Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/6t7Y_eFf2HkSTWTJozAAOCPB38Y.roa
File: 6t7Y_eFf2HkSTWTJozAAOCPB38Y.roa (raw, json)
Hash identifier: K4Gr/p/ND9Xar/+siMEf5ZGrq5tXuvIPERsaJ+JhaNY=
Subject key identifier: EA:DE:D8:FD:E1:5F:D8:79:12:4D:64:C9:A3:30:00:38:23:C1:DF:C6
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01940277967B70B08D88694CC0EB268192FE
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/6t7Y_eFf2HkSTWTJozAAOCPB38Y.roa
Signing time: Thu 26 Dec 2024 10:16:19 +0000
ROA not before: Thu 26 Dec 2024 10:16:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214088
IP address blocks: 85.133.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:02:77:96:7b:70:b0:8d:88:69:4c:c0:eb:26:81:92:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Dec 26 10:16:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eaded8fde15fd879124d64c9a330003823c1dfc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ec:75:12:0d:2b:27:9d:34:34:7b:49:97:94:
95:6b:ea:99:3f:0e:6c:b2:89:53:dc:83:04:4c:63:
e8:17:39:62:09:a7:0c:39:42:f4:ba:4b:e4:7b:18:
b3:27:e8:9a:d9:c9:54:8d:5e:d4:b0:3a:d4:73:af:
b0:a5:c2:96:8d:b3:d7:69:ba:b0:3d:eb:9e:4f:c8:
b3:c6:4a:b7:61:f7:36:e7:0c:cc:cc:23:47:13:f1:
cc:80:1d:73:f2:12:4a:d9:7e:7a:f6:75:8a:f7:5a:
9c:52:f9:54:c6:52:04:76:71:17:73:29:59:ac:77:
fe:b0:25:8d:7b:ab:71:b1:bc:ab:aa:62:d4:ac:11:
87:e2:e7:ac:03:2b:54:b7:66:bf:90:be:d7:ac:2d:
e3:35:bc:72:21:da:7e:3c:3d:82:a8:d7:55:9d:fa:
df:be:e3:4d:9b:e3:50:ba:39:e6:b4:c2:18:7b:fe:
5b:ac:3f:a2:db:2d:5b:29:0e:b5:20:ca:cb:23:19:
5a:80:f1:22:20:09:c3:6a:7b:f5:ca:f8:48:f6:a4:
ae:ce:ed:2e:95:a7:b7:ec:95:68:5c:90:22:52:5d:
0a:3d:92:a8:a0:ec:e2:aa:c2:08:55:e8:b0:9d:00:
eb:a4:2f:f8:a7:93:16:c1:cc:c9:21:40:d7:3d:3c:
e2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:DE:D8:FD:E1:5F:D8:79:12:4D:64:C9:A3:30:00:38:23:C1:DF:C6
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/6t7Y_eFf2HkSTWTJozAAOCPB38Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.233.0/24
Signature Algorithm: sha256WithRSAEncryption
02:75:8e:a8:c0:7d:75:2e:60:4a:d6:80:cb:b8:b6:2a:ca:96:
f2:bf:7c:46:8b:bc:7a:dc:29:42:f2:d9:e9:1c:f4:ca:1f:ba:
44:04:5a:12:c3:7b:83:db:80:e4:3f:91:58:e7:36:ff:f7:4b:
58:cd:4f:82:1d:18:43:e6:24:65:87:96:c4:0c:c0:78:12:9b:
3b:9b:c0:12:32:9d:35:30:24:c4:08:9f:8b:22:c2:f2:d3:f8:
94:21:2c:15:84:df:3c:19:7f:7c:52:ab:5e:84:48:83:14:a5:
df:b9:8c:cb:10:61:54:49:63:a5:08:87:77:90:68:24:38:14:
c8:82:8a:07:f0:90:36:84:ce:e1:19:c3:2d:38:47:f6:64:74:
58:47:89:37:33:21:c4:3b:64:7e:6d:7c:21:3f:18:11:4e:63:
cd:67:d2:59:7f:81:e3:f2:10:a4:cd:cb:61:97:71:af:ea:fd:
f0:74:70:df:5d:8f:a9:e5:83:e0:46:73:f3:16:f7:f2:a5:92:
4c:db:d1:9f:72:ef:ad:52:3d:54:dd:9a:b5:7e:ca:ca:bd:54:
07:b6:48:e8:62:7c:80:d8:86:6a:90:f6:a4:9e:4e:5a:4e:b1:
86:d2:75:ec:44:02:66:2e:8b:d7:20:42:98:e7:9f:8c:07:5d:
df:c7:e6:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQCd5Z7cLCNiGlMwOsmgZL+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjQxMjI2MTAxNjE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYWRlZDhmZGUxNWZkODc5MTI0ZDY0YzlhMzMwMDAzODIzYzFkZmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+x1Eg0rJ500NHtJl5SVa+qZPw5s
solT3IMETGPoFzliCacMOUL0ukvkexizJ+ia2clUjV7UsDrUc6+wpcKWjbPXabqw
PeueT8izxkq3Yfc25wzMzCNHE/HMgB1z8hJK2X569nWK91qcUvlUxlIEdnEXcylZ
rHf+sCWNe6txsbyrqmLUrBGH4uesAytUt2a/kL7XrC3jNbxyIdp+PD2CqNdVnfrf
vuNNm+NQujnmtMIYe/5brD+i2y1bKQ61IMrLIxlagPEiIAnDanv1yvhI9qSuzu0u
lae37JVoXJAiUl0KPZKooOziqsIIVeiwnQDrpC/4p5MWwczJIUDXPTziAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOre2P3hX9h5Ek1kyaMwADgjwd/GMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvNnQ3WV9lRmYySGtTVFdUSm96QUFPQ1BCMzhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVYXpMA0G
CSqGSIb3DQEBCwUAA4IBAQACdY6owH11LmBK1oDLuLYqypbyv3xGi7x63ClC8tnp
HPTKH7pEBFoSw3uD24DkP5FY5zb/90tYzU+CHRhD5iRlh5bEDMB4Eps7m8ASMp01
MCTECJ+LIsLy0/iUISwVhN88GX98UqtehEiDFKXfuYzLEGFUSWOlCId3kGgkOBTI
gooH8JA2hM7hGcMtOEf2ZHRYR4k3MyHEO2R+bXwhPxgRTmPNZ9JZf4Hj8hCkzcth
l3Gv6v3wdHDfXY+p5YPgRnPzFvfypZJM29Gfcu+tUj1U3Zq1fsrKvVQHtkjoYnyA
2IZqkPaknk5aTrGG0nXsRAJmLovXIEKY55+MB13fx+YG
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:28:17 2025 by rpki-client