Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/b4d4ea-f10b-4bcd-a3f5-905276c5c414/1/8SYH_95bS0XElc461RaJDnvI-68.roa
File: 8SYH_95bS0XElc461RaJDnvI-68.roa (raw, json)
Hash identifier: L5TK+ETAmvvYtU8WsnbFp15N2DtH3AGsKlQIzaknkAg=
Subject key identifier: F1:26:07:FF:DE:5B:4B:45:C4:95:CE:3A:D5:16:89:0E:7B:C8:FB:AF
Certificate issuer: /CN=81c00cc8c73d1141c89254ed556a8d012ca90226
Certificate serial: 01922970273B2862C74A8B69E08712210917
Authority key identifier: 81:C0:0C:C8:C7:3D:11:41:C8:92:54:ED:55:6A:8D:01:2C:A9:02:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcAMyMc9EUHIklTtVWqNASypAiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/b4d4ea-f10b-4bcd-a3f5-905276c5c414/1/8SYH_95bS0XElc461RaJDnvI-68.roa
Signing time: Wed 25 Sep 2024 13:47:48 +0000
ROA not before: Wed 25 Sep 2024 13:47:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41644
IP address blocks: 185.144.212.0/22 maxlen: 22
193.219.102.0/24 maxlen: 24
2001:3e40:1000::/36 maxlen: 36
2001:3e42:1000::/36 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:29:70:27:3b:28:62:c7:4a:8b:69:e0:87:12:21:09:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c00cc8c73d1141c89254ed556a8d012ca90226
Validity
Not Before: Sep 25 13:47:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f12607ffde5b4b45c495ce3ad516890e7bc8fbaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:94:6c:49:58:47:a0:81:a9:6d:81:55:8d:d7:
2d:29:69:89:67:79:14:43:d5:91:fb:73:24:66:e4:
37:1f:22:9d:99:c9:ef:56:e4:01:b9:4c:7d:22:36:
c8:5d:30:a1:fe:8a:05:00:bd:85:2f:11:23:63:c0:
6e:67:6f:5a:26:15:0e:f6:c8:78:98:25:83:05:21:
e8:a3:a1:ce:5a:45:04:bd:35:23:8c:f1:0a:e4:a3:
1c:07:3e:e1:55:ce:db:6c:9f:97:5d:33:e5:cf:18:
c7:8e:21:52:03:4b:ae:b9:33:50:fb:ab:44:8e:b8:
32:6c:39:17:36:ef:c5:a1:4b:d1:76:95:fc:7a:86:
60:0a:4f:3d:51:55:29:ea:d1:52:97:50:6e:c1:81:
54:70:a6:3a:61:ce:dd:12:34:fe:bd:12:ac:7b:f2:
01:26:f8:df:8a:41:6f:54:fc:39:a7:96:56:f4:8c:
de:8b:ac:a8:f3:72:65:91:54:b3:4a:e0:a9:c8:99:
d8:21:a9:8f:2c:6e:e9:e6:3c:b0:4a:16:8e:27:a1:
18:fc:ce:83:60:34:2f:e4:42:25:14:29:ca:db:3e:
a0:e7:03:ab:84:82:b0:f1:b5:82:f2:f1:87:5a:b7:
f9:d0:f7:cd:68:1c:a4:06:9a:2e:11:b8:29:fd:80:
b8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:26:07:FF:DE:5B:4B:45:C4:95:CE:3A:D5:16:89:0E:7B:C8:FB:AF
X509v3 Authority Key Identifier:
keyid:81:C0:0C:C8:C7:3D:11:41:C8:92:54:ED:55:6A:8D:01:2C:A9:02:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcAMyMc9EUHIklTtVWqNASypAiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/b4d4ea-f10b-4bcd-a3f5-905276c5c414/1/8SYH_95bS0XElc461RaJDnvI-68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/b4d4ea-f10b-4bcd-a3f5-905276c5c414/1/gcAMyMc9EUHIklTtVWqNASypAiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.212.0/22
