Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/4xLmiVR5fLBp0OguaVzOFtfiddc.roa
File: 4xLmiVR5fLBp0OguaVzOFtfiddc.roa (raw, json)
Hash identifier: qGoTtR1MQomQXAHi07TU+FF6G2HJX9xmCao8bxv/t5o=
Subject key identifier: E3:12:E6:89:54:79:7C:B0:69:D0:E8:2E:69:5C:CE:16:D7:E2:75:D7
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018AEB93168C364BA66AA8E1F0EBF88E4D98
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/4xLmiVR5fLBp0OguaVzOFtfiddc.roa
Signing time: Sun 01 Oct 2023 14:09:59 +0000
ROA not before: Sun 01 Oct 2023 14:09:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47216
IP address blocks: 85.133.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:eb:93:16:8c:36:4b:a6:6a:a8:e1:f0:eb:f8:8e:4d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Oct 1 14:09:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e312e68954797cb069d0e82e695cce16d7e275d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:72:c9:c7:ad:60:46:8d:42:85:37:f7:d9:52:
01:eb:0f:1e:f5:b6:ca:d0:98:ea:67:c1:75:6f:fb:
4e:b0:fc:c8:33:67:9f:ee:23:21:de:38:d7:13:9f:
b2:b2:62:40:08:25:6d:2b:b6:6e:f1:50:81:61:d7:
5a:bd:60:08:3f:7e:0d:b0:cd:ba:e3:82:49:ba:f0:
42:01:e1:4a:c5:c2:9b:08:67:fa:75:97:b3:6a:9a:
fe:40:2d:cf:63:60:4e:23:86:b1:78:e0:e5:76:f0:
8e:bd:67:f6:32:40:52:01:81:3b:b3:7e:46:64:fd:
aa:35:45:b0:92:f3:b4:d3:4a:b9:c5:3a:80:6f:08:
f1:2c:da:ef:06:be:e6:ad:83:ec:98:4f:03:67:9d:
b7:9c:ff:07:58:6b:02:5d:4d:c2:be:28:96:f9:f1:
76:7a:65:93:bc:99:ac:a8:d2:5a:73:68:54:91:cc:
28:e1:13:d0:af:f7:6e:4d:1d:75:63:a9:70:bc:c3:
47:ae:1f:be:2c:be:ac:3d:f7:b4:d6:3c:6a:1b:25:
cb:68:ce:09:8e:64:e0:c1:a4:0e:1f:c8:8d:5d:2a:
c1:62:ac:55:b5:03:68:30:4a:66:8b:9c:1c:e2:19:
3f:6a:48:24:45:0d:d1:8a:60:ae:65:36:12:b6:5d:
23:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:12:E6:89:54:79:7C:B0:69:D0:E8:2E:69:5C:CE:16:D7:E2:75:D7
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/4xLmiVR5fLBp0OguaVzOFtfiddc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.224.0/24
Signature Algorithm: sha256WithRSAEncryption
75:67:fe:f1:fd:08:07:66:3b:a5:2f:c4:47:81:61:e7:4a:b1:
b3:dc:3b:28:2e:21:da:ce:f4:84:28:76:2d:14:96:a5:cc:c3:
21:18:5f:02:62:13:12:e7:04:0a:8b:bc:53:b9:0d:2c:ec:bd:
5c:22:80:9d:26:fc:9f:18:a4:cf:0c:27:d3:34:57:b2:f8:78:
11:b6:6e:d7:82:91:02:f8:2c:19:ae:d9:51:de:e9:84:5e:42:
4c:19:28:32:37:f6:aa:f9:06:96:4c:8f:46:1c:df:e9:87:c6:
85:33:c7:67:dc:2b:32:11:f0:9b:32:a6:59:9f:76:56:c7:03:
ee:18:dc:9c:b0:77:ea:51:ea:e1:fa:eb:e4:11:cf:bf:fb:1b:
07:84:2e:66:f1:7b:01:dd:1d:35:7d:42:d0:ad:99:7b:af:6a:
17:21:6c:56:df:97:5f:56:50:63:ae:2f:64:67:e7:78:d2:ae:
a6:4c:cb:8d:15:30:05:eb:52:4c:46:e4:10:a6:2d:3d:43:0c:
55:41:4f:f7:d0:0e:4b:6e:88:0c:30:82:43:6f:6a:fd:9a:a7:
dc:79:37:5b:8e:b0:bc:2a:17:a8:09:e1:47:62:88:4a:21:85:
89:93:14:90:99:da:1f:50:ec:34:40:00:92:44:1b:a8:03:f1:
98:f1:a4:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrrkxaMNkumaqjh8Ov4jk2YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMxMDAxMTQwOTU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzEyZTY4OTU0Nzk3Y2IwNjlkMGU4MmU2OTVjY2UxNmQ3ZTI3NWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXLJx61gRo1ChTf32VIB6w8e9bbK
0JjqZ8F1b/tOsPzIM2ef7iMh3jjXE5+ysmJACCVtK7Zu8VCBYddavWAIP34NsM26
44JJuvBCAeFKxcKbCGf6dZezapr+QC3PY2BOI4axeODldvCOvWf2MkBSAYE7s35G
ZP2qNUWwkvO000q5xTqAbwjxLNrvBr7mrYPsmE8DZ523nP8HWGsCXU3CviiW+fF2
emWTvJmsqNJac2hUkcwo4RPQr/duTR11Y6lwvMNHrh++LL6sPfe01jxqGyXLaM4J
jmTgwaQOH8iNXSrBYqxVtQNoMEpmi5wc4hk/akgkRQ3RimCuZTYStl0j7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOMS5olUeXywadDoLmlczhbX4nXXMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvNHhMbWlWUjVmTEJwME9ndWFWek9GdGZpZGRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVYXgMA0G
CSqGSIb3DQEBCwUAA4IBAQB1Z/7x/QgHZjulL8RHgWHnSrGz3DsoLiHazvSEKHYt
FJalzMMhGF8CYhMS5wQKi7xTuQ0s7L1cIoCdJvyfGKTPDCfTNFey+HgRtm7XgpEC
+CwZrtlR3umEXkJMGSgyN/aq+QaWTI9GHN/ph8aFM8dn3CsyEfCbMqZZn3ZWxwPu
GNycsHfqUerh+uvkEc+/+xsHhC5m8XsB3R01fULQrZl7r2oXIWxW35dfVlBjri9k
Z+d40q6mTMuNFTAF61JMRuQQpi09QwxVQU/30A5LbogMMIJDb2r9mqfceTdbjrC8
KheoCeFHYohKIYWJkxSQmdofUOw0QACSRBuoA/GY8aRO
Generated at Mon Oct 2 13:56:34 2023 by rpki-client on console-fra.rpki-client.org