Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/bNptMJFvhRIWwTpGOliEZ42UuGY.roa
File: bNptMJFvhRIWwTpGOliEZ42UuGY.roa (raw, json)
Hash identifier: 8p1NslhuNVOzldmlfawzwiVE2gGrPRFgnE70FHtZC4w=
Subject key identifier: 6C:DA:6D:30:91:6F:85:12:16:C1:3A:46:3A:58:84:67:8D:94:B8:66
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 018CC2DB1406B5BA22A6C3179F54BB937949
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/bNptMJFvhRIWwTpGOliEZ42UuGY.roa
Signing time: Mon 01 Jan 2024 02:29:46 +0000
ROA not before: Mon 01 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201086
IP address blocks: 185.86.80.0/24 maxlen: 24
185.205.19.0/24 maxlen: 24
193.36.63.0/24 maxlen: 24
185.254.94.0/24 maxlen: 24
185.254.95.0/24 maxlen: 24
2a0a:fa40::/32 maxlen: 32
2a05:b700::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 18 Apr 2024 13:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:14:06:b5:ba:22:a6:c3:17:9f:54:bb:93:79:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 1 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6cda6d30916f851216c13a463a5884678d94b866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a6:3d:41:b6:53:df:ff:4b:c8:4c:ee:31:43:
70:47:52:48:aa:ca:03:27:c6:f2:19:dd:7a:17:83:
68:4e:6b:38:69:38:e8:80:24:60:91:8d:49:95:e0:
c2:b4:03:44:0e:4c:b2:e6:81:32:3f:40:b8:e0:e5:
57:62:0a:51:b2:43:c1:1f:a1:59:96:ef:68:ae:d7:
f2:6e:a1:b2:ca:a2:db:9f:53:67:e2:02:dc:3f:12:
c1:f9:35:6b:ac:dc:b2:14:f5:f5:56:4b:dc:1e:cd:
c2:84:bf:1d:3c:c1:99:f9:73:fa:f8:78:ee:e6:4d:
76:2c:44:91:24:d6:9c:8c:73:4a:63:e1:65:77:52:
3c:ed:14:fb:7d:28:da:41:e7:d2:1c:e4:19:4c:7e:
81:88:c7:a5:10:e9:2f:17:e6:b8:c5:db:85:24:ac:
1e:80:41:e4:25:eb:be:34:ee:c4:8d:e9:5d:16:61:
bd:c5:fa:03:92:76:40:98:1e:a4:50:5a:6f:f8:5d:
f1:68:9c:c8:7a:99:26:84:7c:8b:21:94:67:73:6b:
06:16:b8:55:24:6b:90:04:bb:e1:b4:a1:d2:c3:d8:
05:69:d7:36:3c:02:2b:b6:51:0d:f1:67:46:de:08:
fc:4a:d2:41:59:00:dd:ee:a3:fa:6b:b9:3d:a8:0b:
c0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DA:6D:30:91:6F:85:12:16:C1:3A:46:3A:58:84:67:8D:94:B8:66
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/bNptMJFvhRIWwTpGOliEZ42UuGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.80.0/24
185.205.19.0/24
185.254.94.0/23
193.36.63.0/24
IPv6:
2a05:b700::/29
2a0a:fa40::/32
Signature Algorithm: sha256WithRSAEncryption
7e:ea:6b:42:43:c3:65:88:d0:1f:61:0b:8b:7d:3e:04:0f:55:
85:8d:59:be:32:4d:9d:38:74:24:27:0e:e5:a9:02:0f:fd:3a:
fa:7f:f2:3f:4a:75:6d:40:37:e6:b3:08:15:5e:cd:72:18:8f:
7d:7c:6c:72:5a:f5:71:69:85:6c:e1:7b:92:6a:4a:f8:76:8a:
53:4c:6a:66:1f:cc:46:7e:68:1b:38:21:4d:ae:25:c1:f7:79:
a2:0c:f7:63:4e:a8:d0:23:4c:de:cd:62:0f:d7:6c:ea:08:07:
5d:ce:81:c9:ae:e8:af:c6:8f:84:36:d8:cb:6b:f4:1a:4c:47:
40:a7:b4:c6:5a:f9:c4:18:89:69:87:80:af:17:b4:88:42:6e:
a4:93:f8:31:c3:9a:d9:85:26:6d:e7:29:b0:24:7a:d5:33:7a:
b8:bc:73:6d:f0:99:5c:81:eb:76:84:1a:15:66:ef:03:b6:b8:
30:bb:4f:a3:42:22:a2:e1:ec:28:81:39:8f:8a:b3:6a:4c:37:
e6:0c:9b:c0:b1:3a:f9:40:9a:e7:6c:57:19:2c:7a:e3:ea:1e:
72:63:80:46:a5:39:44:1e:a5:c9:d6:ab:5b:06:ae:88:df:79:
6f:da:51:c8:34:36:b3:b1:9d:06:ac:82:15:bd:17:38:26:9e:
8f:fc:80:e8
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgISAYzC2xQGtboipsMXn1S7k3lJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNTkyZTY4ODk1YzcwNjhiNDY1NTUwODkxN2FkNWJiZGRi
ZDBhNWYwHhcNMjQwMTAxMDIyOTQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2RhNmQzMDkxNmY4NTEyMTZjMTNhNDYzYTU4ODQ2NzhkOTRiODY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6Y9QbZT3/9LyEzuMUNwR1JIqsoD
J8byGd16F4NoTms4aTjogCRgkY1JleDCtANEDkyy5oEyP0C44OVXYgpRskPBH6FZ
lu9ortfybqGyyqLbn1Nn4gLcPxLB+TVrrNyyFPX1VkvcHs3ChL8dPMGZ+XP6+Hju
5k12LESRJNacjHNKY+Fld1I87RT7fSjaQefSHOQZTH6BiMelEOkvF+a4xduFJKwe
gEHkJeu+NO7EjeldFmG9xfoDknZAmB6kUFpv+F3xaJzIepkmhHyLIZRnc2sGFrhV
JGuQBLvhtKHSw9gFadc2PAIrtlEN8WdG3gj8StJBWQDd7qP6a7k9qAvA9wIDAQAB
o4ICMTCCAi0wHQYDVR0OBBYEFGzabTCRb4USFsE6RjpYhGeNlLhmMB8GA1UdIwQY
MBaAFFBZLmiJXHBotGVVCJF61bvdvQpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEt
N2JiZDI4Y2U0YTc1LzEvYk5wdE1KRnZoUklXd1RwR09saUVaNDJVdUdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEtN2JiZDI4Y2U0YTc1
LzEvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAeBAIAATAYAwQAuVZQAwQA
uc0TAwQBuf5eAwQAwSQ/MBQEAgACMA4DBQMqBbcAAwUAKgr6QDANBgkqhkiG9w0B
AQsFAAOCAQEAfuprQkPDZYjQH2ELi30+BA9VhY1ZvjJNnTh0JCcO5akCD/06+n/y
P0p1bUA35rMIFV7NchiPfXxsclr1cWmFbOF7kmpK+HaKU0xqZh/MRn5oGzghTa4l
wfd5ogz3Y06o0CNM3s1iD9ds6ggHXc6Bya7or8aPhDbYy2v0GkxHQKe0xlr5xBiJ
aYeArxe0iEJupJP4McOa2YUmbecpsCR61TN6uLxzbfCZXIHrdoQaFWbvA7a4MLtP
o0IiouHsKIE5j4qzakw35gybwLE6+UCa52xXGSx64+oecmOARqU5RB6lydarWwau
iN95b9pRyDQ2s7GdBqyCFb0XOCaej/yA6A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:52 2024 by rpki-client on console-ams.rpki-client.org