Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/618ee0-bcc7-4851-bc2c-fab9bf7a26d8/1/aJmDlGdon1IxfRa0V5Ucwtvdnl0.roa
File: aJmDlGdon1IxfRa0V5Ucwtvdnl0.roa (raw, json)
Hash identifier: PmSYvTk24fsvHgrF6J4xzHUetxq+YdFJOy57dK/2NfQ=
Subject key identifier: 68:99:83:94:67:68:9F:52:31:7D:16:B4:57:95:1C:C2:DB:DD:9E:5D
Certificate issuer: /CN=aac53499ff20f035cb8b1c0aa9b77c3d7d28976c
Certificate serial: 0185729EE77481BD63C34991BCF922366698
Authority key identifier: AA:C5:34:99:FF:20:F0:35:CB:8B:1C:0A:A9:B7:7C:3D:7D:28:97:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsU0mf8g8DXLixwKqbd8PX0ol2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/618ee0-bcc7-4851-bc2c-fab9bf7a26d8/1/aJmDlGdon1IxfRa0V5Ucwtvdnl0.roa
Signing time: Mon 02 Jan 2023 13:14:54 +0000
ROA not before: Mon 02 Jan 2023 13:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204965
IP address blocks: 185.231.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:e7:74:81:bd:63:c3:49:91:bc:f9:22:36:66:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aac53499ff20f035cb8b1c0aa9b77c3d7d28976c
Validity
Not Before: Jan 2 13:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6899839467689f52317d16b457951cc2dbdd9e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:86:1e:53:1d:56:a0:f4:7f:20:a1:82:e6:19:
73:ae:7e:5b:e0:eb:3e:00:1b:2c:c4:4f:5f:9a:71:
fd:47:42:e5:d6:7a:9b:26:ab:10:14:6b:04:4c:0f:
3d:e0:e0:29:57:1b:ec:fa:32:77:ba:14:d6:58:47:
4e:8f:80:71:7d:e2:56:83:32:9c:89:6d:61:08:c7:
ef:8b:7c:40:f1:c4:6c:d1:56:bf:84:1d:66:19:50:
b9:83:3b:2e:17:b0:bd:9c:62:57:da:19:9d:71:92:
73:64:73:8d:c0:5b:74:c8:0e:8d:9e:4e:30:50:3d:
24:c1:49:bf:fe:74:09:a9:5d:11:ed:ea:ca:00:46:
56:f5:22:e9:1c:17:6e:07:c8:45:e5:04:d7:3e:71:
3f:15:0d:12:80:f8:ac:b3:bb:83:1d:86:d9:28:8a:
53:a6:2b:ed:ec:d6:d2:b0:eb:1b:d8:d9:55:b9:81:
27:e6:05:51:9c:ce:ac:57:bf:08:f0:86:20:7d:f5:
0f:c6:2c:3e:c0:85:0b:b4:56:08:b9:21:9f:78:83:
df:00:54:b4:cf:53:2c:e6:07:29:99:1e:41:e6:72:
fe:2e:ce:6b:d5:a2:7b:88:b6:71:5f:23:45:e0:a6:
6f:5d:e5:5c:02:b0:e1:13:dd:08:3e:5e:38:88:7a:
5e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:99:83:94:67:68:9F:52:31:7D:16:B4:57:95:1C:C2:DB:DD:9E:5D
X509v3 Authority Key Identifier:
keyid:AA:C5:34:99:FF:20:F0:35:CB:8B:1C:0A:A9:B7:7C:3D:7D:28:97:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsU0mf8g8DXLixwKqbd8PX0ol2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/618ee0-bcc7-4851-bc2c-fab9bf7a26d8/1/aJmDlGdon1IxfRa0V5Ucwtvdnl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/618ee0-bcc7-4851-bc2c-fab9bf7a26d8/1/qsU0mf8g8DXLixwKqbd8PX0ol2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.214.0/24
