Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/6EPdBtLZID_LDPcF5ovNGSe1Ay4.roa
File: 6EPdBtLZID_LDPcF5ovNGSe1Ay4.roa (raw, json)
Hash identifier: U1+Kdz8YpmxnHbSEBCkqBEXYF4VK5ai15PKDoHxYgCs=
Subject key identifier: E8:43:DD:06:D2:D9:20:3F:CB:0C:F7:05:E6:8B:CD:19:27:B5:03:2E
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018E21EA594C70B9CAAF8B3A5D8E33FC1E4F
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/6EPdBtLZID_LDPcF5ovNGSe1Ay4.roa
Signing time: Sat 09 Mar 2024 06:33:10 +0000
ROA not before: Sat 09 Mar 2024 06:33:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39074
IP address blocks: 85.133.128.0/17 maxlen: 24
85.133.128.0/22 maxlen: 22
85.133.128.0/24 maxlen: 24
85.133.129.0/24 maxlen: 24
85.133.130.0/24 maxlen: 24
85.133.131.0/24 maxlen: 24
85.133.133.0/24 maxlen: 24
85.133.134.0/24 maxlen: 24
85.133.135.0/24 maxlen: 24
85.133.136.0/24 maxlen: 24
85.133.138.0/24 maxlen: 24
85.133.139.0/24 maxlen: 24
85.133.140.0/22 maxlen: 22
85.133.140.0/24 maxlen: 24
85.133.141.0/24 maxlen: 24
85.133.142.0/24 maxlen: 24
85.133.144.0/22 maxlen: 22
85.133.144.0/24 maxlen: 24
85.133.145.0/24 maxlen: 24
85.133.147.0/24 maxlen: 24
85.133.148.0/22 maxlen: 22
85.133.148.0/24 maxlen: 24
85.133.149.0/24 maxlen: 24
85.133.150.0/24 maxlen: 24
85.133.152.0/22 maxlen: 22
85.133.152.0/24 maxlen: 24
85.133.154.0/24 maxlen: 24
85.133.155.0/24 maxlen: 24
85.133.157.0/24 maxlen: 24
85.133.158.0/24 maxlen: 24
85.133.159.0/24 maxlen: 24
85.133.164.0/24 maxlen: 24
85.133.165.0/24 maxlen: 24
85.133.168.0/22 maxlen: 24
85.133.172.0/22 maxlen: 24
85.133.172.0/24 maxlen: 24
85.133.176.0/22 maxlen: 24
85.133.180.0/22 maxlen: 24
85.133.184.0/22 maxlen: 24
85.133.188.0/22 maxlen: 22
85.133.189.0/24 maxlen: 24
85.133.192.0/22 maxlen: 22
85.133.196.0/22 maxlen: 22
85.133.196.0/24 maxlen: 24
85.133.197.0/24 maxlen: 24
85.133.200.0/22 maxlen: 24
85.133.204.0/24 maxlen: 24
85.133.206.0/24 maxlen: 24
85.133.207.0/24 maxlen: 24
85.133.209.0/24 maxlen: 24
85.133.210.0/23 maxlen: 24
85.133.211.0/24 maxlen: 24
85.133.212.0/22 maxlen: 22
85.133.212.0/24 maxlen: 24
85.133.213.0/24 maxlen: 24
85.133.218.0/24 maxlen: 24
85.133.220.0/22 maxlen: 22
85.133.220.0/24 maxlen: 24
85.133.223.0/24 maxlen: 24
85.133.224.0/22 maxlen: 22
85.133.224.0/24 maxlen: 24
85.133.225.0/24 maxlen: 24
85.133.226.0/24 maxlen: 24
85.133.227.0/24 maxlen: 24
85.133.228.0/24 maxlen: 24
85.133.229.0/24 maxlen: 24
85.133.230.0/24 maxlen: 24
85.133.231.0/24 maxlen: 24
85.133.232.0/22 maxlen: 22
85.133.232.0/24 maxlen: 24
85.133.235.0/24 maxlen: 24
85.133.239.0/24 maxlen: 24
85.133.240.0/22 maxlen: 22
85.133.240.0/24 maxlen: 24
85.133.243.0/24 maxlen: 24
85.133.244.0/24 maxlen: 24
85.133.245.0/24 maxlen: 24
