Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/Ez62hG26VzhGsbNbE2gYg7-Mdh0.roa
File: Ez62hG26VzhGsbNbE2gYg7-Mdh0.roa (raw, json)
Hash identifier: YHTBdIGfyKRWUo7xZIv65ZBjYQ0z2gqVee7DolY3Y1I=
Subject key identifier: 13:3E:B6:84:6D:BA:57:38:46:B1:B3:5B:13:68:18:83:BF:8C:76:1D
Certificate issuer: /CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Certificate serial: 01856DA656C453D41431884213C71B14BF09
Authority key identifier: B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/Ez62hG26VzhGsbNbE2gYg7-Mdh0.roa
Signing time: Sun 01 Jan 2023 14:04:55 +0000
ROA not before: Sun 01 Jan 2023 14:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16047
IP address blocks: 185.220.40.0/22 maxlen: 22
37.60.176.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:56:c4:53:d4:14:31:88:42:13:c7:1b:14:bf:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Validity
Not Before: Jan 1 14:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=133eb6846dba573846b1b35b13681883bf8c761d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:62:71:21:35:72:37:3c:a7:de:cc:2f:3d:82:
d5:35:86:a1:77:6a:5d:ed:a7:16:4c:16:d7:65:0b:
d3:b9:bb:1a:c5:26:c3:3d:15:dc:21:48:0a:ac:73:
7b:66:e7:0a:bb:4b:95:ac:3a:00:9a:99:af:9a:8d:
86:9d:e5:d0:5b:78:54:1e:86:81:ac:f4:68:b6:b7:
aa:df:78:df:65:aa:40:39:a2:40:50:f9:15:81:db:
72:63:55:74:c4:70:3c:8b:58:1b:ee:d8:fc:56:af:
03:a8:b7:ee:2b:6a:66:ee:ec:f8:6a:e7:c5:fc:78:
72:1f:89:fe:27:c3:f7:8c:a0:f2:5b:ff:9f:aa:f6:
2d:0c:fc:ae:1d:b4:42:8a:4a:e7:f4:ef:42:b1:bb:
59:b7:61:bd:94:5c:c7:08:0c:04:2c:50:41:56:2a:
4a:09:4b:80:59:ca:78:a6:ca:0f:8f:a6:fd:43:28:
f9:20:8a:7d:32:90:b0:a5:f7:4d:e7:7f:7c:79:2c:
fa:63:50:df:f1:4e:b9:03:7a:1b:12:25:42:be:30:
02:24:e2:8d:35:1b:85:49:e4:bc:df:5c:a5:d1:4d:
8b:3f:52:16:4a:b2:7d:90:19:5a:91:75:a0:ea:3f:
43:30:24:15:60:54:62:57:6a:11:fb:6b:54:47:33:
2a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3E:B6:84:6D:BA:57:38:46:B1:B3:5B:13:68:18:83:BF:8C:76:1D
X509v3 Authority Key Identifier:
keyid:B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/Ez62hG26VzhGsbNbE2gYg7-Mdh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.176.0/21
185.220.40.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:6f:b7:bc:7e:3a:6b:6d:23:12:aa:3e:54:b4:5a:89:37:f6:
0d:f7:1f:ae:52:96:e3:a0:c5:d5:d1:4b:3b:72:8f:92:de:70:
62:88:87:03:ad:44:78:3f:17:ca:cb:3a:ac:17:62:6d:e6:92:
b5:12:15:85:66:07:76:40:63:7c:9c:f7:5d:43:03:a2:e5:e3:
08:80:98:87:80:6b:5a:25:c6:00:c6:be:75:46:0d:97:c5:20:
e0:24:32:40:16:a9:a4:74:47:51:69:d3:c7:6f:0a:21:8f:e0:
b0:c5:37:b2:5d:2a:f8:f5:d0:4f:55:33:ce:c7:a5:42:23:c1:
87:ca:a6:52:4e:e0:a0:2a:80:32:a8:87:51:b5:d3:07:4c:9d:
d5:ee:e7:6b:ee:4d:40:dd:19:7e:42:c4:fd:00:8e:cc:63:83:
98:ea:02:50:0d:d6:dc:1d:39:b6:a9:55:42:a7:ad:8b:6b:9e:
e2:f8:d6:3c:42:07:4a:b4:72:5f:36:78:b6:e1:41:a7:83:7e:
c5:e4:90:22:5c:6e:f0:67:dd:1d:db:2d:c8:d9:19:f0:6a:5f:
63:09:22:47:78:46:99:92:ea:9d:e3:94:93:4a:fd:fa:01:08:
2b:9b:2f:f9:17:6b:5d:38:95:e9:7a:fd:25:12:ce:27:20:3a:
b4:e8:5e:3d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVtplbEU9QUMYhCE8cbFL8JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1ZmFlYzRiOGQ5OTJkZDZiOWNkODlhODQ4OWQzYzNhNjUy
YWVjZDIwHhcNMjMwMTAxMTQwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzNlYjY4NDZkYmE1NzM4NDZiMWIzNWIxMzY4MTg4M2JmOGM3NjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiWJxITVyNzyn3swvPYLVNYahd2pd
7acWTBbXZQvTubsaxSbDPRXcIUgKrHN7ZucKu0uVrDoAmpmvmo2GneXQW3hUHoaB
rPRotreq33jfZapAOaJAUPkVgdtyY1V0xHA8i1gb7tj8Vq8DqLfuK2pm7uz4aufF
/HhyH4n+J8P3jKDyW/+fqvYtDPyuHbRCikrn9O9CsbtZt2G9lFzHCAwELFBBVipK
CUuAWcp4psoPj6b9Qyj5IIp9MpCwpfdN5398eSz6Y1Df8U65A3obEiVCvjACJOKN
NRuFSeS831yl0U2LP1IWSrJ9kBlakXWg6j9DMCQVYFRiV2oR+2tURzMq3QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBM+toRtulc4RrGzWxNoGIO/jHYdMB8GA1UdIwQY
MBaAFLX67EuNmS3Wuc2JqEidPDplKuzSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGZyc1M0MlpMZGE1elltb1NKMDhPbVVxN05JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82OGMyOTYtNjliMi00MDcwLTlmZjkt
NDI0M2RlY2FkMzYwLzEvRXo2MmhHMjZWemhHc2JOYkUyZ1lnNy1NZGgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS82OGMyOTYtNjliMi00MDcwLTlmZjktNDI0M2RlY2FkMzYw
LzEvdGZyc1M0MlpMZGE1elltb1NKMDhPbVVxN05JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDJTywAwQC
udwoMA0GCSqGSIb3DQEBCwUAA4IBAQCNb7e8fjprbSMSqj5UtFqJN/YN9x+uUpbj
oMXV0Us7co+S3nBiiIcDrUR4PxfKyzqsF2Jt5pK1EhWFZgd2QGN8nPddQwOi5eMI
gJiHgGtaJcYAxr51Rg2XxSDgJDJAFqmkdEdRadPHbwohj+CwxTeyXSr49dBPVTPO
x6VCI8GHyqZSTuCgKoAyqIdRtdMHTJ3V7udr7k1A3Rl+QsT9AI7MY4OY6gJQDdbc
HTm2qVVCp62La57i+NY8QgdKtHJfNni24UGng37F5JAiXG7wZ90d2y3I2Rnwal9j
CSJHeEaZkuqd45STSv36AQgrmy/5F2tdOJXpev0lEs4nIDq06F49
-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:07 2024 by rpki-client on console-fra.rpki-client.org