Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/H-VDa3V3dY0XTV_JQi6aa9Lfko4.roa
File: H-VDa3V3dY0XTV_JQi6aa9Lfko4.roa (raw, json)
Hash identifier: hhG6ddwDsB1nQ+raXNFC5KK2mfNLz+cvAFn54UhEtpI=
Subject key identifier: 1F:E5:43:6B:75:77:75:8D:17:4D:5F:C9:42:2E:9A:6B:D2:DF:92:8E
Certificate issuer: /CN=5a141c5090824d0a17c29ec4050e21007113fbda
Certificate serial: 0188F6E9C9DAA922C25F309EF7BA796C54F5
Authority key identifier: 5A:14:1C:50:90:82:4D:0A:17:C2:9E:C4:05:0E:21:00:71:13:FB:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WhQcUJCCTQoXwp7EBQ4hAHET-9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/H-VDa3V3dY0XTV_JQi6aa9Lfko4.roa
Signing time: Mon 26 Jun 2023 08:54:56 +0000
ROA not before: Mon 26 Jun 2023 08:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.85.78.0/24 maxlen: 24
185.85.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jul 2023 10:25:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f6:e9:c9:da:a9:22:c2:5f:30:9e:f7:ba:79:6c:54:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a141c5090824d0a17c29ec4050e21007113fbda
Validity
Not Before: Jun 26 08:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fe5436b7577758d174d5fc9422e9a6bd2df928e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:06:68:ee:3b:35:5c:d9:e4:1c:47:a4:ce:24:
d1:1f:55:13:bb:2e:9c:7e:38:0b:de:0b:24:bb:36:
48:e1:6e:ab:03:9a:b4:17:1f:02:78:23:7d:e9:36:
9c:e7:3a:9f:ec:c3:2d:da:4b:1e:af:9f:56:4d:0b:
f5:f9:57:d0:4a:a7:c1:69:76:a6:53:47:a9:3d:9d:
0b:73:bb:20:00:82:47:57:03:a0:d1:38:9f:08:44:
41:ac:e0:65:71:96:92:a2:73:e8:2a:4c:c2:27:d5:
21:0b:60:12:8b:a9:b0:1e:4c:c6:aa:5b:08:31:f1:
e8:52:39:90:d6:b7:2d:8a:06:25:e2:e9:10:9f:6b:
95:a9:60:83:b0:50:71:ac:4a:72:42:62:cc:b1:32:
09:05:9b:85:6a:48:12:0d:ce:fc:4f:02:3e:c0:4a:
03:fd:63:19:a1:ca:14:83:2b:76:45:99:09:7a:85:
99:6e:a7:90:9d:e2:4c:05:80:50:b4:d8:b8:21:43:
0f:9a:18:cb:30:3a:44:22:9f:e3:0e:12:3a:fc:f2:
a6:81:4c:4f:ca:11:79:60:78:24:c7:02:58:2b:70:
cd:49:80:11:de:49:d7:ca:04:34:81:d4:7f:82:23:
eb:db:b2:0c:eb:1e:64:fa:32:c2:74:9f:fe:f0:86:
05:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E5:43:6B:75:77:75:8D:17:4D:5F:C9:42:2E:9A:6B:D2:DF:92:8E
X509v3 Authority Key Identifier:
keyid:5A:14:1C:50:90:82:4D:0A:17:C2:9E:C4:05:0E:21:00:71:13:FB:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WhQcUJCCTQoXwp7EBQ4hAHET-9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/H-VDa3V3dY0XTV_JQi6aa9Lfko4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/WhQcUJCCTQoXwp7EBQ4hAHET-9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.78.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:7f:cb:79:93:94:e5:ef:85:01:16:e4:7e:ee:00:49:2f:23:
5d:52:99:de:12:52:e2:91:1e:b3:e9:79:9a:34:09:08:1e:3d:
6b:6b:3b:5a:25:98:b0:ce:af:6e:95:30:b7:62:1a:a9:be:73:
5a:da:fb:ef:c3:83:4e:c6:08:bf:a2:0e:de:15:ac:1f:2a:24:
3e:e2:03:20:62:d7:50:4d:b3:f0:f2:0d:1a:1b:74:01:93:84:
c1:e9:68:f0:ff:93:d1:ce:a5:34:90:c3:be:06:e8:91:43:36:
d0:d1:24:07:d6:ec:6f:a2:2e:1c:8c:93:06:96:6f:8f:02:3f:
62:4b:17:69:13:4e:bc:b1:aa:5a:3c:eb:e2:8a:e6:b5:c5:b7:
7c:8d:57:d6:73:ff:4a:f0:0c:23:c5:dc:e0:0a:7e:a0:df:dd:
d7:ea:52:7a:9b:03:7f:62:f8:5d:67:7d:c4:32:06:8d:5d:41:
a0:4c:50:b9:f0:ef:b0:ff:27:cb:23:d8:b6:72:a9:f7:9a:5f:
ab:a0:ee:15:e7:89:2a:43:55:3f:ce:fa:4e:cf:da:3a:4e:0a:
89:9d:f7:03:d0:17:3d:ab:ae:06:e4:d6:f6:06:a4:b4:e4:27:
be:ec:99:e2:ee:d9:39:56:55:6b:f0:dd:ca:13:fa:3d:de:68:
63:07:84:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYj26cnaqSLCXzCe97p5bFT1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhMTQxYzUwOTA4MjRkMGExN2MyOWVjNDA1MGUyMTAwNzEx
M2ZiZGEwHhcNMjMwNjI2MDg1NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZmU1NDM2Yjc1Nzc3NThkMTc0ZDVmYzk0MjJlOWE2YmQyZGY5MjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiQZo7js1XNnkHEekziTRH1UTuy6c
fjgL3gskuzZI4W6rA5q0Fx8CeCN96Tac5zqf7MMt2kser59WTQv1+VfQSqfBaXam
U0epPZ0Lc7sgAIJHVwOg0TifCERBrOBlcZaSonPoKkzCJ9UhC2ASi6mwHkzGqlsI
MfHoUjmQ1rctigYl4ukQn2uVqWCDsFBxrEpyQmLMsTIJBZuFakgSDc78TwI+wEoD
/WMZocoUgyt2RZkJeoWZbqeQneJMBYBQtNi4IUMPmhjLMDpEIp/jDhI6/PKmgUxP
yhF5YHgkxwJYK3DNSYAR3knXygQ0gdR/giPr27IM6x5k+jLCdJ/+8IYFvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB/lQ2t1d3WNF01fyUIummvS35KOMB8GA1UdIwQY
MBaAFFoUHFCQgk0KF8KexAUOIQBxE/vaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2hRY1VKQ0NUUW9Yd3A3RUJRNGhBSEVULTlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9iMjBlOTAtYmY2ZS00ZTI1LTg3ZDUt
ZWNlZWZmOGU4NGUwLzEvSC1WRGEzVjNkWTBYVFZfSlFpNmFhOUxma280LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9iMjBlOTAtYmY2ZS00ZTI1LTg3ZDUtZWNlZWZmOGU4NGUw
LzEvV2hRY1VKQ0NUUW9Yd3A3RUJRNGhBSEVULTlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuVVOMA0G
CSqGSIb3DQEBCwUAA4IBAQB+f8t5k5Tl74UBFuR+7gBJLyNdUpneElLikR6z6Xma
NAkIHj1raztaJZiwzq9ulTC3YhqpvnNa2vvvw4NOxgi/og7eFawfKiQ+4gMgYtdQ
TbPw8g0aG3QBk4TB6Wjw/5PRzqU0kMO+BuiRQzbQ0SQH1uxvoi4cjJMGlm+PAj9i
SxdpE068sapaPOviiua1xbd8jVfWc/9K8AwjxdzgCn6g393X6lJ6mwN/YvhdZ33E
MgaNXUGgTFC58O+w/yfLI9i2cqn3ml+roO4V54kqQ1U/zvpOz9o6TgqJnfcD0Bc9
q64G5Nb2BqS05Ce+7Jni7tk5VlVr8N3KE/o93mhjB4Q9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:28 2024 by rpki-client on console-ams.rpki-client.org