85.133.246.0/24 maxlen: 24
85.133.247.0/24 maxlen: 24
85.133.248.0/23 maxlen: 24
85.133.249.0/24 maxlen: 24
85.133.251.0/24 maxlen: 24
85.133.252.0/22 maxlen: 22
85.133.254.0/24 maxlen: 24
85.133.255.0/24 maxlen: 24
185.41.1.0/24 maxlen: 24
185.41.2.0/24 maxlen: 24
185.41.3.0/24 maxlen: 24
2a04:87c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 14 Apr 2024 17:21:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:21:ea:59:4c:70:b9:ca:af:8b:3a:5d:8e:33:fc:1e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Mar 9 06:33:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e843dd06d2d9203fcb0cf705e68bcd1927b5032e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b6:13:5e:65:b0:7b:b0:7b:46:e3:64:c6:42:
e1:47:cd:b2:dc:b4:4b:7b:b7:01:eb:48:e7:fc:c1:
24:c3:1c:2d:70:55:79:8f:11:75:60:dc:fa:5c:a8:
84:5a:a5:4d:75:ef:e2:da:83:76:3b:7a:d8:42:6a:
1c:a7:25:d2:16:6a:fd:f7:1c:db:20:99:9c:ad:59:
e5:fe:a5:27:6f:a7:dd:18:45:e7:ed:08:68:2e:ec:
0f:b6:49:a3:cf:7a:83:bf:8f:b9:b0:8d:cd:8b:3a:
bf:81:4f:fd:c7:3e:cb:bb:a8:69:7f:95:8e:16:22:
0c:45:cc:2e:f1:7e:e9:18:06:96:11:a0:4d:55:5f:
40:a0:f6:13:24:52:98:d3:91:ed:c9:47:f9:66:60:
22:44:94:50:0e:ca:a7:a7:ac:9f:33:25:85:0b:40:
e2:e6:2b:ed:6a:ca:40:a4:8e:35:78:f9:1d:7f:62:
42:d5:7f:f6:e6:f4:a9:0d:6b:77:10:30:49:33:2d:
e9:ee:f6:c4:bf:41:42:e9:42:24:f8:48:7d:45:c9:
07:b6:eb:c4:16:0b:ec:dc:76:6e:20:70:76:0a:17:
01:1b:4f:30:5e:83:5e:da:cf:dd:f5:97:bf:e5:d1:
1e:dd:57:8b:5a:3b:02:99:fe:b0:61:e2:b2:59:97:
65:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:43:DD:06:D2:D9:20:3F:CB:0C:F7:05:E6:8B:CD:19:27:B5:03:2E
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/6EPdBtLZID_LDPcF5ovNGSe1Ay4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.128.0/17
185.41.1.0-185.41.3.255
IPv6:
2a04:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
88:d1:9d:7f:13:2b:a0:5f:79:bc:4e:0d:0a:b0:55:13:05:2d:
09:4f:da:b8:aa:65:58:9b:7c:49:f3:ca:40:62:eb:88:6e:81:
4a:f1:2d:12:bc:45:15:df:3f:92:e6:a0:de:fb:5d:ee:c4:4a:
cd:f4:f3:c0:e3:37:f3:df:87:69:b7:ec:ce:b1:f7:f1:49:77:
e9:b4:b1:98:27:e3:e4:ba:2a:3e:9d:c0:d6:93:8b:4e:d4:41:
51:af:28:96:08:a8:8e:cc:63:70:0f:13:b9:6f:52:c8:d8:93:
bc:e6:e6:49:fa:7d:31:19:02:5c:6b:8e:5c:82:86:19:b1:b1:
ec:f6:77:5c:35:de:d0:0b:b7:85:29:ad:1f:c7:69:20:dd:4e:
c0:f5:27:d0:58:45:f7:41:49:56:ef:ed:6f:b9:5c:ae:84:0d:
88:75:91:84:b6:32:bd:cb:b9:ef:89:39:db:a9:6f:6a:86:e9:
00:5b:2f:29:98:23:36:a5:64:59:9c:47:97:a7:9e:ed:00:10:
8f:d7:1e:aa:0c:79:d3:7d:32:d6:d5:4c:1f:78:55:03:75:f9:
b4:4d:c7:a0:eb:6f:ae:d9:44:fc:d5:f2:80:4c:3f:d8:4d:ff:
59:f0:e7:64:ba:20:89:55:49:5d:a5:9d:c8:d6:68:b1:67:32:
fa:9d:11:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:12 2024 by rpki-client on console-fra.rpki-client.org