Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/ZheY1FLbWIZTgHxxkIN7Lf4fZtE.roa
File: ZheY1FLbWIZTgHxxkIN7Lf4fZtE.roa (raw, json)
Hash identifier: u7AEFPggrJk1WdGR3Skx/mSNoEDhmK6WAq0bDGJx7no=
Subject key identifier: 66:17:98:D4:52:DB:58:86:53:80:7C:71:90:83:7B:2D:FE:1F:66:D1
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 01856F5DE2732AFA8E56748A983BA1F0025C
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/ZheY1FLbWIZTgHxxkIN7Lf4fZtE.roa
Signing time: Sun 01 Jan 2023 22:05:01 +0000
ROA not before: Sun 01 Jan 2023 22:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64488
IP address blocks: 85.248.78.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:e2:73:2a:fa:8e:56:74:8a:98:3b:a1:f0:02:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 22:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=661798d452db588653807c7190837b2dfe1f66d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fa:8f:62:d9:43:91:8b:52:cc:58:e6:aa:08:
75:52:e6:de:e7:97:8e:36:40:f6:ef:18:e4:d3:85:
66:08:8d:a3:03:dd:0e:79:cb:76:51:66:c2:7b:0f:
94:95:69:fa:07:02:d8:2f:5a:25:bd:87:6d:1a:83:
42:f9:ff:0b:4d:49:23:03:90:c7:6c:86:3e:27:e8:
99:07:16:85:c2:ad:ac:98:33:11:1d:49:62:76:8f:
77:e4:a7:ac:fe:f4:3c:0a:46:64:f4:7a:3e:af:01:
b6:0e:aa:d6:8c:2f:4c:cb:f5:86:cb:ce:7c:eb:ad:
56:6a:f0:44:b0:90:13:1a:e5:cb:5a:db:e1:cb:06:
43:9c:84:d5:e0:86:1d:2f:38:73:2d:a4:05:fe:ff:
43:23:b4:a6:b9:ba:23:95:3c:c1:cb:fa:1e:a4:3b:
5d:9f:10:b6:28:8e:40:9d:13:9f:1b:c8:c4:93:a6:
93:92:74:16:d3:30:11:d0:3b:2c:8d:02:da:18:48:
cc:93:9e:1c:36:5c:2a:3f:bf:22:ae:41:9d:cc:fc:
f8:42:01:5c:7f:21:b8:d0:1f:2e:82:03:07:3b:13:
00:2f:4f:89:2a:37:27:d1:ec:96:fb:04:bc:01:3e:
ff:86:7f:de:0d:a8:69:20:61:37:58:6c:b2:85:b8:
e3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:17:98:D4:52:DB:58:86:53:80:7C:71:90:83:7B:2D:FE:1F:66:D1
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/ZheY1FLbWIZTgHxxkIN7Lf4fZtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.248.78.0/24
Signature Algorithm: sha256WithRSAEncryption
73:a6:d8:a0:3c:a1:ef:0d:0d:00:6a:32:dc:9a:50:72:91:2e:
63:da:4c:16:4b:de:aa:1a:1a:36:ef:79:96:fa:5d:5b:46:40:
26:cb:1c:af:63:1e:4d:4e:08:87:58:a5:3e:91:86:24:20:e2:
f6:15:92:81:3a:8a:41:ca:65:a4:98:26:24:de:0a:5e:8c:3e:
6e:54:8e:e4:ab:27:32:e6:a1:dc:fa:6c:41:b4:6c:13:38:4c:
b6:b1:86:29:06:11:0a:f4:a8:5a:09:94:b6:e1:2f:29:1f:ac:
55:a8:a5:fa:a9:ad:34:92:88:98:1e:2a:fc:bc:2e:37:a3:f7:
0a:22:ca:75:3c:1c:9c:fa:17:0d:44:f8:79:66:71:53:db:e7:
3a:a0:4b:fc:f2:71:d9:9f:64:60:34:c6:a4:b0:7d:19:39:01:
b5:34:80:de:f8:03:df:41:6c:a8:3e:67:88:15:5c:5a:a6:b7:
62:95:bc:00:be:cc:4d:48:6a:b1:dd:13:5a:17:0a:44:e2:dd:
4d:4e:13:99:37:06:03:58:7d:6d:ca:03:43:ab:52:ae:18:c1:
fb:56:76:a9:52:4f:19:a6:0f:2d:25:2f:10:ad:d3:fe:a8:00:
ff:c7:d6:74:43:6a:e5:1d:4e:ab:bb:2c:9c:81:04:34:df:25:
4e:9f:9c:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvXeJzKvqOVnSKmDuh8AJcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Zjg4MTQwMWFiYWNjODhjOTQxZmRmNzQwZjFhYjE1MzZm
MDVkYmEwHhcNMjMwMTAxMjIwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjE3OThkNDUyZGI1ODg2NTM4MDdjNzE5MDgzN2IyZGZlMWY2NmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlPqPYtlDkYtSzFjmqgh1Uube55eO
NkD27xjk04VmCI2jA90Oect2UWbCew+UlWn6BwLYL1olvYdtGoNC+f8LTUkjA5DH
bIY+J+iZBxaFwq2smDMRHUlido935Kes/vQ8CkZk9Ho+rwG2DqrWjC9My/WGy858
661WavBEsJATGuXLWtvhywZDnITV4IYdLzhzLaQF/v9DI7SmubojlTzBy/oepDtd
nxC2KI5AnROfG8jEk6aTknQW0zAR0DssjQLaGEjMk54cNlwqP78irkGdzPz4QgFc
fyG40B8uggMHOxMAL0+JKjcn0eyW+wS8AT7/hn/eDahpIGE3WGyyhbjjYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGYXmNRS21iGU4B8cZCDey3+H2bRMB8GA1UdIwQY
MBaAFOf4gUAausyIyUH990DxqxU28F26MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNV9pQlFCcTZ6SWpKUWYzM1FQR3JGVGJ3WGJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9mNTUzNGEtYTYxMy00N2JlLWI0MmIt
ZTJmYmMzYTY4ODAwLzEvWmhlWTFGTGJXSVpUZ0h4eGtJTjdMZjRmWnRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS9mNTUzNGEtYTYxMy00N2JlLWI0MmItZTJmYmMzYTY4ODAw
LzEvNV9pQlFCcTZ6SWpKUWYzM1FQR3JGVGJ3WGJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVfhOMA0G
CSqGSIb3DQEBCwUAA4IBAQBzptigPKHvDQ0AajLcmlBykS5j2kwWS96qGho273mW
+l1bRkAmyxyvYx5NTgiHWKU+kYYkIOL2FZKBOopBymWkmCYk3gpejD5uVI7kqycy
5qHc+mxBtGwTOEy2sYYpBhEK9KhaCZS24S8pH6xVqKX6qa00koiYHir8vC43o/cK
Isp1PByc+hcNRPh5ZnFT2+c6oEv88nHZn2RgNMaksH0ZOQG1NIDe+APfQWyoPmeI
FVxaprdilbwAvsxNSGqx3RNaFwpE4t1NThOZNwYDWH1tygNDq1KuGMH7VnapUk8Z
pg8tJS8QrdP+qAD/x9Z0Q2rlHU6ruyycgQQ03yVOn5xO
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:18 2024 by rpki-client on console-ams.rpki-client.org