Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/DGHIR9oV8ZrCsyD-qmI4uEeO19g.roa
File: DGHIR9oV8ZrCsyD-qmI4uEeO19g.roa (raw, json)
Hash identifier: AnkngnTS+NAGTA/m2QiTXhgph6hBAhygutVIpl74AVQ=
Subject key identifier: 0C:61:C8:47:DA:15:F1:9A:C2:B3:20:FE:AA:62:38:B8:47:8E:D7:D8
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0189E9587FDDC26BDA166C57AE0B6575610D
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/DGHIR9oV8ZrCsyD-qmI4uEeO19g.roa
Signing time: Sat 12 Aug 2023 10:43:58 +0000
ROA not before: Sat 12 Aug 2023 10:43:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39074
IP address blocks: 85.133.231.0/24 maxlen: 24
85.133.232.0/24 maxlen: 24
85.133.232.0/22 maxlen: 22
85.133.229.0/24 maxlen: 24
85.133.230.0/24 maxlen: 24
85.133.239.0/24 maxlen: 24
85.133.240.0/24 maxlen: 24
85.133.235.0/24 maxlen: 24
85.133.240.0/22 maxlen: 22
85.133.245.0/24 maxlen: 24
85.133.246.0/24 maxlen: 24
85.133.243.0/24 maxlen: 24
85.133.244.0/24 maxlen: 24
85.133.247.0/24 maxlen: 24
85.133.248.0/23 maxlen: 24
85.133.249.0/24 maxlen: 24
85.133.251.0/24 maxlen: 24
85.133.252.0/22 maxlen: 22
85.133.254.0/24 maxlen: 24
85.133.255.0/24 maxlen: 24
85.133.176.0/22 maxlen: 24
85.133.178.0/24 maxlen: 24
85.133.184.0/22 maxlen: 24
85.133.180.0/22 maxlen: 24
85.133.189.0/24 maxlen: 24
85.133.188.0/22 maxlen: 22
85.133.192.0/22 maxlen: 22
85.133.196.0/24 maxlen: 24
85.133.197.0/24 maxlen: 24
85.133.196.0/22 maxlen: 22
85.133.205.0/24 maxlen: 24
85.133.203.0/24 maxlen: 24
85.133.204.0/24 maxlen: 24
85.133.200.0/22 maxlen: 22
85.133.206.0/24 maxlen: 24
85.133.200.0/24 maxlen: 24
85.133.201.0/24 maxlen: 24
85.133.204.0/22 maxlen: 22
85.133.202.0/24 maxlen: 24
85.133.210.0/23 maxlen: 24
85.133.211.0/24 maxlen: 24
85.133.212.0/24 maxlen: 24
85.133.213.0/24 maxlen: 24
85.133.207.0/24 maxlen: 24
85.133.212.0/22 maxlen: 22
85.133.209.0/24 maxlen: 24
85.133.217.0/24 maxlen: 24
85.133.219.0/24 maxlen: 24
85.133.215.0/24 maxlen: 24
85.133.220.0/24 maxlen: 24
85.133.220.0/22 maxlen: 22
85.133.225.0/24 maxlen: 24
85.133.226.0/24 maxlen: 24
85.133.221.0/24 maxlen: 24
85.133.223.0/24 maxlen: 24
85.133.224.0/22 maxlen: 22
85.133.130.0/24 maxlen: 24
85.133.131.0/24 maxlen: 24
85.133.128.0/17 maxlen: 24
85.133.128.0/24 maxlen: 24
85.133.129.0/24 maxlen: 24
85.133.128.0/22 maxlen: 22
85.133.134.0/24 maxlen: 24
85.133.136.0/24 maxlen: 24
85.133.133.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
85.133.138.0/24 maxlen: 24
85.133.139.0/24 maxlen: 24
85.133.144.0/22 maxlen: 22
85.133.144.0/24 maxlen: 24
85.133.145.0/24 maxlen: 24
85.133.140.0/22 maxlen: 22
85.133.141.0/24 maxlen: 24
85.133.142.0/24 maxlen: 24
85.133.140.0/24 maxlen: 24
85.133.148.0/24 maxlen: 24
85.133.149.0/24 maxlen: 24
85.133.150.0/24 maxlen: 24
85.133.148.0/22 maxlen: 22
85.133.147.0/24 maxlen: 24
85.133.152.0/22 maxlen: 22
85.133.152.0/24 maxlen: 24
85.133.158.0/24 maxlen: 24
85.133.159.0/24 maxlen: 24
85.133.155.0/24 maxlen: 24
85.133.157.0/24 maxlen: 24
85.133.154.0/24 maxlen: 24
85.133.162.0/24 maxlen: 24
85.133.163.0/24 maxlen: 24
85.133.164.0/24 maxlen: 24
85.133.160.0/24 maxlen: 24
85.133.161.0/24 maxlen: 24
85.133.165.0/24 maxlen: 24
85.133.172.0/24 maxlen: 24
85.133.172.0/22 maxlen: 24
85.133.168.0/22 maxlen: 24
185.41.0.0/24 maxlen: 24
185.41.1.0/24 maxlen: 24
185.41.2.0/24 maxlen: 24
185.41.3.0/24 maxlen: 24
