Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/a564e9-3a4e-4d4a-807d-7055c2e0476f/1/k2e7-19b1HYk2YHOHy1JD2YBH2U.roa
File: k2e7-19b1HYk2YHOHy1JD2YBH2U.roa (raw, json)
Hash identifier: gBGnhIYFOvkR6HgjB3VajEPDhI6IQobtmnrmjJLOkdE=
Subject key identifier: 93:67:BB:FB:5F:5B:D4:76:24:D9:81:CE:1F:2D:49:0F:66:01:1F:65
Certificate issuer: /CN=63636c3bef55d12a64536b70130a74f53f44d6d0
Certificate serial: 018C30DB35C54F0E72A8F399FE7FF387146C
Authority key identifier: 63:63:6C:3B:EF:55:D1:2A:64:53:6B:70:13:0A:74:F5:3F:44:D6:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2NsO-9V0SpkU2twEwp09T9E1tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/a564e9-3a4e-4d4a-807d-7055c2e0476f/1/k2e7-19b1HYk2YHOHy1JD2YBH2U.roa
Signing time: Sun 03 Dec 2023 18:05:21 +0000
ROA not before: Sun 03 Dec 2023 18:05:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212248
IP address blocks: 185.105.237.0/24 maxlen: 24
185.231.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:30:db:35:c5:4f:0e:72:a8:f3:99:fe:7f:f3:87:14:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63636c3bef55d12a64536b70130a74f53f44d6d0
Validity
Not Before: Dec 3 18:05:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9367bbfb5f5bd47624d981ce1f2d490f66011f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:71:db:b2:46:a3:66:1d:95:87:38:2a:36:cd:
ab:0d:3f:63:12:b8:c0:5a:d5:c0:70:50:b8:87:9e:
e3:70:26:cd:a5:64:b7:cc:73:e9:6b:70:c5:bb:b4:
c7:61:23:68:12:a0:af:e8:9a:3c:b8:e2:87:17:3f:
03:04:62:1f:f4:89:f2:c1:8f:13:d9:bf:4b:a4:52:
00:06:54:af:c3:be:b6:6b:b0:e4:a5:eb:f0:e0:c7:
d2:bc:40:c4:21:f2:bb:6f:92:4e:ab:9e:c6:db:88:
78:30:98:1e:de:de:7d:83:03:dc:f7:47:7f:30:02:
1b:4f:66:65:9b:48:6e:1e:eb:fa:7d:0b:c9:2b:0b:
e7:db:62:ba:b8:2b:21:77:58:43:ca:73:13:fa:f6:
ee:65:38:94:f0:52:ea:0e:f5:4e:e8:9a:f6:1a:a7:
cb:9f:cc:5c:aa:69:7f:74:96:c0:51:0e:97:41:aa:
53:11:f5:7b:f5:5c:66:e4:da:80:05:91:45:1c:26:
25:51:4c:3e:4e:21:21:bb:78:76:23:40:0a:f6:bb:
e9:ce:f2:2f:05:f7:dd:2b:0c:85:c3:f1:24:2e:0b:
62:77:55:0e:94:4a:cb:cb:4b:c3:9a:de:f0:da:7f:
a5:f1:0f:1c:79:08:15:da:e4:0e:20:9a:2c:76:59:
ec:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:67:BB:FB:5F:5B:D4:76:24:D9:81:CE:1F:2D:49:0F:66:01:1F:65
X509v3 Authority Key Identifier:
keyid:63:63:6C:3B:EF:55:D1:2A:64:53:6B:70:13:0A:74:F5:3F:44:D6:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2NsO-9V0SpkU2twEwp09T9E1tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a564e9-3a4e-4d4a-807d-7055c2e0476f/1/k2e7-19b1HYk2YHOHy1JD2YBH2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a564e9-3a4e-4d4a-807d-7055c2e0476f/1/Y2NsO-9V0SpkU2twEwp09T9E1tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.237.0/24
