Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ovzAopDRQ4NMIFhKQbh1AS5LeRY.roa
File: ovzAopDRQ4NMIFhKQbh1AS5LeRY.roa (raw, json)
Hash identifier: Ahkbs74b+RBb36LOq/ozOWM1HM1dB5BOLmZUXeP5fbU=
Subject key identifier: A2:FC:C0:A2:90:D1:43:83:4C:20:58:4A:41:B8:75:01:2E:4B:79:16
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0188E50F780EC464DF451E07A262FE64510F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ovzAopDRQ4NMIFhKQbh1AS5LeRY.roa
Signing time: Thu 22 Jun 2023 21:42:56 +0000
ROA not before: Thu 22 Jun 2023 21:42:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147291
IP address blocks: 185.222.28.0/24 maxlen: 24
185.221.22.0/24 maxlen: 24
185.221.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 08:25:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e5:0f:78:0e:c4:64:df:45:1e:07:a2:62:fe:64:51:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 22 21:42:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2fcc0a290d143834c20584a41b875012e4b7916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ce:c0:c5:5f:db:d4:a8:ca:8d:f4:a0:a0:7c:
dc:aa:9b:de:43:d1:60:59:10:da:4a:97:b6:eb:d1:
2e:a8:85:b3:57:a2:35:40:91:59:79:9e:3e:27:f3:
19:2e:fc:3d:05:27:3c:a4:07:e8:cf:ce:a8:df:72:
2e:16:04:8e:60:fd:0b:30:76:a3:3d:71:e4:ca:25:
ee:c3:20:d5:87:f2:95:4f:c8:30:80:5a:f2:13:9d:
ea:94:93:02:11:f9:21:eb:40:ef:b9:f9:00:7c:a0:
e6:c1:42:6f:fa:10:12:ce:8d:1f:da:6d:be:39:c3:
5a:95:d9:26:7c:3e:01:2d:e4:d3:5c:ce:8d:2a:de:
5d:a5:a4:94:11:14:f4:91:5a:f4:72:5e:9b:aa:0f:
8a:92:02:41:c5:44:49:f9:32:5e:2f:fd:6c:1c:d0:
8f:ee:d6:fd:83:30:1e:cf:29:7e:05:7b:91:2b:96:
d6:16:46:b1:84:1b:d9:37:cb:c1:01:da:48:de:73:
65:37:db:0c:07:13:a6:46:fa:e2:17:6e:be:38:88:
7b:8b:a3:a1:e7:29:4d:ff:79:0e:6c:60:78:62:a8:
74:c9:8b:35:fa:a1:94:ea:26:bc:5b:98:0a:00:1a:
e9:d1:18:fa:57:02:60:d4:dd:a9:94:4e:ea:8b:73:
c9:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:FC:C0:A2:90:D1:43:83:4C:20:58:4A:41:B8:75:01:2E:4B:79:16
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ovzAopDRQ4NMIFhKQbh1AS5LeRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.22.0/23
185.222.28.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:9c:62:fd:c7:06:5e:f2:61:15:75:96:97:7d:99:61:f9:dc:
48:22:c4:46:92:da:64:47:67:57:78:af:88:22:f1:28:47:21:
9e:8d:41:d2:de:87:57:3a:3b:21:9e:b2:c4:a7:90:89:cf:04:
df:35:06:01:47:6a:87:c1:be:9f:08:1d:9f:a5:7c:40:15:71:
e2:4e:cf:48:b3:da:c8:79:fa:7b:80:1b:2c:4d:b8:ed:a1:2f:
9e:1d:10:76:21:4f:bf:c3:62:0d:2c:47:03:1d:a6:d9:c2:bf:
a9:21:aa:54:8d:b9:eb:b2:11:ca:71:4b:72:e4:d4:56:39:62:
85:6d:71:98:a5:50:25:3d:0a:99:73:e4:0a:ea:d0:f7:7e:40:
19:0b:45:2a:eb:8f:7e:b7:0b:1f:2c:ea:e3:14:fc:53:88:65:
45:49:98:da:73:cc:bd:1c:e7:72:60:1d:7c:e7:e5:7c:ae:04:
87:5f:51:bd:fb:53:55:67:15:29:65:05:f8:34:b9:b9:2c:63:
6f:27:60:e2:dd:c6:3c:19:a1:c0:a3:27:9a:7e:77:7d:ba:e5:
6e:8f:a1:08:23:f5:be:a2:da:b7:05:b5:0d:95:df:0a:5e:cf:
bc:ad:67:76:50:3c:cd:0c:2e:d1:9c:3c:16:a2:cb:5b:1e:fd:
b1:e3:1d:21
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYjlD3gOxGTfRR4HomL+ZFEPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwNjIyMjE0MjU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmZjYzBhMjkwZDE0MzgzNGMyMDU4NGE0MWI4NzUwMTJlNGI3OTE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl87AxV/b1KjKjfSgoHzcqpveQ9Fg
WRDaSpe269EuqIWzV6I1QJFZeZ4+J/MZLvw9BSc8pAfoz86o33IuFgSOYP0LMHaj
PXHkyiXuwyDVh/KVT8gwgFryE53qlJMCEfkh60DvufkAfKDmwUJv+hASzo0f2m2+
OcNaldkmfD4BLeTTXM6NKt5dpaSUERT0kVr0cl6bqg+KkgJBxURJ+TJeL/1sHNCP
7tb9gzAezyl+BXuRK5bWFkaxhBvZN8vBAdpI3nNlN9sMBxOmRvriF26+OIh7i6Oh
5ylN/3kObGB4Yqh0yYs1+qGU6ia8W5gKABrp0Rj6VwJg1N2plE7qi3PJWQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKL8wKKQ0UODTCBYSkG4dQEuS3kWMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvb3Z6QW9wRFJRNE5NSUZoS1FiaDFBUzVMZVJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBud0WAwQA
ud4cMA0GCSqGSIb3DQEBCwUAA4IBAQBsnGL9xwZe8mEVdZaXfZlh+dxIIsRGktpk
R2dXeK+IIvEoRyGejUHS3odXOjshnrLEp5CJzwTfNQYBR2qHwb6fCB2fpXxAFXHi
Ts9Is9rIefp7gBssTbjtoS+eHRB2IU+/w2INLEcDHabZwr+pIapUjbnrshHKcUty
5NRWOWKFbXGYpVAlPQqZc+QK6tD3fkAZC0Uq649+twsfLOrjFPxTiGVFSZjac8y9
HOdyYB185+V8rgSHX1G9+1NVZxUpZQX4NLm5LGNvJ2Di3cY8GaHAoyeafnd9uuVu
j6EII/W+otq3BbUNld8KXs+8rWd2UDzNDC7RnDwWostbHv2x4x0h
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org