Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/FkqyQEVrGGhDi5KE4js0bbzzzRQ.roa
File: FkqyQEVrGGhDi5KE4js0bbzzzRQ.roa (raw, json)
Hash identifier: cOlMx87gUffWgVXDNzDksJHZGhigYYxhgZIjD4byZak=
Subject key identifier: 16:4A:B2:40:45:6B:18:68:43:8B:92:84:E2:3B:34:6D:BC:F3:CD:14
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 01923A43B5243FF99066648AEBAC5227AEDB
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/FkqyQEVrGGhDi5KE4js0bbzzzRQ.roa
Signing time: Sat 28 Sep 2024 20:12:48 +0000
ROA not before: Sat 28 Sep 2024 20:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.210.168.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 27 Oct 2024 11:05:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3a:43:b5:24:3f:f9:90:66:64:8a:eb:ac:52:27:ae:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Sep 28 20:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=164ab240456b1868438b9284e23b346dbcf3cd14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:77:a3:c2:c4:b6:81:77:0a:f1:1b:56:91:ef:
1f:7e:c5:52:56:7d:b5:0a:4f:5b:69:97:c4:45:61:
0f:c0:8b:66:1d:3d:ff:39:a5:96:26:b0:0a:57:b8:
f7:69:12:51:0d:01:e1:e0:e5:aa:d6:ab:05:02:29:
e7:ca:f0:c7:dc:b8:08:37:46:fe:52:b6:bb:e3:6e:
43:e4:1b:b0:21:21:ca:9c:c7:22:53:e4:99:84:16:
c0:e1:f5:2e:74:86:85:b4:6d:7e:0d:bd:19:26:3c:
ae:92:41:6c:ea:2e:1e:cf:4e:be:8d:a0:77:10:a2:
b5:f4:d6:34:00:19:19:80:b7:16:c2:87:66:b5:d1:
d8:71:63:b5:d0:cb:a5:bc:39:b7:3f:ce:8a:b9:e6:
27:25:21:18:1c:8a:0b:a9:29:7a:25:b0:b0:46:a7:
fd:56:11:85:92:f0:7e:43:c5:e1:a2:a2:ab:7d:06:
ce:03:eb:9e:b1:3d:ff:19:af:69:60:e4:9c:73:5e:
be:f5:35:0b:5b:19:3f:8c:6f:52:41:72:5e:99:d2:
09:e2:3d:93:39:7d:ab:55:df:90:0e:70:f4:f7:ef:
15:f1:5c:20:07:f7:c1:4c:43:4e:b5:5b:17:76:de:
a5:f1:9b:62:b2:82:bc:de:2d:20:c2:41:10:8e:72:
b3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:4A:B2:40:45:6B:18:68:43:8B:92:84:E2:3B:34:6D:BC:F3:CD:14
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/FkqyQEVrGGhDi5KE4js0bbzzzRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.168.0/23
Signature Algorithm: sha256WithRSAEncryption
56:d8:03:13:3a:39:a4:6c:f3:82:0e:89:d6:4f:40:f4:26:40:
3e:f5:86:c8:99:09:df:59:b3:73:d7:2e:73:04:3f:a3:8c:37:
88:c5:34:d9:20:ef:14:92:09:fa:65:6e:09:31:69:77:ea:14:
08:c1:67:5e:ea:d6:ed:88:fe:1c:a1:76:33:1f:76:95:68:b4:
e1:89:90:05:71:d3:b4:2b:1e:e5:8f:91:f3:62:b0:4b:8f:f1:
5c:15:e3:08:37:6c:dc:68:af:8a:18:4b:06:5a:c6:1a:8b:78:
0e:cc:51:6d:b6:90:bd:3e:7d:04:d2:d3:44:23:db:f9:56:e9:
6f:cb:36:c3:f3:f4:98:53:83:39:db:8b:0a:e7:0a:f3:f2:ef:
f9:48:e9:83:d1:55:8b:34:3a:b7:a7:e8:63:ba:06:64:0e:20:
f3:61:31:90:71:f7:74:7d:f4:e5:6f:5d:ea:f6:9f:84:61:f9:
51:ed:91:b7:67:1c:0c:1b:69:7d:0a:c7:bb:0a:89:4a:47:f1:
0a:b4:c8:69:d4:28:cc:cf:da:a5:29:0d:c3:2e:c1:da:5c:f2:
27:96:68:d8:a4:f5:32:36:51:e6:0c:cd:4f:cf:68:60:52:b1:
40:a0:41:68:2f:1a:18:8c:3f:9b:23:1e:a6:0c:e6:95:b5:1f:
f6:7c:75:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZI6Q7UkP/mQZmSK66xSJ67bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmZjgwY2JkZmUxODM1NGEzY2ZkYmEyZmUwNzlhYTJlYmM1
OGRjZDQwHhcNMjQwOTI4MjAxMjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjRhYjI0MDQ1NmIxODY4NDM4YjkyODRlMjNiMzQ2ZGJjZjNjZDE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3ejwsS2gXcK8RtWke8ffsVSVn21
Ck9baZfERWEPwItmHT3/OaWWJrAKV7j3aRJRDQHh4OWq1qsFAinnyvDH3LgIN0b+
Ura7425D5BuwISHKnMciU+SZhBbA4fUudIaFtG1+Db0ZJjyukkFs6i4ez06+jaB3
EKK19NY0ABkZgLcWwodmtdHYcWO10MulvDm3P86KueYnJSEYHIoLqSl6JbCwRqf9
VhGFkvB+Q8XhoqKrfQbOA+uesT3/Ga9pYOScc16+9TULWxk/jG9SQXJemdIJ4j2T
OX2rVd+QDnD09+8V8VwgB/fBTENOtVsXdt6l8ZtisoK83i0gwkEQjnKzEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBZKskBFaxhoQ4uShOI7NG28880UMB8GA1UdIwQY
MBaAFA/4DL3+GDVKPP26L+B5qi68WNzUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRF9nTXZmNFlOVW84X2JvdjRIbXFMcnhZM05RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8xMjk1NjQtZjFkYi00ZGM1LTg5MDYt
NmZjZGNkNWFiNjYwLzEvRmtxeVFFVnJHR2hEaTVLRTRqczBiYnp6elJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8xMjk1NjQtZjFkYi00ZGM1LTg5MDYtNmZjZGNkNWFiNjYw
LzEvRF9nTXZmNFlOVW84X2JvdjRIbXFMcnhZM05RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBudKoMA0G
CSqGSIb3DQEBCwUAA4IBAQBW2AMTOjmkbPOCDonWT0D0JkA+9YbImQnfWbNz1y5z
BD+jjDeIxTTZIO8Ukgn6ZW4JMWl36hQIwWde6tbtiP4coXYzH3aVaLThiZAFcdO0
Kx7lj5HzYrBLj/FcFeMIN2zcaK+KGEsGWsYai3gOzFFttpC9Pn0E0tNEI9v5Vulv
yzbD8/SYU4M524sK5wrz8u/5SOmD0VWLNDq3p+hjugZkDiDzYTGQcfd0ffTlb13q
9p+EYflR7ZG3ZxwMG2l9Cse7ColKR/EKtMhp1CjMz9qlKQ3DLsHaXPInlmjYpPUy
NlHmDM1Pz2hgUrFAoEFoLxoYjD+bIx6mDOaVtR/2fHU1
Generated at Sun Oct 27 12:56:30 2024 by rpki-client on console-fra.rpki-client.org