Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/V0pEWh32PUkGEFv9NewzGf4AMH4.roa
File: V0pEWh32PUkGEFv9NewzGf4AMH4.roa (raw, json)
Hash identifier: Ofy5zw+1c0Z9ekPrNLr17EZkB03Sq9ev7rpj9fbjks8=
Subject key identifier: 57:4A:44:5A:1D:F6:3D:49:06:10:5B:FD:35:EC:33:19:FE:00:30:7E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC80285C8354D90E52335AF6831BA8228
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/V0pEWh32PUkGEFv9NewzGf4AMH4.roa
Signing time: Tue 02 Jan 2024 02:30:57 +0000
ROA not before: Tue 02 Jan 2024 02:30:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197649
IP address blocks: 185.214.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 10:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:85:c8:35:4d:90:e5:23:35:af:68:31:ba:82:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=574a445a1df63d4906105bfd35ec3319fe00307e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2d:d6:55:c2:4d:6b:62:22:e4:a0:9e:ba:a9:
ac:a2:f7:c8:8f:6d:5a:b6:07:70:bb:6c:29:ae:25:
34:6d:23:57:f4:ea:09:fb:26:94:6d:10:59:92:77:
d1:3c:b0:0a:8b:37:46:1a:47:67:08:5e:26:44:76:
9b:37:a4:81:e0:50:eb:dc:bf:13:4b:7a:84:7c:b4:
b7:23:15:2f:30:47:4d:32:a4:3a:44:e8:95:37:64:
1d:c8:3e:06:22:d4:56:2f:e0:ea:4e:51:02:70:4d:
e3:87:d5:41:fd:ba:34:05:c0:2a:43:9b:7a:4c:60:
18:11:4c:81:45:b3:0b:c0:04:10:bc:f8:5a:7b:ee:
57:87:45:1a:81:44:7e:a7:9b:13:79:76:e3:61:59:
5f:af:1b:27:ad:3a:fd:69:68:31:1d:cd:07:07:8e:
e2:5e:49:c2:58:15:8b:30:87:65:84:e4:14:d7:f9:
0a:1f:2f:ff:c6:ce:21:18:74:ad:d6:51:9b:d3:4e:
ed:cd:bf:67:38:61:7a:13:7f:18:14:81:a4:01:18:
24:73:1b:ee:e8:f6:69:64:c5:c6:9d:e3:f0:bb:72:
fb:e2:c0:af:72:44:23:64:10:3a:93:f2:c2:00:ea:
6b:e0:e3:d6:69:7e:f6:50:4c:31:81:96:5c:24:44:
8b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4A:44:5A:1D:F6:3D:49:06:10:5B:FD:35:EC:33:19:FE:00:30:7E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/V0pEWh32PUkGEFv9NewzGf4AMH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.101.0/24
Signature Algorithm: sha256WithRSAEncryption
87:c3:ca:f1:d2:60:14:52:cf:41:88:c1:47:73:69:fd:cc:f1:
95:f1:55:1d:46:21:9b:b0:a0:a7:fa:65:43:98:a5:ed:7d:18:
a6:a8:9f:57:41:b3:b3:13:a7:84:3a:4b:e1:07:56:47:50:49:
1c:ee:00:f0:ff:ec:08:5c:25:90:e4:d6:71:5c:35:ce:a7:c5:
69:e7:5e:05:51:02:b8:0a:ad:58:6a:c8:74:8c:15:59:0c:d4:
a8:a2:f2:1a:eb:83:58:4e:cb:57:0a:7c:4d:99:b4:d1:ac:7e:
af:96:75:d9:c4:50:a9:ca:ee:53:20:92:35:ca:46:5e:93:90:
17:8b:8a:23:98:13:ce:be:fc:de:f4:50:5f:57:62:38:d0:29:
35:a5:20:98:06:79:6c:8f:64:ae:92:99:e4:c4:09:33:7b:5e:
f9:a4:53:cc:c2:87:86:aa:c9:50:30:ea:ce:bc:55:6f:58:b1:
93:0a:0c:e6:ed:69:f0:2f:e6:20:b3:74:6b:0e:29:3c:27:4e:
76:d0:96:8b:c9:7b:7e:b8:4e:ac:56:0e:2c:30:3f:88:fe:c0:
93:11:1c:5c:ee:3e:af:7e:72:4f:e5:7b:0b:6a:6c:72:4f:dc:
9e:e3:9a:ce:63:5a:8f:97:bc:ca:eb:0b:db:2e:61:f3:08:43:
d5:bb:df:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIAoXINU2Q5SM1r2gxuoIoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjQwMTAyMDIzMDU3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzRhNDQ1YTFkZjYzZDQ5MDYxMDViZmQzNWVjMzMxOWZlMDAzMDdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsS3WVcJNa2Ii5KCeuqmsovfIj21a
tgdwu2wpriU0bSNX9OoJ+yaUbRBZknfRPLAKizdGGkdnCF4mRHabN6SB4FDr3L8T
S3qEfLS3IxUvMEdNMqQ6ROiVN2QdyD4GItRWL+DqTlECcE3jh9VB/bo0BcAqQ5t6
TGAYEUyBRbMLwAQQvPhae+5Xh0UagUR+p5sTeXbjYVlfrxsnrTr9aWgxHc0HB47i
XknCWBWLMIdlhOQU1/kKHy//xs4hGHSt1lGb007tzb9nOGF6E38YFIGkARgkcxvu
6PZpZMXGnePwu3L74sCvckQjZBA6k/LCAOpr4OPWaX72UEwxgZZcJESLDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFdKRFod9j1JBhBb/TXsMxn+ADB+MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvVjBwRVdoMzJQVWtHRUZ2OU5ld3pHZjRBTUg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudZlMA0G
CSqGSIb3DQEBCwUAA4IBAQCHw8rx0mAUUs9BiMFHc2n9zPGV8VUdRiGbsKCn+mVD
mKXtfRimqJ9XQbOzE6eEOkvhB1ZHUEkc7gDw/+wIXCWQ5NZxXDXOp8Vp514FUQK4
Cq1Yash0jBVZDNSoovIa64NYTstXCnxNmbTRrH6vlnXZxFCpyu5TIJI1ykZek5AX
i4ojmBPOvvze9FBfV2I40Ck1pSCYBnlsj2SukpnkxAkze175pFPMwoeGqslQMOrO
vFVvWLGTCgzm7WnwL+Ygs3RrDik8J0520JaLyXt+uE6sVg4sMD+I/sCTERxc7j6v
fnJP5XsLamxyT9ye45rOY1qPl7zK6wvbLmHzCEPVu99b
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:26 2024 by rpki-client on console-ams.rpki-client.org