM7LolHNN83zxNWrA2JVIruqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/361bae-ab14-4aab-bb8f-7418b92aa209/1/vat6U3otGnDGBJnItVXM2tft0OI.roa
Signing time: Sun 01 Jan 2023 11:54:50 +0000
ROA not before: Sun 01 Jan 2023 11:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.179.150.0/24 maxlen: 24
185.179.151.0/24 maxlen: 24
185.240.125.0/24 maxlen: 24
185.231.166.0/24 maxlen: 24
185.231.165.0/24 maxlen: 24
185.240.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:3c:23:2d:56:57:e7:66:cc:2a:20:dd:39:0f:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0520cecba251cd37cdf3c4d5ab03625522bbaac
Validity
Not Before: Jan 1 11:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdab7a537a2d1a70c60499c8b555ccdad7edd0e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ad:d8:f6:28:7e:0b:54:08:dc:05:05:53:b4:
9a:c9:03:65:c0:69:ee:20:d1:d5:ea:13:55:eb:6b:
a1:fd:bf:55:d7:85:da:be:ca:e9:a0:dd:17:cd:83:
74:8e:dc:e0:9a:37:fd:cb:69:06:ee:fa:f4:50:53:
73:1c:8d:91:44:73:de:94:27:0f:c3:71:01:9a:a9:
ed:33:ec:22:2e:cd:5f:78:13:3b:f0:cd:a2:3f:d4:
03:c4:b0:c2:62:c7:48:a9:5b:e6:6c:bb:22:91:e8:
e6:1e:6b:47:a5:d8:e4:f9:79:d7:e8:ee:8b:01:28:
e0:2a:38:c4:1c:bf:af:97:8d:dc:ec:e9:72:20:32:
13:1d:47:de:7d:8b:fb:31:7f:0d:c6:7e:d7:14:44:
de:64:bd:95:69:9c:f8:b2:c6:2b:99:ac:48:e8:a0:
e6:5d:0e:c2:f6:83:6b:91:7a:f2:29:31:c9:d7:b4:
eb:c9:9d:af:40:5a:f5:f8:13:70:0a:3e:b0:bc:61:
f3:ef:12:69:53:55:6f:2e:e4:f9:a6:b4:01:d9:9e:
50:70:ab:e1:fe:ab:a0:9c:bd:72:d6:7a:aa:a3:ea:
f6:72:88:c4:c9:e4:48:02:06:ad:df:c6:7e:bd:b9:
f9:d3:08:98:cf:c8:d5:4b:47:ee:c6:4f:a4:ee:82:
e7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:AB:7A:53:7A:2D:1A:70:C6:04:99:C8:B5:55:CC:DA:D7:ED:D0:E2
X509v3 Authority Key Identifier:
keyid:C0:52:0C:EC:BA:25:1C:D3:7C:DF:3C:4D:5A:B0:36:25:52:2B:BA:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wFIM7LolHNN83zxNWrA2JVIruqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/361bae-ab14-4aab-bb8f-7418b92aa209/1/vat6U3otGnDGBJnItVXM2tft0OI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/361bae-ab14-4aab-bb8f-7418b92aa209/1/wFIM7LolHNN83zxNWrA2JVIruqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.150.0/23
185.231.165.0-185.231.166.255
185.240.125.0/24
185.240.127.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:97:92:ba:4c:66:74:9b:7b:17:db:80:15:71:0e:79:fd:ea:
4f:70:f1:bf:6f:7c:db:6f:75:e2:c1:c2:a4:ba:b1:e3:ea:5b:
3e:7b:c0:fc:db:bb:c0:c0:ae:54:fe:0d:28:db:67:4a:31:ed:
9c:40:74:a0:85:b6:46:42:4f:98:05:87:00:a2:d6:1e:11:7b:
58:a1:13:06:92:c6:ff:da:4a:51:6a:57:e4:c4:31:01:dc:0c:
fa:8f:63:63:4e:fd:ae:c9:fd:70:7e:66:c3:42:fa:44:d1:5f:
4b:9d:ca:0b:25:7e:d7:69:19:49:8a:8d:5b:6a:35:d7:a5:21:
9d:d0:82:ea:6f:80:89:be:43:37:3d:2f:7b:e5:27:a6:8b:27:
37:aa:c7:77:eb:db:cb:12:6e:d9:dd:a1:34:25:62:13:31:7d:
b5:2b:a1:bd:cc:6e:41:4d:f7:3a:3a:ba:6d:78:0b:7a:99:19:
ab:c4:82:e7:e4:61:9c:1d:cf:ca:2c:c9:78:36:b6:f5:de:a8:
a6:75:02:84:ae:c2:ad:71:a2:b6:0b:21:ba:e1:d3:a5:e6:3a:
d9:f3:cd:97:24:d7:7c:39:fe:d4:22:f7:3b:a0:df:03:1d:3b:
64:25:f7:7b:9f:95:bd:50:57:ae:25:a4:68:e5:0d:66:1e:8c:
18:b6:0d:86
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYVtLzwjLVZX52bMKiDdOQ8MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwNTIwY2VjYmEyNTFjZDM3Y2RmM2M0ZDVhYjAzNjI1NTIy
YmJhYWMwHhcNMjMwMTAxMTE1NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZGFiN2E1MzdhMmQxYTcwYzYwNDk5YzhiNTU1Y2NkYWQ3ZWRkMGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn63Y9ih+C1QI3AUFU7SayQNlwGnu
INHV6hNV62uh/b9V14XavsrpoN0XzYN0jtzgmjf9y2kG7vr0UFNzHI2RRHPelCcP
w3EBmqntM+wiLs1feBM78M2iP9QDxLDCYsdIqVvmbLsikejmHmtHpdjk+XnX6O6L
ASjgKjjEHL+vl43c7OlyIDITHUfefYv7MX8Nxn7XFETeZL2VaZz4ssYrmaxI6KDm
XQ7C9oNrkXryKTHJ17TryZ2vQFr1+BNwCj6wvGHz7xJpU1VvLuT5prQB2Z5QcKvh
/qugnL1y1nqqo+r2cojEyeRIAgat38Z+vbn50wiYz8jVS0fuxk+k7oLnaQIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFL2relN6LRpwxgSZyLVVzNrX7dDiMB8GA1UdIwQY
MBaAFMBSDOy6JRzTfN88TVqwNiVSK7qsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0ZJTTdMb2xITk44M3p4TldyQTJKVklydXF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi8zNjFiYWUtYWIxNC00YWFiLWJiOGYt
NzQxOGI5MmFhMjA5LzEvdmF0NlUzb3RHbkRHQkpuSXRWWE0ydGZ0ME9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi8zNjFiYWUtYWIxNC00YWFiLWJiOGYtNzQxOGI5MmFhMjA5
LzEvd0ZJTTdMb2xITk44M3p4TldyQTJKVklydXF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQBubOWMAwD
BAC556UDBAC556YDBAC58H0DBAC58H8wDQYJKoZIhvcNAQELBQADggEBALiXkrpM
ZnSbexfbgBVxDnn96k9w8b9vfNtvdeLBwqS6sePqWz57wPzbu8DArlT+DSjbZ0ox
7ZxAdKCFtkZCT5gFhwCi1h4Re1ihEwaSxv/aSlFqV+TEMQHcDPqPY2NO/a7J/XB+
ZsNC+kTRX0udygslftdpGUmKjVtqNdelIZ3QgupvgIm+Qzc9L3vlJ6aLJzeqx3fr
28sSbtndoTQlYhMxfbUrob3MbkFN9zo6um14C3qZGavEgufkYZwdz8osyXg2tvXe
qKZ1AoSuwq1xorYLIbrh06XmOtnzzZck13w5/tQi9zug3wMdO2Ql93uflb1QV64l
pGjlDWYejBi2DYY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:29 2024 by rpki-client on console-fra.rpki-client.org