Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/JaQlk0LFCBlLMi_aIZixO47X7Dg.roa
File: JaQlk0LFCBlLMi_aIZixO47X7Dg.roa (raw, json)
Hash identifier: H5i7aM+3Vu6ZDvRpYooB+CKy7kj8SFReORkipMckC1E=
Subject key identifier: 25:A4:25:93:42:C5:08:19:4B:32:2F:DA:21:98:B1:3B:8E:D7:EC:38
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018D633E3022EED34B4C28C359247D91CBB4
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/JaQlk0LFCBlLMi_aIZixO47X7Dg.roa
Signing time: Thu 01 Feb 2024 05:57:16 +0000
ROA not before: Thu 01 Feb 2024 05:57:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206003
IP address blocks: 46.23.100.0/22 maxlen: 22
185.81.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 06:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:63:3e:30:22:ee:d3:4b:4c:28:c3:59:24:7d:91:cb:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Feb 1 05:57:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25a4259342c508194b322fda2198b13b8ed7ec38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:02:1d:23:ce:2b:7f:61:a0:9d:3c:35:ff:3a:
3a:6c:9b:4f:62:34:b0:f6:2e:86:59:ee:fd:01:b7:
05:f6:5e:21:0b:5f:cd:b2:86:8d:59:f1:ec:c6:71:
18:51:77:23:f2:88:fd:87:43:71:89:28:57:42:83:
29:8f:d6:02:ef:58:70:16:d0:30:a5:88:db:a4:bd:
31:0b:9f:81:fb:5c:75:48:13:9a:e2:c6:32:33:71:
e7:4b:43:e5:36:5e:49:b5:c4:ad:a8:e7:25:da:f0:
72:f6:16:66:d2:c7:aa:22:db:3c:36:e4:88:a9:fd:
99:d4:0c:fe:f5:ef:4d:b9:d3:97:ae:76:8e:47:75:
0d:c6:d7:b4:0e:89:d5:98:52:77:4b:c2:aa:d1:e6:
00:24:72:f3:8a:f2:7d:0d:cb:60:c4:f7:f3:f4:8e:
b3:a6:88:11:e2:a4:38:63:9b:03:63:51:c5:47:da:
ca:28:c3:a3:14:2e:c1:17:12:52:d3:ae:bb:46:ac:
e5:22:d5:fa:d9:87:b2:6c:8f:97:20:aa:d4:0d:4d:
d5:42:b9:26:86:17:e7:87:91:bf:4d:8d:73:89:43:
d7:dd:89:c8:d9:40:3e:c2:95:25:3d:75:88:c9:f5:
cb:0c:d1:35:c0:1e:56:90:8d:ab:31:e3:86:92:11:
fb:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A4:25:93:42:C5:08:19:4B:32:2F:DA:21:98:B1:3B:8E:D7:EC:38
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/JaQlk0LFCBlLMi_aIZixO47X7Dg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.100.0/22
185.81.217.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:74:0c:8f:cf:2d:e6:73:c1:75:f2:11:21:ce:95:c8:95:0d:
1a:2b:9f:19:f2:59:14:10:89:59:b6:aa:1a:89:af:d2:90:15:
07:ea:2b:d4:f0:79:92:3c:34:fe:79:2b:33:ea:97:b3:67:c0:
ae:26:54:ec:e8:e5:df:45:20:c8:69:93:3c:8d:66:58:95:e2:
cd:57:fa:ae:5d:28:ed:d7:4c:ab:a5:3c:83:83:48:41:e2:c8:
4f:da:4d:02:5b:fa:96:2d:4e:31:41:8b:89:1b:dc:79:9a:16:
16:d4:1d:f0:ba:50:2e:9a:76:e2:d5:64:7b:3e:db:c1:29:c4:
4b:cb:50:df:06:cf:9a:2d:54:c8:fe:38:e6:f9:88:fc:4b:b3:
a1:ba:e6:08:f8:7d:47:31:51:09:5e:8b:ba:a3:9f:f3:b0:e0:
46:53:b9:b6:e8:d6:49:50:ab:0c:b9:47:bb:3c:f5:83:33:77:
f7:47:7e:f3:45:a6:b2:4f:48:1c:85:be:de:c2:c5:79:13:98:
eb:a0:71:f6:ed:0b:cd:c7:74:92:9b:32:6b:91:78:4b:2c:9a:
c9:63:47:ff:8d:a0:7a:6b:f9:76:44:e9:cf:7c:0d:c4:ef:22:
01:76:c7:f3:26:8b:59:b3:e9:7f:2a:03:f0:36:2b:f3:fa:75:
ba:2d:e6:a3
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY1jPjAi7tNLTCjDWSR9kcu0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjQwMjAxMDU1NzE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNWE0MjU5MzQyYzUwODE5NGIzMjJmZGEyMTk4YjEzYjhlZDdlYzM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAIdI84rf2GgnTw1/zo6bJtPYjSw
9i6GWe79AbcF9l4hC1/NsoaNWfHsxnEYUXcj8oj9h0NxiShXQoMpj9YC71hwFtAw
pYjbpL0xC5+B+1x1SBOa4sYyM3HnS0PlNl5JtcStqOcl2vBy9hZm0seqIts8NuSI
qf2Z1Az+9e9NudOXrnaOR3UNxte0DonVmFJ3S8Kq0eYAJHLzivJ9DctgxPfz9I6z
pogR4qQ4Y5sDY1HFR9rKKMOjFC7BFxJS0667RqzlItX62YeybI+XIKrUDU3VQrkm
hhfnh5G/TY1ziUPX3YnI2UA+wpUlPXWIyfXLDNE1wB5WkI2rMeOGkhH7HQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCWkJZNCxQgZSzIv2iGYsTuO1+w4MB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvSmFRbGswTEZDQmxMTWlfYUlaaXhPNDdYN0RnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLhdkAwQA
uVHZMA0GCSqGSIb3DQEBCwUAA4IBAQC5dAyPzy3mc8F18hEhzpXIlQ0aK58Z8lkU
EIlZtqoaia/SkBUH6ivU8HmSPDT+eSsz6pezZ8CuJlTs6OXfRSDIaZM8jWZYleLN
V/quXSjt10yrpTyDg0hB4shP2k0CW/qWLU4xQYuJG9x5mhYW1B3wulAumnbi1WR7
PtvBKcRLy1DfBs+aLVTI/jjm+Yj8S7OhuuYI+H1HMVEJXou6o5/zsOBGU7m26NZJ
UKsMuUe7PPWDM3f3R37zRaayT0gchb7ewsV5E5jroHH27QvNx3SSmzJrkXhLLJrJ
Y0f/jaB6a/l2ROnPfA3E7yIBdsfzJotZs+l/KgPwNivz+nW6Leaj
-----END CERTIFICATE-----
Generated at Wed Feb 14 09:29:52 2024 by rpki-client on console-ams.rpki-client.org