Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/FGYsTWXAev2Ram5lYdsJf2fHZWQ.roa
File: FGYsTWXAev2Ram5lYdsJf2fHZWQ.roa (raw, json)
Hash identifier: InzevbRrKEMlN6e3u4rLBqCGhS1PI0msH1EsvpYcUyo=
Subject key identifier: 14:66:2C:4D:65:C0:7A:FD:91:6A:6E:65:61:DB:09:7F:67:C7:65:64
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018906741467581BDCD2D49D434E8B05AD2E
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/FGYsTWXAev2Ram5lYdsJf2fHZWQ.roa
Signing time: Thu 29 Jun 2023 09:20:17 +0000
ROA not before: Thu 29 Jun 2023 09:20:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21082
IP address blocks: 85.133.221.0/24 maxlen: 24
85.133.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jul 2023 10:49:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:06:74:14:67:58:1b:dc:d2:d4:9d:43:4e:8b:05:ad:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jun 29 09:20:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14662c4d65c07afd916a6e6561db097f67c76564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bd:27:d3:43:15:ad:65:fb:0c:33:03:27:4c:
a0:25:f9:9b:53:16:e8:85:3f:65:1d:ec:6b:b8:1d:
ee:b3:d0:2c:2e:ed:1e:6a:1c:4b:d6:50:b3:38:91:
e7:2c:2c:39:c9:3f:6e:9d:a4:d4:de:fb:59:2f:54:
8e:28:c1:b7:a4:6b:88:dc:ea:c9:64:4b:86:69:3b:
86:ba:de:2d:8d:83:ca:b1:1e:c7:16:3e:fe:5b:f6:
2f:61:d3:bb:b8:ac:40:c2:5e:d9:4f:91:93:81:ad:
8a:31:98:e3:df:30:50:66:34:c3:34:16:23:84:54:
d1:99:ca:ce:07:94:6f:26:ae:cc:5e:69:a4:99:91:
29:32:97:16:94:d6:95:0c:d2:92:9f:1f:53:26:c4:
20:0e:34:8a:dd:0a:1a:87:de:49:ac:3a:38:bc:2d:
49:0b:7c:95:51:3c:86:a9:57:8d:c5:35:a0:02:6b:
67:5a:6c:10:d3:07:9d:32:b7:f5:8b:13:0e:37:12:
22:d8:da:6d:2e:3d:61:e7:5a:59:b7:eb:7e:e6:7b:
70:68:19:94:4d:8f:e8:66:5a:fc:f4:d9:2e:e3:03:
f0:16:09:40:40:b0:11:8c:ac:90:7c:d4:78:93:39:
c9:76:7b:79:8a:10:99:6c:e5:5d:58:44:b7:36:57:
54:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:66:2C:4D:65:C0:7A:FD:91:6A:6E:65:61:DB:09:7F:67:C7:65:64
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/FGYsTWXAev2Ram5lYdsJf2fHZWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.166.0/24
85.133.221.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:29:99:70:44:ac:4a:be:bd:2a:ab:82:91:28:f6:d4:93:5d:
83:7d:00:65:12:25:f6:2c:3b:5f:b4:89:44:dc:29:2f:0c:fc:
66:30:2d:d2:e9:c6:1a:9b:ca:c0:df:a4:a5:2e:22:b3:23:c8:
e4:3b:c7:84:3a:12:00:87:db:5b:3a:0a:b0:c9:f9:e2:69:3b:
01:4a:a1:20:81:14:04:2f:34:66:85:14:ee:fd:49:bd:12:3d:
21:25:10:d3:e1:80:02:db:f8:03:0f:60:ab:d6:18:62:d6:33:
78:a4:f9:7b:f4:a2:a9:31:c0:5b:d9:e0:f5:01:92:c5:a5:e3:
33:54:0b:ea:6b:d7:17:f0:3a:d8:0d:69:83:95:ca:b2:08:29:
0a:93:ac:24:ac:09:af:6a:7d:6c:42:d2:88:eb:0e:f1:6c:99:
19:86:43:2e:b9:7b:c9:e7:c7:22:51:e5:93:c0:41:0b:30:82:
97:1e:e7:02:72:cd:16:28:13:f6:46:84:f2:1a:70:c4:3f:68:
e4:21:9b:40:b7:2e:e3:e0:8e:95:de:55:6e:a2:91:2a:a5:33:
f5:de:d8:31:51:ab:26:f0:f4:22:db:b3:79:4f:a8:0d:08:b5:
5c:63:b1:1a:2b:2e:7e:58:c7:78:f9:7c:5f:3e:9c:35:52:2a:
ef:50:f7:5f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYkGdBRnWBvc0tSdQ06LBa0uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMwNjI5MDkyMDE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDY2MmM0ZDY1YzA3YWZkOTE2YTZlNjU2MWRiMDk3ZjY3Yzc2NTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2L0n00MVrWX7DDMDJ0ygJfmbUxbo
hT9lHexruB3us9AsLu0eahxL1lCzOJHnLCw5yT9unaTU3vtZL1SOKMG3pGuI3OrJ
ZEuGaTuGut4tjYPKsR7HFj7+W/YvYdO7uKxAwl7ZT5GTga2KMZjj3zBQZjTDNBYj
hFTRmcrOB5RvJq7MXmmkmZEpMpcWlNaVDNKSnx9TJsQgDjSK3Qoah95JrDo4vC1J
C3yVUTyGqVeNxTWgAmtnWmwQ0wedMrf1ixMONxIi2NptLj1h51pZt+t+5ntwaBmU
TY/oZlr89Nku4wPwFglAQLARjKyQfNR4kznJdnt5ihCZbOVdWES3NldU4QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBRmLE1lwHr9kWpuZWHbCX9nx2VkMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvRkdZc1RXWEFldjJSYW01bFlkc0pmMmZIWldRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVYWmAwQA
VYXdMA0GCSqGSIb3DQEBCwUAA4IBAQCKKZlwRKxKvr0qq4KRKPbUk12DfQBlEiX2
LDtftIlE3CkvDPxmMC3S6cYam8rA36SlLiKzI8jkO8eEOhIAh9tbOgqwyfniaTsB
SqEggRQELzRmhRTu/Um9Ej0hJRDT4YAC2/gDD2Cr1hhi1jN4pPl79KKpMcBb2eD1
AZLFpeMzVAvqa9cX8DrYDWmDlcqyCCkKk6wkrAmvan1sQtKI6w7xbJkZhkMuuXvJ
58ciUeWTwEELMIKXHucCcs0WKBP2RoTyGnDEP2jkIZtAty7j4I6V3lVuopEqpTP1
3tgxUasm8PQi27N5T6gNCLVcY7EaKy5+WMd4+XxfPpw1UirvUPdf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:12 2024 by rpki-client on console-fra.rpki-client.org