Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DWMvIycYQOGkcOqpWSqs5oCHkUY.roa
File: DWMvIycYQOGkcOqpWSqs5oCHkUY.roa (raw, json)
Hash identifier: CjogH/MnS2+2J6+/kCzMgd2D2Nb43ev3slOBOka0zLY=
Subject key identifier: 0D:63:2F:23:27:18:40:E1:A4:70:EA:A9:59:2A:AC:E6:80:87:91:46
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01880F532F25A5C00A7D4CD13FE6F3CB0A0F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DWMvIycYQOGkcOqpWSqs5oCHkUY.roa
Signing time: Fri 12 May 2023 09:38:09 +0000
ROA not before: Fri 12 May 2023 09:38:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62068
IP address blocks: 185.251.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 08:49:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0f:53:2f:25:a5:c0:0a:7d:4c:d1:3f:e6:f3:cb:0a:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 12 09:38:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d632f23271840e1a470eaa9592aace680879146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ca:e0:a1:45:f3:be:67:e8:61:d2:fe:bb:fe:
65:d4:39:dc:a8:a8:e7:dd:d3:47:00:ee:86:bf:67:
a4:24:74:93:a1:94:0e:a9:0d:28:18:21:30:31:69:
09:0f:56:c9:3a:8c:61:dc:96:42:9b:14:54:8a:62:
ff:42:92:c5:82:ab:3e:53:d1:06:ca:45:1c:c6:2a:
8e:b4:0c:6e:71:4c:ce:d7:c8:f8:55:78:ed:13:80:
74:a0:12:91:62:d1:55:9d:8d:06:b9:2b:25:dd:23:
71:fb:fb:31:88:8c:97:94:8e:1b:1c:30:f5:b3:1f:
c2:99:13:b6:66:95:71:dd:24:fa:cb:fc:1d:5f:dd:
ce:59:35:07:d9:fb:66:54:a8:d7:bf:62:6d:cd:98:
aa:6a:e6:07:d2:e1:d3:aa:96:d4:d0:07:40:6c:26:
14:fc:b0:4b:15:eb:67:33:e6:95:ea:52:82:2c:b8:
b5:1a:79:f0:af:e9:1e:e1:55:54:f4:c9:98:7f:a8:
62:8c:88:4b:c2:f4:b2:bc:84:79:de:f4:d1:20:8d:
3e:f1:a9:7c:71:e0:be:32:06:11:fe:52:df:0b:b8:
f2:d9:17:90:25:be:b7:73:5a:36:2b:5e:4f:c3:9e:
cc:48:aa:c0:5c:c4:14:36:f7:38:ba:6f:da:92:04:
71:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:63:2F:23:27:18:40:E1:A4:70:EA:A9:59:2A:AC:E6:80:87:91:46
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DWMvIycYQOGkcOqpWSqs5oCHkUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.229.0/24
Signature Algorithm: sha256WithRSAEncryption
23:d5:79:7b:66:13:8f:bb:27:21:0d:02:34:eb:3b:cd:18:14:
4f:9a:d4:95:07:a0:e1:5f:5c:2f:ba:5f:2f:d3:e0:fa:aa:8a:
97:9a:ff:46:ea:a5:26:2a:5e:8d:69:a8:d3:3a:f9:23:08:ec:
ec:30:15:c8:63:64:0c:64:21:00:4b:1a:b4:ae:e5:02:07:36:
70:58:03:e8:27:f5:7d:47:81:e2:d6:0a:96:c7:83:4f:f1:80:
1f:bb:8b:fa:7f:af:29:5e:a1:d3:8b:99:f5:b9:79:57:35:a1:
36:dd:41:47:b8:c2:f2:99:8e:c0:48:1b:ae:c2:0b:ae:0c:4d:
2a:95:e3:0d:47:37:f8:ef:2c:24:68:11:e3:12:55:d8:5f:94:
74:1a:75:4f:d3:3b:cf:4a:a1:4b:c8:37:30:04:3f:38:4c:15:
93:d5:46:15:af:61:47:a5:35:5b:7f:73:68:c4:d8:29:94:33:
ad:b0:ee:8b:64:d2:26:1a:bb:e2:95:d1:58:08:39:23:5b:dd:
4a:61:94:a9:d9:86:c6:18:f2:a8:21:2a:18:39:29:4b:01:d2:
f3:68:9c:92:3c:71:31:fb:a8:33:42:98:aa:91:d4:01:de:a6:
8f:94:07:fb:8d:ce:4d:a1:0c:21:8d:4d:e7:07:59:ee:88:eb:
54:44:4b:20
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgPUy8lpcAKfUzRP+bzywoPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwNTEyMDkzODA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDYzMmYyMzI3MTg0MGUxYTQ3MGVhYTk1OTJhYWNlNjgwODc5MTQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8rgoUXzvmfoYdL+u/5l1DncqKjn
3dNHAO6Gv2ekJHSToZQOqQ0oGCEwMWkJD1bJOoxh3JZCmxRUimL/QpLFgqs+U9EG
ykUcxiqOtAxucUzO18j4VXjtE4B0oBKRYtFVnY0GuSsl3SNx+/sxiIyXlI4bHDD1
sx/CmRO2ZpVx3ST6y/wdX93OWTUH2ftmVKjXv2JtzZiqauYH0uHTqpbU0AdAbCYU
/LBLFetnM+aV6lKCLLi1Gnnwr+ke4VVU9MmYf6hijIhLwvSyvIR53vTRII0+8al8
ceC+MgYR/lLfC7jy2ReQJb63c1o2K15Pw57MSKrAXMQUNvc4um/akgRx0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA1jLyMnGEDhpHDqqVkqrOaAh5FGMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvRFdNdkl5Y1lRT0drY09xcFdTcXM1b0NIa1VZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufvlMA0G
CSqGSIb3DQEBCwUAA4IBAQAj1Xl7ZhOPuychDQI06zvNGBRPmtSVB6DhX1wvul8v
0+D6qoqXmv9G6qUmKl6NaajTOvkjCOzsMBXIY2QMZCEASxq0ruUCBzZwWAPoJ/V9
R4Hi1gqWx4NP8YAfu4v6f68pXqHTi5n1uXlXNaE23UFHuMLymY7ASBuuwguuDE0q
leMNRzf47ywkaBHjElXYX5R0GnVP0zvPSqFLyDcwBD84TBWT1UYVr2FHpTVbf3No
xNgplDOtsO6LZNImGrvildFYCDkjW91KYZSp2YbGGPKoISoYOSlLAdLzaJySPHEx
+6gzQpiqkdQB3qaPlAf7jc5NoQwhjU3nB1nuiOtUREsg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org