Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/RaQq8zwwl6stShbw1xcw2tM3CF0.roa
File: RaQq8zwwl6stShbw1xcw2tM3CF0.roa (raw, json)
Hash identifier: ryPZ57aJtlWxEOVM6SEw7lGINCDkH9Qi6oPVaZAwunc=
Subject key identifier: 45:A4:2A:F3:3C:30:97:AB:2D:4A:16:F0:D7:17:30:DA:D3:37:08:5D
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018CC93626EC066F5F23DD0D13571C52376E
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/RaQq8zwwl6stShbw1xcw2tM3CF0.roa
Signing time: Tue 02 Jan 2024 08:06:58 +0000
ROA not before: Tue 02 Jan 2024 08:06:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198154
IP address blocks: 85.133.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jan 2024 08:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:36:26:ec:06:6f:5f:23:dd:0d:13:57:1c:52:37:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jan 2 08:06:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45a42af33c3097ab2d4a16f0d71730dad337085d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:86:83:3a:25:2a:d6:ac:05:3c:f0:f9:0a:1b:
25:cd:6c:2f:dc:db:0d:cf:45:c0:b7:09:16:63:bb:
e1:a1:14:82:32:ac:0b:49:f4:3b:df:f1:42:f8:6f:
5f:d2:02:c8:85:6c:d3:14:4e:ec:02:47:a0:3e:b6:
87:ab:21:54:4c:e4:8c:d0:f8:f3:ee:8c:01:0f:71:
84:ca:23:f3:5c:5e:e6:df:95:ba:d4:db:3d:8b:de:
a4:15:7f:08:a2:86:3e:42:f0:7d:f5:48:46:ae:f0:
9c:2b:e1:e8:3a:dd:5f:bf:31:f7:ae:40:ca:17:b2:
01:56:ba:5d:cb:f4:e5:b2:41:62:9b:c9:8a:fe:fa:
b7:ef:61:32:56:41:25:74:f7:fb:27:48:db:94:d4:
d9:3e:60:02:71:80:d2:96:52:4f:89:2f:42:e9:7f:
2a:b4:3d:43:43:3e:24:81:30:5a:28:1a:20:da:8e:
13:97:77:e1:09:0f:d1:a3:ec:f9:4f:bf:b2:49:5d:
a2:b0:f1:d7:82:c3:e2:51:16:4d:cc:58:0d:e0:63:
17:36:95:2d:d7:24:12:28:88:54:6c:1e:08:62:12:
8e:0f:b9:21:1c:89:aa:e3:0e:cc:b1:bf:39:44:62:
c1:9c:f9:ee:08:56:82:04:8d:02:9c:07:fa:ab:bf:
6c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A4:2A:F3:3C:30:97:AB:2D:4A:16:F0:D7:17:30:DA:D3:37:08:5D
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/RaQq8zwwl6stShbw1xcw2tM3CF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.218.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:61:1c:ab:26:fd:d8:6b:25:d0:8f:d5:82:9b:d7:12:0d:71:
cc:ec:a8:c8:38:c5:3c:8f:2f:ee:18:59:42:a2:ad:fc:29:4f:
6e:a5:34:d4:0c:48:ff:cb:be:f8:46:b4:16:81:b0:a3:e6:6e:
af:b8:46:ef:bb:d9:5a:f5:94:e3:21:87:90:40:a6:ef:35:8d:
f7:ab:31:e1:6d:87:6f:f5:0f:31:96:6e:68:4d:6e:b1:e9:bd:
8a:20:2a:05:21:a3:1a:04:4a:c8:86:d4:d6:fc:f6:f3:a7:ce:
58:b5:f9:6a:35:f5:88:5c:7b:7d:af:40:a6:ae:de:b4:2f:7b:
23:5d:a1:02:94:bf:10:98:ea:8c:67:0f:6f:ec:b4:92:90:37:
ae:6e:69:2e:a0:4e:8c:90:01:09:e6:56:60:49:c5:7d:5b:55:
f7:21:d1:15:3d:2d:88:71:ea:bd:34:6f:74:ea:9c:93:03:69:
74:1c:c5:f0:7d:a1:54:55:09:c4:86:03:98:e7:cc:f9:09:db:
de:c1:7f:d0:d4:ab:cd:a6:7b:fc:a6:ef:04:a9:95:ef:6d:3f:
42:92:2c:0b:1d:5b:cd:ea:73:c6:c9:2c:21:ce:8f:db:ad:32:
dc:04:e8:21:d5:60:74:d0:14:6f:98:fd:eb:cd:78:05:fa:d0:
43:56:50:7f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJNibsBm9fI90NE1ccUjduMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjQwMTAyMDgwNjU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NWE0MmFmMzNjMzA5N2FiMmQ0YTE2ZjBkNzE3MzBkYWQzMzcwODVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4aDOiUq1qwFPPD5ChslzWwv3NsN
z0XAtwkWY7vhoRSCMqwLSfQ73/FC+G9f0gLIhWzTFE7sAkegPraHqyFUTOSM0Pjz
7owBD3GEyiPzXF7m35W61Ns9i96kFX8IooY+QvB99UhGrvCcK+HoOt1fvzH3rkDK
F7IBVrpdy/TlskFim8mK/vq372EyVkEldPf7J0jblNTZPmACcYDSllJPiS9C6X8q
tD1DQz4kgTBaKBog2o4Tl3fhCQ/Ro+z5T7+ySV2isPHXgsPiURZNzFgN4GMXNpUt
1yQSKIhUbB4IYhKOD7khHImq4w7Msb85RGLBnPnuCFaCBI0CnAf6q79sqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEWkKvM8MJerLUoW8NcXMNrTNwhdMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvUmFRcTh6d3dsNnN0U2hidzF4Y3cydE0zQ0YwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVYXaMA0G
CSqGSIb3DQEBCwUAA4IBAQCKYRyrJv3YayXQj9WCm9cSDXHM7KjIOMU8jy/uGFlC
oq38KU9upTTUDEj/y774RrQWgbCj5m6vuEbvu9la9ZTjIYeQQKbvNY33qzHhbYdv
9Q8xlm5oTW6x6b2KICoFIaMaBErIhtTW/Pbzp85YtflqNfWIXHt9r0Cmrt60L3sj
XaEClL8QmOqMZw9v7LSSkDeubmkuoE6MkAEJ5lZgScV9W1X3IdEVPS2Iceq9NG90
6pyTA2l0HMXwfaFUVQnEhgOY58z5CdvewX/Q1KvNpnv8pu8EqZXvbT9CkiwLHVvN
6nPGySwhzo/brTLcBOgh1WB00BRvmP3rzXgF+tBDVlB/
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org