Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/u7B2W-Q_xWt0IlRjVB0zEczq7LQ.roa
File: u7B2W-Q_xWt0IlRjVB0zEczq7LQ.roa (raw, json)
Hash identifier: rgRXRHiyuhE/FnHnTeXgO5syVqqZKjtsiPwF1dfggqI=
Subject key identifier: BB:B0:76:5B:E4:3F:C5:6B:74:22:54:63:54:1D:33:11:CC:EA:EC:B4
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 0187E2200934492891A31C4C61B71BC7D945
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/u7B2W-Q_xWt0IlRjVB0zEczq7LQ.roa
Signing time: Wed 03 May 2023 14:59:23 +0000
ROA not before: Wed 03 May 2023 14:59:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209043
IP address blocks: 185.155.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Sep 2023 14:27:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e2:20:09:34:49:28:91:a3:1c:4c:61:b7:1b:c7:d9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: May 3 14:59:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbb0765be43fc56b74225463541d3311cceaecb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3f:68:8c:e8:fb:d1:89:f9:eb:ca:fa:14:01:
48:3b:d6:c5:b5:3e:3c:17:90:50:03:ef:12:73:73:
01:ae:2c:a5:a4:5f:58:d4:09:57:b1:5e:43:f5:9b:
e2:18:e5:b0:b3:61:dd:19:36:69:10:00:1a:36:de:
59:d1:c1:4b:23:8e:f9:5b:7c:e1:26:30:8e:3e:7c:
b3:a0:a7:3f:65:ef:c9:18:8e:cf:93:14:76:0c:52:
0e:30:98:82:b1:16:11:ab:53:2a:96:72:c1:30:f1:
36:c8:34:b2:8e:8e:26:b7:e8:2a:71:25:6f:f7:c2:
a9:5d:b0:3f:89:16:ed:cf:c3:f0:62:0c:29:cf:69:
13:01:51:73:1a:3e:f8:2b:29:98:55:26:90:b4:65:
cc:0e:bb:68:cc:32:10:e8:1e:8d:83:f8:97:24:4d:
34:f2:75:47:31:ca:d8:93:f6:6f:69:f0:a5:4b:64:
0c:df:67:83:59:c5:74:15:23:a6:10:58:97:ab:3b:
20:5a:a9:f6:73:7f:66:29:77:ff:74:de:70:b7:fa:
60:36:9d:6a:49:39:d5:66:d0:5c:80:53:9e:e9:3a:
11:f5:b3:d1:38:04:0d:30:7e:70:f6:9b:ce:15:72:
cb:22:ea:95:dd:ec:bf:80:99:6b:e9:81:cf:53:4d:
e1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B0:76:5B:E4:3F:C5:6B:74:22:54:63:54:1D:33:11:CC:EA:EC:B4
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/u7B2W-Q_xWt0IlRjVB0zEczq7LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.235.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:17:df:e2:0e:92:8c:fa:80:fe:a7:32:e9:12:19:8b:fe:15:
93:80:ea:8b:d5:0b:64:ff:7f:0f:8a:8f:b2:b4:6e:83:db:b2:
5b:70:37:09:e6:09:5f:d1:3f:b2:27:60:08:38:aa:b5:74:42:
d8:c5:d5:5d:e5:9d:99:5b:a2:6c:45:0a:ac:5f:75:a3:f1:ac:
dc:87:0b:13:b7:82:e7:40:a5:12:30:6a:e1:f3:02:03:9a:62:
d6:46:56:54:1f:71:80:13:b5:7e:97:fa:c2:e7:08:a3:18:99:
6f:71:05:25:34:6b:ad:46:bd:cc:0e:e5:03:d4:31:cb:74:fb:
82:f2:32:ef:63:f9:44:a7:4c:78:52:16:b7:3e:24:80:f6:bd:
87:b9:a2:27:8f:a1:00:12:88:aa:d8:01:fc:c4:5d:f9:0c:8d:
ac:12:15:12:89:68:f3:19:76:49:69:c0:05:35:55:be:6a:32:
d1:07:fc:87:c1:d9:cd:f6:18:37:c2:31:4a:11:f6:3a:ac:e9:
e2:7d:b0:b3:60:13:a5:ad:b1:6b:9a:f1:9d:db:6e:63:44:97:
e3:f6:db:79:42:32:eb:5c:05:98:fe:d9:b0:0c:aa:a5:1d:87:
e2:d8:41:ff:a8:89:97:56:f0:fc:84:cf:c7:05:41:a7:fa:b9:
be:61:a2:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfiIAk0SSiRoxxMYbcbx9lFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MTdjOWRlOTI3ZmE3NWJlYWVmNzg4NWYwZDg4ZjZmNGQy
YTBlZDYwHhcNMjMwNTAzMTQ1OTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYmIwNzY1YmU0M2ZjNTZiNzQyMjU0NjM1NDFkMzMxMWNjZWFlY2I0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArD9ojOj70Yn568r6FAFIO9bFtT48
F5BQA+8Sc3MBriylpF9Y1AlXsV5D9ZviGOWws2HdGTZpEAAaNt5Z0cFLI475W3zh
JjCOPnyzoKc/Ze/JGI7PkxR2DFIOMJiCsRYRq1MqlnLBMPE2yDSyjo4mt+gqcSVv
98KpXbA/iRbtz8PwYgwpz2kTAVFzGj74KymYVSaQtGXMDrtozDIQ6B6Ng/iXJE00
8nVHMcrYk/ZvafClS2QM32eDWcV0FSOmEFiXqzsgWqn2c39mKXf/dN5wt/pgNp1q
STnVZtBcgFOe6ToR9bPROAQNMH5w9pvOFXLLIuqV3ey/gJlr6YHPU03hIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLuwdlvkP8VrdCJUY1QdMxHM6uy0MB8GA1UdIwQY
MBaAFDUXyd6Sf6db6u94hfDYj29NKg7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlJmSjNwSl9wMXZxNzNpRjhOaVBiMDBxRHRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy85NTRhZGUtODRiNy00NDZkLWE2ZTIt
ZmQzYjMwMDJjMGJiLzEvdTdCMlctUV94V3QwSWxSalZCMHpFY3pxN0xRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy85NTRhZGUtODRiNy00NDZkLWE2ZTItZmQzYjMwMDJjMGJi
LzEvTlJmSjNwSl9wMXZxNzNpRjhOaVBiMDBxRHRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZvrMA0G
CSqGSIb3DQEBCwUAA4IBAQAqF9/iDpKM+oD+pzLpEhmL/hWTgOqL1Qtk/38Pio+y
tG6D27JbcDcJ5glf0T+yJ2AIOKq1dELYxdVd5Z2ZW6JsRQqsX3Wj8azchwsTt4Ln
QKUSMGrh8wIDmmLWRlZUH3GAE7V+l/rC5wijGJlvcQUlNGutRr3MDuUD1DHLdPuC
8jLvY/lEp0x4Uha3PiSA9r2HuaInj6EAEoiq2AH8xF35DI2sEhUSiWjzGXZJacAF
NVW+ajLRB/yHwdnN9hg3wjFKEfY6rOnifbCzYBOlrbFrmvGd225jRJfj9tt5QjLr
XAWY/tmwDKqlHYfi2EH/qImXVvD8hM/HBUGn+rm+YaLj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:51 2024 by rpki-client on console-fra.rpki-client.org