Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/sZLcnHf7zqOJIB8FL5xXt8tt9NE.roa
File: sZLcnHf7zqOJIB8FL5xXt8tt9NE.roa (raw, json)
Hash identifier: B02NbiJPFsEUguwRdcE3+5EHYs6Y37fOndCqweakANw=
Subject key identifier: B1:92:DC:9C:77:FB:CE:A3:89:20:1F:05:2F:9C:57:B7:CB:6D:F4:D1
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0185A6AEFF09C762378D1870356AC6326109
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/sZLcnHf7zqOJIB8FL5xXt8tt9NE.roa
Signing time: Thu 12 Jan 2023 15:52:44 +0000
ROA not before: Thu 12 Jan 2023 15:52:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 185.240.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Jun 2023 10:35:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:ae:ff:09:c7:62:37:8d:18:70:35:6a:c6:32:61:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 12 15:52:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b192dc9c77fbcea389201f052f9c57b7cb6df4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b7:6c:5a:ae:a7:ed:0e:e8:20:fe:b3:d6:d7:
eb:4c:04:f2:ef:3a:f8:c0:22:ab:7a:c5:48:11:4c:
a9:17:4a:28:54:70:0b:56:ed:bd:ea:2d:32:9d:25:
2e:b7:fd:b3:59:48:a2:fa:8f:6b:21:d7:d8:83:64:
a4:12:17:ff:1a:55:71:6e:90:d1:3e:3b:00:a2:11:
ec:ce:f2:eb:ed:88:2e:a8:df:db:d8:e8:03:3f:a8:
80:c2:81:34:fc:af:b9:72:5e:f8:db:39:81:10:ab:
6f:9b:7b:d0:58:18:0d:6b:ce:83:9c:6d:8c:ff:ad:
a2:d5:77:f9:4a:5b:3c:c3:5e:96:cf:e1:2e:3d:80:
04:bd:65:57:ef:01:9a:de:96:9f:38:55:44:a8:99:
91:16:d4:c7:b8:88:f2:b7:77:1b:ee:95:b2:92:de:
62:ef:ac:0d:47:75:10:40:a7:7e:2b:54:c7:13:d5:
6b:94:cd:54:9e:f3:f7:cc:31:20:dc:ba:07:e4:0d:
7a:9d:ec:dd:63:21:c2:d8:f4:4a:ed:14:81:b1:f3:
4c:9f:78:81:0a:44:8f:a7:35:0d:c9:c4:cd:44:6d:
d7:31:7c:12:29:d4:6a:1f:61:2e:18:67:09:80:41:
1a:e9:6b:63:1f:a7:f9:ca:29:4c:28:8a:94:ea:3e:
1d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:92:DC:9C:77:FB:CE:A3:89:20:1F:05:2F:9C:57:B7:CB:6D:F4:D1
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/sZLcnHf7zqOJIB8FL5xXt8tt9NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
80:fc:0d:d2:10:96:d2:bd:8c:e3:f8:59:19:0e:ff:83:ba:b5:
51:2e:44:d4:6b:08:71:a9:12:85:59:81:97:63:db:3e:89:27:
4a:bc:2a:a8:9b:f4:92:65:12:5c:cd:6f:b0:ed:57:5f:ce:e6:
08:a2:a4:a1:87:04:76:fd:be:e8:d4:d0:66:7a:d6:ae:81:33:
4a:3e:bc:98:e7:ec:c4:81:d4:9b:75:15:35:3a:1f:c1:a2:04:
c3:96:2d:ed:85:1a:1d:ce:46:56:92:94:72:2d:ff:70:ae:ac:
0d:c4:d5:e3:35:05:44:fc:66:ed:7b:f3:79:e3:33:67:4e:04:
16:f2:74:dc:9d:7d:af:04:06:ae:73:2a:06:3f:9e:8d:39:b7:
ff:3c:94:c4:77:b6:5c:00:a7:87:3a:15:ff:6c:2d:23:30:55:
bd:02:be:d2:6e:2f:e6:f5:bd:d0:d3:dd:fe:75:ba:95:86:3c:
a7:80:72:0a:f4:23:e4:2a:16:c3:53:0a:de:f7:f5:81:7c:c2:
fd:42:d2:9f:b7:c7:7e:d9:56:42:03:98:d3:8a:f7:77:fb:31:
c6:b1:fb:01:51:b4:30:bb:92:ce:08:e5:83:4d:23:f0:cd:68:
61:ae:ec:56:2a:c0:28:ba:8b:f9:8a:8f:89:78:67:18:06:83:
fe:0e:9f:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWmrv8Jx2I3jRhwNWrGMmEJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwMTEyMTU1MjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTkyZGM5Yzc3ZmJjZWEzODkyMDFmMDUyZjljNTdiN2NiNmRmNGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmbdsWq6n7Q7oIP6z1tfrTATy7zr4
wCKresVIEUypF0ooVHALVu296i0ynSUut/2zWUii+o9rIdfYg2SkEhf/GlVxbpDR
PjsAohHszvLr7YguqN/b2OgDP6iAwoE0/K+5cl742zmBEKtvm3vQWBgNa86DnG2M
/62i1Xf5Sls8w16Wz+EuPYAEvWVX7wGa3pafOFVEqJmRFtTHuIjyt3cb7pWykt5i
76wNR3UQQKd+K1THE9VrlM1UnvP3zDEg3LoH5A16nezdYyHC2PRK7RSBsfNMn3iB
CkSPpzUNycTNRG3XMXwSKdRqH2EuGGcJgEEa6WtjH6f5yilMKIqU6j4d6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLGS3Jx3+86jiSAfBS+cV7fLbfTRMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvc1pMY25IZjd6cU9KSUI4Rkw1eFh0OHR0OU5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufB6MA0G
CSqGSIb3DQEBCwUAA4IBAQCA/A3SEJbSvYzj+FkZDv+DurVRLkTUawhxqRKFWYGX
Y9s+iSdKvCqom/SSZRJczW+w7VdfzuYIoqShhwR2/b7o1NBmetaugTNKPryY5+zE
gdSbdRU1Oh/BogTDli3thRodzkZWkpRyLf9wrqwNxNXjNQVE/Gbte/N54zNnTgQW
8nTcnX2vBAaucyoGP56NObf/PJTEd7ZcAKeHOhX/bC0jMFW9Ar7Sbi/m9b3Q093+
dbqVhjyngHIK9CPkKhbDUwre9/WBfML9QtKft8d+2VZCA5jTivd3+zHGsfsBUbQw
u5LOCOWDTSPwzWhhruxWKsAouov5io+JeGcYBoP+Dp+C
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org