Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/2Xl7WNOf7tmzw0K7d-nQQNHrgPE.roa
File: 2Xl7WNOf7tmzw0K7d-nQQNHrgPE.roa (raw, json)
Hash identifier: vKs8hHpQeO9UpnPs+8oegTTUqeRz12o61Q3SSB7q/xo=
Subject key identifier: D9:79:7B:58:D3:9F:EE:D9:B3:C3:42:BB:77:E9:D0:40:D1:EB:80:F1
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 018B06764252BBAEA009DF8FA913B8D90168
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/2Xl7WNOf7tmzw0K7d-nQQNHrgPE.roa
Signing time: Fri 06 Oct 2023 19:28:15 +0000
ROA not before: Fri 06 Oct 2023 19:28:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39600
IP address blocks: 85.237.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 08:09:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:06:76:42:52:bb:ae:a0:09:df:8f:a9:13:b8:d9:01:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Oct 6 19:28:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9797b58d39feed9b3c342bb77e9d040d1eb80f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:dd:5a:86:6a:31:3b:7b:9d:b2:aa:80:25:f7:
56:ec:88:66:52:ee:9b:45:3b:56:2e:5a:32:28:c5:
0f:0f:8f:e1:56:2e:92:fe:b2:59:a3:5d:92:9b:f7:
57:1d:75:dc:d0:1a:0e:db:e0:d4:22:3a:e4:66:7c:
cb:c9:26:3b:95:b9:76:2e:7e:65:64:4d:3d:4f:6b:
70:72:69:ee:38:f4:f6:ff:89:93:45:6e:fc:e4:9f:
48:dc:76:aa:e9:98:72:0a:2a:ba:d5:c8:c2:c6:ef:
7b:8d:b3:2e:5b:b3:8d:c9:54:4c:9f:a3:de:24:83:
26:8e:5b:09:58:37:cf:e4:ea:a3:fc:24:6f:ac:99:
4b:d6:03:62:98:9a:b4:e6:67:3a:f9:53:27:4e:ce:
52:cb:68:be:53:e2:6a:1d:04:63:c1:25:c7:76:b6:
bb:18:3d:95:e6:32:f7:56:95:f6:45:a3:e5:d8:62:
32:aa:d2:73:ea:a9:27:e0:3b:f4:5a:dc:11:38:25:
e9:40:49:45:3c:f3:cb:c2:1d:4e:0c:83:08:02:0d:
2c:11:e8:64:5d:22:d8:72:35:8f:93:8d:a8:69:aa:
0e:7d:e0:55:81:54:02:cd:0e:c2:7f:af:6d:3a:c1:
78:f4:67:4b:fd:11:47:69:f2:f2:bc:ff:ac:a4:ec:
1e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:79:7B:58:D3:9F:EE:D9:B3:C3:42:BB:77:E9:D0:40:D1:EB:80:F1
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/2Xl7WNOf7tmzw0K7d-nQQNHrgPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.72.0/22
Signature Algorithm: sha256WithRSAEncryption
18:c9:96:e1:c2:42:97:a5:47:04:77:69:a8:b1:3f:a0:4d:3c:
8b:4c:c2:ec:10:bd:84:8f:81:42:cf:bf:c1:e8:ae:73:77:6d:
b3:1a:5a:3a:a5:b7:73:b3:cd:c1:12:ef:66:53:e7:50:6a:fc:
9d:cb:63:74:3d:bf:ab:3a:08:a0:b9:13:78:0d:40:05:b1:ef:
75:2b:e5:2d:be:46:c1:34:e7:f4:6b:15:d7:c6:76:13:52:f0:
e1:2f:d1:a0:52:91:2d:e6:fd:aa:a2:47:0f:35:7f:5b:13:f1:
a9:df:30:4b:9e:28:22:56:4e:74:71:66:05:24:f0:17:32:ab:
97:b0:0e:21:63:0f:6d:1e:ea:7b:7a:22:6f:53:ac:d3:4f:0e:
82:62:51:d3:95:03:b0:b0:c6:9c:23:f0:ea:db:48:f7:09:c2:
01:73:4a:33:19:02:d3:3f:d7:d6:c5:72:70:b0:90:fd:7d:3c:
3a:99:05:d3:d6:b3:51:34:8e:db:25:e8:5f:de:c3:3e:f9:57:
0d:60:36:70:5f:74:71:98:b3:34:e2:f5:b8:c8:5f:dd:1c:0a:
2e:a0:57:6e:1b:7e:69:5d:e6:4f:3a:2a:65:7d:62:f9:dd:2f:
64:38:58:fd:30:91:9f:13:dc:9d:1d:66:28:ab:42:4c:6a:02:
e9:56:91:be
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsGdkJSu66gCd+PqRO42QFoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NGJmODA3MGNlZTQzMDVkMWEzODllOTEwZmI1MTAyYmJj
YzE5NDEwHhcNMjMxMDA2MTkyODE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTc5N2I1OGQzOWZlZWQ5YjNjMzQyYmI3N2U5ZDA0MGQxZWI4MGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhd1ahmoxO3udsqqAJfdW7IhmUu6b
RTtWLloyKMUPD4/hVi6S/rJZo12Sm/dXHXXc0BoO2+DUIjrkZnzLySY7lbl2Ln5l
ZE09T2twcmnuOPT2/4mTRW785J9I3Haq6ZhyCiq61cjCxu97jbMuW7ONyVRMn6Pe
JIMmjlsJWDfP5Oqj/CRvrJlL1gNimJq05mc6+VMnTs5Sy2i+U+JqHQRjwSXHdra7
GD2V5jL3VpX2RaPl2GIyqtJz6qkn4Dv0WtwROCXpQElFPPPLwh1ODIMIAg0sEehk
XSLYcjWPk42oaaoOfeBVgVQCzQ7Cf69tOsF49GdL/RFHafLyvP+spOwe3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNl5e1jTn+7Zs8NCu3fp0EDR64DxMB8GA1UdIwQY
MBaAFIdL+AcM7kMF0aOJ6RD7UQK7zBlBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDB2NEJ3enVRd1hSbzRucEVQdFJBcnZNR1VFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9lZWUxMzEtYmI4Yy00ODg3LTg2OWIt
NmZlNGQ4ZmVkMTYwLzEvMlhsN1dOT2Y3dG16dzBLN2QtblFRTkhyZ1BFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9lZWUxMzEtYmI4Yy00ODg3LTg2OWItNmZlNGQ4ZmVkMTYw
LzEvaDB2NEJ3enVRd1hSbzRucEVQdFJBcnZNR1VFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVe1IMA0G
CSqGSIb3DQEBCwUAA4IBAQAYyZbhwkKXpUcEd2mosT+gTTyLTMLsEL2Ej4FCz7/B
6K5zd22zGlo6pbdzs83BEu9mU+dQavydy2N0Pb+rOgiguRN4DUAFse91K+UtvkbB
NOf0axXXxnYTUvDhL9GgUpEt5v2qokcPNX9bE/Gp3zBLnigiVk50cWYFJPAXMquX
sA4hYw9tHup7eiJvU6zTTw6CYlHTlQOwsMacI/Dq20j3CcIBc0ozGQLTP9fWxXJw
sJD9fTw6mQXT1rNRNI7bJehf3sM++VcNYDZwX3RxmLM04vW4yF/dHAouoFduG35p
XeZPOiplfWL53S9kOFj9MJGfE9ydHWYoq0JMagLpVpG+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:33 2024 by rpki-client on console-fra.rpki-client.org