Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/sVpJz8zEUZgV_hibOnfAXOV-0XM.roa
File: sVpJz8zEUZgV_hibOnfAXOV-0XM.roa (raw, json)
Hash identifier: +bH019GHt7Brt7F1Tqgvp5IM6g+VfCT+fWpsWrofqp8=
Subject key identifier: B1:5A:49:CF:CC:C4:51:98:15:FE:18:9B:3A:77:C0:5C:E5:7E:D1:73
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A2C72F3883D2B7482C442412479B578B7
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/sVpJz8zEUZgV_hibOnfAXOV-0XM.roa
Signing time: Fri 25 Aug 2023 11:27:25 +0000
ROA not before: Fri 25 Aug 2023 11:27:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216431
IP address blocks: 185.221.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:72:f3:88:3d:2b:74:82:c4:42:41:24:79:b5:78:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 25 11:27:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b15a49cfccc4519815fe189b3a77c05ce57ed173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:97:ad:e9:9c:06:ff:5d:2d:52:9b:da:f0:70:
32:9f:fc:27:10:f5:5f:97:36:5c:fd:77:a1:7c:9e:
4e:0e:b9:88:e9:24:41:1a:09:63:fb:b9:c6:c1:6a:
be:89:cf:36:21:16:34:12:2c:ce:c6:36:d3:6b:05:
c0:67:e6:cd:1b:fe:5e:ea:77:13:2e:69:85:43:4f:
df:0e:06:3a:03:0d:9f:ed:72:52:cb:f6:c0:6e:b4:
9e:8f:dc:bc:72:70:a2:53:5b:ca:8f:45:84:77:6c:
ff:68:ce:d8:92:95:43:5e:0f:8d:87:1d:89:45:5d:
0f:87:bd:3d:73:dc:fb:05:40:fd:72:17:26:cc:af:
b9:b9:2f:fa:c1:bd:48:7f:c5:ad:02:56:3f:09:e0:
28:a5:8e:aa:a5:9e:67:b0:6d:ba:c1:ec:3b:e0:5e:
00:0d:c3:64:14:b0:6f:95:f5:9f:51:54:3b:5b:15:
d4:6c:58:09:bf:b8:26:85:88:5b:63:de:a7:48:9d:
d5:4a:18:03:8a:ad:77:8f:dd:1e:4f:ad:73:2f:4d:
8c:e5:f4:4b:6a:1f:67:0b:67:0c:51:75:c7:71:39:
9e:50:19:2a:93:93:cc:e6:55:96:ab:1a:4f:3d:d3:
28:cf:df:87:b1:96:8f:16:71:a8:bb:fa:5a:1d:bf:
d3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5A:49:CF:CC:C4:51:98:15:FE:18:9B:3A:77:C0:5C:E5:7E:D1:73
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/sVpJz8zEUZgV_hibOnfAXOV-0XM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.21.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:97:83:a3:f4:e9:80:36:3d:54:2d:5d:34:c8:6c:81:87:93:
06:f0:07:6a:0b:03:72:fa:55:8f:b0:dd:34:19:59:af:40:ee:
5f:6a:42:6a:55:96:72:51:36:66:73:02:1f:fc:1a:d6:10:48:
52:05:b1:87:99:88:bd:c5:4c:a8:a2:56:d5:7e:fd:c8:e4:3e:
c5:d1:20:f5:59:8a:0d:5a:96:39:d1:95:34:54:a6:35:dc:90:
27:ff:67:15:1b:d5:21:66:1c:c3:37:78:f0:53:67:75:4d:c9:
d3:28:38:4f:e8:8d:57:87:b6:ad:8a:6d:91:86:37:5c:ca:55:
d9:e4:c2:c7:88:8e:4f:d8:d7:f2:21:e7:37:d8:3e:73:81:63:
7c:34:85:bf:03:bc:29:57:76:d6:78:13:87:56:5f:1a:7e:58:
7f:dc:50:e1:07:cb:93:62:78:64:ed:de:11:a1:3b:a4:88:6c:
c3:4b:f9:08:33:8b:66:26:c5:4a:cd:15:64:8e:32:f7:11:18:
90:18:a2:23:61:5c:7b:12:db:fe:a7:fb:84:e7:df:fb:f3:9d:
dd:e0:1e:f7:b8:a1:9f:92:de:37:02:c2:ed:02:34:78:2e:61:
79:79:91:7d:6a:a4:30:8c:d7:b2:7d:80:9c:cf:a4:44:86:da:
23:e0:e4:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYoscvOIPSt0gsRCQSR5tXi3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwODI1MTEyNzI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTVhNDljZmNjYzQ1MTk4MTVmZTE4OWIzYTc3YzA1Y2U1N2VkMTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5et6ZwG/10tUpva8HAyn/wnEPVf
lzZc/XehfJ5ODrmI6SRBGglj+7nGwWq+ic82IRY0EizOxjbTawXAZ+bNG/5e6ncT
LmmFQ0/fDgY6Aw2f7XJSy/bAbrSej9y8cnCiU1vKj0WEd2z/aM7YkpVDXg+Nhx2J
RV0Ph709c9z7BUD9chcmzK+5uS/6wb1If8WtAlY/CeAopY6qpZ5nsG26wew74F4A
DcNkFLBvlfWfUVQ7WxXUbFgJv7gmhYhbY96nSJ3VShgDiq13j90eT61zL02M5fRL
ah9nC2cMUXXHcTmeUBkqk5PM5lWWqxpPPdMoz9+HsZaPFnGou/paHb/ThwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLFaSc/MxFGYFf4Ymzp3wFzlftFzMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvc1ZwSno4ekVVWmdWX2hpYk9uZkFYT1YtMFhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud0VMA0G
CSqGSIb3DQEBCwUAA4IBAQCml4Oj9OmANj1ULV00yGyBh5MG8AdqCwNy+lWPsN00
GVmvQO5fakJqVZZyUTZmcwIf/BrWEEhSBbGHmYi9xUyoolbVfv3I5D7F0SD1WYoN
WpY50ZU0VKY13JAn/2cVG9UhZhzDN3jwU2d1TcnTKDhP6I1Xh7atim2RhjdcylXZ
5MLHiI5P2NfyIec32D5zgWN8NIW/A7wpV3bWeBOHVl8aflh/3FDhB8uTYnhk7d4R
oTukiGzDS/kIM4tmJsVKzRVkjjL3ERiQGKIjYVx7Etv+p/uE59/7853d4B73uKGf
kt43AsLtAjR4LmF5eZF9aqQwjNeyfYCcz6REhtoj4OSv
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org