Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/B3oLQ2sn9wrQl0lpPYWXTyFASuo.roa
File: B3oLQ2sn9wrQl0lpPYWXTyFASuo.roa (raw, json)
Hash identifier: fQ26O61tG7i17qfKO/RwMd5qAQpmZ270f5Fbqp/WdaA=
Subject key identifier: 07:7A:0B:43:6B:27:F7:0A:D0:97:49:69:3D:85:97:4F:21:40:4A:EA
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 01873783734F1BCC6EC60C93FFDFD0E23CAD
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/B3oLQ2sn9wrQl0lpPYWXTyFASuo.roa
Signing time: Fri 31 Mar 2023 11:52:54 +0000
ROA not before: Fri 31 Mar 2023 11:52:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 85.153.76.0/22 maxlen: 22
85.153.96.0/22 maxlen: 22
85.153.112.0/24 maxlen: 24
85.153.116.0/24 maxlen: 24
85.153.117.0/24 maxlen: 24
85.153.114.0/24 maxlen: 24
85.153.115.0/24 maxlen: 24
85.153.16.0/22 maxlen: 22
85.153.22.0/24 maxlen: 24
85.153.23.0/24 maxlen: 24
85.153.20.0/24 maxlen: 24
85.153.21.0/24 maxlen: 24
85.153.31.0/24 maxlen: 24
85.153.30.0/24 maxlen: 24
85.153.28.0/24 maxlen: 24
85.153.44.0/24 maxlen: 24
85.153.47.0/24 maxlen: 24
85.153.45.0/24 maxlen: 24
85.153.46.0/24 maxlen: 24
85.153.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Jun 2023 05:57:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:37:83:73:4f:1b:cc:6e:c6:0c:93:ff:df:d0:e2:3c:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Mar 31 11:52:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=077a0b436b27f70ad09749693d85974f21404aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:42:6e:9c:a6:06:72:ec:c2:b9:f9:50:e9:b0:
5c:86:e9:bf:dc:10:1f:58:b1:01:3d:5b:04:06:4b:
94:cd:ff:9a:60:95:8a:44:aa:b6:d6:f8:ab:8c:1f:
c1:30:4a:d5:ba:90:00:0c:e9:83:be:ec:25:b0:14:
64:2e:2c:01:f6:3f:2b:32:fe:ef:f3:91:03:73:43:
d5:5e:db:36:97:25:c7:09:cc:dc:c7:bc:03:09:e7:
6a:80:a3:2f:94:85:72:2a:8d:7a:06:4e:83:11:c7:
e3:4a:39:fb:93:16:50:d4:b5:ca:68:62:b0:a4:42:
23:b3:06:0b:04:6e:c5:04:fc:06:00:2a:a3:d6:c0:
db:a4:38:a3:7c:42:10:33:8d:59:c0:e7:45:17:e4:
94:be:d9:80:3b:08:91:73:a3:36:a4:3b:44:44:65:
1e:13:72:09:ca:d1:af:3c:c4:f5:f7:78:fb:67:d6:
65:c9:5f:87:0f:e2:41:35:75:f2:b4:6a:10:58:aa:
be:13:e1:f4:00:e1:7d:53:40:8f:9c:be:1f:7c:cb:
0d:5b:e6:55:b7:1a:d3:fa:56:78:80:6d:63:af:e7:
96:70:73:88:5e:05:90:b5:eb:d1:91:8c:42:1e:b4:
97:fb:18:6d:8e:23:5c:24:d7:0e:17:92:0c:44:15:
5c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:7A:0B:43:6B:27:F7:0A:D0:97:49:69:3D:85:97:4F:21:40:4A:EA
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/B3oLQ2sn9wrQl0lpPYWXTyFASuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.16.0/21
85.153.28.0/24
85.153.30.0/23
85.153.44.0/22
85.153.57.0/24
85.153.76.0/22
85.153.96.0/22
85.153.112.0/24
85.153.114.0-85.153.117.255
