Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/w4-bEXJ_LULQa0Er3ohgGpepygM.roa
File: w4-bEXJ_LULQa0Er3ohgGpepygM.roa (raw, json)
Hash identifier: Bs/Y1bzXGranRCdtb4hH93fg//NEshToCnVfjrU7ifA=
Subject key identifier: C3:8F:9B:11:72:7F:2D:42:D0:6B:41:2B:DE:88:60:1A:97:A9:CA:03
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018D21054D28B77DC6A8F0257C54AD5335AA
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/w4-bEXJ_LULQa0Er3ohgGpepygM.roa
Signing time: Fri 19 Jan 2024 09:20:12 +0000
ROA not before: Fri 19 Jan 2024 09:20:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 185.194.177.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
193.58.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Feb 2024 15:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:21:05:4d:28:b7:7d:c6:a8:f0:25:7c:54:ad:53:35:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 19 09:20:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c38f9b11727f2d42d06b412bde88601a97a9ca03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:df:cc:6e:80:6e:7f:fa:c7:65:dd:8c:8d:05:
84:5a:a9:90:74:e8:0c:9f:b1:6d:1f:f7:cc:c3:af:
a3:12:13:b0:6b:c1:95:20:a5:d4:5b:7a:87:f6:24:
ca:66:e2:c9:d2:72:85:19:4e:d2:9c:fc:e6:2c:42:
22:5f:d8:59:57:3e:58:83:b0:d1:fe:d4:bc:c3:11:
1b:55:63:96:33:9c:3a:00:12:bf:ec:9e:78:bf:79:
65:7c:cc:ca:95:f3:80:5a:50:e6:ce:1b:31:b9:b8:
e1:7a:27:26:8a:1e:c8:80:2b:e2:ab:e3:db:b8:51:
f3:de:99:76:79:d6:9f:8f:a4:77:ff:8e:e8:98:37:
db:59:43:e8:45:57:e3:fe:aa:ed:2d:eb:36:6d:89:
7b:41:04:e1:aa:d5:3c:75:43:4e:65:97:28:72:c3:
af:f8:f0:34:98:9c:cd:df:04:ef:fc:f1:65:fe:6f:
30:1c:01:b7:d6:6b:71:96:27:f9:0c:d0:3d:9b:8c:
e9:9d:ec:a1:db:7f:cc:ef:db:12:5b:32:13:ef:1d:
08:f0:d2:6d:60:98:ff:22:b8:24:88:03:49:2b:ea:
ea:88:8d:92:a4:4d:d8:29:00:03:d6:21:32:18:5e:
db:b8:35:b1:ea:62:00:53:ed:66:d7:95:26:ac:36:
99:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:8F:9B:11:72:7F:2D:42:D0:6B:41:2B:DE:88:60:1A:97:A9:CA:03
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/w4-bEXJ_LULQa0Er3ohgGpepygM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.177.0/24
185.209.73.0/24
185.218.101.0/24
185.222.29.0/24
185.246.112.0/24
193.58.146.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:8e:2a:6f:65:1e:a9:11:a5:b3:f0:b4:d9:08:f6:5d:30:df:
f6:95:d4:33:02:14:ce:bc:ea:64:2a:6d:9e:a1:c6:e0:c8:a2:
04:71:e2:37:80:b6:ae:ac:bf:16:22:57:b0:0b:8b:96:cc:ca:
4f:cc:0b:3e:ea:6e:6b:b6:b5:68:d5:86:45:cd:db:35:eb:ee:
07:d4:34:f5:8e:5d:3f:6b:c5:17:29:56:30:51:ba:d0:99:3f:
08:bb:59:4e:07:22:91:61:99:80:31:fb:d5:4e:80:9e:1e:9c:
92:65:5c:d6:7a:ff:6d:09:ef:1f:7f:cd:02:af:54:eb:19:13:
25:6c:3a:60:7b:46:68:e2:4c:5e:fa:6e:83:16:31:92:41:e3:
d5:d1:06:28:bf:d1:35:91:6b:c3:06:18:eb:54:79:fc:69:05:
c8:f9:a9:9d:5d:b1:8a:92:89:56:54:b5:34:78:a5:db:28:f4:
74:0c:ce:f3:1c:2a:7e:68:80:7d:a1:c2:27:3f:c2:d1:50:ce:
d4:24:79:31:60:91:0b:ec:51:fe:64:e9:e5:0e:a3:28:91:c6:
25:3f:e2:a3:b8:86:00:b9:45:80:72:33:2c:d1:24:14:c7:69:
78:87:ed:03:a6:53:5e:9a:84:bb:3f:ed:79:5f:d5:26:16:ab:
08:18:bd:63
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAY0hBU0ot33GqPAlfFStUzWqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjQwMTE5MDkyMDEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzhmOWIxMTcyN2YyZDQyZDA2YjQxMmJkZTg4NjAxYTk3YTljYTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzN/MboBuf/rHZd2MjQWEWqmQdOgM
n7FtH/fMw6+jEhOwa8GVIKXUW3qH9iTKZuLJ0nKFGU7SnPzmLEIiX9hZVz5Yg7DR
/tS8wxEbVWOWM5w6ABK/7J54v3llfMzKlfOAWlDmzhsxubjheicmih7IgCviq+Pb
uFHz3pl2edafj6R3/47omDfbWUPoRVfj/qrtLes2bYl7QQThqtU8dUNOZZcocsOv
+PA0mJzN3wTv/PFl/m8wHAG31mtxlif5DNA9m4zpneyh23/M79sSWzIT7x0I8NJt
YJj/IrgkiANJK+rqiI2SpE3YKQAD1iEyGF7buDWx6mIAU+1m15UmrDaZDwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFMOPmxFyfy1C0GtBK96IYBqXqcoDMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvdzQtYkVYSl9MVUxRYTBFcjNvaGdHcGVweWdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAucKxAwQA
udFJAwQAudplAwQAud4dAwQAufZwAwQAwTqSMA0GCSqGSIb3DQEBCwUAA4IBAQC5
jipvZR6pEaWz8LTZCPZdMN/2ldQzAhTOvOpkKm2eocbgyKIEceI3gLaurL8WIlew
C4uWzMpPzAs+6m5rtrVo1YZFzds16+4H1DT1jl0/a8UXKVYwUbrQmT8Iu1lOByKR
YZmAMfvVToCeHpySZVzWev9tCe8ff80Cr1TrGRMlbDpge0Zo4kxe+m6DFjGSQePV
0QYov9E1kWvDBhjrVHn8aQXI+amdXbGKkolWVLU0eKXbKPR0DM7zHCp+aIB9ocIn
P8LRUM7UJHkxYJEL7FH+ZOnlDqMokcYlP+KjuIYAuUWAcjMs0SQUx2l4h+0DplNe
moS7P+15X9UmFqsIGL1j
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:44 2024 by rpki-client on console-fra.rpki-client.org