Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/R8oGIW3TRsQRnbRRJJPdhJMerxo.roa
File: R8oGIW3TRsQRnbRRJJPdhJMerxo.roa (raw, json)
Hash identifier: FmI+ObfZRpcoGO5KYrKPQfTz/BH74GCMNRb46NMm1iY=
Subject key identifier: 47:CA:06:21:6D:D3:46:C4:11:9D:B4:51:24:93:DD:84:93:1E:AF:1A
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018CF2FEE80B445929B40CAE6604391DD0EA
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/R8oGIW3TRsQRnbRRJJPdhJMerxo.roa
Signing time: Wed 10 Jan 2024 10:50:40 +0000
ROA not before: Wed 10 Jan 2024 10:50:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57391
IP address blocks: 85.133.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Mar 2024 18:45:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f2:fe:e8:0b:44:59:29:b4:0c:ae:66:04:39:1d:d0:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jan 10 10:50:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47ca06216dd346c4119db4512493dd84931eaf1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3f:3c:62:e7:08:15:16:d8:bf:63:5c:d4:0c:
5b:c9:fd:00:8f:fb:fb:b8:36:63:fd:b2:d4:6b:76:
df:ea:d6:f3:c1:08:3f:9f:e8:5b:51:66:52:58:49:
14:1f:31:01:af:f8:ad:dc:a7:9e:65:13:e1:b0:30:
17:bb:dc:2b:dc:97:40:78:e6:da:32:84:0e:eb:d8:
cd:49:c6:94:8a:04:3f:ec:6c:06:36:f5:b5:0a:32:
1a:04:47:6d:ec:aa:d7:07:a2:76:c7:2f:52:5a:6c:
37:9d:7f:9c:38:55:46:bb:aa:7e:4f:09:4e:8c:5b:
4e:6d:d0:43:98:c2:23:05:6b:0d:05:b2:54:43:01:
3f:97:50:f7:1a:47:45:6a:ca:d5:e9:a3:74:3a:dd:
5c:26:70:38:b8:44:72:60:0c:c5:a8:19:c8:aa:e1:
52:65:0d:4b:25:55:79:14:e1:d3:65:81:1c:99:94:
dd:85:0a:e2:40:8d:dd:64:c0:db:1a:1c:a6:c0:23:
99:94:cf:f9:12:35:91:26:86:14:b7:1e:ef:71:6a:
a4:ef:f9:d3:61:ea:9d:d6:95:c6:36:77:29:a9:08:
90:96:17:d6:59:44:91:f1:10:54:57:2f:32:d9:09:
60:62:db:37:ff:50:7c:ce:48:df:31:1d:6b:69:3f:
3c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:CA:06:21:6D:D3:46:C4:11:9D:B4:51:24:93:DD:84:93:1E:AF:1A
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/R8oGIW3TRsQRnbRRJJPdhJMerxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.146.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:61:e2:37:ac:c2:ff:64:b4:cb:33:03:ae:1e:ea:e5:fc:e1:
00:4d:72:48:d5:b7:77:db:a3:ab:1b:3b:3f:17:c2:d5:f2:33:
0e:a4:c4:a8:60:c5:f1:e2:48:c5:75:5e:f4:e1:75:87:24:95:
b9:4e:35:0a:41:df:34:bc:63:5a:8b:c0:a4:10:58:28:6f:d2:
e8:d1:61:c7:e6:2c:56:e7:92:4b:46:b5:5f:9e:05:49:7c:db:
39:4e:52:3f:ba:e2:62:4c:2f:58:4b:03:58:df:c7:94:7d:c5:
a9:23:d7:a2:b3:58:7d:cb:72:e2:34:32:3b:3d:dc:94:5b:9a:
82:70:1d:be:86:82:9b:4d:d7:ee:cf:e6:ec:b3:50:ba:c0:cd:
0c:82:36:20:47:24:d5:97:ce:87:8e:71:17:d1:28:35:88:c5:
ea:c0:75:51:80:97:f3:61:04:a6:92:be:24:f2:54:b1:7f:ba:
78:78:88:fe:ca:9b:8a:c7:29:98:b2:72:3c:5d:42:36:6d:61:
dd:d1:e3:70:76:1d:ff:9b:01:18:ef:a6:5f:b4:e2:90:1d:d3:
52:82:50:79:5b:95:81:9f:4f:bf:30:be:42:11:6d:fb:2f:8f:
74:a2:6a:0a:32:0c:41:71:43:8c:47:fa:08:5d:4b:ed:fb:43:
d1:e1:a7:6e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzy/ugLRFkptAyuZgQ5HdDqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjQwMTEwMTA1MDQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0N2NhMDYyMTZkZDM0NmM0MTE5ZGI0NTEyNDkzZGQ4NDkzMWVhZjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArz88YucIFRbYv2Nc1Axbyf0Aj/v7
uDZj/bLUa3bf6tbzwQg/n+hbUWZSWEkUHzEBr/it3KeeZRPhsDAXu9wr3JdAeOba
MoQO69jNScaUigQ/7GwGNvW1CjIaBEdt7KrXB6J2xy9SWmw3nX+cOFVGu6p+TwlO
jFtObdBDmMIjBWsNBbJUQwE/l1D3GkdFasrV6aN0Ot1cJnA4uERyYAzFqBnIquFS
ZQ1LJVV5FOHTZYEcmZTdhQriQI3dZMDbGhymwCOZlM/5EjWRJoYUtx7vcWqk7/nT
Yeqd1pXGNncpqQiQlhfWWUSR8RBUVy8y2QlgYts3/1B8zkjfMR1raT88gwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEfKBiFt00bEEZ20USST3YSTHq8aMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvUjhvR0lXM1RSc1FSbmJSUkpKUGRoSk1lcnhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVYWSMA0G
CSqGSIb3DQEBCwUAA4IBAQA9YeI3rML/ZLTLMwOuHurl/OEATXJI1bd326OrGzs/
F8LV8jMOpMSoYMXx4kjFdV704XWHJJW5TjUKQd80vGNai8CkEFgob9Lo0WHH5ixW
55JLRrVfngVJfNs5TlI/uuJiTC9YSwNY38eUfcWpI9eis1h9y3LiNDI7PdyUW5qC
cB2+hoKbTdfuz+bss1C6wM0MgjYgRyTVl86HjnEX0Sg1iMXqwHVRgJfzYQSmkr4k
8lSxf7p4eIj+ypuKxymYsnI8XUI2bWHd0eNwdh3/mwEY76ZftOKQHdNSglB5W5WB
n0+/ML5CEW37L490omoKMgxBcUOMR/oIXUvt+0PR4adu
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org