Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/wczYMfzTtxoxY7O-NvpZyiKb9Po.roa
File: wczYMfzTtxoxY7O-NvpZyiKb9Po.roa (raw, json)
Hash identifier: pFXP+heliLBvUrL4xKlT1ro2BooKz8gZAWWVco05cYg=
Subject key identifier: C1:CC:D8:31:FC:D3:B7:1A:31:63:B3:BE:36:FA:59:CA:22:9B:F4:FA
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01856D0AF7EADBFDB458BD69784A8461D392
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/wczYMfzTtxoxY7O-NvpZyiKb9Po.roa
Signing time: Sun 01 Jan 2023 11:15:13 +0000
ROA not before: Sun 01 Jan 2023 11:15:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207373
IP address blocks: 85.143.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:f7:ea:db:fd:b4:58:bd:69:78:4a:84:61:d3:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:15:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1ccd831fcd3b71a3163b3be36fa59ca229bf4fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c0:d7:0f:0c:bb:46:37:a6:6d:00:0e:90:58:
39:74:55:50:5f:8b:a2:3a:70:68:f5:67:d7:46:3e:
97:b0:b4:ef:79:e7:56:48:51:a2:56:0f:9b:ea:b1:
74:60:e7:ab:a9:6b:87:c9:3f:7f:93:b4:5f:26:fe:
48:28:7b:73:3a:22:d2:08:b1:70:ef:10:8e:35:68:
36:3c:1b:0a:01:90:8f:6c:54:68:09:8b:9e:28:94:
77:5d:cf:c3:cf:5f:56:f8:fa:97:d5:f6:a4:b9:62:
4b:81:4e:6e:e1:a6:59:85:b0:aa:c6:98:63:67:10:
bd:60:c0:fe:0a:2b:cb:6c:46:62:dd:a9:3c:14:b3:
1c:f3:d0:5f:f9:dd:58:0f:7f:e4:22:45:c2:2d:94:
70:43:47:65:e2:52:c5:89:55:e1:ea:97:34:67:a0:
c6:dc:84:fa:64:78:02:46:3a:a6:0a:50:6a:da:b2:
87:10:f3:42:2b:ae:f2:fb:ef:e2:5d:f5:cd:06:43:
6f:a9:f4:79:d6:6d:fa:3f:21:78:04:20:68:aa:6b:
28:49:1e:30:8b:62:24:ad:b5:3b:99:9b:0f:b2:ce:
51:7b:1d:7e:13:f0:57:81:ee:97:20:31:e9:7d:2f:
25:0a:62:88:0f:54:f4:49:db:97:55:cf:0e:69:d1:
87:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:CC:D8:31:FC:D3:B7:1A:31:63:B3:BE:36:FA:59:CA:22:9B:F4:FA
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/wczYMfzTtxoxY7O-NvpZyiKb9Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.24.0/24
Signature Algorithm: sha256WithRSAEncryption
81:fa:75:68:71:9a:b7:e4:26:7e:18:59:c5:d2:8c:ef:6f:e9:
75:70:91:b1:74:fb:4d:35:f0:6e:4d:60:82:c9:b5:41:f3:6d:
cb:ac:e0:ca:78:66:a4:96:10:6f:de:c5:d6:f6:ca:b5:b5:9b:
89:0b:bc:46:8f:0c:59:93:8d:3b:a4:97:68:db:d7:56:e8:b5:
1d:8a:19:11:4e:49:ca:58:0a:97:83:04:10:50:32:e7:0c:3e:
33:a2:60:87:1f:9c:04:06:3d:97:e4:5a:26:8d:18:0b:72:cf:
ac:95:d1:ba:f5:50:8b:b2:1e:e8:e9:c3:9f:65:53:68:95:7f:
9e:54:7e:fa:d7:70:d6:9c:b8:07:1f:6b:74:e2:18:2d:77:e2:
47:02:04:4d:1e:15:c9:31:6c:b5:71:bc:a2:c6:ce:ae:e9:97:
37:de:f8:fd:26:dc:c8:64:9b:fd:af:57:12:b2:05:af:4f:6d:
e8:48:14:e3:d1:a0:c2:c9:c3:50:a5:e1:34:e2:3a:e4:6a:b5:
db:29:22:01:91:bd:51:62:6c:53:51:22:4b:42:88:9e:d1:52:
7f:5f:fb:2d:15:8a:f1:62:a3:12:b4:42:23:b6:c9:55:41:3f:
fd:53:d5:a2:23:67:e3:cc:54:11:85:d4:08:cd:3e:b2:69:59:
87:42:4d:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtCvfq2/20WL1peEqEYdOSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YjIyMDIzYjZlYWQ0YzI5NjgzYTlmZWQ0NDkzZDAzZGVl
MmM2ODUwHhcNMjMwMTAxMTExNTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMWNjZDgzMWZjZDNiNzFhMzE2M2IzYmUzNmZhNTljYTIyOWJmNGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcDXDwy7RjembQAOkFg5dFVQX4ui
OnBo9WfXRj6XsLTveedWSFGiVg+b6rF0YOerqWuHyT9/k7RfJv5IKHtzOiLSCLFw
7xCONWg2PBsKAZCPbFRoCYueKJR3Xc/Dz19W+PqX1fakuWJLgU5u4aZZhbCqxphj
ZxC9YMD+CivLbEZi3ak8FLMc89Bf+d1YD3/kIkXCLZRwQ0dl4lLFiVXh6pc0Z6DG
3IT6ZHgCRjqmClBq2rKHEPNCK67y++/iXfXNBkNvqfR51m36PyF4BCBoqmsoSR4w
i2IkrbU7mZsPss5Rex1+E/BXge6XIDHpfS8lCmKID1T0SduXVc8OadGHxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMHM2DH807caMWOzvjb6Wcoim/T6MB8GA1UdIwQY
MBaAFDiyICO26tTCloOp/tRJPQPe4saFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMt
NDBkOTViZDMzZmNiLzEvd2N6WU1melR0eG94WTdPLU52cFp5aUtiOVBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMtNDBkOTViZDMzZmNi
LzEvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVY8YMA0G
CSqGSIb3DQEBCwUAA4IBAQCB+nVocZq35CZ+GFnF0ozvb+l1cJGxdPtNNfBuTWCC
ybVB823LrODKeGaklhBv3sXW9sq1tZuJC7xGjwxZk407pJdo29dW6LUdihkRTknK
WAqXgwQQUDLnDD4zomCHH5wEBj2X5FomjRgLcs+sldG69VCLsh7o6cOfZVNolX+e
VH7613DWnLgHH2t04hgtd+JHAgRNHhXJMWy1cbyixs6u6Zc33vj9JtzIZJv9r1cS
sgWvT23oSBTj0aDCycNQpeE04jrkarXbKSIBkb1RYmxTUSJLQoie0VJ/X/stFYrx
YqMStEIjtslVQT/9U9WiI2fjzFQRhdQIzT6yaVmHQk0x
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org