Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/rRpNj0gM8qYBcXCCiKrDxQAf4Fo.roa
File: rRpNj0gM8qYBcXCCiKrDxQAf4Fo.roa (raw, json)
Hash identifier: phiFleftq4fDRgLUDo75C1etm7dfCiiQjTkO7T6QIq8=
Subject key identifier: AD:1A:4D:8F:48:0C:F2:A6:01:71:70:82:88:AA:C3:C5:00:1F:E0:5A
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246CCFA9EC63FEBF7922FB58F29C369
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/rRpNj0gM8qYBcXCCiKrDxQAf4Fo.roa
Signing time: Mon 02 Jan 2023 11:38:40 +0000
ROA not before: Mon 02 Jan 2023 11:38:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20750
IP address blocks: 151.237.72.0/21 maxlen: 21
85.187.240.0/23 maxlen: 23
85.187.236.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 14 Oct 2023 14:08:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:cc:fa:9e:c6:3f:eb:f7:92:2f:b5:8f:29:c3:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad1a4d8f480cf2a60171708288aac3c5001fe05a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:36:d8:75:41:91:56:ed:fa:d9:eb:0e:e3:55:
43:92:8d:64:0d:7f:03:46:f5:1d:3c:7b:fd:dd:fa:
e6:18:23:12:56:ae:61:f6:ba:72:4f:49:fb:0a:c4:
83:76:67:3e:a2:36:c2:d7:3c:cc:08:25:0b:04:a2:
7e:79:db:14:a8:8f:1d:93:f3:01:54:fc:02:c4:6d:
ca:28:8a:08:f5:16:ec:f0:f5:a5:94:07:24:5c:5c:
e0:6a:b1:27:02:3d:29:79:f7:0b:89:ef:e0:45:55:
f2:06:43:10:23:dd:56:c0:05:ee:5a:3b:63:8a:f6:
ab:21:15:7c:a3:80:3c:83:dd:c7:75:4f:69:da:e1:
1a:c9:e6:a9:31:27:82:e5:ef:fb:16:95:6b:8e:f1:
35:aa:9b:c3:a8:2b:dd:0f:bc:4e:71:9c:8a:ba:77:
82:a4:db:ba:81:87:dc:3b:70:42:e8:b9:fe:89:8b:
78:99:5b:8e:77:5d:d6:6e:39:2a:75:3e:46:31:90:
b7:a5:91:f6:02:a2:55:3a:68:49:08:0e:91:47:25:
98:44:12:a1:40:34:69:2f:a1:a2:a7:44:2b:27:9d:
8c:4c:87:76:96:78:dd:03:11:91:a0:06:dc:7c:82:
fc:ef:6b:29:7c:a7:0d:14:c0:a1:c1:8d:a3:5f:24:
5c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1A:4D:8F:48:0C:F2:A6:01:71:70:82:88:AA:C3:C5:00:1F:E0:5A
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/rRpNj0gM8qYBcXCCiKrDxQAf4Fo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.236.0-85.187.241.255
151.237.72.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:e5:b5:96:84:a0:39:28:5f:34:dd:59:4a:18:2e:28:44:92:
65:24:85:a1:45:43:9d:6b:84:e8:53:d4:92:2a:4b:c2:2b:85:
5a:ec:23:5e:4c:3f:68:d4:73:b0:20:76:38:0d:0b:79:f2:1c:
14:67:be:4f:c7:02:e6:1e:26:0a:c2:76:c5:49:74:e1:a7:8e:
c9:2f:ff:d5:cd:e8:47:35:9c:d8:0b:cc:a4:65:14:eb:97:86:
25:80:8b:5f:c4:fc:62:eb:68:2a:bb:90:58:39:19:2a:6e:5f:
73:07:88:bc:38:0e:ea:21:0b:fd:ae:23:aa:66:2d:69:c8:1c:
4b:69:41:22:15:8b:52:73:11:50:0a:62:18:37:db:52:de:e2:
87:e3:59:11:e5:27:9f:9a:b2:f2:1e:2b:06:bd:d5:ab:0c:39:
e3:c4:5b:09:09:e3:37:cd:44:43:f6:fe:b7:9a:fe:44:3c:6c:
02:65:52:ca:94:8a:ff:0a:2c:39:48:ca:f8:15:6a:71:c3:c3:
0d:73:ec:91:31:12:50:0c:9b:c2:91:09:05:07:0c:a8:32:69:
6b:15:35:9d:84:30:09:37:86:c7:48:38:9d:d7:4d:09:94:83:
b1:ca:ed:4e:f8:41:37:72:6d:55:80:23:d6:18:8c:9e:eb:c9:
c3:24:c5:ea
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYVyRsz6nsY/6/eSL7WPKcNpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlYmYzMDIwMWYxMmEwNDBkMzg2ZDJiNGVlZDQ0ODQ2MjNl
NGQxMWIwHhcNMjMwMTAyMTEzODQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDFhNGQ4ZjQ4MGNmMmE2MDE3MTcwODI4OGFhYzNjNTAwMWZlMDVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTbYdUGRVu362esO41VDko1kDX8D
RvUdPHv93frmGCMSVq5h9rpyT0n7CsSDdmc+ojbC1zzMCCULBKJ+edsUqI8dk/MB
VPwCxG3KKIoI9Rbs8PWllAckXFzgarEnAj0pefcLie/gRVXyBkMQI91WwAXuWjtj
ivarIRV8o4A8g93HdU9p2uEayeapMSeC5e/7FpVrjvE1qpvDqCvdD7xOcZyKuneC
pNu6gYfcO3BC6Ln+iYt4mVuOd13WbjkqdT5GMZC3pZH2AqJVOmhJCA6RRyWYRBKh
QDRpL6Gip0QrJ52MTId2lnjdAxGRoAbcfIL872spfKcNFMChwY2jXyRcMwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFK0aTY9IDPKmAXFwgoiqw8UAH+BaMB8GA1UdIwQY
MBaAFP6/MCAfEqBA04bStO7USEYj5NEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUt
YTk3YzBkYzBhNzQ5LzEvclJwTmowZ004cVlCY1hDQ2lLckR4UUFmNEZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUtYTk3YzBkYzBhNzQ5
LzEvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAJVu+wD
BAFVu/ADBAOX7UgwDQYJKoZIhvcNAQELBQADggEBAJ3ltZaEoDkoXzTdWUoYLihE
kmUkhaFFQ51rhOhT1JIqS8IrhVrsI15MP2jUc7AgdjgNC3nyHBRnvk/HAuYeJgrC
dsVJdOGnjskv/9XN6Ec1nNgLzKRlFOuXhiWAi1/E/GLraCq7kFg5GSpuX3MHiLw4
DuohC/2uI6pmLWnIHEtpQSIVi1JzEVAKYhg321Le4ofjWRHlJ5+asvIeKwa91asM
OePEWwkJ4zfNREP2/rea/kQ8bAJlUsqUiv8KLDlIyvgVanHDww1z7JExElAMm8KR
CQUHDKgyaWsVNZ2EMAk3hsdIOJ3XTQmUg7HK7U74QTdybVWAI9YYjJ7rycMkxeo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org