Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/Wio97QmA7KBww8DZd0zBK2hzL68.roa
File: Wio97QmA7KBww8DZd0zBK2hzL68.roa (raw, json)
Hash identifier: 74iRenBXozhhDrdThKdr/k6HaZ/1KaxigUDlm7FZJHA=
Subject key identifier: 5A:2A:3D:ED:09:80:EC:A0:70:C3:C0:D9:77:4C:C1:2B:68:73:2F:AF
Certificate issuer: /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial: 019224110872AB58D5FE49F978DF39BDD850
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/Wio97QmA7KBww8DZd0zBK2hzL68.roa
Signing time: Tue 24 Sep 2024 12:45:48 +0000
ROA not before: Tue 24 Sep 2024 12:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48807
IP address blocks: 185.90.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 13:19:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:24:11:08:72:ab:58:d5:fe:49:f9:78:df:39:bd:d8:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Validity
Not Before: Sep 24 12:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a2a3ded0980eca070c3c0d9774cc12b68732faf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3b:7a:f7:d7:d0:4d:77:f7:5e:88:28:7b:b3:
1f:04:c7:ea:8f:cd:9a:9f:09:03:4c:8e:d8:6b:84:
f6:3d:1a:bd:e5:43:e1:4a:d1:21:14:55:28:48:94:
1a:2c:87:42:ce:89:2a:86:ab:fc:b0:54:b8:d7:69:
28:ec:6f:8c:52:e5:46:9f:e4:03:88:c3:7a:70:c0:
97:cf:ef:29:88:1a:26:4b:d4:2b:01:36:26:83:03:
1b:f4:49:14:35:9a:f9:86:8b:8b:ea:c3:39:3d:e5:
36:11:4c:4e:bb:45:2e:d8:eb:c6:35:0d:5e:97:cb:
64:ca:67:a5:a2:ff:cb:a8:d1:1e:6a:f2:66:bb:7d:
e6:89:04:81:af:99:f0:f4:e7:0e:f5:ee:a4:4c:f7:
32:97:36:3a:57:e5:af:bb:62:d8:ec:95:5e:6f:d9:
95:b8:0a:d3:75:8b:06:6b:08:e7:62:e3:34:b2:ff:
d1:3f:fe:5f:f2:97:80:42:af:43:7a:e1:27:4d:1c:
d4:2e:a3:61:5a:b0:1f:77:f9:d1:90:7d:a2:b3:ab:
af:d9:c4:cb:f1:f2:f8:db:d4:35:72:59:db:03:0f:
0b:19:e6:aa:fb:bd:a1:87:f8:08:23:bf:50:af:2b:
19:5b:11:23:87:cb:7c:2f:da:8f:a9:1d:63:37:a3:
f0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:2A:3D:ED:09:80:EC:A0:70:C3:C0:D9:77:4C:C1:2B:68:73:2F:AF
X509v3 Authority Key Identifier:
keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/Wio97QmA7KBww8DZd0zBK2hzL68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.144.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:b4:60:15:16:96:4e:c9:90:11:cc:05:63:c2:cc:f0:b4:cb:
b8:8a:7e:97:65:82:b4:fc:c1:fe:0f:61:31:bb:69:44:ce:74:
8d:04:e9:8c:2a:72:d8:5a:f9:a6:e1:62:5e:de:e0:70:e3:d9:
a4:ed:db:c5:0a:83:48:10:3e:e9:5b:b5:ca:9b:f0:48:83:cb:
0c:48:e7:4a:12:da:9c:bc:f1:08:4a:c4:25:7b:14:8f:f1:a7:
a0:2a:0a:81:47:09:84:71:ba:d5:14:28:5d:64:80:de:92:d0:
66:8c:ec:de:ed:fa:4f:52:c3:c3:9d:24:e7:c1:1c:9e:ed:1e:
40:6b:8e:ec:79:f1:3b:23:be:10:b8:63:23:4e:b0:34:8e:ac:
a0:5d:1e:23:bf:7b:28:04:cc:85:c0:5c:6c:ee:c5:c1:02:ce:
5d:89:7b:ef:84:fe:8f:34:ca:f9:da:57:ca:ec:a3:55:73:77:
63:3e:e9:17:27:37:98:c6:c4:8f:5e:1a:85:4c:45:de:ce:7a:
a8:d8:4b:01:04:9c:62:d4:c3:b1:39:4d:b4:c1:35:98:82:15:
77:53:74:b5:eb:41:b8:23:fd:c7:56:8a:2a:3d:ca:f0:37:88:
dc:0d:fb:3a:41:b4:48:fa:ea:0d:bc:91:29:a3:fa:cb:1e:2c:
bc:65:a1:2f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZIkEQhyq1jV/kn5eN85vdhQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ZjJhODY2MjAyZjRiOGNiYzMzMzgyZDZlODJkODFkODk2
NGM4MGUwHhcNMjQwOTI0MTI0NTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTJhM2RlZDA5ODBlY2EwNzBjM2MwZDk3NzRjYzEyYjY4NzMyZmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszt699fQTXf3Xogoe7MfBMfqj82a
nwkDTI7Ya4T2PRq95UPhStEhFFUoSJQaLIdCzokqhqv8sFS412ko7G+MUuVGn+QD
iMN6cMCXz+8piBomS9QrATYmgwMb9EkUNZr5houL6sM5PeU2EUxOu0Uu2OvGNQ1e
l8tkymelov/LqNEeavJmu33miQSBr5nw9OcO9e6kTPcylzY6V+Wvu2LY7JVeb9mV
uArTdYsGawjnYuM0sv/RP/5f8peAQq9DeuEnTRzULqNhWrAfd/nRkH2is6uv2cTL
8fL429Q1clnbAw8LGeaq+72hh/gII79QrysZWxEjh8t8L9qPqR1jN6PwXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFoqPe0JgOygcMPA2XdMwStocy+vMB8GA1UdIwQY
MBaAFOTyqGYgL0uMvDM4LW6C2B2JZMgOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy84NzkxYTEtZTY3OS00NjYzLWEyZGEt
MWE1MTNkZjA2OWZjLzEvV2lvOTdRbUE3S0J3dzhEWmQwekJLMmh6TDY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy84NzkxYTEtZTY3OS00NjYzLWEyZGEtMWE1MTNkZjA2OWZj
LzEvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVqQMA0G
CSqGSIb3DQEBCwUAA4IBAQANtGAVFpZOyZARzAVjwszwtMu4in6XZYK0/MH+D2Ex
u2lEznSNBOmMKnLYWvmm4WJe3uBw49mk7dvFCoNIED7pW7XKm/BIg8sMSOdKEtqc
vPEISsQlexSP8aegKgqBRwmEcbrVFChdZIDektBmjOze7fpPUsPDnSTnwRye7R5A
a47sefE7I74QuGMjTrA0jqygXR4jv3soBMyFwFxs7sXBAs5diXvvhP6PNMr52lfK
7KNVc3djPukXJzeYxsSPXhqFTEXeznqo2EsBBJxi1MOxOU20wTWYghV3U3S160G4
I/3HVooqPcrwN4jcDfs6QbRI+uoNvJEpo/rLHiy8ZaEv
-----END CERTIFICATE-----
Generated at Tue May 6 15:51:58 2025 by rpki-client