Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/0zekJQA5rSMCkmIhzBCvumZpF0g.roa
File: 0zekJQA5rSMCkmIhzBCvumZpF0g.roa (raw, json)
Hash identifier: 7xF0WTQX1Bpl+fEYSCr6FjNSmFB9oMhCwQ93jXtKaH8=
Subject key identifier: D3:37:A4:25:00:39:AD:23:02:92:62:21:CC:10:AF:BA:66:69:17:48
Certificate issuer: /CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Certificate serial: 018CE85893B2B4B65153B5AE8C804E29E2D1
Authority key identifier: 5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/0zekJQA5rSMCkmIhzBCvumZpF0g.roa
Signing time: Mon 08 Jan 2024 09:12:48 +0000
ROA not before: Mon 08 Jan 2024 09:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29555
IP address blocks: 85.117.98.0/24 maxlen: 24
85.117.96.0/24 maxlen: 24
85.117.97.0/24 maxlen: 24
85.117.105.0/24 maxlen: 24
85.117.99.0/24 maxlen: 24
85.117.100.0/24 maxlen: 24
85.117.101.0/24 maxlen: 24
85.117.102.0/24 maxlen: 24
85.117.103.0/24 maxlen: 24
85.117.104.0/24 maxlen: 24
85.117.106.0/24 maxlen: 24
85.117.107.0/24 maxlen: 24
85.117.108.0/24 maxlen: 24
85.117.109.0/24 maxlen: 24
185.57.72.0/24 maxlen: 24
185.57.73.0/24 maxlen: 24
2a03:32c0:d::/48 maxlen: 48
2a03:32c0:18::/48 maxlen: 48
2a03:32c0:16::/48 maxlen: 48
2a03:32c0:c::/48 maxlen: 48
2a03:32c0:17::/48 maxlen: 48
2a03:32c0:a::/48 maxlen: 48
2a03:32c0:b::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 09 Jan 2024 03:27:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e8:58:93:b2:b4:b6:51:53:b5:ae:8c:80:4e:29:e2:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Validity
Not Before: Jan 8 09:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d337a4250039ad2302926221cc10afba66691748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:52:0b:3b:f0:f9:4e:31:6d:12:5e:0c:fd:f5:
e2:e9:c6:b7:37:65:8b:76:5e:ea:d7:ab:b9:b0:b9:
9d:53:6f:31:65:8c:9b:7b:6a:8e:07:a0:7c:fc:43:
ea:0a:1c:10:28:c2:7d:5f:59:fc:ee:13:5e:8f:2f:
f3:66:18:60:16:41:f5:86:e4:aa:58:b3:9f:0d:08:
68:97:2f:d7:ae:ae:f5:ae:c8:f3:70:af:a4:73:42:
5d:ab:d3:69:1e:3f:d9:e0:c8:37:bd:b1:03:55:34:
4e:ee:0d:7d:1b:7b:ee:14:da:94:f9:3c:27:52:c9:
35:ff:57:ee:0a:8e:88:be:38:d3:ea:f5:19:0f:c8:
89:f9:f8:4e:21:3e:5a:47:1a:d0:e3:54:80:76:a7:
a5:70:94:de:8f:0c:15:70:cb:b4:7c:2a:14:18:2a:
5f:6e:6e:87:8e:6a:c8:ee:99:be:43:52:d8:c9:d0:
a1:d4:ff:72:48:ca:e2:68:94:38:f2:80:05:c3:d8:
21:8c:3d:94:d0:8c:1c:4b:fe:24:e8:6d:d8:dd:c4:
b7:a1:93:96:8d:22:73:90:bb:c8:14:90:04:ef:9a:
0d:2e:f8:60:44:26:0f:65:30:31:ac:c3:54:ab:42:
01:8f:a9:05:39:78:7c:3b:f5:39:b1:19:c9:e3:8e:
6e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:37:A4:25:00:39:AD:23:02:92:62:21:CC:10:AF:BA:66:69:17:48
X509v3 Authority Key Identifier:
keyid:5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/0zekJQA5rSMCkmIhzBCvumZpF0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.96.0-85.117.109.255