185.231.114.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:65:d7:53:a0:3e:f5:86:70:43:62:18:fd:91:39:06:16:c3:
fa:e2:dc:1e:9a:c9:6e:4b:c2:0a:97:cd:de:01:b2:a0:fd:ed:
ca:b6:aa:0c:63:4b:ec:6e:41:7d:26:c6:ca:07:cc:51:da:f4:
51:48:73:b9:8a:ee:83:87:2b:d0:40:8b:53:9c:af:72:f5:07:
83:43:12:a0:80:c2:6a:8e:73:0d:b0:19:4d:e5:64:4e:28:4b:
8b:1e:47:51:9c:2a:75:e3:ca:43:5d:8d:dc:17:b3:09:68:11:
76:b3:0d:8f:5a:31:7e:37:7e:2f:36:b9:90:0f:ad:4b:55:49:
04:2e:50:4f:59:f3:01:56:95:c9:33:c7:3c:e8:4a:15:cd:f8:
ff:f9:96:5a:d1:71:84:4b:b0:d8:5c:a4:bb:3e:92:e4:67:2f:
69:24:a9:2b:53:43:06:e6:07:74:f5:f4:f3:dc:7a:33:ce:d9:
1a:de:71:8a:06:17:dd:91:47:21:36:57:6d:e5:22:e7:f1:d7:
ff:ff:79:90:e1:e7:4f:43:b4:98:f7:2d:fc:7d:86:fe:0a:34:
a6:9c:bc:05:5e:9b:36:6f:20:bf:80:0f:64:e7:8c:ce:c9:4f:
11:b9:49:c0:21:16:50:6d:f8:57:34:11:80:e5:f3:4f:e4:05:
3d:4b:c5:19
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYww2zXFTw5yqPOZ/n/zhxRsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzNjM2YzNiZWY1NWQxMmE2NDUzNmI3MDEzMGE3NGY1M2Y0
NGQ2ZDAwHhcNMjMxMjAzMTgwNTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MzY3YmJmYjVmNWJkNDc2MjRkOTgxY2UxZjJkNDkwZjY2MDExZjY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAonHbskajZh2VhzgqNs2rDT9jErjA
WtXAcFC4h57jcCbNpWS3zHPpa3DFu7THYSNoEqCv6Jo8uOKHFz8DBGIf9InywY8T
2b9LpFIABlSvw762a7Dkpevw4MfSvEDEIfK7b5JOq57G24h4MJge3t59gwPc90d/
MAIbT2Zlm0huHuv6fQvJKwvn22K6uCshd1hDynMT+vbuZTiU8FLqDvVO6Jr2GqfL
n8xcqml/dJbAUQ6XQapTEfV79Vxm5NqABZFFHCYlUUw+TiEhu3h2I0AK9rvpzvIv
BffdKwyFw/EkLgtid1UOlErLy0vDmt7w2n+l8Q8ceQgV2uQOIJosdlnsIQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJNnu/tfW9R2JNmBzh8tSQ9mAR9lMB8GA1UdIwQY
MBaAFGNjbDvvVdEqZFNrcBMKdPU/RNbQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTJOc08tOVYwU3BrVTJ0d0V3cDA5VDlFMXRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9hNTY0ZTktM2E0ZS00ZDRhLTgwN2Qt
NzA1NWMyZTA0NzZmLzEvazJlNy0xOWIxSFlrMllIT0h5MUpEMllCSDJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS9hNTY0ZTktM2E0ZS00ZDRhLTgwN2QtNzA1NWMyZTA0NzZm
LzEvWTJOc08tOVYwU3BrVTJ0d0V3cDA5VDlFMXRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuWntAwQA
uedyMA0GCSqGSIb3DQEBCwUAA4IBAQA9ZddToD71hnBDYhj9kTkGFsP64twemslu
S8IKl83eAbKg/e3KtqoMY0vsbkF9JsbKB8xR2vRRSHO5iu6DhyvQQItTnK9y9QeD
QxKggMJqjnMNsBlN5WROKEuLHkdRnCp148pDXY3cF7MJaBF2sw2PWjF+N34vNrmQ
D61LVUkELlBPWfMBVpXJM8c86EoVzfj/+ZZa0XGES7DYXKS7PpLkZy9pJKkrU0MG
5gd09fTz3Hozztka3nGKBhfdkUchNldt5SLn8df//3mQ4edPQ7SY9y38fYb+CjSm
nLwFXps2byC/gA9k54zOyU8RuUnAIRZQbfhXNBGA5fNP5AU9S8UZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:22 2024 by rpki-client on console-fra.rpki-client.org