Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/h6T2Ldr5UOo2hL3tmjZdiLFTfTA.roa
File: h6T2Ldr5UOo2hL3tmjZdiLFTfTA.roa (raw, json)
Hash identifier: DpxZgDrKKSlzO7btNPQzIXKykbS2eUnGeT4AMgLoQZ0=
Subject key identifier: 87:A4:F6:2D:DA:F9:50:EA:36:84:BD:ED:9A:36:5D:88:B1:53:7D:30
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 0186130572C871E22E8AAB2DBCAFC95E8741
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/h6T2Ldr5UOo2hL3tmjZdiLFTfTA.roa
Signing time: Thu 02 Feb 2023 16:46:09 +0000
ROA not before: Thu 02 Feb 2023 16:46:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 85.153.76.0/22 maxlen: 22
85.153.74.0/24 maxlen: 24
85.153.75.0/24 maxlen: 24
85.153.96.0/22 maxlen: 22
85.153.112.0/24 maxlen: 24
85.153.116.0/24 maxlen: 24
85.153.117.0/24 maxlen: 24
85.153.114.0/24 maxlen: 24
85.153.115.0/24 maxlen: 24
85.153.16.0/22 maxlen: 22
85.153.22.0/24 maxlen: 24
85.153.23.0/24 maxlen: 24
85.153.20.0/24 maxlen: 24
85.153.21.0/24 maxlen: 24
85.153.31.0/24 maxlen: 24
85.153.30.0/24 maxlen: 24
85.153.28.0/24 maxlen: 24
85.153.44.0/24 maxlen: 24
85.153.47.0/24 maxlen: 24
85.153.45.0/24 maxlen: 24
85.153.46.0/24 maxlen: 24
85.153.57.0/24 maxlen: 24
85.115.206.0/24 maxlen: 24
85.115.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Feb 2023 09:57:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:13:05:72:c8:71:e2:2e:8a:ab:2d:bc:af:c9:5e:87:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Feb 2 16:46:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87a4f62ddaf950ea3684bded9a365d88b1537d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:31:a2:1f:43:c3:64:73:25:52:51:c2:23:f2:
ff:58:2f:7b:8a:a2:49:7d:6d:40:aa:ed:ba:06:90:
5b:6c:ac:cd:54:cf:7b:c8:99:0a:0a:09:c9:8a:05:
0b:47:19:84:4a:ad:dc:1f:23:57:d3:fb:39:2a:02:
16:42:15:24:ee:5c:31:27:c8:85:ac:eb:99:a8:9f:
2f:fa:f6:91:f1:31:73:f7:dd:06:77:c5:19:2f:bd:
a2:6f:ef:74:22:43:ad:7d:ce:ba:95:d5:39:3b:8d:
32:9c:60:5d:a5:21:2a:fa:14:a9:b2:6a:f6:e2:30:
da:74:a4:32:bd:33:0d:05:35:4d:4f:3d:03:9a:ba:
5f:c7:c8:33:10:a9:05:d5:5b:04:8b:ff:78:03:22:
96:5c:03:02:da:28:6e:01:96:94:88:03:75:12:1e:
7c:6f:a2:e1:0e:d4:d8:96:d4:55:2b:ee:fc:48:3b:
91:3f:f2:db:09:ab:e0:74:33:29:b3:3a:7c:e8:08:
13:57:9f:09:1e:d2:91:81:76:5b:5e:2e:e2:d7:72:
d4:3a:cb:4c:f0:50:80:a5:e3:8a:43:b4:b3:e5:48:
95:52:c1:31:45:51:e7:ea:38:d0:6c:07:fa:45:40:
65:02:db:f9:cd:8b:c8:c6:f9:bc:17:23:d4:d1:7e:
5e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A4:F6:2D:DA:F9:50:EA:36:84:BD:ED:9A:36:5D:88:B1:53:7D:30
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/h6T2Ldr5UOo2hL3tmjZdiLFTfTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.205.0-85.115.206.255
85.153.16.0/21
85.153.28.0/24
85.153.30.0/23
85.153.44.0/22
85.153.57.0/24
85.153.74.0-85.153.79.255
