Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c6eb97-48e8-4e5b-97cd-d5d8e04e5975/1/ed2FyM0iPsrkz8bkuhMgOBUDKsQ.roa
File: ed2FyM0iPsrkz8bkuhMgOBUDKsQ.roa (raw, json)
Hash identifier: sYWkD37J9+TYa7k7jeNJichVLj39ujlt1XzeRSY0xdY=
Subject key identifier: 79:DD:85:C8:CD:22:3E:CA:E4:CF:C6:E4:BA:13:20:38:15:03:2A:C4
Certificate issuer: /CN=15bd7f78b7a044ae134c88b624e831a761143b79
Certificate serial: 018570829FA5502DEFB1C0E5E82E250F82B5
Authority key identifier: 15:BD:7F:78:B7:A0:44:AE:13:4C:88:B6:24:E8:31:A7:61:14:3B:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fb1_eLegRK4TTIi2JOgxp2EUO3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c6eb97-48e8-4e5b-97cd-d5d8e04e5975/1/ed2FyM0iPsrkz8bkuhMgOBUDKsQ.roa
Signing time: Mon 02 Jan 2023 03:24:46 +0000
ROA not before: Mon 02 Jan 2023 03:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201522
IP address blocks: 185.71.172.0/24 maxlen: 24
185.71.172.0/22 maxlen: 22
185.71.175.0/24 maxlen: 24
185.71.173.0/24 maxlen: 24
185.71.174.0/24 maxlen: 24
2a05:33c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:9f:a5:50:2d:ef:b1:c0:e5:e8:2e:25:0f:82:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15bd7f78b7a044ae134c88b624e831a761143b79
Validity
Not Before: Jan 2 03:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79dd85c8cd223ecae4cfc6e4ba13203815032ac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3b:d0:dd:bc:02:2e:07:8c:1f:1f:0d:e4:b6:
ca:cd:d7:d2:03:c6:11:3c:51:c7:cb:93:c8:cd:21:
8e:fe:5b:1e:aa:bb:38:e1:1b:b4:db:2e:df:e7:1e:
0c:55:cf:4a:f6:c6:a1:72:6b:ef:5b:b2:f7:c0:15:
25:de:54:1e:10:00:6e:fa:d9:80:ef:c8:4a:84:f0:
57:ab:68:6f:23:41:7f:96:5d:61:fc:99:52:7c:2b:
a2:80:d8:c2:92:0e:28:c5:99:ed:e4:44:45:93:72:
03:6c:fc:dd:aa:f0:3e:db:47:77:f7:25:eb:3c:f6:
0b:b7:69:8a:2e:dd:c7:f4:7f:2a:67:a3:dc:83:ac:
7c:14:c7:66:03:15:92:13:25:2d:41:68:69:f1:a9:
96:61:ba:54:bb:ac:d7:99:3f:31:7d:c9:ed:02:99:
2b:6f:6e:46:70:5f:fe:a2:ce:dd:25:4b:f4:0a:9c:
e2:64:0a:46:74:99:64:93:42:9b:b7:8b:ed:2c:a4:
90:2d:3a:f0:6e:d3:05:ee:26:3a:b7:19:f2:f9:19:
1d:45:04:a1:46:0d:d6:38:52:cb:37:a5:ea:d8:e0:
6b:ee:96:fa:6d:95:c4:01:3f:b4:11:bd:03:c9:ef:
a0:2e:f9:d0:1d:ac:02:20:75:ae:2a:c4:95:21:76:
8c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:DD:85:C8:CD:22:3E:CA:E4:CF:C6:E4:BA:13:20:38:15:03:2A:C4
X509v3 Authority Key Identifier:
keyid:15:BD:7F:78:B7:A0:44:AE:13:4C:88:B6:24:E8:31:A7:61:14:3B:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fb1_eLegRK4TTIi2JOgxp2EUO3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c6eb97-48e8-4e5b-97cd-d5d8e04e5975/1/ed2FyM0iPsrkz8bkuhMgOBUDKsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c6eb97-48e8-4e5b-97cd-d5d8e04e5975/1/Fb1_eLegRK4TTIi2JOgxp2EUO3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.172.0/22
