Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/reoKe71FVduh2u-YEX5bueHvbMI.roa
File: reoKe71FVduh2u-YEX5bueHvbMI.roa (raw, json)
Hash identifier: D3wst3iUPC6hrTTp+4vxn3BBiGgk7fFzuiw2tvlxclE=
Subject key identifier: AD:EA:0A:7B:BD:45:55:DB:A1:DA:EF:98:11:7E:5B:B9:E1:EF:6C:C2
Certificate issuer: /CN=79d10f728d6499a749ae5902e8fa883f1add4517
Certificate serial: 01856D384FD18BC2B7CCDA079719753066B3
Authority key identifier: 79:D1:0F:72:8D:64:99:A7:49:AE:59:02:E8:FA:88:3F:1A:DD:45:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edEPco1kmadJrlkC6PqIPxrdRRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/reoKe71FVduh2u-YEX5bueHvbMI.roa
Signing time: Sun 01 Jan 2023 12:04:44 +0000
ROA not before: Sun 01 Jan 2023 12:04:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.236.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:4f:d1:8b:c2:b7:cc:da:07:97:19:75:30:66:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d10f728d6499a749ae5902e8fa883f1add4517
Validity
Not Before: Jan 1 12:04:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adea0a7bbd4555dba1daef98117e5bb9e1ef6cc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3f:34:e8:64:e6:2c:5e:5d:13:05:b7:31:cf:
5d:38:81:a0:99:0f:5b:ec:40:dc:d5:26:4a:36:2f:
0d:de:96:4b:3c:24:5f:d4:fd:4e:84:7a:2d:e1:06:
24:da:01:8f:70:b7:9f:c4:9b:95:ff:39:e6:f4:4f:
ab:75:70:6c:1d:eb:79:a9:40:93:74:26:8b:92:0f:
8b:0a:e1:c7:11:37:18:89:f8:7c:1b:a2:c9:9e:8f:
e0:cf:8a:4b:a2:99:ed:ba:a3:f0:54:2c:55:dc:54:
23:2c:40:92:98:a4:15:1c:07:50:60:e7:52:3f:fe:
8f:39:37:a6:9e:0f:6d:f4:6a:ed:a9:79:8e:a3:ba:
2c:a8:8f:92:a7:90:58:00:4f:55:5b:f4:e5:55:32:
d8:41:ab:28:29:06:7f:2d:36:be:39:2b:52:6e:8d:
ce:48:26:94:eb:7a:c9:f4:fc:68:4e:28:d5:4d:6e:
5a:99:2a:fc:75:96:77:b1:ef:5c:2b:72:06:8c:b1:
04:49:5e:e6:1c:8a:04:7a:b7:3a:a0:a6:8d:28:ea:
7e:47:a0:a0:e3:56:26:97:e4:23:d5:11:98:89:64:
23:a8:43:7f:a6:24:7d:7c:02:02:30:06:f1:6d:f4:
81:d5:15:ab:f8:fd:d6:90:69:aa:13:fc:86:b4:01:
0a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:EA:0A:7B:BD:45:55:DB:A1:DA:EF:98:11:7E:5B:B9:E1:EF:6C:C2
X509v3 Authority Key Identifier:
keyid:79:D1:0F:72:8D:64:99:A7:49:AE:59:02:E8:FA:88:3F:1A:DD:45:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edEPco1kmadJrlkC6PqIPxrdRRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/reoKe71FVduh2u-YEX5bueHvbMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/edEPco1kmadJrlkC6PqIPxrdRRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.142.0/24
Signature Algorithm: sha256WithRSAEncryption
