Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/jyM3pBOOB2NS97TFhSC9JSYUmhE.roa
File: jyM3pBOOB2NS97TFhSC9JSYUmhE.roa (raw, json)
Hash identifier: 5K3Gwf5HV0Fz4yhU2UcU+ropZ3n7dtzmti7UatFaTy4=
Subject key identifier: 8F:23:37:A4:13:8E:07:63:52:F7:B4:C5:85:20:BD:25:26:14:9A:11
Certificate issuer: /CN=20b5100e798fab7577bf725ac9569ea80e6c2a04
Certificate serial: 018BF6AF636E3F1466823598AACC5D106E24
Authority key identifier: 20:B5:10:0E:79:8F:AB:75:77:BF:72:5A:C9:56:9E:A8:0E:6C:2A:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ILUQDnmPq3V3v3JayVaeqA5sKgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/jyM3pBOOB2NS97TFhSC9JSYUmhE.roa
Signing time: Wed 22 Nov 2023 10:59:31 +0000
ROA not before: Wed 22 Nov 2023 10:59:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44703
IP address blocks: 85.115.64.0/24 maxlen: 24
85.115.71.0/24 maxlen: 24
85.115.70.0/24 maxlen: 24
85.115.65.0/24 maxlen: 24
85.115.72.0/21 maxlen: 21
85.115.80.0/21 maxlen: 21
85.115.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f6:af:63:6e:3f:14:66:82:35:98:aa:cc:5d:10:6e:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20b5100e798fab7577bf725ac9569ea80e6c2a04
Validity
Not Before: Nov 22 10:59:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f2337a4138e076352f7b4c58520bd2526149a11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:28:8d:20:7e:70:59:2f:27:ac:cf:22:67:2e:
c3:ae:51:67:b6:be:16:99:43:fb:d6:ef:b8:6d:41:
6c:e5:e7:69:b6:ad:13:42:77:ca:78:fb:8c:c9:bb:
ea:03:fc:81:24:73:9f:bb:7b:d4:8e:27:c8:98:17:
71:67:8a:99:92:a8:67:ad:eb:df:31:8c:36:25:ad:
7b:a6:74:00:32:5e:4b:b8:7e:62:32:72:40:cb:33:
3a:7d:f9:a2:f3:6c:5e:4f:96:d4:b3:57:23:2c:60:
ad:88:7d:ff:28:a9:ab:8d:b8:c8:37:08:f8:39:f0:
f7:b7:f1:b7:3e:4d:ab:c2:9f:64:0d:1a:b6:b0:bf:
23:04:93:24:f6:5c:99:06:53:96:28:c5:fd:a0:2b:
46:57:1c:39:56:b5:aa:df:cb:df:e4:60:c8:a2:4b:
84:de:ce:e9:8c:88:c9:52:9a:59:0b:61:05:2d:fe:
60:9e:3a:4f:ef:31:99:3b:ff:5e:a2:fc:73:15:87:
87:d2:ea:25:66:10:37:16:fa:72:7e:5f:59:b9:14:
d9:e1:8a:69:cf:c2:41:ab:dc:ba:1e:a8:d8:a5:6b:
0f:1f:1a:3f:9f:f0:67:dd:ea:46:8a:51:28:2f:01:
f8:c0:22:be:29:c8:3f:62:90:30:c3:47:44:ad:fa:
e8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:23:37:A4:13:8E:07:63:52:F7:B4:C5:85:20:BD:25:26:14:9A:11
X509v3 Authority Key Identifier:
keyid:20:B5:10:0E:79:8F:AB:75:77:BF:72:5A:C9:56:9E:A8:0E:6C:2A:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ILUQDnmPq3V3v3JayVaeqA5sKgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/jyM3pBOOB2NS97TFhSC9JSYUmhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/ILUQDnmPq3V3v3JayVaeqA5sKgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.64.0/23
