Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/jVLBLJV_57kdLLQIFvH7go_yZZs.roa
File: jVLBLJV_57kdLLQIFvH7go_yZZs.roa (raw, json)
Hash identifier: KWI+s6TToUrpYwcSiF6uCQW1De/eoBtzwIo3KNRZcAE=
Subject key identifier: 8D:52:C1:2C:95:7F:E7:B9:1D:2C:B4:08:16:F1:FB:82:8F:F2:65:9B
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 018D3A3C7A940C2F393ACEED8BC44C239E03
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/jVLBLJV_57kdLLQIFvH7go_yZZs.roa
Signing time: Wed 24 Jan 2024 06:50:58 +0000
ROA not before: Wed 24 Jan 2024 06:50:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35080
IP address blocks: 85.119.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 06:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3a:3c:7a:94:0c:2f:39:3a:ce:ed:8b:c4:4c:23:9e:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 24 06:50:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d52c12c957fe7b91d2cb40816f1fb828ff2659b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7e:c5:e3:08:67:a4:c7:5d:57:f6:a5:f4:ef:
0e:97:af:86:fa:91:7d:48:11:33:52:b5:14:e8:f7:
84:cc:7e:84:c8:d3:b1:7d:86:df:fd:ec:6c:7a:d7:
13:12:31:ee:55:3d:92:51:f1:8d:f7:3a:db:81:9a:
c3:bf:df:72:0c:88:ed:b2:c0:e3:7a:ce:e6:cf:33:
d2:15:58:11:72:3b:b0:37:b7:39:b3:d7:fc:9b:30:
71:5d:d6:c1:5f:b4:ac:46:f1:09:c9:2b:2b:9a:66:
19:ce:05:1c:17:8a:51:48:37:1b:34:a7:50:09:f8:
40:bb:49:9c:33:bf:e7:22:2f:76:87:e4:7c:f9:c1:
42:74:cd:58:96:f2:38:96:e3:93:e9:db:39:fa:2c:
3c:45:76:c5:13:24:d3:a9:23:2d:94:70:cf:6e:5e:
f3:cf:0e:b0:ff:31:5f:3e:ec:38:16:e2:01:7a:bc:
ad:09:ff:08:9e:d2:f8:68:c1:74:0e:b8:4a:aa:fb:
8f:de:ca:2b:d0:ea:80:bb:86:7d:ec:8d:2b:c6:60:
e3:5f:0e:c3:94:88:5f:aa:9a:3e:d6:1c:00:c5:62:
31:93:dd:c7:d1:62:cb:1a:8e:94:b7:23:05:c8:25:
ae:0d:55:87:24:70:f4:18:f0:49:e4:09:67:f1:82:
4f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:52:C1:2C:95:7F:E7:B9:1D:2C:B4:08:16:F1:FB:82:8F:F2:65:9B
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/jVLBLJV_57kdLLQIFvH7go_yZZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.119.71.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:e1:54:9d:73:5e:6a:81:64:22:77:d1:10:58:ed:3a:15:c0:
93:3b:1a:b4:c4:aa:cf:80:fa:38:ff:5e:a3:4d:bf:73:b9:ae:
ec:38:f5:67:50:37:9f:f5:f7:24:4e:40:75:0a:15:15:ce:9e:
51:37:77:a3:32:1a:54:83:31:73:8c:d1:26:76:74:5d:bf:9b:
98:2b:6d:d7:ba:fc:19:36:16:ca:9c:f3:44:fc:65:38:a8:37:
f2:85:4f:48:58:5f:c0:3b:3a:59:76:4a:dc:eb:93:26:f1:5b:
91:35:c3:c7:9a:66:23:ab:bd:3d:91:be:1a:5c:45:30:ef:c2:
bc:cb:d8:c2:da:22:23:a3:01:f3:48:d3:d6:01:17:5d:45:8b:
ca:55:cf:45:24:02:df:f7:db:80:0c:eb:61:8d:6e:b3:c2:bf:
c3:c8:48:63:34:d6:0f:c9:fd:4b:a4:52:1c:92:7b:1b:d2:23:
e3:1d:1d:69:9f:c9:9b:4c:f4:ac:1e:30:cf:f8:d7:f2:d3:18:
ce:d8:d7:c5:71:54:b6:38:0f:e1:82:1f:ea:6d:2b:7e:87:74:
ea:1c:bf:7d:ef:49:af:48:1c:0b:9c:19:d4:59:82:c6:45:9a:
ea:de:0a:65:07:94:98:ec:1e:e5:d2:ce:71:8d:17:70:4d:b9:
3d:b5:40:e5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY06PHqUDC85Os7ti8RMI54DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2OGZlMzVjYzk2MjYzM2EyNzU3YWYxMGEwZTZlOGFiNmQw
MWY0YzkwHhcNMjQwMTI0MDY1MDU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDUyYzEyYzk1N2ZlN2I5MWQyY2I0MDgxNmYxZmI4MjhmZjI2NTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkn7F4whnpMddV/al9O8Ol6+G+pF9
SBEzUrUU6PeEzH6EyNOxfYbf/exsetcTEjHuVT2SUfGN9zrbgZrDv99yDIjtssDj
es7mzzPSFVgRcjuwN7c5s9f8mzBxXdbBX7SsRvEJySsrmmYZzgUcF4pRSDcbNKdQ
CfhAu0mcM7/nIi92h+R8+cFCdM1YlvI4luOT6ds5+iw8RXbFEyTTqSMtlHDPbl7z
zw6w/zFfPuw4FuIBerytCf8IntL4aMF0DrhKqvuP3sor0OqAu4Z97I0rxmDjXw7D
lIhfqpo+1hwAxWIxk93H0WLLGo6UtyMFyCWuDVWHJHD0GPBJ5Aln8YJP6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI1SwSyVf+e5HSy0CBbx+4KP8mWbMB8GA1UdIwQY
MBaAFFaP41zJYmM6J1evEKDm6KttAfTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMt
ODNkNjQ4Zjc5NzQ2LzEvalZMQkxKVl81N2tkTExRSUZ2SDdnb195WlpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMtODNkNjQ4Zjc5NzQ2
LzEvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVXdHMA0G
CSqGSIb3DQEBCwUAA4IBAQCy4VSdc15qgWQid9EQWO06FcCTOxq0xKrPgPo4/16j
Tb9zua7sOPVnUDef9fckTkB1ChUVzp5RN3ejMhpUgzFzjNEmdnRdv5uYK23XuvwZ
NhbKnPNE/GU4qDfyhU9IWF/AOzpZdkrc65Mm8VuRNcPHmmYjq709kb4aXEUw78K8
y9jC2iIjowHzSNPWARddRYvKVc9FJALf99uADOthjW6zwr/DyEhjNNYPyf1LpFIc
knsb0iPjHR1pn8mbTPSsHjDP+Nfy0xjO2NfFcVS2OA/hgh/qbSt+h3TqHL9970mv
SBwLnBnUWYLGRZrq3gplB5SY7B7l0s5xjRdwTbk9tUDl
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org