Signature Algorithm: sha256WithRSAEncryption
96:20:12:56:75:39:41:5d:f9:98:f5:1f:de:c6:36:f8:54:d0:
56:9d:33:12:fe:1c:28:c3:fb:95:49:68:27:20:ce:75:bd:ed:
3b:4a:aa:34:43:b9:e2:f6:85:4c:a6:10:43:0e:6b:97:06:2e:
d2:64:ee:ad:98:49:bc:6a:6c:4c:dc:75:88:89:53:69:5f:64:
38:2c:5f:5c:30:8a:79:eb:56:87:12:f2:ab:d9:55:63:0f:d9:
7b:ef:9e:2a:2b:eb:ba:33:e2:cc:7c:83:95:c1:78:d3:11:7f:
72:c3:7a:6e:46:03:f1:11:d9:3c:bd:55:0c:8c:a9:7a:40:42:
f2:cc:c5:04:29:51:c8:ba:0e:a7:e1:74:a4:b9:1b:7d:8a:b5:
f6:a0:84:92:54:f7:ed:4b:6a:66:39:3c:7e:cc:3b:ba:a7:e8:
83:13:9a:9d:db:51:a2:f0:ee:ec:84:4b:38:d7:23:fe:f8:38:
ee:34:c2:fe:18:fd:fe:0e:aa:f7:b2:35:84:0d:ce:c2:01:d0:
67:0e:e1:09:bb:98:d7:86:e1:4f:ef:01:3f:d2:10:8e:25:23:
ba:d5:a8:eb:d2:83:82:18:b9:78:b7:6d:93:34:5b:79:0c:dd:
cb:a3:36:42:cd:29:32:11:4d:4e:56:4b:ee:f2:46:6a:55:89:
4f:b5:67:dc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVynud0gb1jw0mRvPkiNmaYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhYzUzNDk5ZmYyMGYwMzVjYjhiMWMwYWE5Yjc3YzNkN2Qy
ODk3NmMwHhcNMjMwMTAyMTMxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODk5ODM5NDY3Njg5ZjUyMzE3ZDE2YjQ1Nzk1MWNjMmRiZGQ5ZTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh4YeUx1WoPR/IKGC5hlzrn5b4Os+
ABssxE9fmnH9R0Ll1nqbJqsQFGsETA894OApVxvs+jJ3uhTWWEdOj4BxfeJWgzKc
iW1hCMfvi3xA8cRs0Va/hB1mGVC5gzsuF7C9nGJX2hmdcZJzZHONwFt0yA6Nnk4w
UD0kwUm//nQJqV0R7erKAEZW9SLpHBduB8hF5QTXPnE/FQ0SgPiss7uDHYbZKIpT
pivt7NbSsOsb2NlVuYEn5gVRnM6sV78I8IYgffUPxiw+wIULtFYIuSGfeIPfAFS0
z1Ms5gcpmR5B5nL+Ls5r1aJ7iLZxXyNF4KZvXeVcArDhE90IPl44iHpeWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGiZg5RnaJ9SMX0WtFeVHMLb3Z5dMB8GA1UdIwQY
MBaAFKrFNJn/IPA1y4scCqm3fD19KJdsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXNVMG1mOGc4RFhMaXh3S3FiZDhQWDBvbDJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi82MThlZTAtYmNjNy00ODUxLWJjMmMt
ZmFiOWJmN2EyNmQ4LzEvYUptRGxHZG9uMUl4ZlJhMFY1VWN3dHZkbmwwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi82MThlZTAtYmNjNy00ODUxLWJjMmMtZmFiOWJmN2EyNmQ4
LzEvcXNVMG1mOGc4RFhMaXh3S3FiZDhQWDBvbDJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuefWMA0G
CSqGSIb3DQEBCwUAA4IBAQCWIBJWdTlBXfmY9R/exjb4VNBWnTMS/hwow/uVSWgn
IM51ve07Sqo0Q7ni9oVMphBDDmuXBi7SZO6tmEm8amxM3HWIiVNpX2Q4LF9cMIp5
61aHEvKr2VVjD9l7754qK+u6M+LMfIOVwXjTEX9yw3puRgPxEdk8vVUMjKl6QELy
zMUEKVHIug6n4XSkuRt9irX2oISSVPftS2pmOTx+zDu6p+iDE5qd21Gi8O7shEs4
1yP++DjuNML+GP3+Dqr3sjWEDc7CAdBnDuEJu5jXhuFP7wE/0hCOJSO61ajr0oOC
GLl4t22TNFt5DN3LozZCzSkyEU1OVkvu8kZqVYlPtWfc
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:47 2024 by rpki-client on console-ams.rpki-client.org