Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/bouAn2SpJWHpiSgAoJla3KzbG0A.roa
File: bouAn2SpJWHpiSgAoJla3KzbG0A.roa (raw, json)
Hash identifier: bvStn8O8f98szOJLcElOOwgiqZGdpxoQAQRefVE0pEQ=
Subject key identifier: 6E:8B:80:9F:64:A9:25:61:E9:89:28:00:A0:99:5A:DC:AC:DB:1B:40
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC80270AF841747C615E1A9D424767436
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/bouAn2SpJWHpiSgAoJla3KzbG0A.roa
Signing time: Tue 02 Jan 2024 02:30:52 +0000
ROA not before: Tue 02 Jan 2024 02:30:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16628
IP address blocks: 185.218.20.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 13:48:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:70:af:84:17:47:c6:15:e1:a9:d4:24:76:74:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e8b809f64a92561e9892800a0995adcacdb1b40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4d:76:5a:69:5f:c7:a1:96:c4:b5:f2:d6:f3:
70:cf:e5:c3:3f:e6:ee:49:32:a5:fc:72:f9:3e:a4:
81:8e:ca:1c:ae:8d:09:ac:5d:a3:70:70:f6:58:d6:
12:87:9b:ea:e4:e9:59:d9:ff:91:20:37:eb:6d:1e:
a8:5c:3b:f6:4a:23:ea:67:de:fd:ac:36:e2:f2:ed:
3a:5c:83:98:e2:b4:7f:52:27:39:e2:01:58:9d:48:
4c:c7:3e:86:f0:a9:20:be:dd:57:6e:ea:da:19:fb:
77:e4:c5:3f:3a:c1:48:7e:03:11:11:7c:9d:4b:0d:
0c:d4:49:42:6f:ea:a3:76:5b:0b:37:0f:d2:44:62:
34:4f:a9:e4:7d:7a:fb:06:60:56:65:e9:3a:68:d0:
4c:0d:ad:53:b1:d3:2a:1f:86:cf:c2:45:ca:b2:c3:
56:e1:7e:b2:cd:8a:85:53:30:ba:23:b0:3a:1d:9f:
d5:08:55:65:32:06:69:68:b1:5c:f1:b7:0b:f4:98:
5a:47:e5:83:5c:30:dd:35:8c:46:78:5d:3a:f8:dc:
bd:75:74:2b:5a:57:c5:95:11:ca:48:d1:da:cd:3f:
9a:2d:a3:ff:13:38:62:19:eb:86:4f:0e:b5:31:f9:
8f:99:73:0e:7c:33:b2:43:27:f1:2b:69:db:3d:93:
18:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:8B:80:9F:64:A9:25:61:E9:89:28:00:A0:99:5A:DC:AC:DB:1B:40
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/bouAn2SpJWHpiSgAoJla3KzbG0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
185.218.20.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:28:5e:65:79:8d:79:31:35:ca:fb:41:83:5f:80:3d:88:2e:
83:a9:f3:37:6c:58:b1:d8:1d:32:92:d8:75:a4:fe:63:ba:9e:
a4:72:a9:fc:8c:78:60:3d:b3:c3:52:fc:0e:35:86:5f:8d:8f:
2e:ae:62:12:b3:87:cc:f7:90:fc:43:7b:a7:07:e8:99:9d:fb:
b7:4c:e8:e7:74:ac:56:48:81:53:0b:9a:23:71:ef:4f:e1:05:
9e:1e:17:ae:16:88:28:17:0f:22:bb:94:73:87:7a:46:e2:fd:
57:c2:b5:dc:64:58:e8:bb:e6:ce:de:1e:26:48:aa:e8:a8:a8:
c7:cf:46:1b:f6:7b:90:60:47:b9:77:d5:26:e1:55:f7:62:df:
51:99:f5:ff:f4:f2:6a:77:b2:74:c9:55:4a:23:49:7b:b9:5f:
e6:63:21:22:2f:0c:17:18:13:8d:a4:63:2d:e6:8d:ec:c3:76:
98:05:41:1c:ee:e0:57:90:ed:ba:81:4f:77:e8:e3:5b:84:03:
69:04:7f:4c:1e:3a:04:ac:01:54:ad:1b:8c:2c:51:66:5d:80:
ac:45:ed:f0:09:7f:84:fa:0c:45:4d:08:e0:ee:9e:ac:e8:a3:
d3:29:03:2e:7b:6d:db:29:28:d7:14:6a:dc:4a:23:60:83:c9:
af:88:b2:d5
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzIAnCvhBdHxhXhqdQkdnQ2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjQwMTAyMDIzMDUyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZThiODA5ZjY0YTkyNTYxZTk4OTI4MDBhMDk5NWFkY2FjZGIxYjQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnU12Wmlfx6GWxLXy1vNwz+XDP+bu
STKl/HL5PqSBjsocro0JrF2jcHD2WNYSh5vq5OlZ2f+RIDfrbR6oXDv2SiPqZ979
rDbi8u06XIOY4rR/Uic54gFYnUhMxz6G8Kkgvt1XburaGft35MU/OsFIfgMREXyd
Sw0M1ElCb+qjdlsLNw/SRGI0T6nkfXr7BmBWZek6aNBMDa1TsdMqH4bPwkXKssNW
4X6yzYqFUzC6I7A6HZ/VCFVlMgZpaLFc8bcL9JhaR+WDXDDdNYxGeF06+Ny9dXQr
WlfFlRHKSNHazT+aLaP/EzhiGeuGTw61MfmPmXMOfDOyQyfxK2nbPZMYsQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFG6LgJ9kqSVh6YkoAKCZWtys2xtAMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvYm91QW4yU3BKV0hwaVNnQW9KbGEzS3piRzBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALQgVAwQA
udoUMA0GCSqGSIb3DQEBCwUAA4IBAQAeKF5leY15MTXK+0GDX4A9iC6DqfM3bFix
2B0ykth1pP5jup6kcqn8jHhgPbPDUvwONYZfjY8urmISs4fM95D8Q3unB+iZnfu3
TOjndKxWSIFTC5ojce9P4QWeHheuFogoFw8iu5Rzh3pG4v1XwrXcZFjou+bO3h4m
SKroqKjHz0Yb9nuQYEe5d9Um4VX3Yt9RmfX/9PJqd7J0yVVKI0l7uV/mYyEiLwwX
GBONpGMt5o3sw3aYBUEc7uBXkO26gU936ONbhANpBH9MHjoErAFUrRuMLFFmXYCs
Re3wCX+E+gxFTQjg7p6s6KPTKQMue23bKSjXFGrcSiNgg8mviLLV
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org