2a04:87c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 15 Aug 2023 07:57:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e9:58:7f:dd:c2:6b:da:16:6c:57:ae:0b:65:75:61:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Aug 12 10:43:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c61c847da15f19ac2b320feaa6238b8478ed7d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4e:9c:48:f1:90:d0:cf:32:87:f6:91:d1:7e:
a6:c3:09:aa:44:3c:ed:55:17:81:e1:f3:1d:01:f2:
58:e7:f1:9d:5b:bb:4e:55:69:f5:57:25:a9:23:51:
41:62:d6:66:78:f6:2d:95:fb:a8:66:73:fe:27:bc:
f5:3c:5e:b1:20:97:d2:aa:8d:f6:c1:70:92:74:ad:
7f:db:78:21:0d:5d:0c:cc:2d:e5:c3:68:44:d2:70:
67:b6:ea:f5:6e:81:0b:3f:21:bb:81:df:73:a6:c1:
ad:f3:9a:d5:8c:64:bb:b3:f1:50:e1:23:51:1c:a8:
58:23:40:2b:04:22:dc:0a:bc:c8:6c:1d:d6:81:a0:
c8:99:20:74:74:bf:fe:5b:5c:a7:af:db:cb:83:f1:
54:97:00:b7:6f:86:aa:75:19:f8:27:69:bf:b4:f6:
22:7a:62:d4:06:20:22:fd:6d:7b:d4:59:d6:94:6d:
19:26:48:b0:2b:a8:4c:d5:73:9c:c6:d1:ad:f4:8d:
15:ce:c8:13:3e:88:af:de:8b:7b:ab:9e:b5:16:40:
a8:c0:6d:4e:34:3c:59:dc:68:39:67:98:02:90:84:
1e:a1:28:e4:2e:93:48:f5:ef:61:e0:e8:b0:3c:6c:
a2:89:bc:7c:38:25:1f:10:f1:98:a8:81:b0:45:1f:
6d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:61:C8:47:DA:15:F1:9A:C2:B3:20:FE:AA:62:38:B8:47:8E:D7:D8
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/DGHIR9oV8ZrCsyD-qmI4uEeO19g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.128.0/17
185.41.0.0/22
IPv6:
2a04:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
40:1c:6a:93:93:e3:68:95:89:1a:c9:99:37:34:40:24:02:f5:
fe:de:07:7a:95:32:21:a4:f3:9a:17:bf:17:ea:fd:8e:8d:6d:
a8:32:84:75:d7:67:93:c7:e4:8d:8f:df:a2:82:3d:a4:61:7b:
d1:b0:2e:6a:dd:1b:ec:8a:88:1f:03:39:b5:dc:7f:cf:fb:78:
79:3f:8c:77:b2:66:5e:d6:f5:38:0a:58:ba:9e:6b:be:73:d1:
ae:83:e1:d0:94:24:6f:ab:5d:a5:4e:fb:43:2e:de:b6:1c:84:
41:c9:98:d6:47:92:cc:e5:10:43:24:da:92:51:62:71:70:72:
b7:0b:aa:27:01:8c:63:6d:f0:6b:2b:71:34:c4:58:c2:67:e6:
02:b0:e1:26:55:8e:27:bb:9b:ba:5a:7a:62:87:df:11:98:09:
40:9c:fb:02:ef:bc:68:00:bf:76:34:f8:f0:e7:35:83:56:59:
b4:ab:3c:6f:ef:63:a2:56:12:e4:40:f8:86:4f:25:f2:90:5f:
32:22:ec:74:69:5f:6a:db:2e:b9:b9:cd:00:15:04:96:09:b1:
02:eb:84:86:71:b0:0a:07:1c:49:0f:a8:fb:50:c0:ca:b3:85:
29:1a:81:ef:71:e9:79:48:a1:f7:01:cf:a6:26:7f:84:84:fe:
19:ee:cd:9c
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYnpWH/dwmvaFmxXrgtldWENMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMwODEyMTA0MzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzYxYzg0N2RhMTVmMTlhYzJiMzIwZmVhYTYyMzhiODQ3OGVkN2Q4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtk6cSPGQ0M8yh/aR0X6mwwmqRDzt
VReB4fMdAfJY5/GdW7tOVWn1VyWpI1FBYtZmePYtlfuoZnP+J7z1PF6xIJfSqo32
wXCSdK1/23ghDV0MzC3lw2hE0nBntur1boELPyG7gd9zpsGt85rVjGS7s/FQ4SNR
HKhYI0ArBCLcCrzIbB3WgaDImSB0dL/+W1ynr9vLg/FUlwC3b4aqdRn4J2m/tPYi
emLUBiAi/W171FnWlG0ZJkiwK6hM1XOcxtGt9I0VzsgTPoiv3ot7q561FkCowG1O
NDxZ3Gg5Z5gCkIQeoSjkLpNI9e9h4OiwPGyiibx8OCUfEPGYqIGwRR9tQwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFAxhyEfaFfGawrMg/qpiOLhHjtfYMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvREdISVI5b1Y4WnJDc3lELXFtSTR1RWVPMTlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQHVYWAAwQC
uSkAMA0EAgACMAcDBQMqBIfAMA0GCSqGSIb3DQEBCwUAA4IBAQBAHGqTk+NolYka
yZk3NEAkAvX+3gd6lTIhpPOaF78X6v2OjW2oMoR112eTx+SNj9+igj2kYXvRsC5q
3RvsiogfAzm13H/P+3h5P4x3smZe1vU4Cli6nmu+c9Gug+HQlCRvq12lTvtDLt62
HIRByZjWR5LM5RBDJNqSUWJxcHK3C6onAYxjbfBrK3E0xFjCZ+YCsOEmVY4nu5u6
Wnpih98RmAlAnPsC77xoAL92NPjw5zWDVlm0qzxv72OiVhLkQPiGTyXykF8yIux0
aV9q2y65uc0AFQSWCbEC64SGcbAKBxxJD6j7UMDKs4UpGoHvcel5SKH3Ac+mJn+E
hP4Z7s2c
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org