IPv6:
2a05:33c0::/48
Signature Algorithm: sha256WithRSAEncryption
43:a5:71:67:23:6d:3c:2f:08:d4:c2:05:fb:4a:0d:c4:9a:14:
25:bf:f3:43:1f:7c:d1:4f:7e:f9:40:4d:25:f0:3b:87:40:6e:
b3:a2:7d:98:0b:50:ea:6d:f7:28:84:de:3e:cb:fa:45:0c:82:
1a:15:3a:70:ad:63:0c:8b:c1:5e:09:f5:37:7e:f0:5b:35:6b:
47:00:47:a8:ff:bd:2b:55:55:b7:d8:cb:12:ee:06:e0:9d:7b:
92:be:58:e7:7c:dc:3d:4c:9c:92:08:34:0a:06:b1:cf:fc:94:
e0:9b:b7:4d:f5:55:31:b2:0b:aa:ad:f4:ca:c3:45:3a:8a:f2:
7d:59:81:44:42:43:77:c4:06:95:52:e0:21:92:a7:8a:d3:04:
4b:f1:e3:66:85:c0:c4:89:24:31:22:72:37:08:f0:b3:59:98:
a6:7a:8c:41:72:b8:6b:9c:c2:12:b6:68:e2:34:b4:cb:2a:a1:
63:50:2f:b7:4d:7c:81:0e:69:3d:10:ca:70:0d:a5:2e:20:22:
fb:7b:7f:69:f2:33:dc:7e:00:ab:51:f5:1f:ec:17:db:30:0e:
61:3c:75:af:06:2a:dd:2c:d3:d6:40:a3:ec:61:1e:1f:c4:09:
14:77:2e:44:c0:13:02:37:04:9a:cc:81:7a:6c:28:40:d3:e4:
5c:09:90:a7
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVwgp+lUC3vscDl6C4lD4K1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1YmQ3Zjc4YjdhMDQ0YWUxMzRjODhiNjI0ZTgzMWE3NjEx
NDNiNzkwHhcNMjMwMTAyMDMyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OWRkODVjOGNkMjIzZWNhZTRjZmM2ZTRiYTEzMjAzODE1MDMyYWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjvQ3bwCLgeMHx8N5LbKzdfSA8YR
PFHHy5PIzSGO/lseqrs44Ru02y7f5x4MVc9K9sahcmvvW7L3wBUl3lQeEABu+tmA
78hKhPBXq2hvI0F/ll1h/JlSfCuigNjCkg4oxZnt5ERFk3IDbPzdqvA+20d39yXr
PPYLt2mKLt3H9H8qZ6Pcg6x8FMdmAxWSEyUtQWhp8amWYbpUu6zXmT8xfcntApkr
b25GcF/+os7dJUv0CpziZApGdJlkk0Kbt4vtLKSQLTrwbtMF7iY6txny+RkdRQSh
Rg3WOFLLN6Xq2OBr7pb6bZXEAT+0Eb0Dye+gLvnQHawCIHWuKsSVIXaMhwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHndhcjNIj7K5M/G5LoTIDgVAyrEMB8GA1UdIwQY
MBaAFBW9f3i3oESuE0yItiToMadhFDt5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmIxX2VMZWdSSzRUVElpMkpPZ3hwMkVVTzNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9jNmViOTctNDhlOC00ZTViLTk3Y2Qt
ZDVkOGUwNGU1OTc1LzEvZWQyRnlNMGlQc3Jrejhia3VoTWdPQlVES3NRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9jNmViOTctNDhlOC00ZTViLTk3Y2QtZDVkOGUwNGU1OTc1
LzEvRmIxX2VMZWdSSzRUVElpMkpPZ3hwMkVVTzNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCuUesMA8E
AgACMAkDBwAqBTPAAAAwDQYJKoZIhvcNAQELBQADggEBAEOlcWcjbTwvCNTCBftK
DcSaFCW/80MffNFPfvlATSXwO4dAbrOifZgLUOpt9yiE3j7L+kUMghoVOnCtYwyL
wV4J9Td+8Fs1a0cAR6j/vStVVbfYyxLuBuCde5K+WOd83D1MnJIINAoGsc/8lOCb
t031VTGyC6qt9MrDRTqK8n1ZgURCQ3fEBpVS4CGSp4rTBEvx42aFwMSJJDEicjcI
8LNZmKZ6jEFyuGucwhK2aOI0tMsqoWNQL7dNfIEOaT0QynANpS4gIvt7f2nyM9x+
AKtR9R/sF9swDmE8da8GKt0s09ZAo+xhHh/ECRR3LkTAEwI3BJrMgXpsKEDT5FwJ
kKc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:26 2024 by rpki-client on console-ams.rpki-client.org