Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/9SIwd64Vwb9D7yWCmGgxG550SnA.roa
File: 9SIwd64Vwb9D7yWCmGgxG550SnA.roa (raw, json)
Hash identifier: nruliTt8Kjyi0lHUpCAfLjB7nsRqWig2BpsJZ5wc/lU=
Subject key identifier: F5:22:30:77:AE:15:C1:BF:43:EF:25:82:98:68:31:1B:9E:74:4A:70
Certificate issuer: /CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018
Certificate serial: 01879CA3A00949C7CC70D051B2BD9A0E9E68
Authority key identifier: 4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/9SIwd64Vwb9D7yWCmGgxG550SnA.roa
Signing time: Thu 20 Apr 2023 03:09:41 +0000
ROA not before: Thu 20 Apr 2023 03:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 85.234.107.0/24 maxlen: 24
85.234.110.0/24 maxlen: 24
85.234.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Apr 2023 12:03:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9c:a3:a0:09:49:c7:cc:70:d0:51:b2:bd:9a:0e:9e:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018
Validity
Not Before: Apr 20 03:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5223077ae15c1bf43ef25829868311b9e744a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:88:d5:04:15:c6:93:4d:0e:2d:3e:de:2e:1e:
aa:2a:68:9d:7c:62:89:9b:83:10:00:93:b9:ff:ab:
cc:7f:58:eb:42:d9:60:6f:03:9d:36:31:0b:cb:6e:
33:da:38:8e:a5:bb:2f:ce:09:a6:f3:0b:dc:06:cc:
9c:b5:07:22:8c:35:bc:07:0f:22:14:b7:96:6e:0a:
c9:dc:8c:e7:e2:9a:45:54:04:83:a2:4f:0e:f9:cc:
ba:92:2a:c4:45:11:78:0e:cf:c8:88:c7:6b:33:51:
56:cd:b0:95:15:ed:cf:11:53:0b:0a:27:37:94:cd:
18:6a:f5:07:b9:8d:9e:03:d6:cf:65:35:91:d6:cd:
3e:52:77:bb:e5:0e:b2:78:23:31:2a:00:0b:97:57:
d7:62:26:13:2b:79:06:9a:fb:34:62:05:eb:48:d6:
07:37:23:76:9a:b8:29:59:c1:1b:8f:ab:fd:06:7d:
e1:02:e5:89:94:a6:35:91:c7:b6:48:33:2f:76:59:
42:e2:a5:fa:d0:e4:8c:15:e8:12:e7:d4:17:e7:b2:
e0:ec:24:aa:b0:73:0f:6d:f2:36:83:66:28:39:87:
0a:5b:c2:70:f2:92:4c:f4:f7:d9:e1:3e:d6:10:10:
fc:10:ae:ea:27:35:1a:5e:87:3b:07:aa:47:05:f0:
21:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:22:30:77:AE:15:C1:BF:43:EF:25:82:98:68:31:1B:9E:74:4A:70
X509v3 Authority Key Identifier:
keyid:4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/9SIwd64Vwb9D7yWCmGgxG550SnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/TCuJw8V6PilqpAYelihAvnro8Bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.234.106.0/23
85.234.110.0/24
Signature Algorithm: sha256WithRSAEncryption
37:c6:6f:42:97:42:ab:69:25:1c:03:e7:c9:8d:53:79:df:54:
