Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4K6HQgitiHb79aPQYziIszcTeRU.roa
File: 4K6HQgitiHb79aPQYziIszcTeRU.roa (raw, json)
Hash identifier: XgrtTSlNTWG4tD2bq2vsZMUB3NVzA0Yu5NjOUeAXBHk=
Subject key identifier: E0:AE:87:42:08:AD:88:76:FB:F5:A3:D0:63:38:88:B3:37:13:79:15
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0185964DCED4A29D35EC9A0A9BEFB0F55F3D
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4K6HQgitiHb79aPQYziIszcTeRU.roa
Signing time: Mon 09 Jan 2023 11:32:39 +0000
ROA not before: Mon 09 Jan 2023 11:32:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 185.225.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Oct 2023 14:22:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:4d:ce:d4:a2:9d:35:ec:9a:0a:9b:ef:b0:f5:5f:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 9 11:32:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0ae874208ad8876fbf5a3d0633888b337137915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a7:fc:df:0c:57:5e:09:d0:81:4d:4a:4c:ae:
8e:fa:f7:2a:cf:6c:0d:4d:72:30:42:01:92:95:ef:
ea:10:f8:46:dd:d4:69:b3:9b:74:1d:5d:3b:0b:39:
67:b3:3f:2e:9d:7b:1d:7c:62:79:4f:02:7a:f7:bb:
d1:79:ed:e0:87:f7:19:39:35:ac:14:be:d2:02:01:
ca:52:56:27:68:5c:05:9e:3a:f9:55:00:81:23:eb:
48:15:c8:85:57:d8:d5:37:56:5f:a1:39:9a:1e:d4:
73:5f:30:19:76:e2:60:4a:c3:03:bb:7c:4c:fe:22:
87:2a:54:d8:15:3b:0a:32:04:c2:b3:a6:8e:fd:54:
52:1e:c1:c7:1c:7c:44:d7:9f:4a:40:7b:64:e6:6b:
0f:87:0e:a1:21:9f:a3:22:36:4f:9d:8e:b9:1c:ea:
26:28:53:89:00:de:c8:d4:c2:69:18:b1:95:d4:e5:
2e:f8:47:e4:c8:68:07:33:b7:ee:13:27:c1:bc:9d:
6d:01:5e:d1:b8:cf:db:f4:bd:22:2f:01:10:87:a4:
ff:9f:f3:01:12:ca:5a:04:63:9f:fd:79:cf:a4:05:
9b:93:ac:63:b0:2b:54:30:52:69:fe:3e:e0:9b:ec:
e7:e2:e5:b5:c5:6e:47:7e:a3:ab:b2:13:da:2d:a9:
2a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:AE:87:42:08:AD:88:76:FB:F5:A3:D0:63:38:88:B3:37:13:79:15
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4K6HQgitiHb79aPQYziIszcTeRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.1.0/24
Signature Algorithm: sha256WithRSAEncryption
66:ac:33:23:5e:9b:ca:58:d1:6e:38:a5:7f:58:f8:05:d5:f6:
b4:b3:4e:57:d0:d4:a9:a5:8d:83:81:08:29:10:42:ef:71:53:
d7:4f:75:c2:a3:41:99:4c:f8:92:39:ff:b1:bf:c4:6c:13:52:
f4:88:f0:fc:26:ad:77:e4:26:1a:3e:fd:86:79:dd:62:0c:6b:
97:57:bb:63:0f:68:8f:e8:66:f9:df:d8:a0:62:3a:07:38:0b:
f1:43:a9:0d:d6:50:a1:fb:d4:25:f6:1e:21:16:96:06:c0:fa:
33:bf:5b:ba:1f:06:86:a1:6e:4a:1a:7b:6d:24:e3:d1:46:11:
22:17:1c:f7:00:4a:74:c8:5e:86:2a:db:24:13:4f:af:cd:c5:
6f:21:fc:03:8c:03:0f:2c:c5:a4:ba:56:8e:10:df:6c:aa:e6:
2b:4b:79:e7:59:2b:86:43:61:c7:94:7d:a5:47:5d:07:c3:df:
9b:6b:fd:03:ea:82:ad:f6:86:4d:7b:63:b7:4b:d7:d9:3d:f7:
24:cb:05:46:4e:ec:b9:d6:eb:1b:d7:68:c1:5c:40:b1:d3:23:
23:2c:a6:69:04:05:73:43:1e:c2:38:36:ef:d7:db:c0:68:61:
f7:e3:cc:c3:e2:86:c2:29:e5:cd:be:03:ff:47:92:80:a3:7c:
a3:c1:bd:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWWTc7Uop017JoKm++w9V89MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwMTA5MTEzMjM5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMGFlODc0MjA4YWQ4ODc2ZmJmNWEzZDA2MzM4ODhiMzM3MTM3OTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6f83wxXXgnQgU1KTK6O+vcqz2wN
TXIwQgGSle/qEPhG3dRps5t0HV07Czlnsz8unXsdfGJ5TwJ697vRee3gh/cZOTWs
FL7SAgHKUlYnaFwFnjr5VQCBI+tIFciFV9jVN1ZfoTmaHtRzXzAZduJgSsMDu3xM
/iKHKlTYFTsKMgTCs6aO/VRSHsHHHHxE159KQHtk5msPhw6hIZ+jIjZPnY65HOom
KFOJAN7I1MJpGLGV1OUu+EfkyGgHM7fuEyfBvJ1tAV7RuM/b9L0iLwEQh6T/n/MB
EspaBGOf/XnPpAWbk6xjsCtUMFJp/j7gm+zn4uW1xW5HfqOrshPaLakqrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOCuh0IIrYh2+/Wj0GM4iLM3E3kVMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvNEs2SFFnaXRpSGI3OWFQUVl6aUlzemNUZVJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueEBMA0G
CSqGSIb3DQEBCwUAA4IBAQBmrDMjXpvKWNFuOKV/WPgF1fa0s05X0NSppY2DgQgp
EELvcVPXT3XCo0GZTPiSOf+xv8RsE1L0iPD8Jq135CYaPv2Ged1iDGuXV7tjD2iP
6Gb539igYjoHOAvxQ6kN1lCh+9Ql9h4hFpYGwPozv1u6HwaGoW5KGnttJOPRRhEi
Fxz3AEp0yF6GKtskE0+vzcVvIfwDjAMPLMWkulaOEN9squYrS3nnWSuGQ2HHlH2l
R10Hw9+ba/0D6oKt9oZNe2O3S9fZPfckywVGTuy51usb12jBXECx0yMjLKZpBAVz
Qx7CODbv19vAaGH348zD4obCKeXNvgP/R5KAo3yjwb1S
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org