Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/7VfZHCsABlZvOv4G-u02mLSifmg.roa
File: 7VfZHCsABlZvOv4G-u02mLSifmg.roa (raw, json)
Hash identifier: LPN7O4HiZEXtl+XHA35CR7NkewcKJqzdOj3Te4LUMRY=
Subject key identifier: ED:57:D9:1C:2B:00:06:56:6F:3A:FE:06:FA:ED:36:98:B4:A2:7E:68
Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Certificate serial: 018A5FC7336FDFE9BE8B790F0C627C008E1A
Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/7VfZHCsABlZvOv4G-u02mLSifmg.roa
Signing time: Mon 04 Sep 2023 10:40:04 +0000
ROA not before: Mon 04 Sep 2023 10:40:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210539
IP address blocks: 185.162.90.0/24 maxlen: 24
185.170.130.0/24 maxlen: 24
185.170.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 Nov 2023 16:19:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:c7:33:6f:df:e9:be:8b:79:0f:0c:62:7c:00:8e:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Validity
Not Before: Sep 4 10:40:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed57d91c2b0006566f3afe06faed3698b4a27e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ac:55:d3:53:16:0e:45:35:47:d6:df:68:3a:
c1:92:c3:a6:a8:b8:0e:64:5f:11:4d:9f:21:b4:30:
d7:18:7b:46:b6:0c:65:a7:de:af:f4:94:e2:e1:7d:
45:15:ef:8b:b8:4e:9a:5c:6a:f6:d8:d2:81:f8:9d:
a7:a7:9d:16:ab:2f:e3:7e:50:9a:c5:06:93:e1:42:
03:6d:79:51:d5:9d:92:77:bd:b9:7e:ba:5f:9f:5f:
03:cb:32:d3:0a:b1:d5:4e:39:9f:d6:a9:85:d7:df:
cf:fe:56:77:2b:12:3c:62:c5:0b:3d:a3:ea:08:f1:
50:d9:a6:55:69:8d:b7:c3:fd:0d:d6:d3:ab:6f:0b:
1c:16:76:d6:6a:39:5b:56:a7:61:13:17:09:ab:3c:
c3:27:e1:26:b7:d3:7d:48:ce:92:a8:1d:25:b6:19:
03:4b:49:02:85:f0:99:8a:ce:72:c9:d3:a3:fa:bb:
6d:70:84:59:15:35:67:6a:8a:ec:80:28:ac:1d:42:
a0:bb:45:59:29:7f:4f:74:29:07:48:33:f5:69:97:
3d:8b:bd:82:d1:c7:6f:f1:b1:f1:8f:78:f8:bb:3a:
9e:cf:be:e6:1a:64:dc:31:b3:8d:7b:5d:34:c2:7f:
da:28:27:39:f4:1d:f7:98:cb:11:0f:e6:f3:e3:f4:
b0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:57:D9:1C:2B:00:06:56:6F:3A:FE:06:FA:ED:36:98:B4:A2:7E:68
X509v3 Authority Key Identifier:
keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/7VfZHCsABlZvOv4G-u02mLSifmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.90.0/24
185.170.128.0/24
185.170.130.0/24
Signature Algorithm: sha256WithRSAEncryption
07:ca:2b:bb:8c:de:ef:25:c3:b5:d8:c3:a6:71:58:1b:df:1d:
d5:ee:57:22:86:cc:a7:28:31:d2:1e:4f:ca:5d:fc:7c:07:7e:
6b:2f:a5:00:b2:12:b8:c8:38:f9:e2:c7:cc:7c:1b:38:51:a3:
60:a2:2d:97:ba:52:97:20:00:53:90:9e:9f:3d:a5:62:56:b5:
c5:a6:f7:68:2e:77:2f:7b:0a:47:9b:4b:50:c0:57:fa:d0:f0:
94:46:69:8d:98:33:af:30:8e:18:a8:10:51:7a:4c:a6:20:60:
12:29:87:3c:6f:66:65:79:25:11:6b:ae:21:f0:29:6c:3d:0f:
9c:fe:72:11:f4:62:51:ee:69:ed:05:0b:61:f3:2b:6d:9b:c4:
ac:1f:d2:04:73:29:25:6c:d0:c7:58:e4:c6:71:65:32:c8:4d:
64:be:08:f9:fd:1c:91:c7:95:5f:a7:07:2e:d7:46:bf:05:32:
e3:b4:0a:91:ba:89:4c:84:f9:c1:65:e0:e3:22:62:24:d4:8a:
09:01:d7:23:c2:6b:ba:e5:e7:f4:9e:a8:63:91:5c:da:a7:2a:
ea:07:2b:e9:04:94:b9:e8:2f:12:70:c9:67:2d:cd:71:70:ae:
9c:ca:96:0c:68:02:b2:b3:f9:90:27:29:53:4e:55:94:2a:6a:
42:0a:3e:3f
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYpfxzNv3+m+i3kPDGJ8AI4aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5Y2U1NjlhMTRjMmRiMzc3MmYyMzE4N2NlNjhlNjU0MWVj
MDA0OGUwHhcNMjMwOTA0MTA0MDA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDU3ZDkxYzJiMDAwNjU2NmYzYWZlMDZmYWVkMzY5OGI0YTI3ZTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgKxV01MWDkU1R9bfaDrBksOmqLgO
ZF8RTZ8htDDXGHtGtgxlp96v9JTi4X1FFe+LuE6aXGr22NKB+J2np50Wqy/jflCa
xQaT4UIDbXlR1Z2Sd725frpfn18DyzLTCrHVTjmf1qmF19/P/lZ3KxI8YsULPaPq
CPFQ2aZVaY23w/0N1tOrbwscFnbWajlbVqdhExcJqzzDJ+Emt9N9SM6SqB0lthkD
S0kChfCZis5yydOj+rttcIRZFTVnaorsgCisHUKgu0VZKX9PdCkHSDP1aZc9i72C
0cdv8bHxj3j4uzqez77mGmTcMbONe100wn/aKCc59B33mMsRD+bz4/SwXwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFO1X2RwrAAZWbzr+BvrtNpi0on5oMB8GA1UdIwQY
MBaAFJnOVpoUwts3cvIxh85o5lQewASOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWM1V21oVEMyemR5OGpHSHptam1WQjdBQkk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9jYzZlOTktNmU1Zi00MDFiLTkxMmQt
MTA5NTU0NGM2YzUwLzEvN1ZmWkhDc0FCbFp2T3Y0Ry11MDJtTFNpZm1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi9jYzZlOTktNmU1Zi00MDFiLTkxMmQtMTA5NTU0NGM2YzUw
LzEvbWM1V21oVEMyemR5OGpHSHptam1WQjdBQkk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAuaJaAwQA
uaqAAwQAuaqCMA0GCSqGSIb3DQEBCwUAA4IBAQAHyiu7jN7vJcO12MOmcVgb3x3V
7lcihsynKDHSHk/KXfx8B35rL6UAshK4yDj54sfMfBs4UaNgoi2XulKXIABTkJ6f
PaViVrXFpvdoLncvewpHm0tQwFf60PCURmmNmDOvMI4YqBBRekymIGASKYc8b2Zl
eSURa64h8ClsPQ+c/nIR9GJR7mntBQth8yttm8SsH9IEcyklbNDHWOTGcWUyyE1k
vgj5/RyRx5Vfpwcu10a/BTLjtAqRuolMhPnBZeDjImIk1IoJAdcjwmu65ef0nqhj
kVzapyrqByvpBJS56C8ScMlnLc1xcK6cypYMaAKys/mQJylTTlWUKmpCCj4/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:27 2024 by rpki-client on console-fra.rpki-client.org