Signature Algorithm: sha256WithRSAEncryption
07:84:27:4e:f5:38:ea:3a:60:b1:c9:7b:80:2c:da:6b:a0:2d:
61:a3:96:93:38:9d:02:72:8c:99:1a:74:77:c8:db:d7:69:c8:
34:a5:b0:36:33:9b:d1:de:06:69:94:9c:8e:42:ea:0a:0b:b3:
3e:f1:78:9e:ee:85:be:66:8a:af:16:ba:c8:36:92:e4:18:1b:
66:f8:61:26:31:ae:43:93:4b:41:86:e2:31:d0:dd:87:a8:6f:
8b:ef:ca:9a:7b:9c:aa:69:6e:a2:b2:29:b9:62:dd:65:3b:14:
52:f6:37:c6:18:a0:54:6a:eb:a7:43:92:de:64:41:8d:68:92:
6e:02:06:e1:ac:4e:74:ff:15:87:50:90:b5:20:bd:51:e3:f0:
99:db:c2:8a:a9:ea:60:05:fd:f0:20:90:93:b3:13:f4:44:88:
ce:0c:92:29:4b:9d:28:38:45:e3:f1:0b:c1:be:11:49:9d:7d:
fc:52:af:02:fe:f1:b4:19:ee:b1:b3:0d:13:d4:0c:5b:f0:83:
b3:2c:3c:0c:8e:86:01:7d:5f:4e:14:21:22:db:cc:a7:5d:9f:
9e:2d:51:00:1f:90:17:a0:43:72:4f:fc:9b:9b:8d:17:c6:f7:
96:10:32:74:b7:63:51:75:37:15:ee:be:d3:3f:0d:96:57:a6:
48:b9:1f:59
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgISAYc3g3NPG8xuxgyT/9/Q4jytMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxYTE4NWQwZWIwY2E3ODExYzU4NjQyNWRlMGU5NjBlMWNm
ZWI2MWIwHhcNMjMwMzMxMTE1MjU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzdhMGI0MzZiMjdmNzBhZDA5NzQ5NjkzZDg1OTc0ZjIxNDA0YWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7EJunKYGcuzCuflQ6bBchum/3BAf
WLEBPVsEBkuUzf+aYJWKRKq21virjB/BMErVupAADOmDvuwlsBRkLiwB9j8rMv7v
85EDc0PVXts2lyXHCczcx7wDCedqgKMvlIVyKo16Bk6DEcfjSjn7kxZQ1LXKaGKw
pEIjswYLBG7FBPwGACqj1sDbpDijfEIQM41ZwOdFF+SUvtmAOwiRc6M2pDtERGUe
E3IJytGvPMT193j7Z9ZlyV+HD+JBNXXytGoQWKq+E+H0AOF9U0CPnL4ffMsNW+ZV
txrT+lZ4gG1jr+eWcHOIXgWQtevRkYxCHrSX+xhtjiNcJNcOF5IMRBVc9QIDAQAB
o4ICQTCCAj0wHQYDVR0OBBYEFAd6C0NrJ/cK0JdJaT2Fl08hQErqMB8GA1UdIwQY
MBaAFDGhhdDrDKeBHFhkJd4Olg4c/rYbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWFHRjBPc01wNEVjV0dRbDNnNldEaHotdGhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8wODFjNmUtMWQ2NS00Y2NkLTk2ZjUt
MWRjYzg2YzExZTc0LzEvQjNvTFEyc245d3JRbDBscFBZV1hUeUZBU3VvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8wODFjNmUtMWQ2NS00Y2NkLTk2ZjUtMWRjYzg2YzExZTc0
LzEvTWFHRjBPc01wNEVjV0dRbDNnNldEaHotdGhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+AwQDVZkQAwQA
VZkcAwQBVZkeAwQCVZksAwQAVZk5AwQCVZlMAwQCVZlgAwQAVZlwMAwDBAFVmXID
BAFVmXQwDQYJKoZIhvcNAQELBQADggEBAAeEJ071OOo6YLHJe4As2mugLWGjlpM4
nQJyjJkadHfI29dpyDSlsDYzm9HeBmmUnI5C6goLsz7xeJ7uhb5miq8Wusg2kuQY
G2b4YSYxrkOTS0GG4jHQ3Yeob4vvypp7nKppbqKyKbli3WU7FFL2N8YYoFRq66dD
kt5kQY1okm4CBuGsTnT/FYdQkLUgvVHj8Jnbwoqp6mAF/fAgkJOzE/REiM4MkilL
nSg4RePxC8G+EUmdffxSrwL+8bQZ7rGzDRPUDFvwg7MsPAyOhgF9X04UISLbzKdd
n54tUQAfkBegQ3JP/JubjRfG95YQMnS3Y1F1NxXuvtM/DZZXpki5H1k=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:40 2024 by rpki-client on console-ams.rpki-client.org