Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/UWu9XWcZ_rmXR-gRgP-wBwb0aho.roa
File: UWu9XWcZ_rmXR-gRgP-wBwb0aho.roa (raw, json)
Hash identifier: 47VUxvoWmmDctY8av1pbUraQVx6BMacyF4LreiMuDAY=
Subject key identifier: 51:6B:BD:5D:67:19:FE:B9:97:47:E8:11:80:FF:B0:07:06:F4:6A:1A
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 018B23FE61FC62AD13C325347774B77D000B
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/UWu9XWcZ_rmXR-gRgP-wBwb0aho.roa
Signing time: Thu 12 Oct 2023 13:05:55 +0000
ROA not before: Thu 12 Oct 2023 13:05:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206961
IP address blocks: 185.165.124.0/22 maxlen: 22
185.197.140.0/24 maxlen: 24
185.197.141.0/24 maxlen: 24
185.197.142.0/24 maxlen: 24
185.197.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:23:fe:61:fc:62:ad:13:c3:25:34:77:74:b7:7d:00:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Oct 12 13:05:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=516bbd5d6719feb99747e81180ffb00706f46a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e9:30:5e:6a:b4:4f:87:ca:6b:2a:d0:bc:ed:
63:8d:80:bc:cd:fa:14:08:1b:bf:45:db:1a:9e:f4:
b2:77:cc:e6:20:0b:ba:0f:12:9e:d2:9e:2e:48:ca:
7e:c7:ba:2b:88:88:69:c1:1e:83:66:7b:94:78:3c:
8d:3a:4d:f8:57:d8:d7:bd:05:3b:ab:28:93:6f:77:
4a:9b:29:3a:59:42:df:0b:8e:45:93:a3:75:18:36:
99:95:40:89:30:74:ef:e5:b8:1c:e6:bb:26:bd:dc:
81:ed:7e:7a:11:7a:93:62:91:a0:ff:43:ee:f6:99:
00:7e:8f:55:71:64:f5:23:71:0e:8b:6d:0d:77:a2:
d7:f3:18:9c:a0:7b:02:a2:34:db:3e:03:3c:57:00:
03:d4:89:85:85:7b:1e:f2:b1:75:a4:78:76:f1:b4:
4d:4a:0d:99:59:5b:49:e4:d3:99:ff:25:af:1d:4f:
cc:58:7e:f7:ce:b6:58:9f:39:96:19:dd:c1:50:28:
f5:ac:9f:22:5c:2c:e4:05:91:5b:fd:56:84:b3:db:
43:35:4e:27:ca:f0:bf:8b:56:d9:52:9e:1c:30:7d:
26:fe:35:57:69:75:38:c4:f7:dd:9d:a6:49:a6:a1:
85:fa:96:16:e9:23:f7:f9:d9:3e:ee:4d:68:57:1f:
68:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:6B:BD:5D:67:19:FE:B9:97:47:E8:11:80:FF:B0:07:06:F4:6A:1A
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/UWu9XWcZ_rmXR-gRgP-wBwb0aho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.124.0/22
185.197.140.0/22
Signature Algorithm: sha256WithRSAEncryption
00:c0:41:73:8d:03:97:d5:18:88:85:69:84:5f:15:34:32:2f:
49:2b:a8:54:71:ca:0f:fe:c6:1b:07:7a:11:08:58:e5:e4:ca:
61:db:95:f8:c7:77:67:15:9e:dc:0f:a9:ee:50:83:2b:60:f6:
c5:dc:a5:81:b7:24:2b:6e:08:66:df:e5:52:6a:a9:32:dc:b9:
36:75:1d:76:c3:ef:77:8a:47:81:fc:3c:59:fa:0f:e8:18:2e:
ea:df:bc:01:7d:07:1a:84:a0:33:77:b5:f9:d2:93:ba:e3:80:
f8:0c:33:12:81:37:94:4b:c8:d5:19:53:ef:c3:9c:f6:40:6a:
49:b2:00:71:1e:d4:9e:f5:36:95:1e:25:30:21:f4:dd:1d:65:
8f:fd:07:e5:89:52:69:2c:89:8d:4a:f1:4e:f1:ab:4b:ca:55:
ac:06:4b:52:d4:24:48:19:71:43:a2:e2:d4:35:a4:b6:61:9b:
4c:0b:45:c2:5c:72:21:14:b4:50:f4:91:fc:da:a0:c3:e0:ea:
37:78:13:df:c8:34:61:6c:b7:26:26:7c:84:fe:a4:45:18:8e:
e4:5a:bd:4a:b2:a9:c6:10:dc:cc:41:36:97:ce:ef:90:3c:f0:
2f:90:ac:5f:78:9f:08:53:4f:9d:67:7c:bf:b6:35:01:54:81:
59:80:4b:86
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYsj/mH8Yq0TwyU0d3S3fQALMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4NTMxMGY1MDMxMzdhZThiMzVkNGYzMjlmNDZmMDY5ZGQ3
MDM4MTUwHhcNMjMxMDEyMTMwNTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTZiYmQ1ZDY3MTlmZWI5OTc0N2U4MTE4MGZmYjAwNzA2ZjQ2YTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjekwXmq0T4fKayrQvO1jjYC8zfoU
CBu/RdsanvSyd8zmIAu6DxKe0p4uSMp+x7oriIhpwR6DZnuUeDyNOk34V9jXvQU7
qyiTb3dKmyk6WULfC45Fk6N1GDaZlUCJMHTv5bgc5rsmvdyB7X56EXqTYpGg/0Pu
9pkAfo9VcWT1I3EOi20Nd6LX8xicoHsCojTbPgM8VwAD1ImFhXse8rF1pHh28bRN
Sg2ZWVtJ5NOZ/yWvHU/MWH73zrZYnzmWGd3BUCj1rJ8iXCzkBZFb/VaEs9tDNU4n
yvC/i1bZUp4cMH0m/jVXaXU4xPfdnaZJpqGF+pYW6SP3+dk+7k1oVx9oxwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFFrvV1nGf65l0foEYD/sAcG9GoaMB8GA1UdIwQY
MBaAFKhTEPUDE3ros11PMp9G8GndcDgVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUZNUTlRTVRldWl6WFU4eW4wYndhZDF3T0JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iNDI5NDktZWUwYS00MTIzLTg3YmYt
MzAxODlhNWE0ZWJhLzEvVVd1OVhXY1pfcm1YUi1nUmdQLXdCd2IwYWhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iNDI5NDktZWUwYS00MTIzLTg3YmYtMzAxODlhNWE0ZWJh
LzEvcUZNUTlRTVRldWl6WFU4eW4wYndhZDF3T0JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuaV8AwQC
ucWMMA0GCSqGSIb3DQEBCwUAA4IBAQAAwEFzjQOX1RiIhWmEXxU0Mi9JK6hUccoP
/sYbB3oRCFjl5Mph25X4x3dnFZ7cD6nuUIMrYPbF3KWBtyQrbghm3+VSaqky3Lk2
dR12w+93ikeB/DxZ+g/oGC7q37wBfQcahKAzd7X50pO644D4DDMSgTeUS8jVGVPv
w5z2QGpJsgBxHtSe9TaVHiUwIfTdHWWP/QfliVJpLImNSvFO8atLylWsBktS1CRI
GXFDouLUNaS2YZtMC0XCXHIhFLRQ9JH82qDD4Oo3eBPfyDRhbLcmJnyE/qRFGI7k
Wr1KsqnGENzMQTaXzu+QPPAvkKxfeJ8IU0+dZ3y/tjUBVIFZgEuG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:59 2024 by rpki-client on console-fra.rpki-client.org