Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/t6eGu8sJiD5p_NWiFDbMt9FShX8.roa
File: t6eGu8sJiD5p_NWiFDbMt9FShX8.roa (raw, json)
Hash identifier: n1zXjHw32q6ThZffSkBevB9ZNPx5INJxBV5pqErm360=
Subject key identifier: B7:A7:86:BB:CB:09:88:3E:69:FC:D5:A2:14:36:CC:B7:D1:52:85:7F
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 01857015366E83CED03541F68ACF008E58C0
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/t6eGu8sJiD5p_NWiFDbMt9FShX8.roa
Signing time: Mon 02 Jan 2023 01:25:16 +0000
ROA not before: Mon 02 Jan 2023 01:25:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42337
IP address blocks: 85.159.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Jan 2023 08:56:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:36:6e:83:ce:d0:35:41:f6:8a:cf:00:8e:58:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: Jan 2 01:25:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7a786bbcb09883e69fcd5a21436ccb7d152857f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7b:19:c5:13:1e:61:18:15:0b:eb:1e:c2:82:
fd:5c:09:c1:3b:a4:90:c6:90:ac:dc:bf:f5:6a:51:
1e:f6:eb:e1:17:d7:fd:24:00:ad:68:eb:35:42:00:
4b:bf:93:df:61:e8:35:10:f7:c2:88:f3:a7:42:ea:
d2:d0:40:df:0c:c8:ec:3e:8c:b8:4f:b1:ae:1e:50:
23:24:98:76:30:ea:f5:64:74:c8:cb:8a:06:7a:fc:
18:af:dd:50:b3:ef:ba:e9:b1:23:ce:42:16:de:5d:
b9:cd:0c:b3:3b:9a:16:cb:f6:e8:0a:d7:ae:74:66:
78:5c:cf:5c:1c:03:ba:a5:f9:f2:a2:b5:2c:41:5c:
07:cf:19:b3:0a:11:28:a0:6a:c3:ab:a4:04:8e:8a:
c9:9a:2d:de:8a:25:83:3c:e0:20:88:fe:27:90:96:
06:fb:e8:92:5e:5b:5e:af:48:50:fb:60:5b:9c:03:
be:10:70:6f:4b:7e:e5:38:f1:01:33:fd:6e:93:90:
6c:a7:b9:40:7c:0b:d3:38:e7:09:85:8d:4a:a2:84:
57:1a:28:cf:18:22:b0:c8:c7:5d:07:82:9d:d3:e3:
c9:05:75:0d:fd:dd:22:6b:aa:30:86:38:b3:af:22:
d8:fc:01:bc:48:11:1c:68:de:4d:5d:9e:89:a1:e0:
a6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A7:86:BB:CB:09:88:3E:69:FC:D5:A2:14:36:CC:B7:D1:52:85:7F
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/t6eGu8sJiD5p_NWiFDbMt9FShX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.159.113.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:0f:cd:fe:57:42:bd:2b:9d:f7:71:da:c8:57:35:1c:4e:dc:
17:5b:ea:45:1a:c5:5f:ca:a9:74:94:36:e0:4c:66:e2:cf:4c:
bb:f5:8e:2b:f1:38:7f:f0:f0:9f:9e:0b:39:93:3f:10:0c:32:
7a:4a:7f:c3:99:61:0d:a3:07:ac:e7:41:d8:51:27:b3:54:65:
62:09:08:49:89:7d:7e:54:54:79:8b:b6:8e:23:f1:a4:c1:3a:
9b:92:72:ca:dc:d6:17:cc:90:72:1f:63:a4:23:ed:84:9a:96:
e9:e5:87:94:7d:1a:69:31:f1:11:11:d1:af:98:08:6c:41:0b:
a0:fb:32:f5:df:52:6a:f6:73:f2:f4:7e:21:ec:d6:6e:33:aa:
1d:a8:7b:a3:71:b0:b6:b1:27:85:12:59:d8:b0:02:89:8b:5e:
56:fc:a4:94:6a:62:48:2d:a6:8c:04:ea:bf:02:82:e9:6b:73:
75:f5:e1:27:b1:30:19:61:ba:24:77:92:52:b4:44:7c:d5:b5:
a1:d3:62:cf:f5:d7:08:61:a5:e4:6a:cb:3b:50:e1:18:b3:c1:
c1:e9:4e:33:95:7e:ed:90:d1:32:e3:d2:a4:4e:32:ff:e0:5d:
99:92:a1:70:23:59:e9:30:a1:c6:dc:6b:d9:d8:b1:74:b3:75:
e5:58:d1:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwFTZug87QNUH2is8AjljAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmZjVjYzQ4NDg5NDNiNGZlODlkMmNlNzFmZGMxZTRmZjdk
N2YzZTMwHhcNMjMwMTAyMDEyNTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiN2E3ODZiYmNiMDk4ODNlNjlmY2Q1YTIxNDM2Y2NiN2QxNTI4NTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHsZxRMeYRgVC+sewoL9XAnBO6SQ
xpCs3L/1alEe9uvhF9f9JACtaOs1QgBLv5PfYeg1EPfCiPOnQurS0EDfDMjsPoy4
T7GuHlAjJJh2MOr1ZHTIy4oGevwYr91Qs++66bEjzkIW3l25zQyzO5oWy/boCteu
dGZ4XM9cHAO6pfnyorUsQVwHzxmzChEooGrDq6QEjorJmi3eiiWDPOAgiP4nkJYG
++iSXlter0hQ+2BbnAO+EHBvS37lOPEBM/1uk5Bsp7lAfAvTOOcJhY1KooRXGijP
GCKwyMddB4Kd0+PJBXUN/d0ia6owhjizryLY/AG8SBEcaN5NXZ6JoeCmRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLenhrvLCYg+afzVohQ2zLfRUoV/MB8GA1UdIwQY
MBaAFN/1zEhIlDtP6J0s5x/cHk/31/PjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM19YTVNFaVVPMF9vblN6bkg5d2VUX2ZYOC1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNDE5ZWItMjMzMS00YmM3LThmMWIt
MjY4OWM4NTg3OGFkLzEvdDZlR3U4c0ppRDVwX05XaUZEYk10OUZTaFg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mNDE5ZWItMjMzMS00YmM3LThmMWItMjY4OWM4NTg3OGFk
LzEvM19YTVNFaVVPMF9vblN6bkg5d2VUX2ZYOC1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVZ9xMA0G
CSqGSIb3DQEBCwUAA4IBAQAeD83+V0K9K533cdrIVzUcTtwXW+pFGsVfyql0lDbg
TGbiz0y79Y4r8Th/8PCfngs5kz8QDDJ6Sn/DmWENowes50HYUSezVGViCQhJiX1+
VFR5i7aOI/GkwTqbknLK3NYXzJByH2OkI+2Empbp5YeUfRppMfEREdGvmAhsQQug
+zL131Jq9nPy9H4h7NZuM6odqHujcbC2sSeFElnYsAKJi15W/KSUamJILaaMBOq/
AoLpa3N19eEnsTAZYbokd5JStER81bWh02LP9dcIYaXkass7UOEYs8HB6U4zlX7t
kNEy49KkTjL/4F2ZkqFwI1npMKHG3GvZ2LF0s3XlWNH8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org