Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/sdX58Eemn-2YWrIeX9yag4KdGVA.roa
File: sdX58Eemn-2YWrIeX9yag4KdGVA.roa (raw, json)
Hash identifier: 6msuUPo6xPqKX9mGWtjYoG4PeeUjKVgDtmLCMDjLTvI=
Subject key identifier: B1:D5:F9:F0:47:A6:9F:ED:98:5A:B2:1E:5F:DC:9A:83:82:9D:19:50
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 018572310C4BAEC93EF7826F2D17DC22633C
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/sdX58Eemn-2YWrIeX9yag4KdGVA.roa
Signing time: Mon 02 Jan 2023 11:14:55 +0000
ROA not before: Mon 02 Jan 2023 11:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 85.237.92.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jan 2023 09:05:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:0c:4b:ae:c9:3e:f7:82:6f:2d:17:dc:22:63:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Jan 2 11:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1d5f9f047a69fed985ab21e5fdc9a83829d1950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5d:67:bd:5e:51:f7:4b:6d:67:16:26:64:86:
8d:e9:ec:70:e7:c5:82:4e:8e:88:32:d0:2f:22:00:
2c:ae:5a:e1:34:91:ce:3f:3b:a9:b4:21:02:f2:2a:
27:17:5b:30:ef:4e:3c:c6:77:5c:d0:57:7f:62:6a:
a3:44:e2:d3:23:7a:bd:e9:7e:00:a1:b6:af:cf:58:
26:99:bf:08:be:f3:1a:b1:ab:14:e0:e3:c9:a8:49:
0a:6a:c0:35:b3:77:59:11:86:08:56:c2:85:b6:0c:
31:9c:70:0c:d8:02:c0:eb:ba:a2:30:67:5c:f5:07:
3d:20:5e:e7:98:02:9d:48:bb:02:c8:30:17:38:91:
96:e4:e5:9b:96:0c:df:2a:78:4a:21:3e:73:23:ea:
cc:d8:63:20:3c:27:de:ba:13:15:bf:73:7d:95:07:
3d:88:68:c2:5d:b3:cb:58:b5:f3:05:06:bd:56:5a:
5f:80:44:f0:a6:22:e0:35:f0:d6:de:e8:e6:cb:b9:
3a:43:0c:e8:0d:21:95:97:21:78:2d:d5:fe:78:53:
8a:54:ba:2c:64:26:7e:bc:41:99:af:14:07:bd:c6:
9f:b7:8b:b4:49:69:de:40:e2:42:73:65:8b:c7:91:
39:86:38:8a:a3:d0:85:75:50:64:04:b7:89:5e:8b:
48:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D5:F9:F0:47:A6:9F:ED:98:5A:B2:1E:5F:DC:9A:83:82:9D:19:50
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/sdX58Eemn-2YWrIeX9yag4KdGVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.92.0/22
Signature Algorithm: sha256WithRSAEncryption
02:db:62:d4:e0:02:df:39:22:04:0f:ae:f2:7b:b0:8e:89:7c:
75:69:0b:43:30:9c:b9:e2:7b:32:b4:4a:41:41:36:11:1f:a8:
80:9f:27:82:58:6a:66:fb:37:b0:7a:22:fe:ab:c6:fd:69:65:
f4:a3:1f:0f:dd:4b:8b:5d:92:12:00:7d:ac:ac:af:04:dc:bc:
6c:69:9e:d9:1b:39:6f:03:b4:15:62:4a:77:7d:a1:9d:77:19:
b6:fb:54:2d:de:5a:86:17:5c:dd:13:d7:11:07:08:84:5a:22:
8c:07:3d:1d:e3:89:e1:83:be:2a:a4:77:15:65:65:18:00:fa:
00:b5:21:40:d0:25:06:02:58:a3:7d:53:60:6d:5e:a9:4d:b4:
fc:29:f6:7d:55:5a:eb:b3:ab:f1:06:99:5f:1d:bf:9e:6f:62:
8d:a4:fe:fa:ab:3a:91:79:86:c8:3d:29:d1:39:a8:f6:77:86:
ea:4d:7f:ea:93:f9:a2:7a:ed:3f:ef:d3:e5:0c:41:27:86:a7:
a6:e4:13:39:36:b4:ab:da:b4:17:4c:aa:c4:32:c8:be:58:cb:
33:c5:9d:50:8f:06:69:c2:ef:41:46:a0:15:a3:1a:7a:f6:fc:
04:eb:6e:62:d6:c4:c7:09:1c:b4:45:9d:2f:45:90:de:0b:50:
50:f5:24:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyMQxLrsk+94JvLRfcImM8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NGJmODA3MGNlZTQzMDVkMWEzODllOTEwZmI1MTAyYmJj
YzE5NDEwHhcNMjMwMTAyMTExNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMWQ1ZjlmMDQ3YTY5ZmVkOTg1YWIyMWU1ZmRjOWE4MzgyOWQxOTUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj11nvV5R90ttZxYmZIaN6exw58WC
To6IMtAvIgAsrlrhNJHOPzuptCEC8ionF1sw7048xndc0Fd/YmqjROLTI3q96X4A
obavz1gmmb8IvvMasasU4OPJqEkKasA1s3dZEYYIVsKFtgwxnHAM2ALA67qiMGdc
9Qc9IF7nmAKdSLsCyDAXOJGW5OWblgzfKnhKIT5zI+rM2GMgPCfeuhMVv3N9lQc9
iGjCXbPLWLXzBQa9VlpfgETwpiLgNfDW3ujmy7k6QwzoDSGVlyF4LdX+eFOKVLos
ZCZ+vEGZrxQHvcaft4u0SWneQOJCc2WLx5E5hjiKo9CFdVBkBLeJXotI3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLHV+fBHpp/tmFqyHl/cmoOCnRlQMB8GA1UdIwQY
MBaAFIdL+AcM7kMF0aOJ6RD7UQK7zBlBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDB2NEJ3enVRd1hSbzRucEVQdFJBcnZNR1VFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9lZWUxMzEtYmI4Yy00ODg3LTg2OWIt
NmZlNGQ4ZmVkMTYwLzEvc2RYNThFZW1uLTJZV3JJZVg5eWFnNEtkR1ZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9lZWUxMzEtYmI4Yy00ODg3LTg2OWItNmZlNGQ4ZmVkMTYw
LzEvaDB2NEJ3enVRd1hSbzRucEVQdFJBcnZNR1VFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVe1cMA0G
CSqGSIb3DQEBCwUAA4IBAQAC22LU4ALfOSIED67ye7COiXx1aQtDMJy54nsytEpB
QTYRH6iAnyeCWGpm+zeweiL+q8b9aWX0ox8P3UuLXZISAH2srK8E3LxsaZ7ZGzlv
A7QVYkp3faGddxm2+1Qt3lqGF1zdE9cRBwiEWiKMBz0d44nhg74qpHcVZWUYAPoA
tSFA0CUGAlijfVNgbV6pTbT8KfZ9VVrrs6vxBplfHb+eb2KNpP76qzqReYbIPSnR
Oaj2d4bqTX/qk/mieu0/79PlDEEnhqem5BM5NrSr2rQXTKrEMsi+WMszxZ1QjwZp
wu9BRqAVoxp69vwE625i1sTHCRy0RZ0vRZDeC1BQ9SSE
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org