85.115.70.0-85.115.87.255
85.115.94.0/24
Signature Algorithm: sha256WithRSAEncryption
79:22:95:16:84:9c:7c:d4:79:56:15:42:62:ae:cd:d4:5e:94:
99:5d:51:fa:2b:1a:64:05:3c:ef:c3:1a:12:8a:08:e1:a4:fb:
25:ef:19:6a:65:9a:52:06:4d:6c:3a:14:93:51:d1:54:e8:2a:
c1:be:e7:4f:53:00:78:55:44:dc:4b:6e:33:9c:6f:8a:77:56:
be:46:98:e4:52:7e:dc:3b:03:86:15:d5:4b:a7:9f:1b:0a:ef:
60:27:9b:2a:38:97:2e:59:d3:18:09:ab:30:04:a3:6a:b5:b9:
66:c4:35:aa:86:3f:55:5c:92:a1:7d:a1:36:fc:5d:df:7e:22:
00:62:e7:43:a4:10:ae:c3:f1:2b:d3:ef:cf:49:82:3d:15:5e:
f3:d3:88:4e:f7:74:f5:a1:c6:23:cd:b4:26:b1:af:f9:8c:de:
0e:9f:67:5c:9c:22:d1:b6:9b:43:cc:98:44:8a:f0:35:64:3b:
60:c9:53:2a:4f:2b:c1:f9:b9:a2:72:72:4a:bf:aa:f4:27:b1:
c3:f6:7c:59:1c:c0:45:89:e7:df:dc:75:e6:24:62:80:f8:08:
f0:17:2e:4b:d6:ea:a5:81:bb:7f:91:9e:3e:e2:8d:ea:37:49:
56:12:ec:ac:b6:2e:9c:56:1b:c9:73:4a:b7:7d:2d:86:0f:9d:
49:b0:d0:74
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAYv2r2NuPxRmgjWYqsxdEG4kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYjUxMDBlNzk4ZmFiNzU3N2JmNzI1YWM5NTY5ZWE4MGU2
YzJhMDQwHhcNMjMxMTIyMTA1OTMxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZjIzMzdhNDEzOGUwNzYzNTJmN2I0YzU4NTIwYmQyNTI2MTQ5YTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlyiNIH5wWS8nrM8iZy7DrlFntr4W
mUP71u+4bUFs5edptq0TQnfKePuMybvqA/yBJHOfu3vUjifImBdxZ4qZkqhnrevf
MYw2Ja17pnQAMl5LuH5iMnJAyzM6ffmi82xeT5bUs1cjLGCtiH3/KKmrjbjINwj4
OfD3t/G3Pk2rwp9kDRq2sL8jBJMk9lyZBlOWKMX9oCtGVxw5VrWq38vf5GDIokuE
3s7pjIjJUppZC2EFLf5gnjpP7zGZO/9eovxzFYeH0uolZhA3Fvpyfl9ZuRTZ4Ypp
z8JBq9y6HqjYpWsPHxo/n/Bn3epGilEoLwH4wCK+Kcg/YpAww0dErfro6QIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFI8jN6QTjgdjUve0xYUgvSUmFJoRMB8GA1UdIwQY
MBaAFCC1EA55j6t1d79yWslWnqgObCoEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUxVUURubVBxM1YzdjNKYXlWYWVxQTVzS2dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS85ZTQ5ZmYtNDI2NC00NjQ3LTk1YTQt
ODAzNzk2NTY5M2EyLzEvanlNM3BCT09CMk5TOTdURmhTQzlKU1lVbWhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS85ZTQ5ZmYtNDI2NC00NjQ3LTk1YTQtODAzNzk2NTY5M2Ey
LzEvSUxVUURubVBxM1YzdjNKYXlWYWVxQTVzS2dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQBVXNAMAwD
BAFVc0YDBANVc1ADBABVc14wDQYJKoZIhvcNAQELBQADggEBAHkilRaEnHzUeVYV
QmKuzdRelJldUforGmQFPO/DGhKKCOGk+yXvGWplmlIGTWw6FJNR0VToKsG+509T
AHhVRNxLbjOcb4p3Vr5GmORSftw7A4YV1UunnxsK72Anmyo4ly5Z0xgJqzAEo2q1
uWbENaqGP1VckqF9oTb8Xd9+IgBi50OkEK7D8SvT789Jgj0VXvPTiE73dPWhxiPN
tCaxr/mM3g6fZ1ycItG2m0PMmESK8DVkO2DJUypPK8H5uaJyckq/qvQnscP2fFkc
wEWJ59/cdeYkYoD4CPAXLkvW6qWBu3+Rnj7ijeo3SVYS7Ky2LpxWG8lzSrd9LYYP
nUmw0HQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:11 2024 by rpki-client on console-ams.rpki-client.org