Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/tL9VlsynkfNMNopjL5C2GQ8fOLE.roa
File: tL9VlsynkfNMNopjL5C2GQ8fOLE.roa (raw, json)
Hash identifier: lZqtxhvxfwwzQm0BFji25jgKKf1Xnl4dsK3lwGdVrKg=
Subject key identifier: B4:BF:55:96:CC:A7:91:F3:4C:36:8A:63:2F:90:B6:19:0F:1F:38:B1
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 018ADF5711851CF70AB423152EE342EEB356
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/tL9VlsynkfNMNopjL5C2GQ8fOLE.roa
Signing time: Fri 29 Sep 2023 05:08:59 +0000
ROA not before: Fri 29 Sep 2023 05:08:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 85.237.72.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 06 Oct 2023 18:05:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:df:57:11:85:1c:f7:0a:b4:23:15:2e:e3:42:ee:b3:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Sep 29 05:08:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4bf5596cca791f34c368a632f90b6190f1f38b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0c:49:8c:b3:c0:dd:b0:c8:78:53:0f:b5:41:
9b:4e:0f:09:1c:d0:02:bf:c3:64:5b:ef:42:f1:ae:
62:d3:e8:1c:67:00:89:95:c2:82:fa:a6:e4:f1:09:
79:7e:9f:95:a9:5c:e5:7b:cc:4a:ac:37:01:cf:c8:
af:da:c1:ab:bd:1f:f6:ab:af:8b:ec:e0:4d:57:cd:
e8:c0:b9:22:5e:8b:07:45:9a:ea:d4:3b:39:b6:dc:
50:0a:d8:1a:81:b8:95:3a:55:1f:a1:e7:54:de:1c:
a0:e1:ef:cf:b7:d9:8c:b1:82:18:80:b1:f3:ca:11:
0b:96:f0:94:bb:a9:05:07:75:6b:f3:07:cc:58:35:
cf:18:cc:6e:24:1c:ba:a0:2e:05:9b:36:ff:33:d5:
c6:b9:ab:a6:ce:94:d4:28:c5:bc:c4:e0:44:b3:03:
4f:15:92:34:bb:37:94:77:72:23:07:02:20:4a:e5:
5f:d5:df:d8:9c:58:36:fe:36:c4:c8:7b:15:29:79:
d8:d0:33:44:f1:bc:10:81:75:cd:a4:c1:d4:81:8c:
6b:12:af:38:26:98:ee:8a:9d:d0:49:af:75:a2:31:
0c:61:ec:bc:cd:21:af:14:c9:5f:e5:29:15:5c:1c:
b2:79:04:1b:38:d1:61:5b:b5:67:89:2b:8c:cc:23:
4b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:BF:55:96:CC:A7:91:F3:4C:36:8A:63:2F:90:B6:19:0F:1F:38:B1
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/tL9VlsynkfNMNopjL5C2GQ8fOLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.72.0/22
Signature Algorithm: sha256WithRSAEncryption
67:dc:76:ce:46:01:5b:4f:e7:6e:9f:a6:fd:1d:5c:3d:f6:2c:
5b:ab:b6:da:a0:6e:03:1c:fd:fb:85:8f:ac:3a:9b:71:31:e5:
62:6b:b1:07:98:75:07:8f:29:20:50:58:64:0c:ab:01:fe:b7:
56:89:a2:59:0b:92:74:f1:ce:b1:44:60:23:07:58:03:42:25:
90:18:01:30:16:37:59:2d:c3:b2:9a:e6:44:5a:6b:fb:09:2f:
0c:39:a3:77:12:b4:4c:bd:8d:a2:65:bc:18:ba:85:d8:f9:e8:
37:0f:13:ae:83:2f:37:a9:65:0e:df:53:c2:e7:a3:92:f2:89:
54:52:03:26:fc:76:35:14:47:49:30:e7:e9:05:b6:0b:d0:f0:
e2:3a:bc:f9:7a:85:47:2e:11:b0:69:b9:e7:ed:bc:da:e9:6e:
6a:55:e5:d1:08:af:40:a6:ac:9c:9b:9b:ff:8a:04:eb:cd:85:
cb:c0:2d:fe:6a:dc:64:d2:33:a7:a5:92:6e:11:1e:9a:a1:ca:
3c:43:d4:3a:eb:39:1d:b8:af:77:98:99:c0:bf:e7:8b:df:39:
bc:a4:a9:b2:ce:c9:cd:91:1f:57:0c:ab:6a:82:39:c0:93:56:
bc:10:2e:26:5a:d1:b2:65:b2:63:25:cd:ae:51:dd:ca:8c:f9:
c1:4f:74:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrfVxGFHPcKtCMVLuNC7rNWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NGJmODA3MGNlZTQzMDVkMWEzODllOTEwZmI1MTAyYmJj
YzE5NDEwHhcNMjMwOTI5MDUwODU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNGJmNTU5NmNjYTc5MWYzNGMzNjhhNjMyZjkwYjYxOTBmMWYzOGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgxJjLPA3bDIeFMPtUGbTg8JHNAC
v8NkW+9C8a5i0+gcZwCJlcKC+qbk8Ql5fp+VqVzle8xKrDcBz8iv2sGrvR/2q6+L
7OBNV83owLkiXosHRZrq1Ds5ttxQCtgagbiVOlUfoedU3hyg4e/Pt9mMsYIYgLHz
yhELlvCUu6kFB3Vr8wfMWDXPGMxuJBy6oC4Fmzb/M9XGuaumzpTUKMW8xOBEswNP
FZI0uzeUd3IjBwIgSuVf1d/YnFg2/jbEyHsVKXnY0DNE8bwQgXXNpMHUgYxrEq84
Jpjuip3QSa91ojEMYey8zSGvFMlf5SkVXByyeQQbONFhW7VniSuMzCNL2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLS/VZbMp5HzTDaKYy+QthkPHzixMB8GA1UdIwQY
MBaAFIdL+AcM7kMF0aOJ6RD7UQK7zBlBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDB2NEJ3enVRd1hSbzRucEVQdFJBcnZNR1VFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9lZWUxMzEtYmI4Yy00ODg3LTg2OWIt
NmZlNGQ4ZmVkMTYwLzEvdEw5VmxzeW5rZk5NTm9wakw1QzJHUThmT0xFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9lZWUxMzEtYmI4Yy00ODg3LTg2OWItNmZlNGQ4ZmVkMTYw
LzEvaDB2NEJ3enVRd1hSbzRucEVQdFJBcnZNR1VFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVe1IMA0G
CSqGSIb3DQEBCwUAA4IBAQBn3HbORgFbT+dun6b9HVw99ixbq7baoG4DHP37hY+s
OptxMeVia7EHmHUHjykgUFhkDKsB/rdWiaJZC5J08c6xRGAjB1gDQiWQGAEwFjdZ
LcOymuZEWmv7CS8MOaN3ErRMvY2iZbwYuoXY+eg3DxOugy83qWUO31PC56OS8olU
UgMm/HY1FEdJMOfpBbYL0PDiOrz5eoVHLhGwabnn7bza6W5qVeXRCK9Apqycm5v/
igTrzYXLwC3+atxk0jOnpZJuER6aoco8Q9Q66zkduK93mJnAv+eL3zm8pKmyzsnN
kR9XDKtqgjnAk1a8EC4mWtGyZbJjJc2uUd3KjPnBT3Td
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:33 2024 by rpki-client on console-fra.rpki-client.org