Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/r_EpaOX24HNNS4zGBs72XN0GVVk.roa
File: r_EpaOX24HNNS4zGBs72XN0GVVk.roa (raw, json)
Hash identifier: ZIwr8h69bzKXTAnmcctQNnJVh0l0LYIc0WFIyv4GChQ=
Subject key identifier: AF:F1:29:68:E5:F6:E0:73:4D:4B:8C:C6:06:CE:F6:5C:DD:06:55:59
Certificate issuer: /CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018
Certificate serial: 01879E8C8461478298EAB89FEB11CEAFB5FA
Authority key identifier: 4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/r_EpaOX24HNNS4zGBs72XN0GVVk.roa
Signing time: Thu 20 Apr 2023 12:03:41 +0000
ROA not before: Thu 20 Apr 2023 12:03:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 85.234.107.0/24 maxlen: 24
85.234.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:8c:84:61:47:82:98:ea:b8:9f:eb:11:ce:af:b5:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018
Validity
Not Before: Apr 20 12:03:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aff12968e5f6e0734d4b8cc606cef65cdd065559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5e:04:5f:e6:23:af:7e:f1:34:61:01:6a:a6:
c7:62:c2:ef:f2:c3:dc:67:cc:93:ca:b4:aa:39:7f:
20:b1:ce:fb:5e:01:bb:bc:c7:1d:87:49:08:25:e7:
cd:73:9a:a6:05:27:50:3d:35:5c:e0:23:c5:78:0d:
00:b4:9f:c0:63:75:71:1b:32:6d:1e:5c:20:3d:bf:
62:a8:85:fe:b4:39:bc:dc:20:d1:99:8a:fa:60:aa:
cb:84:60:a3:32:a6:9d:b2:5c:68:10:e5:f7:e0:d9:
83:af:8e:ab:1f:a6:02:96:31:b4:68:b6:d0:3e:a5:
06:f9:cc:e3:6c:83:4f:85:de:02:0d:21:11:7a:79:
15:fa:f6:41:c2:84:d8:e1:fa:b3:4f:f9:53:be:46:
71:17:18:f4:12:f8:8d:f9:f3:08:a9:53:61:95:dd:
34:16:22:89:69:7a:6b:c4:39:22:12:a0:64:a0:2f:
6e:d8:8a:8f:bf:2f:a4:a8:39:18:5a:6d:cf:27:ec:
c4:80:08:db:0d:d1:db:20:e0:4c:71:2e:a6:56:f4:
6a:be:ca:30:79:b3:6b:f5:d5:6d:db:66:30:d1:b6:
7a:73:b1:12:6b:b7:32:e1:f3:86:45:5c:11:d3:2b:
3d:d3:2e:77:2f:50:df:46:3c:ac:a3:aa:d4:70:74:
51:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F1:29:68:E5:F6:E0:73:4D:4B:8C:C6:06:CE:F6:5C:DD:06:55:59
X509v3 Authority Key Identifier:
keyid:4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/r_EpaOX24HNNS4zGBs72XN0GVVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/TCuJw8V6PilqpAYelihAvnro8Bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.234.106.0/23
Signature Algorithm: sha256WithRSAEncryption
55:9c:df:9f:a7:45:55:8b:ba:2b:a9:e9:f1:d5:32:57:20:6f:
34:2f:85:cc:c0:8e:71:dc:85:6f:81:6f:be:64:44:2d:99:d1:
22:ff:3d:ec:90:ae:74:f3:77:92:db:d3:88:11:ce:19:6e:16:
e1:43:c8:85:13:25:cc:36:9a:a9:31:82:b3:c8:0b:4b:2f:f2:
21:8c:47:53:c1:66:eb:07:60:9d:f0:9d:8f:27:47:9d:08:cf:
48:dd:62:11:ad:22:a9:99:90:d5:97:24:4c:79:ed:61:e5:76:
67:e1:a0:7d:9c:be:26:3e:98:8c:cb:bb:c9:21:7a:1c:cc:22:
5d:64:70:61:2c:34:e1:44:77:6b:52:ec:02:7a:97:2d:8d:8f:
38:a3:22:a6:77:32:3a:cf:7d:bb:e4:63:ee:5a:f3:ce:d1:23:
86:b3:70:14:c3:2f:8b:ba:19:23:c5:34:78:da:88:02:e8:ee:
f4:68:31:02:b5:11:21:b8:46:02:4f:02:34:96:ff:3d:0f:1e:
ca:17:62:f2:08:73:ac:90:0d:00:57:7b:b3:50:2d:da:96:34:
5a:28:e7:fc:4c:e2:db:64:1f:98:e0:8c:58:0e:25:db:05:ed:
ab:3c:57:d1:c6:2b:e5:28:91:61:c9:5e:58:d3:dc:f4:f4:39:
4a:2c:5a:f6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYeejIRhR4KY6rif6xHOr7X6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjMmI4OWMzYzU3YTNlMjk2YWE0MDYxZTk2Mjg0MGJlN2Fl
OGYwMTgwHhcNMjMwNDIwMTIwMzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZmYxMjk2OGU1ZjZlMDczNGQ0YjhjYzYwNmNlZjY1Y2RkMDY1NTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz14EX+Yjr37xNGEBaqbHYsLv8sPc
Z8yTyrSqOX8gsc77XgG7vMcdh0kIJefNc5qmBSdQPTVc4CPFeA0AtJ/AY3VxGzJt
HlwgPb9iqIX+tDm83CDRmYr6YKrLhGCjMqadslxoEOX34NmDr46rH6YCljG0aLbQ
PqUG+czjbINPhd4CDSERenkV+vZBwoTY4fqzT/lTvkZxFxj0EviN+fMIqVNhld00
FiKJaXprxDkiEqBkoC9u2IqPvy+kqDkYWm3PJ+zEgAjbDdHbIOBMcS6mVvRqvsow
ebNr9dVt22Yw0bZ6c7ESa7cy4fOGRVwR0ys90y53L1DfRjyso6rUcHRR+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK/xKWjl9uBzTUuMxgbO9lzdBlVZMB8GA1UdIwQY
MBaAFEwricPFej4paqQGHpYoQL566PAYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEN1Snc4VjZQaWxxcEFZZWxpaEF2bnJvOEJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni83MjE1NWEtZDEwOS00YzJkLWI5NzQt
MTEyOGU1Y2U2YTViLzEvcl9FcGFPWDI0SE5OUzR6R0JzNzJYTjBHVlZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni83MjE1NWEtZDEwOS00YzJkLWI5NzQtMTEyOGU1Y2U2YTVi
LzEvVEN1Snc4VjZQaWxxcEFZZWxpaEF2bnJvOEJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVepqMA0G
CSqGSIb3DQEBCwUAA4IBAQBVnN+fp0VVi7orqenx1TJXIG80L4XMwI5x3IVvgW++
ZEQtmdEi/z3skK5083eS29OIEc4ZbhbhQ8iFEyXMNpqpMYKzyAtLL/IhjEdTwWbr
B2Cd8J2PJ0edCM9I3WIRrSKpmZDVlyRMee1h5XZn4aB9nL4mPpiMy7vJIXoczCJd
ZHBhLDThRHdrUuwCepctjY84oyKmdzI6z3275GPuWvPO0SOGs3AUwy+LuhkjxTR4
2ogC6O70aDECtREhuEYCTwI0lv89Dx7KF2LyCHOskA0AV3uzUC3aljRaKOf8TOLb
ZB+Y4IxYDiXbBe2rPFfRxivlKJFhyV5Y09z09DlKLFr2
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:34 2024 by rpki-client on console-ams.rpki-client.org