193.219.102.0/24
IPv6:
2001:3e40:1000::/36
2001:3e42:1000::/36
Signature Algorithm: sha256WithRSAEncryption
7d:09:7e:ab:5a:b3:75:cb:30:e8:ce:ec:b1:71:e1:0b:4e:36:
2e:bd:af:d8:0c:cb:ec:3f:b8:41:4c:e0:0f:26:16:79:ec:e7:
3f:00:04:e4:8f:b5:27:d2:01:7a:b0:f6:20:1c:8d:54:24:75:
a3:90:da:8f:11:95:6f:4b:81:de:d2:a8:87:57:2c:a4:7f:d6:
35:4a:6b:ae:81:1f:5d:1b:6f:14:75:26:e7:d5:3a:8e:fe:a6:
59:64:75:65:13:ff:29:b9:a7:5c:9c:ee:41:da:ad:e5:67:48:
d2:d9:9c:0d:b9:21:fb:89:cd:fb:9c:a4:81:c9:80:be:31:b5:
3f:75:94:26:91:47:f1:b5:09:cf:05:ba:9b:88:d3:ba:e5:36:
1d:fe:48:56:04:db:35:ca:f4:b8:19:68:92:3c:5d:b5:a9:e4:
cd:9d:2c:c0:20:8f:9e:d8:c6:8c:4e:f7:43:56:f2:fc:7d:1b:
00:3d:f6:f1:12:3c:39:9f:3d:3f:64:98:46:89:86:80:f3:12:
33:ce:99:33:45:bc:29:a9:a4:fd:30:89:65:94:3d:0d:c1:83:
15:e8:34:18:07:c0:94:72:82:40:ef:51:d9:9e:1e:f6:19:fb:
57:56:01:d5:df:5e:ec:f9:79:70:50:12:3f:50:d4:ca:20:37:
8a:29:fa:31
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZIpcCc7KGLHSotp4IcSIQkXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYzAwY2M4YzczZDExNDFjODkyNTRlZDU1NmE4ZDAxMmNh
OTAyMjYwHhcNMjQwOTI1MTM0NzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTI2MDdmZmRlNWI0YjQ1YzQ5NWNlM2FkNTE2ODkwZTdiYzhmYmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5RsSVhHoIGpbYFVjdctKWmJZ3kU
Q9WR+3MkZuQ3HyKdmcnvVuQBuUx9IjbIXTCh/ooFAL2FLxEjY8BuZ29aJhUO9sh4
mCWDBSHoo6HOWkUEvTUjjPEK5KMcBz7hVc7bbJ+XXTPlzxjHjiFSA0uuuTNQ+6tE
jrgybDkXNu/FoUvRdpX8eoZgCk89UVUp6tFSl1BuwYFUcKY6Yc7dEjT+vRKse/IB
JvjfikFvVPw5p5ZW9Izei6yo83JlkVSzSuCpyJnYIamPLG7p5jywShaOJ6EY/M6D
YDQv5EIlFCnK2z6g5wOrhIKw8bWC8vGHWrf50PfNaBykBpouEbgp/YC4NQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFPEmB//eW0tFxJXOOtUWiQ57yPuvMB8GA1UdIwQY
MBaAFIHADMjHPRFByJJU7VVqjQEsqQImMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2NBTXlNYzlFVUhJa2xUdFZXcU5BU3lwQWlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9iNGQ0ZWEtZjEwYi00YmNkLWEzZjUt
OTA1Mjc2YzVjNDE0LzEvOFNZSF85NWJTMFhFbGM0NjFSYUpEbnZJLTY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9iNGQ0ZWEtZjEwYi00YmNkLWEzZjUtOTA1Mjc2YzVjNDE0
LzEvZ2NBTXlNYzlFVUhJa2xUdFZXcU5BU3lwQWlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDASBAIAATAMAwQCuZDUAwQA
wdtmMBYEAgACMBADBgQgAT5AEAMGBCABPkIQMA0GCSqGSIb3DQEBCwUAA4IBAQB9
CX6rWrN1yzDozuyxceELTjYuva/YDMvsP7hBTOAPJhZ57Oc/AATkj7Un0gF6sPYg
HI1UJHWjkNqPEZVvS4He0qiHVyykf9Y1SmuugR9dG28UdSbn1TqO/qZZZHVlE/8p
uadcnO5B2q3lZ0jS2ZwNuSH7ic37nKSByYC+MbU/dZQmkUfxtQnPBbqbiNO65TYd
/khWBNs1yvS4GWiSPF21qeTNnSzAII+e2MaMTvdDVvL8fRsAPfbxEjw5nz0/ZJhG
iYaA8xIzzpkzRbwpqaT9MIlllD0NwYMV6DQYB8CUcoJA71HZnh72GftXVgHV317s
+XlwUBI/UNTKIDeKKfox
-----END CERTIFICATE-----
Generated at Sat May 17 16:39:50 2025 by rpki-client