Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/JcPTcbI3Ytvo2f_UsbXq4BjjqVo.roa
File: JcPTcbI3Ytvo2f_UsbXq4BjjqVo.roa (raw, json)
Hash identifier: a4TiwDo0GBd2xH8FVE3t5hanBkqmGiXOolNp8YXrgVQ=
Subject key identifier: 25:C3:D3:71:B2:37:62:DB:E8:D9:FF:D4:B1:B5:EA:E0:18:E3:A9:5A
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 0187378373D4324FB5F299A808A51F1E1056
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/JcPTcbI3Ytvo2f_UsbXq4BjjqVo.roa
Signing time: Fri 31 Mar 2023 11:52:54 +0000
ROA not before: Fri 31 Mar 2023 11:52:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 85.153.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 10:34:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:37:83:73:d4:32:4f:b5:f2:99:a8:08:a5:1f:1e:10:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Mar 31 11:52:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25c3d371b23762dbe8d9ffd4b1b5eae018e3a95a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:39:8a:bc:61:09:e6:cc:f8:50:45:fe:85:a0:
be:37:17:f0:1b:e0:c9:dc:93:42:a6:31:9c:66:af:
f2:c5:58:a6:c9:b3:ff:1c:36:03:b7:ec:16:0a:29:
77:63:d2:66:8f:5e:63:f0:ac:27:64:c8:b9:de:d8:
04:c0:6c:57:a2:b3:d6:c8:de:8a:a8:fd:94:22:62:
90:22:b9:52:31:89:91:3c:06:7e:e8:3d:33:e0:fa:
3e:ff:40:14:3b:5e:6b:d9:33:30:39:e3:bc:ac:0d:
44:92:13:ce:d9:d1:65:c0:b5:07:5b:04:c2:79:6f:
84:41:35:be:86:b6:2f:48:a7:83:bb:bb:f4:94:c6:
5a:f7:e7:d5:cc:5b:14:0a:74:12:0c:70:6f:e8:19:
10:a9:54:fd:39:9a:f0:2e:75:a5:ed:16:6e:27:45:
a6:42:5a:f2:a7:21:37:f5:58:06:f5:f8:4e:5f:68:
50:f8:2e:33:7e:4a:49:10:b9:9a:e9:ae:77:20:77:
84:47:15:19:76:76:66:29:41:77:2f:54:88:ef:39:
c7:53:3a:69:ef:17:e6:c0:98:b0:bc:93:8e:1e:77:
df:d3:7f:9c:54:6a:6d:31:48:13:a1:ef:ed:8e:e9:
14:5d:b1:25:21:6e:62:0a:c0:a9:8e:d5:e3:80:e0:
82:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:C3:D3:71:B2:37:62:DB:E8:D9:FF:D4:B1:B5:EA:E0:18:E3:A9:5A
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/JcPTcbI3Ytvo2f_UsbXq4BjjqVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.9.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:7f:82:33:51:76:4e:39:3f:8f:10:ad:0a:2f:d5:70:44:0a:
86:35:be:ef:a6:60:b7:e8:3d:19:f6:db:0c:c0:76:6a:56:82:
5d:75:59:51:0c:3f:c0:cf:c0:2b:5a:d5:1d:1a:5b:d5:8a:04:
c8:67:3e:c4:a5:16:6c:52:2f:c4:27:a5:d8:6e:5b:c5:a9:81:
1c:34:d6:80:5e:5e:e2:2d:bd:17:87:a3:28:98:75:09:45:24:
74:4e:42:36:c2:96:fa:40:f7:73:78:01:bc:f3:ea:7a:3d:fe:
3d:50:45:39:86:16:c1:1a:4d:ec:32:69:45:1e:01:59:2f:9e:
34:6f:bb:d0:57:b6:32:69:93:08:9d:19:9e:5e:58:7a:a3:f7:
7f:ec:0f:fc:eb:c9:ff:35:21:e5:70:98:4b:0b:f4:df:c0:35:
75:8c:3a:37:6e:4a:b9:00:14:23:b1:d2:d3:47:69:87:a8:2b:
30:72:93:3a:2a:b1:98:66:e8:80:88:10:2b:6f:65:52:54:af:
2c:d3:28:13:83:3d:3b:40:09:07:a2:df:02:f7:19:2a:90:a3:
6c:12:3d:21:89:3d:4d:43:9c:73:24:9d:ab:78:0d:b9:0e:6b:
39:3c:f0:34:39:77:b3:26:6f:7d:db:a4:71:17:93:c8:98:a2:
39:a0:c9:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYc3g3PUMk+18pmoCKUfHhBWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxYTE4NWQwZWIwY2E3ODExYzU4NjQyNWRlMGU5NjBlMWNm
ZWI2MWIwHhcNMjMwMzMxMTE1MjU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNWMzZDM3MWIyMzc2MmRiZThkOWZmZDRiMWI1ZWFlMDE4ZTNhOTVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujmKvGEJ5sz4UEX+haC+NxfwG+DJ
3JNCpjGcZq/yxVimybP/HDYDt+wWCil3Y9Jmj15j8KwnZMi53tgEwGxXorPWyN6K
qP2UImKQIrlSMYmRPAZ+6D0z4Po+/0AUO15r2TMwOeO8rA1EkhPO2dFlwLUHWwTC
eW+EQTW+hrYvSKeDu7v0lMZa9+fVzFsUCnQSDHBv6BkQqVT9OZrwLnWl7RZuJ0Wm
QlrypyE39VgG9fhOX2hQ+C4zfkpJELma6a53IHeERxUZdnZmKUF3L1SI7znHUzpp
7xfmwJiwvJOOHnff03+cVGptMUgToe/tjukUXbElIW5iCsCpjtXjgOCCdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCXD03GyN2Lb6Nn/1LG16uAY46laMB8GA1UdIwQY
MBaAFDGhhdDrDKeBHFhkJd4Olg4c/rYbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWFHRjBPc01wNEVjV0dRbDNnNldEaHotdGhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8wODFjNmUtMWQ2NS00Y2NkLTk2ZjUt
MWRjYzg2YzExZTc0LzEvSmNQVGNiSTNZdHZvMmZfVXNiWHE0QmpqcVZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8wODFjNmUtMWQ2NS00Y2NkLTk2ZjUtMWRjYzg2YzExZTc0
LzEvTWFHRjBPc01wNEVjV0dRbDNnNldEaHotdGhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVZkJMA0G
CSqGSIb3DQEBCwUAA4IBAQANf4IzUXZOOT+PEK0KL9VwRAqGNb7vpmC36D0Z9tsM
wHZqVoJddVlRDD/Az8ArWtUdGlvVigTIZz7EpRZsUi/EJ6XYblvFqYEcNNaAXl7i
Lb0Xh6MomHUJRSR0TkI2wpb6QPdzeAG88+p6Pf49UEU5hhbBGk3sMmlFHgFZL540
b7vQV7YyaZMInRmeXlh6o/d/7A/868n/NSHlcJhLC/TfwDV1jDo3bkq5ABQjsdLT
R2mHqCswcpM6KrGYZuiAiBArb2VSVK8s0ygTgz07QAkHot8C9xkqkKNsEj0hiT1N
Q5xzJJ2reA25Dms5PPA0OXezJm9926RxF5PImKI5oMmv
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:43 2024 by rpki-client on console-fra.rpki-client.org