Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8h78YKsk-0kP4uqL6bEq_iEvUb4.roa
File: 8h78YKsk-0kP4uqL6bEq_iEvUb4.roa (raw, json)
Hash identifier: Zx3VpOqTdFp+1FDp8wkqqB2JLGQdECAhYzxwstCKS40=
Subject key identifier: F2:1E:FC:60:AB:24:FB:49:0F:E2:EA:8B:E9:B1:2A:FE:21:2F:51:BE
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B62AD9A81539E8C184BCEFDDC5FDF0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8h78YKsk-0kP4uqL6bEq_iEvUb4.roa
Signing time: Mon 02 Jan 2023 09:00:41 +0000
ROA not before: Mon 02 Jan 2023 09:00:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 185.238.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 10:44:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:2a:d9:a8:15:39:e8:c1:84:bc:ef:dd:c5:fd:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f21efc60ab24fb490fe2ea8be9b12afe212f51be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ed:c1:fa:cd:09:f8:83:71:2c:1e:f7:9b:4e:
98:62:92:e0:56:b2:e4:26:49:32:8f:34:8d:ce:72:
14:4c:75:63:25:f2:b5:2f:00:b3:9f:ab:c9:5d:14:
ff:c0:84:e8:71:2c:a1:bc:2e:1e:b9:83:4b:66:ec:
70:f2:63:71:9f:53:e1:27:58:ac:9f:2a:d6:e2:7e:
be:0d:d3:4b:f3:51:d3:fd:03:2b:3c:3f:db:c0:a6:
05:a2:30:e0:b9:75:79:65:87:a0:36:a3:ff:55:e5:
53:74:c7:c3:5e:88:e4:24:4d:3c:be:1c:24:70:21:
5b:36:d5:ae:6e:bd:1a:47:60:f8:31:bf:f4:fa:51:
3d:2f:ca:68:66:74:41:d5:0b:e6:58:46:d3:20:ba:
ff:be:f7:93:48:48:4d:fd:37:1b:b8:0e:95:ed:fc:
89:6e:25:7a:d1:01:ee:9f:cb:c0:28:3b:26:4b:e1:
64:8f:f8:d6:84:c8:b3:7a:72:75:bd:79:74:f1:db:
10:4a:5b:f8:6e:77:28:82:4b:08:a2:3c:48:7b:f0:
83:16:47:7b:fe:8b:fd:88:3a:1b:78:0e:a8:49:8d:
7e:5c:5a:43:96:51:a4:5f:dc:06:3e:23:ba:59:2f:
ff:f2:d0:d8:15:1d:1d:19:75:4c:6a:ec:65:ef:78:
0a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:1E:FC:60:AB:24:FB:49:0F:E2:EA:8B:E9:B1:2A:FE:21:2F:51:BE
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8h78YKsk-0kP4uqL6bEq_iEvUb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.229.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:9c:56:63:9f:4e:45:46:44:f8:68:a6:f1:d2:94:6c:95:54:
c7:30:54:a8:82:95:61:5a:ae:ba:4f:f1:9f:35:fd:cc:e0:92:
c7:35:69:be:95:88:bd:7b:90:e4:8f:55:4f:5d:65:08:02:21:
32:67:c1:f3:ec:8b:66:a4:79:2c:40:ae:84:b6:1e:33:69:a4:
80:c2:52:91:b9:fb:74:43:da:66:6f:47:19:fb:03:e7:20:1c:
ec:cb:78:89:ed:b6:40:b5:10:f9:58:33:df:47:16:53:e9:df:
43:af:d5:e7:15:8b:d9:df:2f:87:29:03:39:b8:27:3f:1c:9d:
33:64:a1:1f:51:ef:41:2c:a3:80:47:6b:83:2d:25:78:57:7f:
cd:6b:9f:77:f9:22:3f:20:5a:b8:bc:db:e5:af:ac:91:75:d9:
b8:5c:ea:4f:78:5e:9f:ae:f3:fc:ea:27:3b:18:5a:43:95:f5:
b7:79:94:17:29:dc:88:b5:04:cd:f5:29:bd:d3:ab:8a:81:80:
67:6c:69:bd:5d:ab:bb:05:09:ff:15:c5:84:2d:a9:a4:c3:2c:
69:c3:72:93:5f:b7:0c:a7:7d:cd:4d:d0:a0:4c:8d:77:a7:46:
b3:88:a2:9e:a2:15:c2:94:47:29:f3:55:d3:c4:ff:80:bf:5d:
16:3b:3a:70
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxtirZqBU56MGEvO/dxf3wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwMTAyMDkwMDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjFlZmM2MGFiMjRmYjQ5MGZlMmVhOGJlOWIxMmFmZTIxMmY1MWJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+3B+s0J+INxLB73m06YYpLgVrLk
JkkyjzSNznIUTHVjJfK1LwCzn6vJXRT/wITocSyhvC4euYNLZuxw8mNxn1PhJ1is
nyrW4n6+DdNL81HT/QMrPD/bwKYFojDguXV5ZYegNqP/VeVTdMfDXojkJE08vhwk
cCFbNtWubr0aR2D4Mb/0+lE9L8poZnRB1QvmWEbTILr/vveTSEhN/TcbuA6V7fyJ
biV60QHun8vAKDsmS+Fkj/jWhMizenJ1vXl08dsQSlv4bncogksIojxIe/CDFkd7
/ov9iDobeA6oSY1+XFpDllGkX9wGPiO6WS//8tDYFR0dGXVMauxl73gKvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPIe/GCrJPtJD+Lqi+mxKv4hL1G+MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvOGg3OFlLc2stMGtQNHVxTDZiRXFfaUV2VWI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue7lMA0G
CSqGSIb3DQEBCwUAA4IBAQAanFZjn05FRkT4aKbx0pRslVTHMFSogpVhWq66T/Gf
Nf3M4JLHNWm+lYi9e5Dkj1VPXWUIAiEyZ8Hz7ItmpHksQK6Eth4zaaSAwlKRuft0
Q9pmb0cZ+wPnIBzsy3iJ7bZAtRD5WDPfRxZT6d9Dr9XnFYvZ3y+HKQM5uCc/HJ0z
ZKEfUe9BLKOAR2uDLSV4V3/Na593+SI/IFq4vNvlr6yRddm4XOpPeF6frvP86ic7
GFpDlfW3eZQXKdyItQTN9Sm906uKgYBnbGm9Xau7BQn/FcWELamkwyxpw3KTX7cM
p33NTdCgTI13p0aziKKeohXClEcp81XTxP+Av10WOzpw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org