Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/E3TMUh44gi156r972Vt4m2WupiE.roa
File: E3TMUh44gi156r972Vt4m2WupiE.roa (raw, json)
Hash identifier: ANvW8yS3iQGt3x+iLOCPsjIKQIz8wKBso9tUa1JY/Ms=
Subject key identifier: 13:74:CC:52:1E:38:82:2D:79:EA:BF:7B:D9:5B:78:9B:65:AE:A6:21
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0191D07A2356F53DC61717939B9C5DC5A840
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/E3TMUh44gi156r972Vt4m2WupiE.roa
Signing time: Sun 08 Sep 2024 07:12:30 +0000
ROA not before: Sun 08 Sep 2024 07:12:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214526
IP address blocks: 85.133.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 03:28:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d0:7a:23:56:f5:3d:c6:17:17:93:9b:9c:5d:c5:a8:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Sep 8 07:12:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1374cc521e38822d79eabf7bd95b789b65aea621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3c:cc:0b:8a:c4:4e:01:10:d7:01:8d:94:ff:
20:58:ef:29:f6:7a:0e:3a:b2:8b:7a:f7:16:fb:05:
b1:7c:ee:a5:b8:c1:e1:aa:29:0a:39:6c:4b:5a:56:
d9:33:ca:36:bf:54:ab:e7:65:3a:f9:46:d6:5b:2c:
04:e9:04:77:0f:53:d3:94:1e:1c:c6:bc:e0:7d:1e:
08:63:d0:f5:6f:22:93:b8:03:63:c6:b4:f3:82:d5:
0a:20:f3:07:58:b6:e8:1d:d6:6b:37:15:c1:91:80:
05:0f:a3:e4:64:03:91:58:14:01:48:59:a5:35:fd:
0e:42:45:ef:20:77:2b:3f:d1:c1:ec:7c:b6:30:5c:
5a:82:84:5a:56:6c:62:a5:36:f9:6d:6f:4a:ea:d7:
cc:87:cd:2d:2d:a2:e2:f6:9d:ec:98:37:73:29:ee:
b3:d3:f2:92:ed:eb:02:64:97:5f:11:04:da:99:19:
f2:d8:03:15:31:36:40:45:77:5d:1d:ed:07:ed:c8:
57:3e:43:de:78:9c:1c:b2:c4:8e:de:b7:69:90:49:
f0:48:59:e6:4e:6d:25:73:e3:34:6c:90:f9:8a:e9:
c8:00:a6:40:b1:b3:3d:c5:fa:a5:65:d7:a7:99:07:
09:7b:18:e3:44:77:af:c9:ab:4f:b1:57:e0:02:7c:
52:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:74:CC:52:1E:38:82:2D:79:EA:BF:7B:D9:5B:78:9B:65:AE:A6:21
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/E3TMUh44gi156r972Vt4m2WupiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.224.0/24
Signature Algorithm: sha256WithRSAEncryption
44:c4:1f:b0:bd:72:49:9e:0c:72:02:31:ca:be:38:25:1b:31:
f4:18:d5:4e:3d:6a:f2:af:0d:d6:e4:21:ae:14:02:f3:30:4c:
b3:4b:36:83:1b:20:e1:37:1e:8f:f6:eb:f7:51:56:37:8c:a2:
81:3d:9b:8e:dd:7c:00:2c:2b:11:10:a4:f6:6c:89:c9:29:4a:
8e:a0:81:d6:dc:8f:5c:ce:9c:f4:ea:d1:f9:7f:7b:23:15:26:
ba:eb:cd:af:58:8e:76:98:73:41:ef:60:87:68:f6:af:97:1c:
b1:64:da:d1:b7:e6:bf:6b:e1:31:6e:47:c3:a7:73:7c:cf:7b:
6b:16:a2:ad:09:a1:04:61:ca:19:41:8a:8d:82:d3:ca:46:15:
bd:e9:00:fb:a3:16:ad:5b:bd:8f:4d:81:3c:dd:d1:57:eb:e6:
07:13:3b:c1:4d:41:9f:8a:46:02:dd:e6:ed:f3:01:7a:f2:22:
d6:27:4b:0f:06:0c:8d:30:f1:d8:06:40:69:6e:f3:2b:ae:44:
f9:ee:62:c7:e6:ce:e3:ea:a3:9a:5b:3c:a3:7b:fe:48:a1:8b:
a8:76:9d:3c:91:b3:51:f8:8e:80:88:89:4a:e6:92:0e:b5:ca:
e5:a6:59:fc:5b:9a:d9:a9:b4:0d:c2:77:e4:cd:84:ca:db:5d:
d5:0f:3f:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHQeiNW9T3GFxeTm5xdxahAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjQwOTA4MDcxMjMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzc0Y2M1MjFlMzg4MjJkNzllYWJmN2JkOTViNzg5YjY1YWVhNjIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDzMC4rETgEQ1wGNlP8gWO8p9noO
OrKLevcW+wWxfO6luMHhqikKOWxLWlbZM8o2v1Sr52U6+UbWWywE6QR3D1PTlB4c
xrzgfR4IY9D1byKTuANjxrTzgtUKIPMHWLboHdZrNxXBkYAFD6PkZAORWBQBSFml
Nf0OQkXvIHcrP9HB7Hy2MFxagoRaVmxipTb5bW9K6tfMh80tLaLi9p3smDdzKe6z
0/KS7esCZJdfEQTamRny2AMVMTZARXddHe0H7chXPkPeeJwcssSO3rdpkEnwSFnm
Tm0lc+M0bJD5iunIAKZAsbM9xfqlZdenmQcJexjjRHevyatPsVfgAnxS4wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBN0zFIeOIIteeq/e9lbeJtlrqYhMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvRTNUTVVoNDRnaTE1NnI5NzJWdDRtMld1cGlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVYXgMA0G
CSqGSIb3DQEBCwUAA4IBAQBExB+wvXJJngxyAjHKvjglGzH0GNVOPWryrw3W5CGu
FALzMEyzSzaDGyDhNx6P9uv3UVY3jKKBPZuO3XwALCsREKT2bInJKUqOoIHW3I9c
zpz06tH5f3sjFSa6682vWI52mHNB72CHaPavlxyxZNrRt+a/a+ExbkfDp3N8z3tr
FqKtCaEEYcoZQYqNgtPKRhW96QD7oxatW72PTYE83dFX6+YHEzvBTUGfikYC3ebt
8wF68iLWJ0sPBgyNMPHYBkBpbvMrrkT57mLH5s7j6qOaWzyje/5IoYuodp08kbNR
+I6AiIlK5pIOtcrlpln8W5rZqbQNwnfkzYTK213VDz+P
Generated at Wed Sep 11 04:50:14 2024 by rpki-client on console-fra.rpki-client.org