Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/im_fUQelrsYPS7PWB9ly769Jvv4.roa
File: im_fUQelrsYPS7PWB9ly769Jvv4.roa (raw, json)
Hash identifier: 0cTT0o/b7J31GKGBZGQR8Mypu1X3jt9LXM/hYNkPLmE=
Subject key identifier: 8A:6F:DF:51:07:A5:AE:C6:0F:4B:B3:D6:07:D9:72:EF:AF:49:BE:FE
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018A659797C812D4B27463B992E5B417EDCF
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/im_fUQelrsYPS7PWB9ly769Jvv4.roa
Signing time: Tue 05 Sep 2023 13:45:48 +0000
ROA not before: Tue 05 Sep 2023 13:45:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49505
IP address blocks: 85.142.242.0/24 maxlen: 24
85.143.40.0/21 maxlen: 24
85.142.212.0/22 maxlen: 24
85.142.240.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Sep 2023 15:13:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:97:97:c8:12:d4:b2:74:63:b9:92:e5:b4:17:ed:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Sep 5 13:45:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a6fdf5107a5aec60f4bb3d607d972efaf49befe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2b:8e:35:11:1b:5a:6f:e2:29:05:74:44:f9:
80:f9:79:8b:a5:be:ad:1b:f7:b8:c4:a8:5d:d8:30:
41:83:c3:55:c7:e1:dc:e0:4b:49:78:92:a2:e9:52:
22:73:be:04:b5:7e:c1:30:22:b8:e6:38:b0:78:9b:
e5:ed:cc:82:3b:3c:c9:a1:1d:61:e0:07:50:58:6c:
a9:c7:19:69:67:85:5c:d0:f2:12:b4:17:39:46:2e:
63:94:5e:f8:d3:6d:ad:42:7e:0f:2c:58:4c:c8:5e:
41:b9:7e:36:2c:ea:ba:9c:6c:bf:56:ce:ef:1c:0a:
4c:84:de:9a:7d:71:41:a1:3d:55:a7:c2:9e:4f:c9:
65:79:84:bf:0a:f6:88:22:06:c5:5a:09:8e:cb:d5:
5b:40:79:50:fe:0f:95:a5:d5:d9:8a:49:7e:31:54:
56:74:a2:8d:f1:44:31:9d:3c:d6:ff:37:74:bd:4d:
90:9a:e6:54:81:06:f5:e7:ce:04:e1:57:0f:81:55:
84:3f:74:af:6d:b6:a8:f4:7f:62:81:be:0f:e2:97:
69:a6:9d:af:22:24:8b:19:00:84:12:33:10:bc:68:
4f:32:96:07:a5:3f:27:91:07:e0:8f:4b:a8:a1:c1:
33:f8:fd:c3:0d:36:26:08:94:92:bf:2e:21:51:96:
16:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:6F:DF:51:07:A5:AE:C6:0F:4B:B3:D6:07:D9:72:EF:AF:49:BE:FE
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/im_fUQelrsYPS7PWB9ly769Jvv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.142.212.0/22
85.142.240.0-85.142.242.255
85.143.40.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:e3:6c:33:2c:43:cc:79:61:c0:e6:f2:74:98:be:2a:ba:02:
7d:25:49:16:61:ce:5d:0b:ce:91:c9:c5:e4:f0:84:43:28:9e:
74:6c:81:33:94:a6:38:31:6e:d1:54:ef:32:e2:cf:47:fa:c6:
7b:64:34:68:8f:aa:21:d4:9d:c3:dd:0e:f5:92:b4:4e:23:ca:
9a:e2:66:92:74:e5:d9:9d:1d:3c:54:0e:bd:d4:05:d5:94:f9:
62:f6:53:ee:c8:61:1a:d1:44:2c:69:78:7e:81:af:fd:6d:9b:
65:97:8a:3f:27:b2:78:64:ab:f8:63:7d:c6:22:c4:d2:f8:a6:
b9:b2:be:6b:ad:53:56:69:6a:c5:25:80:ef:07:53:b3:dc:4a:
e8:db:8c:58:c4:b0:90:2a:a3:7c:8b:48:6a:f7:3b:24:ee:59:
63:a3:e8:56:0c:6a:aa:3c:d1:ae:86:be:49:68:5a:81:30:9a:
29:ae:f0:a2:99:f4:d0:57:af:a4:f5:f2:05:ab:ae:f3:81:e2:
93:75:3c:d0:c8:6f:f7:5d:4b:a0:49:2f:73:15:78:03:87:45:
e3:8b:b8:ff:83:67:36:7c:08:5a:a6:25:75:e4:94:76:b4:87:
9a:e6:4e:17:9a:d5:61:fb:08:25:09:8f:4c:d1:f8:1c:d5:f3:
38:18:47:55
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAYpll5fIEtSydGO5kuW0F+3PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YjIyMDIzYjZlYWQ0YzI5NjgzYTlmZWQ0NDkzZDAzZGVl
MmM2ODUwHhcNMjMwOTA1MTM0NTQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTZmZGY1MTA3YTVhZWM2MGY0YmIzZDYwN2Q5NzJlZmFmNDliZWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiyuONREbWm/iKQV0RPmA+XmLpb6t
G/e4xKhd2DBBg8NVx+Hc4EtJeJKi6VIic74EtX7BMCK45jiweJvl7cyCOzzJoR1h
4AdQWGypxxlpZ4Vc0PIStBc5Ri5jlF74022tQn4PLFhMyF5BuX42LOq6nGy/Vs7v
HApMhN6afXFBoT1Vp8KeT8lleYS/CvaIIgbFWgmOy9VbQHlQ/g+VpdXZikl+MVRW
dKKN8UQxnTzW/zd0vU2QmuZUgQb1584E4VcPgVWEP3Svbbao9H9igb4P4pdppp2v
IiSLGQCEEjMQvGhPMpYHpT8nkQfgj0uoocEz+P3DDTYmCJSSvy4hUZYWEQIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFIpv31EHpa7GD0uz1gfZcu+vSb7+MB8GA1UdIwQY
MBaAFDiyICO26tTCloOp/tRJPQPe4saFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMt
NDBkOTViZDMzZmNiLzEvaW1fZlVRZWxyc1lQUzdQV0I5bHk3NjlKdnY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMtNDBkOTViZDMzZmNi
LzEvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQCVY7UMAwD
BARVjvADBABVjvIDBANVjygwDQYJKoZIhvcNAQELBQADggEBAG7jbDMsQ8x5YcDm
8nSYviq6An0lSRZhzl0LzpHJxeTwhEMonnRsgTOUpjgxbtFU7zLiz0f6xntkNGiP
qiHUncPdDvWStE4jypriZpJ05dmdHTxUDr3UBdWU+WL2U+7IYRrRRCxpeH6Br/1t
m2WXij8nsnhkq/hjfcYixNL4prmyvmutU1ZpasUlgO8HU7PcSujbjFjEsJAqo3yL
SGr3OyTuWWOj6FYMaqo80a6GvkloWoEwmimu8KKZ9NBXr6T18gWrrvOB4pN1PNDI
b/ddS6BJL3MVeAOHReOLuP+DZzZ8CFqmJXXklHa0h5rmThea1WH7CCUJj0zR+BzV
8zgYR1U=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org