Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VowKmsK8THWoB0yNGl7nTSbmljo.roa
File: VowKmsK8THWoB0yNGl7nTSbmljo.roa (raw, json)
Hash identifier: PGm/2b9L4PsUBhJJtyVAHIDxakazlXtrGCJjooBSQys=
Subject key identifier: 56:8C:0A:9A:C2:BC:4C:75:A8:07:4C:8D:1A:5E:E7:4D:26:E6:96:3A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189542BEFDAF591A3DD8BDFB4872D68E317
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VowKmsK8THWoB0yNGl7nTSbmljo.roa
Signing time: Fri 14 Jul 2023 11:31:52 +0000
ROA not before: Fri 14 Jul 2023 11:31:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 185.210.233.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 15:32:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:2b:ef:da:f5:91:a3:dd:8b:df:b4:87:2d:68:e3:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 14 11:31:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=568c0a9ac2bc4c75a8074c8d1a5ee74d26e6963a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c2:78:d1:c6:18:98:4e:f7:b6:0b:ac:c7:78:
6d:c2:26:dd:d8:07:69:7c:39:17:26:8f:ab:34:6c:
e8:04:2a:ef:d1:8f:4a:94:17:f0:5f:59:64:39:3e:
fc:36:67:b4:de:57:3c:83:0f:f8:f2:4f:14:63:0b:
47:b8:0d:e2:75:a5:fe:00:00:78:6e:2c:3f:a7:af:
ca:bf:94:a3:90:2d:e6:8d:82:51:86:2c:ba:41:b8:
e5:20:63:85:a6:20:28:32:f5:6f:1a:c6:87:1b:b3:
3e:68:5a:62:b4:47:12:4b:e9:bd:4a:76:e0:e7:73:
06:90:68:4a:6b:da:f4:08:f3:f8:56:3f:7d:18:08:
fa:84:15:70:ce:e7:91:87:71:6e:fa:c1:a5:7e:e4:
40:08:fa:93:5c:7b:04:61:10:d0:74:b1:b3:e5:8c:
61:9a:60:be:12:df:65:68:69:9a:54:e9:3c:43:52:
7c:da:29:9e:aa:10:89:87:63:f7:45:c4:84:07:35:
22:be:f9:ec:17:24:6c:d9:71:46:e8:75:63:96:26:
47:65:55:78:e1:ef:c5:c7:69:f3:de:e6:90:7e:f1:
5b:1e:a1:33:f9:1e:3b:12:28:6b:31:e5:00:eb:c2:
7d:3d:d0:be:a6:7f:5b:78:e1:dc:1b:bc:60:b8:58:
01:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8C:0A:9A:C2:BC:4C:75:A8:07:4C:8D:1A:5E:E7:4D:26:E6:96:3A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VowKmsK8THWoB0yNGl7nTSbmljo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.73.0/24
185.210.233.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:00:c9:3c:d1:e0:6c:ab:8d:2d:46:14:6c:27:2d:c0:35:34:
d6:2e:1e:bf:dc:7c:d2:44:38:ec:be:83:86:4f:e9:19:8e:18:
7c:e4:70:35:7c:e1:9a:91:f2:eb:79:29:16:f1:a7:66:bb:0b:
56:e1:8f:0d:e9:13:bf:8a:34:a9:d6:62:54:fe:bc:69:6e:55:
b8:8b:fc:75:62:2e:77:ea:0c:14:90:2e:24:83:91:04:68:54:
e1:be:64:c5:0a:cd:f4:e2:5d:61:bf:30:79:56:e1:b4:c7:f4:
c0:bb:1a:7c:cc:5f:ec:39:26:20:6c:7d:ed:6e:44:eb:76:92:
c3:a5:1c:fb:05:ed:ba:9e:c3:52:f5:b5:d3:73:52:4f:a4:06:
89:df:c7:a1:48:c5:3e:56:3e:e4:38:6b:bd:7e:30:53:6f:94:
e4:cc:c9:b6:10:29:99:b1:a9:78:c4:c1:72:bd:90:0b:b9:9a:
33:8d:04:86:4c:59:8c:1b:3b:01:33:2a:08:dc:b2:18:76:09:
b5:3f:04:35:1f:30:2a:7d:f3:9c:93:4f:9b:16:9e:bc:ca:f3:
38:ae:2e:01:61:0f:81:ba:04:6d:4e:ae:c9:29:5a:e8:e5:9b:
84:78:22:54:1a:d8:c0:1a:e5:41:d0:fc:94:f2:6c:cf:8f:c2:
ca:2b:d7:ad
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYlUK+/a9ZGj3YvftIctaOMXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwNzE0MTEzMTUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjhjMGE5YWMyYmM0Yzc1YTgwNzRjOGQxYTVlZTc0ZDI2ZTY5NjNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMJ40cYYmE73tgusx3htwibd2Adp
fDkXJo+rNGzoBCrv0Y9KlBfwX1lkOT78Nme03lc8gw/48k8UYwtHuA3idaX+AAB4
biw/p6/Kv5SjkC3mjYJRhiy6QbjlIGOFpiAoMvVvGsaHG7M+aFpitEcSS+m9Snbg
53MGkGhKa9r0CPP4Vj99GAj6hBVwzueRh3Fu+sGlfuRACPqTXHsEYRDQdLGz5Yxh
mmC+Et9laGmaVOk8Q1J82imeqhCJh2P3RcSEBzUivvnsFyRs2XFG6HVjliZHZVV4
4e/Fx2nz3uaQfvFbHqEz+R47EihrMeUA68J9PdC+pn9beOHcG7xguFgB2wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFaMCprCvEx1qAdMjRpe500m5pY6MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvVm93S21zSzhUSFdvQjB5TkdsN25UU2JtbGpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAudFJAwQA
udLpMA0GCSqGSIb3DQEBCwUAA4IBAQBtAMk80eBsq40tRhRsJy3ANTTWLh6/3HzS
RDjsvoOGT+kZjhh85HA1fOGakfLreSkW8admuwtW4Y8N6RO/ijSp1mJU/rxpblW4
i/x1Yi536gwUkC4kg5EEaFThvmTFCs304l1hvzB5VuG0x/TAuxp8zF/sOSYgbH3t
bkTrdpLDpRz7Be26nsNS9bXTc1JPpAaJ38ehSMU+Vj7kOGu9fjBTb5TkzMm2ECmZ
sal4xMFyvZALuZozjQSGTFmMGzsBMyoI3LIYdgm1PwQ1HzAqffOck0+bFp68yvM4
ri4BYQ+BugRtTq7JKVro5ZuEeCJUGtjAGuVB0PyU8mzPj8LKK9et
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org