Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/zKHMIDzEMOIiPkcY8rStA5yrflM.roa
File: zKHMIDzEMOIiPkcY8rStA5yrflM.roa (raw, json)
Hash identifier: Jp+Gp9/WvSekL+KjQ6KmsBYUTQS2eJ1BT98FQ3P1iCs=
Subject key identifier: CC:A1:CC:20:3C:C4:30:E2:22:3E:47:18:F2:B4:AD:03:9C:AB:7E:53
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246D0154B04B2FA1EF15F35B6B53ABD
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/zKHMIDzEMOIiPkcY8rStA5yrflM.roa
Signing time: Mon 02 Jan 2023 11:38:41 +0000
ROA not before: Mon 02 Jan 2023 11:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34577
IP address blocks: 85.187.19.0/24 maxlen: 24
85.187.19.5/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:d0:15:4b:04:b2:fa:1e:f1:5f:35:b6:b5:3a:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cca1cc203cc430e2223e4718f2b4ad039cab7e53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2b:a1:1e:5f:e0:3e:ec:9c:86:37:37:8a:b5:
84:fe:c5:42:2b:1c:af:f5:39:58:ec:7e:cb:c7:78:
ae:6a:70:0e:cf:9c:83:51:c9:a1:ce:99:f5:dd:6a:
0f:ca:e3:b9:77:1a:76:35:1c:06:b9:24:ca:6a:19:
e7:b9:46:ee:d5:6a:68:14:a6:da:9a:21:90:12:79:
9f:0b:e7:df:5f:4c:36:e6:ea:e3:c4:bf:b5:d2:90:
be:81:7e:c2:fe:4b:4b:0f:5f:03:70:58:c1:2d:64:
ab:ce:14:30:d0:cb:43:a4:54:c4:88:ac:73:51:d5:
00:54:7a:d0:3d:9d:4a:a5:1a:76:7a:6e:d6:a0:18:
f8:6c:f8:76:21:59:a1:ee:3a:59:b6:50:bd:b3:26:
5d:9e:68:6f:eb:48:18:b9:f2:86:8d:09:ac:86:71:
29:38:18:bf:78:29:8e:2e:25:01:73:3e:60:20:9d:
06:c9:ee:0c:4e:8a:93:e8:24:b4:22:31:67:3c:4a:
ef:b8:79:71:6b:e2:18:6e:0c:94:e4:00:fd:6a:be:
f1:12:8e:0e:53:1d:45:19:98:ee:1c:8e:3c:d2:98:
1b:ea:0c:b8:a9:40:77:df:55:00:84:a0:7d:a0:43:
1e:2a:8e:21:e5:c4:b0:8c:30:80:5c:18:81:f5:e9:
9f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A1:CC:20:3C:C4:30:E2:22:3E:47:18:F2:B4:AD:03:9C:AB:7E:53
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/zKHMIDzEMOIiPkcY8rStA5yrflM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.19.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:3f:87:c5:10:21:48:35:a4:71:41:a9:ef:d9:d2:5a:22:b1:
37:8a:52:cc:41:50:6b:42:c7:70:c9:14:68:30:d9:c0:36:c6:
26:cf:3e:bc:3e:9a:de:c4:bd:ec:c0:88:a6:b6:80:23:28:e0:
86:ec:0a:3c:d4:f7:48:69:f9:03:63:a5:d9:0a:37:e4:e8:90:
70:e4:2d:4e:10:24:2d:98:6b:2c:4f:ed:11:27:e7:a7:7c:90:
91:64:e4:48:ea:18:c6:64:0f:db:49:69:f4:0e:dc:0d:78:49:
9e:56:6d:bf:a8:1b:67:75:67:c4:b2:a8:cd:67:13:75:60:b6:
1b:f0:1e:e7:bf:1e:ea:61:3c:ce:27:70:c3:20:ca:47:64:29:
fb:bd:ed:a6:c1:9b:57:32:8f:6c:2d:bd:34:d8:e7:c7:1d:5a:
55:0c:a6:ef:cd:7d:50:57:06:21:33:26:1e:3f:bb:3f:a1:b7:
14:dd:e0:9a:e1:66:4e:61:53:1b:97:30:e8:22:90:df:42:41:
cc:27:ac:65:17:e7:ea:97:4d:b1:34:78:75:86:da:c6:97:a7:
46:55:f3:29:ec:d0:bf:ce:99:02:40:80:c6:4c:a2:da:30:0b:
e3:d0:6c:f4:50:0f:b1:20:93:54:73:2d:f9:a7:36:b3:90:fa:
82:76:e5:3b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyRtAVSwSy+h7xXzW2tTq9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlYmYzMDIwMWYxMmEwNDBkMzg2ZDJiNGVlZDQ0ODQ2MjNl
NGQxMWIwHhcNMjMwMTAyMTEzODQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjY2ExY2MyMDNjYzQzMGUyMjIzZTQ3MThmMmI0YWQwMzljYWI3ZTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiiuhHl/gPuychjc3irWE/sVCKxyv
9TlY7H7Lx3iuanAOz5yDUcmhzpn13WoPyuO5dxp2NRwGuSTKahnnuUbu1WpoFKba
miGQEnmfC+ffX0w25urjxL+10pC+gX7C/ktLD18DcFjBLWSrzhQw0MtDpFTEiKxz
UdUAVHrQPZ1KpRp2em7WoBj4bPh2IVmh7jpZtlC9syZdnmhv60gYufKGjQmshnEp
OBi/eCmOLiUBcz5gIJ0Gye4MToqT6CS0IjFnPErvuHlxa+IYbgyU5AD9ar7xEo4O
Ux1FGZjuHI480pgb6gy4qUB331UAhKB9oEMeKo4h5cSwjDCAXBiB9emfOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMyhzCA8xDDiIj5HGPK0rQOcq35TMB8GA1UdIwQY
MBaAFP6/MCAfEqBA04bStO7USEYj5NEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUt
YTk3YzBkYzBhNzQ5LzEvektITUlEekVNT0lpUGtjWThyU3RBNXlyZmxNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUtYTk3YzBkYzBhNzQ5
LzEvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVbsTMA0G
CSqGSIb3DQEBCwUAA4IBAQCpP4fFECFINaRxQanv2dJaIrE3ilLMQVBrQsdwyRRo
MNnANsYmzz68PprexL3swIimtoAjKOCG7Ao81PdIafkDY6XZCjfk6JBw5C1OECQt
mGssT+0RJ+enfJCRZORI6hjGZA/bSWn0DtwNeEmeVm2/qBtndWfEsqjNZxN1YLYb
8B7nvx7qYTzOJ3DDIMpHZCn7ve2mwZtXMo9sLb002OfHHVpVDKbvzX1QVwYhMyYe
P7s/obcU3eCa4WZOYVMblzDoIpDfQkHMJ6xlF+fql02xNHh1htrGl6dGVfMp7NC/
zpkCQIDGTKLaMAvj0Gz0UA+xIJNUcy35pzazkPqCduU7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org