Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/fU7wXS0PVh-ZVcEgNrA-OzGJXiA.roa
File: fU7wXS0PVh-ZVcEgNrA-OzGJXiA.roa (raw, json)
Hash identifier: MHgWfE5zE/eUEl9OlaWzBh7edEb9tMEp6NkAtTsrw/Q=
Subject key identifier: 7D:4E:F0:5D:2D:0F:56:1F:99:55:C1:20:36:B0:3E:3B:31:89:5E:20
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 018994247E438DC7113651E1A1740E02CDB8
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/fU7wXS0PVh-ZVcEgNrA-OzGJXiA.roa
Signing time: Wed 26 Jul 2023 21:39:26 +0000
ROA not before: Wed 26 Jul 2023 21:39:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56913
IP address blocks: 85.237.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:94:24:7e:43:8d:c7:11:36:51:e1:a1:74:0e:02:cd:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Jul 26 21:39:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d4ef05d2d0f561f9955c12036b03e3b31895e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:51:20:2d:2b:f5:35:cc:5d:19:38:ea:8b:d4:
29:64:6a:72:b0:fa:37:41:e4:42:5b:b8:3c:c6:40:
9d:94:de:fd:a0:e1:a0:c6:24:24:57:99:53:c9:b3:
c0:2c:a0:d7:71:8f:b4:66:e3:3b:af:fe:99:4f:4c:
04:b6:16:ea:24:c3:66:c7:30:ea:7d:7b:f4:25:06:
60:7a:5f:2d:9c:a5:62:05:fb:d8:44:67:91:13:e5:
cf:06:56:4a:a9:a4:25:74:2c:e6:f1:00:a2:e7:8b:
9a:20:5b:91:a1:3b:59:36:e2:37:de:1e:5d:29:6a:
35:7f:61:e6:c1:80:a7:83:11:33:df:76:2f:86:14:
9c:c1:bf:c9:7d:a1:59:83:6a:ed:f3:a8:d1:41:6a:
55:f2:8e:55:73:d6:5b:6b:69:57:86:72:55:0e:33:
ba:3c:c1:64:b8:e9:6a:d5:f7:5f:65:51:e8:84:6c:
07:c3:87:8e:04:fc:c7:47:f3:e8:ca:26:a8:94:f9:
90:d6:01:21:65:7c:83:ea:f0:73:62:a0:13:a8:22:
f5:c6:9f:de:bc:9b:65:6b:f2:69:0e:64:fb:48:d4:
d5:58:7e:8f:ca:85:fc:f8:70:e5:60:55:ed:97:1b:
4b:ff:ad:19:cb:96:2a:9e:ba:f5:49:87:2a:20:5b:
cf:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4E:F0:5D:2D:0F:56:1F:99:55:C1:20:36:B0:3E:3B:31:89:5E:20
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/fU7wXS0PVh-ZVcEgNrA-OzGJXiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.71.0/24
Signature Algorithm: sha256WithRSAEncryption
95:02:3e:ce:43:11:3c:34:4c:7e:5a:dd:8b:4e:ec:de:1a:7b:
cc:32:7d:54:e8:fe:23:2c:6f:c1:71:1c:d1:f8:1a:7b:7f:84:
1c:f3:98:aa:b9:7d:93:3f:fd:f0:39:66:bf:2d:53:15:68:66:
a9:1f:37:4a:3e:d4:6e:7e:aa:b9:3b:27:13:d1:0d:7b:14:c4:
0d:a0:06:28:56:5c:c0:27:9e:de:4c:32:d3:aa:ec:e3:e4:1f:
5d:22:23:f7:ac:81:89:ff:c0:63:3e:5e:c2:4f:63:e5:fd:23:
46:1a:7f:f5:5b:a1:cf:46:bc:09:d4:70:25:cb:b7:0f:0d:b5:
89:31:45:e3:8c:54:05:c5:f5:39:18:ee:0e:23:fb:dc:4b:f0:
d5:ab:09:6a:b2:0a:1a:80:14:77:47:9a:a3:7f:0f:9a:f2:e7:
4c:6b:48:6f:e9:e3:08:15:b2:da:56:f0:1e:ef:26:da:57:14:
e0:a2:cf:25:87:b4:a3:8b:b2:a1:15:b1:55:e5:ce:1a:ae:c9:
46:85:5a:df:2b:31:5e:80:f0:e6:4f:be:5e:30:01:d5:78:ff:
eb:7a:ce:6f:56:9b:9f:81:43:cf:ae:ac:1b:63:40:b2:6e:dc:
4d:b8:6f:c2:de:49:d1:a5:77:3d:73:ec:0f:1c:6b:f9:64:f2:
b5:c9:fb:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmUJH5DjccRNlHhoXQOAs24MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NGJmODA3MGNlZTQzMDVkMWEzODllOTEwZmI1MTAyYmJj
YzE5NDEwHhcNMjMwNzI2MjEzOTI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDRlZjA1ZDJkMGY1NjFmOTk1NWMxMjAzNmIwM2UzYjMxODk1ZTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg1EgLSv1NcxdGTjqi9QpZGpysPo3
QeRCW7g8xkCdlN79oOGgxiQkV5lTybPALKDXcY+0ZuM7r/6ZT0wEthbqJMNmxzDq
fXv0JQZgel8tnKViBfvYRGeRE+XPBlZKqaQldCzm8QCi54uaIFuRoTtZNuI33h5d
KWo1f2HmwYCngxEz33YvhhScwb/JfaFZg2rt86jRQWpV8o5Vc9Zba2lXhnJVDjO6
PMFkuOlq1fdfZVHohGwHw4eOBPzHR/PoyiaolPmQ1gEhZXyD6vBzYqATqCL1xp/e
vJtla/JpDmT7SNTVWH6PyoX8+HDlYFXtlxtL/60Zy5Yqnrr1SYcqIFvPhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH1O8F0tD1YfmVXBIDawPjsxiV4gMB8GA1UdIwQY
MBaAFIdL+AcM7kMF0aOJ6RD7UQK7zBlBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDB2NEJ3enVRd1hSbzRucEVQdFJBcnZNR1VFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9lZWUxMzEtYmI4Yy00ODg3LTg2OWIt
NmZlNGQ4ZmVkMTYwLzEvZlU3d1hTMFBWaC1aVmNFZ05yQS1PekdKWGlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9lZWUxMzEtYmI4Yy00ODg3LTg2OWItNmZlNGQ4ZmVkMTYw
LzEvaDB2NEJ3enVRd1hSbzRucEVQdFJBcnZNR1VFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVe1HMA0G
CSqGSIb3DQEBCwUAA4IBAQCVAj7OQxE8NEx+Wt2LTuzeGnvMMn1U6P4jLG/BcRzR
+Bp7f4Qc85iquX2TP/3wOWa/LVMVaGapHzdKPtRufqq5OycT0Q17FMQNoAYoVlzA
J57eTDLTquzj5B9dIiP3rIGJ/8BjPl7CT2Pl/SNGGn/1W6HPRrwJ1HAly7cPDbWJ
MUXjjFQFxfU5GO4OI/vcS/DVqwlqsgoagBR3R5qjfw+a8udMa0hv6eMIFbLaVvAe
7ybaVxTgos8lh7Sji7KhFbFV5c4arslGhVrfKzFegPDmT75eMAHVeP/res5vVpuf
gUPPrqwbY0CybtxNuG/C3knRpXc9c+wPHGv5ZPK1yfvf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:33 2024 by rpki-client on console-fra.rpki-client.org