Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/G37LuiHzaQL8NYLE_A4Ws6_cwgA.roa
File: G37LuiHzaQL8NYLE_A4Ws6_cwgA.roa (raw, json)
Hash identifier: /4TQZ/zdewwdNorg/zYZMKK7vC+G1SOfz61BTVAbQqk=
Subject key identifier: 1B:7E:CB:BA:21:F3:69:02:FC:35:82:C4:FC:0E:16:B3:AF:DC:C2:00
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018C43A7BB68B5751D1F8163FDEBFFDB826E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/G37LuiHzaQL8NYLE_A4Ws6_cwgA.roa
Signing time: Thu 07 Dec 2023 09:41:54 +0000
ROA not before: Thu 07 Dec 2023 09:41:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400328
IP address blocks: 185.194.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:43:a7:bb:68:b5:75:1d:1f:81:63:fd:eb:ff:db:82:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 7 09:41:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b7ecbba21f36902fc3582c4fc0e16b3afdcc200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:88:d8:1f:dd:5d:6a:96:82:71:39:cc:7a:d3:
4e:00:b0:0e:3b:c9:a3:54:dc:0d:f1:79:64:9d:96:
03:08:2d:2d:1d:e0:12:f7:d1:dd:d3:f0:ad:23:da:
3f:cc:cd:1c:b2:fc:7b:90:98:75:1c:58:e1:f9:cb:
2e:14:03:35:b6:23:78:c2:a1:32:cd:ff:ca:a7:4e:
90:43:5b:c6:7d:2e:e0:3d:83:8c:0f:89:bb:ef:16:
08:42:1f:f5:e9:5c:c4:94:24:35:ac:a8:91:c4:cf:
dd:3d:52:0d:64:9f:56:db:48:e4:9a:09:c4:b7:dd:
a7:1a:33:31:98:45:10:34:43:9e:fa:93:99:d7:1e:
f1:c5:ec:8b:df:a2:90:8b:87:d4:1f:02:e4:e6:a6:
13:b8:c6:32:35:31:5e:0c:0f:e9:2c:14:d4:ab:24:
e2:82:45:75:cc:f2:1f:d1:c4:da:d1:e8:30:ab:1b:
c1:63:50:75:1d:c2:c2:d1:a8:be:3c:58:1e:f7:ca:
9b:21:8b:58:42:1e:c3:d5:d6:db:20:86:7c:f3:56:
9a:78:8c:fd:bc:ea:1c:c3:b2:4b:6b:a2:80:a3:55:
73:b9:08:4b:7a:77:45:50:2d:d3:37:38:f9:a8:7d:
b3:7f:57:2a:b9:1e:99:31:38:bb:60:a4:aa:49:ba:
3c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:7E:CB:BA:21:F3:69:02:FC:35:82:C4:FC:0E:16:B3:AF:DC:C2:00
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/G37LuiHzaQL8NYLE_A4Ws6_cwgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.176.0/24
Signature Algorithm: sha256WithRSAEncryption
28:54:51:43:d4:01:c4:1d:09:f6:d6:62:1c:8f:c4:53:f0:8f:
83:dc:0e:96:53:a1:59:20:d6:20:71:d9:c4:a3:ae:2e:f6:22:
4f:cf:34:f8:6e:30:07:fa:8c:83:34:17:96:8e:c4:ef:8c:1d:
16:56:fd:40:cb:9a:07:bb:08:e6:a4:20:49:c9:24:20:66:cf:
75:eb:8a:0c:f4:78:2b:88:58:bc:25:46:42:18:7f:22:80:bc:
98:4a:72:ae:16:8d:ad:24:43:19:37:d1:04:c5:1c:ca:56:64:
70:c3:b6:0f:e6:8f:d0:c4:33:6e:7e:54:e3:b8:ca:97:36:36:
21:36:0d:42:99:f1:cf:4f:09:62:00:6a:58:48:16:8e:70:62:
03:82:62:13:38:1f:bc:d5:ec:bf:8f:bd:fa:62:b8:12:77:c5:
22:4d:9b:7f:ac:a2:a6:5b:f2:c2:fa:6d:fc:82:93:eb:e1:59:
90:37:86:ea:3a:b5:0d:19:6b:e3:29:a5:1a:c1:94:de:19:77:
82:44:d4:c4:8f:a9:87:75:df:3f:6b:9e:96:13:f8:1a:49:43:
9d:cd:b2:a7:d3:d8:72:51:3a:d4:d2:df:00:2a:fb:40:51:7e:
28:bd:76:7f:62:b1:95:ee:e8:ac:fb:c3:62:82:e8:89:7f:f3:
1c:e9:fb:6e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxDp7totXUdH4Fj/ev/24JuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMxMjA3MDk0MTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjdlY2JiYTIxZjM2OTAyZmMzNTgyYzRmYzBlMTZiM2FmZGNjMjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh4jYH91dapaCcTnMetNOALAOO8mj
VNwN8XlknZYDCC0tHeAS99Hd0/CtI9o/zM0csvx7kJh1HFjh+csuFAM1tiN4wqEy
zf/Kp06QQ1vGfS7gPYOMD4m77xYIQh/16VzElCQ1rKiRxM/dPVINZJ9W20jkmgnE
t92nGjMxmEUQNEOe+pOZ1x7xxeyL36KQi4fUHwLk5qYTuMYyNTFeDA/pLBTUqyTi
gkV1zPIf0cTa0egwqxvBY1B1HcLC0ai+PFge98qbIYtYQh7D1dbbIIZ881aaeIz9
vOocw7JLa6KAo1VzuQhLendFUC3TNzj5qH2zf1cquR6ZMTi7YKSqSbo8FwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBt+y7oh82kC/DWCxPwOFrOv3MIAMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvRzM3THVpSHphUUw4TllMRV9BNFdzNl9jd2dBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucKwMA0G
CSqGSIb3DQEBCwUAA4IBAQAoVFFD1AHEHQn21mIcj8RT8I+D3A6WU6FZINYgcdnE
o64u9iJPzzT4bjAH+oyDNBeWjsTvjB0WVv1Ay5oHuwjmpCBJySQgZs9164oM9Hgr
iFi8JUZCGH8igLyYSnKuFo2tJEMZN9EExRzKVmRww7YP5o/QxDNuflTjuMqXNjYh
Ng1CmfHPTwliAGpYSBaOcGIDgmITOB+81ey/j736YrgSd8UiTZt/rKKmW/LC+m38
gpPr4VmQN4bqOrUNGWvjKaUawZTeGXeCRNTEj6mHdd8/a56WE/gaSUOdzbKn09hy
UTrU0t8AKvtAUX4ovXZ/YrGV7uis+8NiguiJf/Mc6ftu
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org