Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/7lCoL4GVnbK3_7h6n4FaaDllAgk.roa
File: 7lCoL4GVnbK3_7h6n4FaaDllAgk.roa (raw, json)
Hash identifier: +QnYvoHiKqQc8oemnnMbLEHyMch23s8PuWrjHXOis/Q=
Subject key identifier: EE:50:A8:2F:81:95:9D:B2:B7:FF:B8:7A:9F:81:5A:68:39:65:02:09
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018A8A227B02AE30DE8AAE1D1518747111E9
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/7lCoL4GVnbK3_7h6n4FaaDllAgk.roa
Signing time: Tue 12 Sep 2023 16:03:50 +0000
ROA not before: Tue 12 Sep 2023 16:03:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211056
IP address blocks: 85.133.194.0/24 maxlen: 24
85.133.216.0/24 maxlen: 24
85.133.238.0/24 maxlen: 24
85.133.237.0/24 maxlen: 24
85.133.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Oct 2023 07:18:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8a:22:7b:02:ae:30:de:8a:ae:1d:15:18:74:71:11:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Sep 12 16:03:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee50a82f81959db2b7ffb87a9f815a6839650209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c4:5b:fb:b4:51:37:f3:c0:26:51:b4:9a:6f:
04:f1:42:d4:d1:df:6f:ee:a0:56:af:59:99:23:d0:
8b:7b:41:ec:45:3d:e4:f9:bb:90:6c:c1:a7:db:d0:
58:4a:6b:ec:29:89:c4:c9:97:87:e4:3a:6e:6b:25:
d8:f4:d1:5a:e6:59:ed:31:3a:af:3b:fd:01:06:ce:
1f:d7:99:b3:9f:eb:b7:4c:31:80:87:b9:a6:5c:4a:
42:6f:8b:fd:13:fa:2a:e4:c0:8e:00:36:e3:93:6b:
30:43:8d:f7:f0:7e:15:79:2a:ba:f4:ba:01:43:69:
c3:d3:15:9f:f0:bb:4a:69:9b:fa:9e:d2:c1:aa:8b:
2c:8a:8e:b6:9a:c0:4b:59:55:08:4e:91:4e:32:a0:
ad:9c:c7:c1:ad:a5:de:d9:f5:56:85:fa:cc:8f:1b:
29:10:00:f1:e4:3e:2b:48:95:91:93:a8:57:37:e1:
ab:e3:6d:5d:09:8d:1d:3c:c9:e8:57:75:f2:f9:a6:
ea:cf:6c:fd:a5:2a:7e:75:db:ed:71:2d:13:8c:a9:
fe:cd:c6:54:b5:40:bd:97:04:93:96:67:54:c0:86:
67:b6:71:8d:71:7c:41:a2:08:5e:7d:bf:f3:f3:58:
e8:cc:c0:97:7b:ce:f3:58:39:8c:39:ba:c3:1c:33:
31:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:50:A8:2F:81:95:9D:B2:B7:FF:B8:7A:9F:81:5A:68:39:65:02:09
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/7lCoL4GVnbK3_7h6n4FaaDllAgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.194.0/24
85.133.216.0/24
85.133.237.0-85.133.238.255
85.133.253.0/24
Signature Algorithm: sha256WithRSAEncryption
52:f1:0c:e9:2a:e9:94:07:30:3d:12:cf:c8:77:d7:61:f7:17:
85:2f:1c:db:e7:d6:d1:eb:f5:85:fe:58:66:38:9b:82:40:56:
02:0b:b7:c4:5e:97:5b:ce:d8:ee:39:ab:ee:0b:70:43:c0:9e:
89:a4:6a:73:16:7a:49:6f:16:7c:7a:bd:6b:6f:55:b6:5e:64:
ab:e6:d9:ae:4c:ca:94:a5:57:f6:08:44:86:e6:06:5a:ed:92:
8e:e3:1a:08:46:4b:2d:9b:02:d6:22:64:c7:4a:38:c4:ea:a8:
95:df:9a:fc:c9:76:42:a3:54:6f:c6:33:c3:5c:9a:71:d3:62:
36:69:ce:c7:8c:e3:76:fe:f4:fd:a6:f8:eb:1c:ba:f2:9c:16:
62:8b:6c:c6:2c:74:54:72:72:09:0b:9b:3b:ab:cf:18:78:8d:
25:0d:88:18:14:f3:23:46:d9:b1:10:cc:1e:75:b5:bd:09:ce:
f5:c9:3c:d0:bc:56:13:4d:31:52:2a:e9:3d:67:af:38:7b:e2:
42:91:33:f0:eb:08:2c:50:28:90:4d:57:a3:67:b7:38:0d:a9:
4b:28:5a:fa:22:63:04:7d:5d:bd:c9:23:5e:45:34:81:8a:55:
4c:b5:79:d7:6d:41:3e:e5:80:71:6d:a8:d3:43:d8:89:08:89:
f3:00:dc:8e
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYqKInsCrjDeiq4dFRh0cRHpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMwOTEyMTYwMzUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTUwYTgyZjgxOTU5ZGIyYjdmZmI4N2E5ZjgxNWE2ODM5NjUwMjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8Rb+7RRN/PAJlG0mm8E8ULU0d9v
7qBWr1mZI9CLe0HsRT3k+buQbMGn29BYSmvsKYnEyZeH5DpuayXY9NFa5lntMTqv
O/0BBs4f15mzn+u3TDGAh7mmXEpCb4v9E/oq5MCOADbjk2swQ4338H4VeSq69LoB
Q2nD0xWf8LtKaZv6ntLBqossio62msBLWVUITpFOMqCtnMfBraXe2fVWhfrMjxsp
EADx5D4rSJWRk6hXN+Gr421dCY0dPMnoV3Xy+abqz2z9pSp+ddvtcS0TjKn+zcZU
tUC9lwSTlmdUwIZntnGNcXxBoghefb/z81jozMCXe87zWDmMObrDHDMxawIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFO5QqC+BlZ2yt/+4ep+BWmg5ZQIJMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvN2xDb0w0R1ZuYkszXzdoNm40RmFhRGxsQWdrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAVYXCAwQA
VYXYMAwDBABVhe0DBABVhe4DBABVhf0wDQYJKoZIhvcNAQELBQADggEBAFLxDOkq
6ZQHMD0Sz8h312H3F4UvHNvn1tHr9YX+WGY4m4JAVgILt8Rel1vO2O45q+4LcEPA
nomkanMWeklvFnx6vWtvVbZeZKvm2a5MypSlV/YIRIbmBlrtko7jGghGSy2bAtYi
ZMdKOMTqqJXfmvzJdkKjVG/GM8NcmnHTYjZpzseM43b+9P2m+OscuvKcFmKLbMYs
dFRycgkLmzurzxh4jSUNiBgU8yNG2bEQzB51tb0JzvXJPNC8VhNNMVIq6T1nrzh7
4kKRM/DrCCxQKJBNV6NntzgNqUsoWvoiYwR9Xb3JI15FNIGKVUy1eddtQT7lgHFt
qNND2IkIifMA3I4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org