85.153.96.0/22
85.153.112.0/24
85.153.114.0-85.153.117.255
Signature Algorithm: sha256WithRSAEncryption
16:f4:b3:4e:56:20:db:60:5c:8c:10:8d:11:de:a3:2f:4c:48:
9b:81:15:91:4b:ca:b0:41:8b:37:56:e6:97:54:bd:f7:ee:d4:
5c:c4:ce:e0:e2:62:5d:65:61:2b:50:8e:92:b5:b3:fd:89:ac:
c3:fd:7f:ca:6f:ce:b7:f8:84:14:cd:f6:77:18:69:9d:09:4c:
2b:85:fa:11:02:1b:8b:ea:8e:4d:45:c7:99:ee:7e:75:7d:1f:
54:f8:a7:86:b5:84:2e:b7:3b:23:a6:41:86:83:d4:bc:46:47:
62:b8:60:01:cd:7c:53:6c:2f:61:6d:d2:d2:1f:0a:35:ee:19:
9a:cb:d9:44:8c:ca:6b:b3:f4:42:38:69:96:24:96:7c:f8:a3:
ea:f3:f7:10:26:d3:b0:c2:6e:8e:c5:e4:60:71:80:56:9b:c2:
9b:ba:da:18:42:c8:30:82:4e:d1:0a:ec:e3:55:1c:a5:6e:53:
09:82:31:e5:0c:0a:cf:6b:98:df:89:9b:d8:e8:02:cd:4d:7b:
a5:37:ab:b4:50:fc:16:79:de:d6:24:92:44:55:c2:29:49:a3:
6b:66:0f:7e:e9:fd:e0:2a:39:0f:76:41:6a:44:57:39:15:5c:
86:3b:d3:0a:af:32:77:4d:b2:24:00:f1:4a:bf:fb:9d:34:4e:
db:af:b6:69
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYYTBXLIceIuiqstvK/JXodBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxYTE4NWQwZWIwY2E3ODExYzU4NjQyNWRlMGU5NjBlMWNm
ZWI2MWIwHhcNMjMwMjAyMTY0NjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2E0ZjYyZGRhZjk1MGVhMzY4NGJkZWQ5YTM2NWQ4OGIxNTM3ZDMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgzGiH0PDZHMlUlHCI/L/WC97iqJJ
fW1Aqu26BpBbbKzNVM97yJkKCgnJigULRxmESq3cHyNX0/s5KgIWQhUk7lwxJ8iF
rOuZqJ8v+vaR8TFz990Gd8UZL72ib+90IkOtfc66ldU5O40ynGBdpSEq+hSpsmr2
4jDadKQyvTMNBTVNTz0Dmrpfx8gzEKkF1VsEi/94AyKWXAMC2ihuAZaUiAN1Eh58
b6LhDtTYltRVK+78SDuRP/LbCavgdDMpszp86AgTV58JHtKRgXZbXi7i13LUOstM
8FCApeOKQ7Sz5UiVUsExRVHn6jjQbAf6RUBlAtv5zYvIxvm8FyPU0X5e7wIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFIek9i3a+VDqNoS97Zo2XYixU30wMB8GA1UdIwQY
MBaAFDGhhdDrDKeBHFhkJd4Olg4c/rYbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWFHRjBPc01wNEVjV0dRbDNnNldEaHotdGhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8wODFjNmUtMWQ2NS00Y2NkLTk2ZjUt
MWRjYzg2YzExZTc0LzEvaDZUMkxkcjVVT28yaEwzdG1qWmRpTEZUZlRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8wODFjNmUtMWQ2NS00Y2NkLTk2ZjUtMWRjYzg2YzExZTc0
LzEvTWFHRjBPc01wNEVjV0dRbDNnNldEaHotdGhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUMAwDBABVc80D
BABVc84DBANVmRADBABVmRwDBAFVmR4DBAJVmSwDBABVmTkwDAMEAVWZSgMEBFWZ
QAMEAlWZYAMEAFWZcDAMAwQBVZlyAwQBVZl0MA0GCSqGSIb3DQEBCwUAA4IBAQAW
9LNOViDbYFyMEI0R3qMvTEibgRWRS8qwQYs3VuaXVL337tRcxM7g4mJdZWErUI6S
tbP9iazD/X/Kb863+IQUzfZ3GGmdCUwrhfoRAhuL6o5NRceZ7n51fR9U+KeGtYQu
tzsjpkGGg9S8RkdiuGABzXxTbC9hbdLSHwo17hmay9lEjMprs/RCOGmWJJZ8+KPq
8/cQJtOwwm6OxeRgcYBWm8KbutoYQsgwgk7RCuzjVRylblMJgjHlDArPa5jfiZvY
6ALNTXulN6u0UPwWed7WJJJEVcIpSaNrZg9+6f3gKjkPdkFqRFc5FVyGO9MKrzJ3
TbIkAPFKv/udNE7br7Zp
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:43 2024 by rpki-client on console-fra.rpki-client.org