99:77:c4:d2:e7:52:2f:38:d6:86:3d:10:e0:d5:b4:d6:e7:44:
85:c1:f0:27:f3:78:6f:94:0c:7b:9b:2d:a3:09:fb:1d:1e:0c:
ee:77:85:33:9e:c9:f8:01:65:0b:de:9d:b0:8b:15:05:3f:dd:
e8:ef:11:6c:aa:36:90:1d:a9:e8:57:46:26:c8:3e:83:bd:48:
57:28:a5:aa:e4:d3:6b:aa:b8:7f:60:bb:80:b9:55:fc:bc:72:
0d:38:1b:49:f3:82:f8:9d:61:3c:f0:fb:95:3e:07:5b:34:64:
9c:dd:92:3e:ca:a9:14:6d:7c:ff:61:00:a2:8c:4a:3b:54:90:
ba:82:62:22:7a:39:05:64:6c:1b:fe:a0:cd:d5:ac:b5:ab:f9:
62:2c:2c:04:26:b3:18:8b:96:ae:06:36:68:89:91:df:83:dd:
88:06:f1:a8:05:3f:9d:ac:e3:65:2b:b3:53:15:9a:ae:12:73:
91:22:af:98:11:b7:a6:48:42:96:f4:72:a6:c3:18:4c:62:8b:
49:b6:96:2d:ab:96:e6:fe:28:cf:0b:2b:12:1f:2c:61:92:e2:
4e:80:11:5a:cb:f0:d9:2f:ab:84:9a:27:d8:7e:1d:98:88:7a:
34:b4:bc:84
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYeco6AJScfMcNBRsr2aDp5oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjMmI4OWMzYzU3YTNlMjk2YWE0MDYxZTk2Mjg0MGJlN2Fl
OGYwMTgwHhcNMjMwNDIwMDMwOTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTIyMzA3N2FlMTVjMWJmNDNlZjI1ODI5ODY4MzExYjllNzQ0YTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgYjVBBXGk00OLT7eLh6qKmidfGKJ
m4MQAJO5/6vMf1jrQtlgbwOdNjELy24z2jiOpbsvzgmm8wvcBsyctQcijDW8Bw8i
FLeWbgrJ3Izn4ppFVASDok8O+cy6kirERRF4Ds/IiMdrM1FWzbCVFe3PEVMLCic3
lM0YavUHuY2eA9bPZTWR1s0+Une75Q6yeCMxKgALl1fXYiYTK3kGmvs0YgXrSNYH
NyN2mrgpWcEbj6v9Bn3hAuWJlKY1kce2SDMvdllC4qX60OSMFegS59QX57Lg7CSq
sHMPbfI2g2YoOYcKW8Jw8pJM9PfZ4T7WEBD8EK7qJzUaXoc7B6pHBfAh6QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFPUiMHeuFcG/Q+8lgphoMRuedEpwMB8GA1UdIwQY
MBaAFEwricPFej4paqQGHpYoQL566PAYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEN1Snc4VjZQaWxxcEFZZWxpaEF2bnJvOEJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni83MjE1NWEtZDEwOS00YzJkLWI5NzQt
MTEyOGU1Y2U2YTViLzEvOVNJd2Q2NFZ3YjlEN3lXQ21HZ3hHNTUwU25BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni83MjE1NWEtZDEwOS00YzJkLWI5NzQtMTEyOGU1Y2U2YTVi
LzEvVEN1Snc4VjZQaWxxcEFZZWxpaEF2bnJvOEJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBVepqAwQA
VepuMA0GCSqGSIb3DQEBCwUAA4IBAQA3xm9Cl0KraSUcA+fJjVN531SZd8TS51Iv
ONaGPRDg1bTW50SFwfAn83hvlAx7my2jCfsdHgzud4Uznsn4AWUL3p2wixUFP93o
7xFsqjaQHanoV0YmyD6DvUhXKKWq5NNrqrh/YLuAuVX8vHINOBtJ84L4nWE88PuV
PgdbNGSc3ZI+yqkUbXz/YQCijEo7VJC6gmIiejkFZGwb/qDN1ay1q/liLCwEJrMY
i5auBjZoiZHfg92IBvGoBT+drONlK7NTFZquEnORIq+YEbemSEKW9HKmwxhMYotJ
tpYtq5bm/ijPCysSHyxhkuJOgBFay/DZL6uEmifYfh2YiHo0tLyE
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org