185.57.72.0/23
IPv6:
2a03:32c0:a::-2a03:32c0:d:ffff:ffff:ffff:ffff:ffff
2a03:32c0:16::-2a03:32c0:18:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
45:ed:15:12:00:19:09:7e:0a:6f:ad:ae:64:24:a0:5c:e3:87:
fc:d9:c2:f0:22:55:0b:1e:60:e1:39:11:c7:58:e5:a9:9d:4c:
ae:ee:6f:35:a4:e0:33:c6:b7:dd:96:8d:0d:aa:48:a4:01:4c:
d0:78:78:8a:87:96:d1:2e:e3:68:6d:03:eb:e7:66:d8:bc:e5:
60:8f:d2:61:eb:1f:d7:08:e0:ba:93:cd:85:87:6f:98:d0:23:
af:3f:97:36:38:97:9b:ea:21:2e:67:8c:04:1c:a9:13:bc:09:
20:3f:57:e8:e2:03:fc:cf:f4:51:ad:49:77:6b:56:ad:9b:e8:
41:43:93:d6:0a:4a:4e:91:70:b2:e4:95:3b:e9:06:c7:83:fc:
c0:3d:04:d7:05:3d:b8:49:ed:52:60:ca:d6:40:52:30:5a:d8:
3d:4d:df:2a:83:ee:a1:37:a0:28:52:4c:aa:5c:e7:e0:da:c1:
55:3e:49:3b:b6:76:f4:a7:b2:37:9d:c5:45:44:b6:5f:38:74:
f7:6d:ca:ff:3f:4e:5d:72:c9:17:8c:b7:46:b6:2c:f8:54:bc:
2c:f8:2a:32:9e:66:e5:61:fe:f4:cd:ea:8d:7c:45:1b:e5:34:
d9:36:6f:69:5e:43:a6:47:91:4f:bb:55:28:a7:3c:b0:2f:9a:
94:27:a2:50
-----BEGIN CERTIFICATE-----
MIIFOzCCBCOgAwIBAgISAYzoWJOytLZRU7WujIBOKeLRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlYmJhMDczNWEwN2U0MGNhMzIwMjYyNzhiMjY3ODY3OGY4
YmFjZDkwHhcNMjQwMTA4MDkxMjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzM3YTQyNTAwMzlhZDIzMDI5MjYyMjFjYzEwYWZiYTY2NjkxNzQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkFILO/D5TjFtEl4M/fXi6ca3N2WL
dl7q16u5sLmdU28xZYybe2qOB6B8/EPqChwQKMJ9X1n87hNejy/zZhhgFkH1huSq
WLOfDQholy/Xrq71rsjzcK+kc0Jdq9NpHj/Z4Mg3vbEDVTRO7g19G3vuFNqU+Twn
Usk1/1fuCo6IvjjT6vUZD8iJ+fhOIT5aRxrQ41SAdqelcJTejwwVcMu0fCoUGCpf
bm6HjmrI7pm+Q1LYydCh1P9ySMriaJQ48oAFw9ghjD2U0IwcS/4k6G3Y3cS3oZOW
jSJzkLvIFJAE75oNLvhgRCYPZTAxrMNUq0IBj6kFOXh8O/U5sRnJ445u0wIDAQAB
o4ICRzCCAkMwHQYDVR0OBBYEFNM3pCUAOa0jApJiIcwQr7pmaRdIMB8GA1UdIwQY
MBaAFF67oHNaB+QMoyAmJ4smeGePi6zZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHJ1Z2Mxb0g1QXlqSUNZbml5WjRaNC1Mck5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC82MDc3ZDgtMjg3Ny00Njk4LTgwNDAt
MzIxMmI2ODU4NGU5LzEvMHpla0pRQTVyU01Da21JaHpCQ3Z1bVpwRjBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC82MDc3ZDgtMjg3Ny00Njk4LTgwNDAtMzIxMmI2ODU4NGU5
LzEvWHJ1Z2Mxb0g1QXlqSUNZbml5WjRaNC1Mck5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDAaBAIAATAUMAwDBAVVdWAD
BAFVdWwDBAG5OUgwLgQCAAIwKDASAwcBKgMywAAKAwcBKgMywAAMMBIDBwEqAzLA
ABYDBwAqAzLAABgwDQYJKoZIhvcNAQELBQADggEBAEXtFRIAGQl+Cm+trmQkoFzj
h/zZwvAiVQseYOE5EcdY5amdTK7ubzWk4DPGt92WjQ2qSKQBTNB4eIqHltEu42ht
A+vnZti85WCP0mHrH9cI4LqTzYWHb5jQI68/lzY4l5vqIS5njAQcqRO8CSA/V+ji
A/zP9FGtSXdrVq2b6EFDk9YKSk6RcLLklTvpBseD/MA9BNcFPbhJ7VJgytZAUjBa
2D1N3yqD7qE3oChSTKpc5+DawVU+STu2dvSnsjedxUVEtl84dPdtyv8/Tl1yyReM
t0a2LPhUvCz4KjKeZuVh/vTN6o18RRvlNNk2b2leQ6ZHkU+7VSinPLAvmpQnolA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:08 2024 by rpki-client on console-fra.rpki-client.org