Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/h-625EUNx-NzfJx-ZAbS1lOfE6Q.roa
File: h-625EUNx-NzfJx-ZAbS1lOfE6Q.roa (raw, json)
Hash identifier: rEgfhIEnk3FO2PucLiPpe83Pen1hlkjmG2ZOhw9zuhc=
Subject key identifier: 87:EE:B6:E4:45:0D:C7:E3:73:7C:9C:7E:64:06:D2:D6:53:9F:13:A4
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0187A33DB0FEC4444485BF8F217F29F7A2B1
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/h-625EUNx-NzfJx-ZAbS1lOfE6Q.roa
Signing time: Fri 21 Apr 2023 09:55:41 +0000
ROA not before: Fri 21 Apr 2023 09:55:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211167
IP address blocks: 85.208.137.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a3:3d:b0:fe:c4:44:44:85:bf:8f:21:7f:29:f7:a2:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 21 09:55:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87eeb6e4450dc7e3737c9c7e6406d2d6539f13a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:56:3a:3c:76:f8:f4:ea:c0:9b:18:2e:de:c0:
c1:44:d1:9a:e7:98:bf:a0:c9:cd:3d:fe:29:93:f7:
da:d6:07:4c:d0:8b:79:a2:29:07:e8:4f:79:9b:ef:
e9:05:e4:9f:1c:ff:41:72:63:18:7e:69:39:eb:66:
ec:c2:c3:0a:84:d5:a4:63:ec:3e:60:5c:4f:7d:15:
81:9d:70:db:81:da:f0:57:c5:c4:eb:b6:1d:00:0d:
e5:55:f0:47:8e:00:02:78:53:c6:11:cd:39:01:ed:
13:13:3c:fd:b2:c8:f0:37:50:42:b6:b1:a8:dd:e1:
a6:7b:cc:d8:ca:0b:b2:05:0d:52:bf:87:26:00:a5:
bf:2d:b0:0f:c5:39:29:d4:1e:28:70:d2:9e:b6:24:
f0:08:2d:ef:db:2a:9a:ba:57:8d:db:25:b5:3e:8d:
4e:97:b7:9e:63:01:0a:86:8a:54:22:0e:2c:ec:51:
a3:30:ee:39:7a:0a:c1:9b:d4:b5:e2:33:c8:c5:e4:
3c:a6:73:c8:e2:3a:3d:6a:81:9e:b9:ae:85:17:80:
2d:4c:d4:eb:e0:ec:08:7e:d9:e7:9d:75:d3:f5:07:
2f:de:ce:1f:61:b3:a9:14:85:a1:d6:e6:b1:bd:08:
9a:c2:fb:28:d8:75:eb:8a:e6:06:bb:59:1c:85:86:
c5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:EE:B6:E4:45:0D:C7:E3:73:7C:9C:7E:64:06:D2:D6:53:9F:13:A4
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/h-625EUNx-NzfJx-ZAbS1lOfE6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.137.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:53:0c:59:13:51:03:8c:cb:bb:11:e6:17:37:62:37:d5:c4:
be:a7:25:d4:1b:ee:2d:49:b7:2c:0c:bf:aa:dc:be:7c:cd:8b:
d4:9b:b6:37:96:9c:39:d5:58:91:49:81:c8:d3:92:cb:f7:ea:
15:f6:9a:76:20:b9:b3:f2:a1:99:68:d8:1a:45:01:a1:db:89:
16:18:76:d1:23:89:c2:4a:87:b5:02:d8:0a:f2:71:f3:bd:2a:
1f:14:68:24:4e:48:a8:4b:8d:4c:2d:32:a0:e9:5a:1c:28:1c:
3f:ed:33:86:13:68:38:27:ca:f6:84:1f:6f:d9:c5:7b:ff:62:
1c:cc:ba:0c:23:b9:a6:2a:2f:32:32:94:6a:38:a5:9e:34:87:
4a:4b:69:93:91:c5:65:8b:9d:47:6d:2f:b2:d8:f5:8b:7a:73:
96:0c:35:56:8e:15:27:f8:5a:0e:ba:eb:9c:cb:c4:22:f6:79:
2f:76:55:48:a9:e7:20:16:00:41:78:fb:12:47:8c:6c:9f:74:
a2:23:fc:f4:2c:2c:c1:f4:54:9b:dd:e6:9a:02:86:19:2e:1a:
5f:d5:53:d8:c4:3f:81:52:a3:12:73:a7:fb:86:eb:18:56:30:
d1:6d:7c:70:99:8e:12:e9:ee:d9:64:62:ef:de:b8:55:51:07:
47:13:af:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYejPbD+xEREhb+PIX8p96KxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMwNDIxMDk1NTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2VlYjZlNDQ1MGRjN2UzNzM3YzljN2U2NDA2ZDJkNjUzOWYxM2E0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAulY6PHb49OrAmxgu3sDBRNGa55i/
oMnNPf4pk/fa1gdM0It5oikH6E95m+/pBeSfHP9BcmMYfmk562bswsMKhNWkY+w+
YFxPfRWBnXDbgdrwV8XE67YdAA3lVfBHjgACeFPGEc05Ae0TEzz9ssjwN1BCtrGo
3eGme8zYyguyBQ1Sv4cmAKW/LbAPxTkp1B4ocNKetiTwCC3v2yqauleN2yW1Po1O
l7eeYwEKhopUIg4s7FGjMO45egrBm9S14jPIxeQ8pnPI4jo9aoGeua6FF4AtTNTr
4OwIftnnnXXT9Qcv3s4fYbOpFIWh1uaxvQiawvso2HXriuYGu1kchYbF4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIfutuRFDcfjc3ycfmQG0tZTnxOkMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvaC02MjVFVU54LU56Zkp4LVpBYlMxbE9mRTZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVdCJMA0G
CSqGSIb3DQEBCwUAA4IBAQB6UwxZE1EDjMu7EeYXN2I31cS+pyXUG+4tSbcsDL+q
3L58zYvUm7Y3lpw51ViRSYHI05LL9+oV9pp2ILmz8qGZaNgaRQGh24kWGHbRI4nC
Soe1AtgK8nHzvSofFGgkTkioS41MLTKg6VocKBw/7TOGE2g4J8r2hB9v2cV7/2Ic
zLoMI7mmKi8yMpRqOKWeNIdKS2mTkcVli51HbS+y2PWLenOWDDVWjhUn+FoOuuuc
y8Qi9nkvdlVIqecgFgBBePsSR4xsn3SiI/z0LCzB9FSb3eaaAoYZLhpf1VPYxD+B
UqMSc6f7husYVjDRbXxwmY4S6e7ZZGLv3rhVUQdHE69h
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:18:48 2024 by rpki-client on console-fra.rpki-client.org