Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/TQI89YNf3skkYT_2uouED63wF3Y.roa
File: TQI89YNf3skkYT_2uouED63wF3Y.roa (raw, json)
Hash identifier: W8kdIU6Uw3ult5mCNMblsyVDHvPjjs+4Usu3R4naz3M=
Subject key identifier: 4D:02:3C:F5:83:5F:DE:C9:24:61:3F:F6:BA:8B:84:0F:AD:F0:17:76
Certificate issuer: /CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c
Certificate serial: 018713E34A5C4CE8591E32F7E1EF5DD40CF3
Authority key identifier: 47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/TQI89YNf3skkYT_2uouED63wF3Y.roa
Signing time: Fri 24 Mar 2023 13:51:15 +0000
ROA not before: Fri 24 Mar 2023 13:51:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138968
IP address blocks: 85.208.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 25 Jun 2023 14:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:13:e3:4a:5c:4c:e8:59:1e:32:f7:e1:ef:5d:d4:0c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c
Validity
Not Before: Mar 24 13:51:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d023cf5835fdec924613ff6ba8b840fadf01776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:8f:44:51:d8:eb:35:a3:22:60:8b:b6:bf:89:
4e:b8:91:f2:28:7f:84:e7:80:10:49:48:86:b5:97:
21:da:f4:c5:63:d4:1a:3d:dc:b6:bc:05:86:ad:a5:
24:76:23:0f:cf:cd:84:65:6a:7a:15:22:22:2c:f2:
09:d0:79:f1:2f:0c:78:2a:86:9b:75:27:f7:d0:0f:
87:e8:58:03:05:88:4b:98:31:2f:58:05:be:cc:32:
ab:bd:c6:37:96:cc:8b:f8:fb:a6:8a:16:a8:69:61:
0b:b6:8a:b0:1e:78:a0:d5:78:d2:22:ca:b4:e4:60:
ec:62:b3:69:ab:83:f7:5e:8f:63:98:0f:af:af:34:
ff:ab:6a:77:ce:08:f4:31:bd:3d:c3:7c:d9:8a:f3:
4c:7f:de:85:bc:d0:2e:d4:af:c5:04:30:bc:cb:37:
9b:a9:b0:6f:18:7f:80:0a:e7:05:32:e7:9d:11:75:
bc:c6:19:f3:4c:25:46:fc:23:70:50:bd:03:11:81:
17:26:ff:8f:3d:d2:a6:9f:de:e1:e2:d3:c4:0b:3f:
2f:41:b5:76:c9:b4:9d:f7:28:66:3b:ae:6f:12:b1:
8a:c2:2a:85:71:8f:7e:b6:31:1f:78:b3:7a:03:b7:
a3:00:96:c0:14:e9:d1:f0:84:0e:65:66:f1:46:ab:
22:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:02:3C:F5:83:5F:DE:C9:24:61:3F:F6:BA:8B:84:0F:AD:F0:17:76
X509v3 Authority Key Identifier:
keyid:47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/TQI89YNf3skkYT_2uouED63wF3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.212.0/22
Signature Algorithm: sha256WithRSAEncryption
c5:0e:11:c8:4c:6e:ec:3b:c7:fd:11:0c:29:1d:b1:16:1c:90:
23:e3:63:30:90:b7:a0:a5:b0:f3:b0:19:b7:9d:2b:1f:0b:33:
da:9f:e3:97:f0:bf:3b:e2:ef:d5:b2:ab:42:3c:00:f2:76:bd:
05:0b:1d:c4:ad:18:83:8d:a8:c3:eb:ec:37:6c:44:36:86:e9:
35:ce:95:20:ca:ee:ae:0d:12:ae:fc:70:58:86:24:9b:ce:de:
ff:f2:7d:31:99:5f:85:08:98:50:67:97:50:3f:f5:20:a2:99:
92:0d:f3:46:1e:17:87:a8:d9:cd:df:03:f4:a1:20:c3:b6:3c:
6c:f4:f2:46:57:6e:51:c6:ee:12:9a:c4:3e:ea:0e:87:f5:3b:
1b:ce:cf:e9:54:3b:f2:0a:34:24:22:58:94:53:a5:c8:2b:05:
f3:7c:3b:81:c5:0d:11:03:24:88:6e:2e:cb:7b:dc:8d:01:b1:
45:b9:70:04:3f:ed:e9:85:04:54:05:27:fd:44:be:2b:c2:c3:
a6:47:4c:d4:c3:95:d6:29:48:71:a5:5b:1a:f2:1e:cd:df:0e:
88:c7:29:b1:d9:b0:2b:3c:0b:e7:ff:8d:b8:99:04:33:22:b3:
14:5c:84:61:8e:56:f8:20:89:ad:1e:9d:88:62:f5:bc:06:29:
67:5d:99:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcT40pcTOhZHjL34e9d1AzzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3MDVkM2M2YTViMDUxMjY4MmNkZmRmMzYzYjE5YTljNTY3
ZjFmNmMwHhcNMjMwMzI0MTM1MTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDAyM2NmNTgzNWZkZWM5MjQ2MTNmZjZiYThiODQwZmFkZjAxNzc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAio9EUdjrNaMiYIu2v4lOuJHyKH+E
54AQSUiGtZch2vTFY9QaPdy2vAWGraUkdiMPz82EZWp6FSIiLPIJ0HnxLwx4Koab
dSf30A+H6FgDBYhLmDEvWAW+zDKrvcY3lsyL+PumihaoaWELtoqwHnig1XjSIsq0
5GDsYrNpq4P3Xo9jmA+vrzT/q2p3zgj0Mb09w3zZivNMf96FvNAu1K/FBDC8yzeb
qbBvGH+ACucFMuedEXW8xhnzTCVG/CNwUL0DEYEXJv+PPdKmn97h4tPECz8vQbV2
ybSd9yhmO65vErGKwiqFcY9+tjEfeLN6A7ejAJbAFOnR8IQOZWbxRqsiQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE0CPPWDX97JJGE/9rqLhA+t8Bd2MB8GA1UdIwQY
MBaAFEcF08alsFEmgs3982OxmpxWfx9sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUndYVHhxV3dVU2FDemYzelk3R2FuRlpfSDJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi81NmFlZTktOTk2Yy00MzhmLWJiMDAt
MGRmYTZiMjJlZmYyLzEvVFFJODlZTmYzc2trWVRfMnVvdUVENjN3RjNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi81NmFlZTktOTk2Yy00MzhmLWJiMDAtMGRmYTZiMjJlZmYy
LzEvUndYVHhxV3dVU2FDemYzelk3R2FuRlpfSDJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVdDUMA0G
CSqGSIb3DQEBCwUAA4IBAQDFDhHITG7sO8f9EQwpHbEWHJAj42MwkLegpbDzsBm3
nSsfCzPan+OX8L874u/VsqtCPADydr0FCx3ErRiDjajD6+w3bEQ2huk1zpUgyu6u
DRKu/HBYhiSbzt7/8n0xmV+FCJhQZ5dQP/UgopmSDfNGHheHqNnN3wP0oSDDtjxs
9PJGV25Rxu4SmsQ+6g6H9Tsbzs/pVDvyCjQkIliUU6XIKwXzfDuBxQ0RAySIbi7L
e9yNAbFFuXAEP+3phQRUBSf9RL4rwsOmR0zUw5XWKUhxpVsa8h7N3w6Ixymx2bAr
PAvn/424mQQzIrMUXIRhjlb4IImtHp2IYvW8BilnXZm4
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:20 2024 by rpki-client on console-fra.rpki-client.org