36:dc:a4:18:51:f1:0d:ae:57:05:d6:a3:d5:05:c9:25:30:af:
f3:45:bb:a9:2b:5b:b6:6f:52:7b:e5:38:82:91:f2:2a:a3:f3:
1f:16:ce:6a:17:77:81:b2:c3:61:9a:1a:49:6d:04:56:0f:2b:
73:58:0b:03:60:c4:cb:a7:14:b6:38:05:cb:ec:59:31:42:46:
e4:71:9d:b9:b6:68:04:fb:8b:d9:03:d6:eb:3f:34:5a:e0:66:
d6:50:65:23:f6:62:b0:bd:c0:2a:5e:56:71:06:b3:79:e7:b6:
dd:ad:6b:90:a4:20:eb:0a:c0:22:b8:e8:8b:5e:38:ad:04:06:
8f:95:71:79:6e:9c:6c:f7:96:43:7b:53:3a:b3:a7:db:cd:03:
b6:99:b8:c9:4b:a3:fc:be:61:12:aa:d6:59:16:2e:bd:43:0a:
9e:76:27:7b:08:72:d2:ba:ff:42:57:b2:e8:ce:4e:3d:6a:95:
c3:03:7b:30:53:5d:55:3f:38:5f:03:9f:03:92:2c:8c:7c:89:
a7:1c:8b:13:70:89:a6:2f:66:f1:a0:fa:19:69:e8:3b:d8:34:
b2:f1:7b:c8:be:70:8b:b8:30:86:2f:8f:e6:27:e4:6b:15:39:
77:ed:d6:33:a2:bc:69:07:4b:0b:91:70:a4:cf:ea:f2:7b:e7:
54:a6:cb:f6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtOE/Ri8K3zNoHlxl1MGazMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5ZDEwZjcyOGQ2NDk5YTc0OWFlNTkwMmU4ZmE4ODNmMWFk
ZDQ1MTcwHhcNMjMwMTAxMTIwNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZGVhMGE3YmJkNDU1NWRiYTFkYWVmOTgxMTdlNWJiOWUxZWY2Y2MyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlT806GTmLF5dEwW3Mc9dOIGgmQ9b
7EDc1SZKNi8N3pZLPCRf1P1OhHot4QYk2gGPcLefxJuV/znm9E+rdXBsHet5qUCT
dCaLkg+LCuHHETcYifh8G6LJno/gz4pLopntuqPwVCxV3FQjLECSmKQVHAdQYOdS
P/6POTemng9t9GrtqXmOo7osqI+Sp5BYAE9VW/TlVTLYQasoKQZ/LTa+OStSbo3O
SCaU63rJ9PxoTijVTW5amSr8dZZ3se9cK3IGjLEESV7mHIoEerc6oKaNKOp+R6Cg
41Yml+Qj1RGYiWQjqEN/piR9fAICMAbxbfSB1RWr+P3WkGmqE/yGtAEKQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK3qCnu9RVXbodrvmBF+W7nh72zCMB8GA1UdIwQY
MBaAFHnRD3KNZJmnSa5ZAuj6iD8a3UUXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWRFUGNvMWttYWRKcmxrQzZQcUlQeHJkUlJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8wYjI2NDEtYmZiNS00ZTc1LWEzZTgt
YjlmMDVlMzE1MjNhLzEvcmVvS2U3MUZWZHVoMnUtWUVYNWJ1ZUh2Yk1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8wYjI2NDEtYmZiNS00ZTc1LWEzZTgtYjlmMDVlMzE1MjNh
LzEvZWRFUGNvMWttYWRKcmxrQzZQcUlQeHJkUlJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueyOMA0G
CSqGSIb3DQEBCwUAA4IBAQA23KQYUfENrlcF1qPVBcklMK/zRbupK1u2b1J75TiC
kfIqo/MfFs5qF3eBssNhmhpJbQRWDytzWAsDYMTLpxS2OAXL7FkxQkbkcZ25tmgE
+4vZA9brPzRa4GbWUGUj9mKwvcAqXlZxBrN557bdrWuQpCDrCsAiuOiLXjitBAaP
lXF5bpxs95ZDe1M6s6fbzQO2mbjJS6P8vmESqtZZFi69Qwqedid7CHLSuv9CV7Lo
zk49apXDA3swU11VPzhfA58DkiyMfImnHIsTcImmL2bxoPoZaeg72DSy8XvIvnCL
uDCGL4/mJ+RrFTl37dYzorxpB0sLkXCkz+rye+dUpsv2
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:43 2024 by rpki-client on console-ams.rpki-client.org