Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Aa71OMzbVBGHpdev8v1qddmIg8Q.roa
File: Aa71OMzbVBGHpdev8v1qddmIg8Q.roa (raw, json)
Hash identifier: pMbrPoCe+XjD1bKJmlpRsUtYXB/5wZ7zi3hTuOaXhkc=
Subject key identifier: 01:AE:F5:38:CC:DB:54:11:87:A5:D7:AF:F2:FD:6A:75:D9:88:83:C4
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0186FE1F91A3E6B5AECE33C0B2850E7B1EEA
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Aa71OMzbVBGHpdev8v1qddmIg8Q.roa
Signing time: Mon 20 Mar 2023 08:25:27 +0000
ROA not before: Mon 20 Mar 2023 08:25:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52209
IP address blocks: 85.133.227.0/24 maxlen: 24
85.133.228.0/24 maxlen: 24
85.133.233.0/24 maxlen: 24
85.133.237.0/24 maxlen: 24
85.133.238.0/24 maxlen: 24
85.133.234.0/24 maxlen: 24
85.133.241.0/24 maxlen: 24
85.133.242.0/24 maxlen: 24
85.133.250.0/24 maxlen: 24
85.133.174.0/24 maxlen: 24
85.133.194.0/24 maxlen: 24
85.133.199.0/24 maxlen: 24
85.133.205.0/24 maxlen: 24
85.133.208.0/24 maxlen: 24
85.133.215.0/24 maxlen: 24
85.133.216.0/24 maxlen: 24
85.133.219.0/24 maxlen: 24
85.133.221.0/24 maxlen: 24
85.133.132.0/24 maxlen: 24
85.133.135.0/24 maxlen: 24
85.133.143.0/24 maxlen: 24
85.133.151.0/24 maxlen: 24
85.133.153.0/24 maxlen: 24
85.133.166.0/24 maxlen: 24
85.133.160.0/24 maxlen: 24
85.133.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 09:40:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:1f:91:a3:e6:b5:ae:ce:33:c0:b2:85:0e:7b:1e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Mar 20 08:25:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01aef538ccdb541187a5d7aff2fd6a75d98883c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:69:d4:c0:31:26:31:73:d4:e0:09:b1:7a:37:
bc:2c:f9:9c:fb:f5:33:20:13:a9:ba:c0:9b:a1:bc:
69:11:39:99:ef:17:b0:f7:b6:a7:c5:84:3e:81:8f:
99:70:df:17:78:4c:dc:e7:0a:9f:67:e6:de:3d:0b:
61:87:35:44:4f:a0:1f:38:70:c7:ae:e3:93:c2:2a:
9e:ae:f0:c7:33:dc:e1:36:33:4f:80:c3:c3:6f:a8:
61:85:f1:53:84:f2:d4:c3:63:4c:9b:ac:9e:34:57:
e8:b0:37:c6:9d:e5:83:7b:2f:23:60:36:f5:38:eb:
3c:21:81:09:e6:60:78:dc:8c:2b:36:cf:8e:e4:76:
ca:50:f5:6e:78:9c:c3:08:98:ec:94:f6:cb:dc:7c:
9f:6a:5d:0a:61:f0:f2:74:c7:cb:b1:f7:c7:51:94:
76:b8:82:9b:5a:da:87:5f:72:8e:a6:33:a4:7f:76:
73:21:ac:f1:3e:ef:45:1f:c4:71:cc:cf:25:72:7e:
09:f9:37:db:cd:df:93:7a:88:6e:08:42:71:0d:78:
f6:04:2d:ad:1b:e3:6c:62:c9:7b:ea:a8:68:7c:82:
93:78:a5:a0:7f:2a:c8:52:c1:50:1a:04:50:a0:aa:
f8:64:1f:00:2a:7b:24:25:3b:60:e1:18:1f:9f:4a:
17:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:AE:F5:38:CC:DB:54:11:87:A5:D7:AF:F2:FD:6A:75:D9:88:83:C4
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Aa71OMzbVBGHpdev8v1qddmIg8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.132.0/24
85.133.135.0/24
85.133.143.0/24
85.133.151.0/24
85.133.153.0/24
85.133.160.0/23
85.133.166.0/24
85.133.174.0/24
85.133.194.0/24
85.133.199.0/24
85.133.205.0/24
85.133.208.0/24
85.133.215.0-85.133.216.255
85.133.219.0/24
85.133.221.0/24
85.133.227.0-85.133.228.255
85.133.233.0-85.133.234.255
85.133.237.0-85.133.238.255
85.133.241.0-85.133.242.255
85.133.250.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:f4:99:22:07:61:bc:3f:6c:b5:d9:d4:fa:9c:87:77:0e:99:
8b:08:59:5d:5b:08:41:14:b4:f9:7f:a9:05:ae:b5:7d:f0:b3:
4d:c4:e6:ff:05:45:ca:69:7e:61:33:82:51:46:41:2f:fc:0f:
1e:2f:21:49:91:99:d7:cf:7c:49:8c:5a:a6:ff:0e:82:21:63:
a6:94:24:3f:39:38:67:94:4e:3a:85:20:6c:28:70:32:bd:27:
c1:c7:00:6a:88:12:b6:4a:89:97:e5:8b:70:14:7e:b7:a8:c5:
5b:c0:71:ad:84:70:b9:7f:25:1c:7f:0e:23:5c:9a:81:0e:40:
4c:d9:76:d0:6f:dd:51:c6:8a:a4:db:29:b4:c7:f9:c7:da:ef:
c1:b4:bd:9f:c2:55:4d:fb:37:da:ed:ec:da:fd:4f:ac:b0:12:
dc:d4:52:dd:b1:0a:7b:43:05:99:07:02:49:a9:55:ce:98:04:
6b:86:23:f2:53:75:cc:dc:fa:ea:04:e9:0e:a4:db:f8:00:f9:
cb:55:1e:0d:e7:67:10:98:2b:f1:f6:0b:c4:13:e8:be:d4:21:
5d:c3:25:c5:20:38:6c:15:b8:02:61:39:c7:83:63:8b:f4:56:
98:4a:d1:a2:25:f5:e1:0b:fb:b3:fc:b9:0f:92:86:57:9e:24:
2f:8b:16:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:12 2024 by rpki-client on console-fra.rpki-client.org