Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/i_DXMDdNJz1ZLZHr1kpaZfPwNt4.roa
File: i_DXMDdNJz1ZLZHr1kpaZfPwNt4.roa (raw, json)
Hash identifier: 1kWCrMslALcexl7axZlynPiQpKzLrh8Z26j9S+eBY+k=
Subject key identifier: 8B:F0:D7:30:37:4D:27:3D:59:2D:91:EB:D6:4A:5A:65:F3:F0:36:DE
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01856D0AF6A6CE5F789F69C6CAF001AEC481
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/i_DXMDdNJz1ZLZHr1kpaZfPwNt4.roa
Signing time: Sun 01 Jan 2023 11:15:12 +0000
ROA not before: Sun 01 Jan 2023 11:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207256
IP address blocks: 85.142.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:f6:a6:ce:5f:78:9f:69:c6:ca:f0:01:ae:c4:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bf0d730374d273d592d91ebd64a5a65f3f036de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e6:1b:bd:9d:44:b0:8a:c8:a5:3e:1a:ae:0a:
7a:60:a4:3b:7c:e8:75:99:b8:d8:16:66:f7:eb:19:
27:59:1e:94:fe:25:00:1c:98:c8:43:5c:56:16:30:
93:37:75:4e:b4:a6:41:32:7e:7c:0a:01:d1:d9:e7:
6c:bd:21:88:b8:8b:14:f3:86:18:69:3e:75:b6:f1:
c6:f2:9c:de:84:a8:41:6a:4d:68:62:0a:83:83:f2:
52:27:ab:ff:87:d5:64:b9:70:00:7c:63:44:74:9b:
24:c2:c3:45:e6:b9:e0:1d:07:cb:f1:d6:cc:53:81:
f5:c2:e5:33:a9:ba:48:a3:73:53:75:77:e7:19:02:
d7:24:73:c1:77:2b:4b:20:88:ad:4d:76:0a:d4:b2:
8c:05:62:b0:f6:67:c6:26:8b:23:5a:75:a6:14:e3:
8a:d2:38:55:6b:d2:9e:0f:05:04:d2:f0:fb:6d:c3:
59:ec:0e:84:d3:23:e8:b6:36:8b:de:ea:6a:b6:ed:
9f:18:cf:b7:c4:26:82:7b:0f:90:7d:80:e4:f5:b6:
18:55:26:8d:f2:f2:7f:a0:bf:b0:ad:8a:bb:05:38:
9b:10:e6:73:23:18:93:61:d9:1a:05:5e:87:e7:a5:
92:40:67:e8:55:bf:00:a6:44:d8:69:2b:c4:88:ce:
eb:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:F0:D7:30:37:4D:27:3D:59:2D:91:EB:D6:4A:5A:65:F3:F0:36:DE
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/i_DXMDdNJz1ZLZHr1kpaZfPwNt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.142.251.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:92:90:ef:b3:cf:22:1e:b8:af:51:1c:1c:39:ed:57:f6:0b:
b3:a8:1b:de:8e:92:12:01:6e:db:71:19:aa:e9:39:8a:1a:07:
95:43:17:d0:24:f9:69:72:02:5c:c9:0e:8f:36:4f:55:5e:d0:
6a:ef:9a:67:c4:b0:db:b3:be:e7:95:3c:59:ef:30:e9:3a:07:
9c:02:6f:1f:ae:57:9b:77:0c:b5:8f:97:aa:b2:00:e8:61:df:
40:e6:4a:71:3d:d1:d7:aa:b5:11:bc:60:e7:3c:11:8d:63:e4:
fc:eb:37:ee:0d:0c:b3:06:fa:b3:8f:81:83:f1:7b:07:4f:90:
67:28:43:d3:4a:b4:fe:ae:16:8e:7f:6c:85:b6:54:9e:28:b1:
d2:13:56:23:de:d0:07:8c:5a:98:ef:9f:c2:71:17:f1:40:21:
91:46:47:b6:49:79:83:ea:68:e0:dc:51:83:2b:d7:5f:1b:e2:
79:bf:2f:9b:af:51:87:cc:40:b4:e9:a4:3f:44:10:b9:a4:5f:
0c:1c:ae:4d:ce:84:16:6c:25:18:09:c5:01:3b:bb:34:c0:2d:
11:42:b4:1e:fb:7b:ac:34:f5:5b:21:4b:fe:ab:3c:e4:d7:2f:
c6:1e:f1:bb:1d:4a:42:4e:1e:c8:cb:ec:62:d1:59:88:1f:fc:
b8:fb:58:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtCvamzl94n2nGyvABrsSBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YjIyMDIzYjZlYWQ0YzI5NjgzYTlmZWQ0NDkzZDAzZGVl
MmM2ODUwHhcNMjMwMTAxMTExNTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YmYwZDczMDM3NGQyNzNkNTkyZDkxZWJkNjRhNWE2NWYzZjAzNmRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOYbvZ1EsIrIpT4argp6YKQ7fOh1
mbjYFmb36xknWR6U/iUAHJjIQ1xWFjCTN3VOtKZBMn58CgHR2edsvSGIuIsU84YY
aT51tvHG8pzehKhBak1oYgqDg/JSJ6v/h9VkuXAAfGNEdJskwsNF5rngHQfL8dbM
U4H1wuUzqbpIo3NTdXfnGQLXJHPBdytLIIitTXYK1LKMBWKw9mfGJosjWnWmFOOK
0jhVa9KeDwUE0vD7bcNZ7A6E0yPotjaL3upqtu2fGM+3xCaCew+QfYDk9bYYVSaN
8vJ/oL+wrYq7BTibEOZzIxiTYdkaBV6H56WSQGfoVb8ApkTYaSvEiM7rxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIvw1zA3TSc9WS2R69ZKWmXz8DbeMB8GA1UdIwQY
MBaAFDiyICO26tTCloOp/tRJPQPe4saFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMt
NDBkOTViZDMzZmNiLzEvaV9EWE1EZE5KejFaTFpIcjFrcGFaZlB3TnQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMtNDBkOTViZDMzZmNi
LzEvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVY77MA0G
CSqGSIb3DQEBCwUAA4IBAQBOkpDvs88iHrivURwcOe1X9guzqBvejpISAW7bcRmq
6TmKGgeVQxfQJPlpcgJcyQ6PNk9VXtBq75pnxLDbs77nlTxZ7zDpOgecAm8frleb
dwy1j5eqsgDoYd9A5kpxPdHXqrURvGDnPBGNY+T86zfuDQyzBvqzj4GD8XsHT5Bn
KEPTSrT+rhaOf2yFtlSeKLHSE1Yj3tAHjFqY75/CcRfxQCGRRke2SXmD6mjg3FGD
K9dfG+J5vy+br1GHzEC06aQ/RBC5pF8MHK5NzoQWbCUYCcUBO7s0wC0RQrQe+3us
NPVbIUv+qzzk1y/GHvG7HUpCTh7Iy+xi0VmIH/y4+1gi
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org