Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/fKT7BYeCFgb08V0khltUbHx2zT0.roa
File: fKT7BYeCFgb08V0khltUbHx2zT0.roa (raw, json)
Hash identifier: lld5aRefOce9uU9vgeaM4VO5YssFri6tdnPVDSmOHnw=
Subject key identifier: 7C:A4:FB:05:87:82:16:06:F4:F1:5D:24:86:5B:54:6C:7C:76:CD:3D
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01895979A7620348EC1D2D5EE367636CFCE3
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/fKT7BYeCFgb08V0khltUbHx2zT0.roa
Signing time: Sat 15 Jul 2023 12:14:52 +0000
ROA not before: Sat 15 Jul 2023 12:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 11938
IP address blocks: 85.133.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jul 2023 20:46:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:59:79:a7:62:03:48:ec:1d:2d:5e:e3:67:63:6c:fc:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jul 15 12:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ca4fb0587821606f4f15d24865b546c7c76cd3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:20:a3:f2:9a:a8:71:20:72:7e:76:68:b6:2a:
c9:ac:a8:43:63:2c:b6:8c:10:9a:dc:e9:80:c2:ca:
27:cf:8b:8f:3a:c7:b5:2b:5c:db:89:a6:f8:e6:1a:
81:c4:27:e6:cc:72:4b:ae:e1:19:01:60:98:78:60:
a0:c9:ab:af:ac:82:04:51:a4:87:14:ee:b2:53:bc:
9b:34:0a:4f:4b:17:f7:79:2d:53:67:fd:3e:c0:a6:
9d:46:ab:1a:55:7f:42:35:c8:f8:b5:24:b8:07:1e:
15:83:45:56:a7:54:cf:de:98:d6:84:c0:3f:17:31:
62:13:5e:ae:17:97:df:ec:de:01:e6:45:b1:c8:c9:
b4:fc:cd:ed:27:38:d7:33:b3:76:36:73:15:ae:d7:
fc:80:2a:82:f2:65:f5:3b:b8:ae:8a:1e:1c:75:95:
ea:41:41:74:f3:1b:af:12:57:c1:7d:67:03:d7:b7:
4e:10:22:f0:ac:0c:bb:b2:74:dd:22:54:54:98:3d:
d7:d3:09:3f:bb:b9:17:90:b2:ff:99:11:cf:88:2b:
95:f4:f3:8a:ea:41:5a:4d:e4:0d:c3:af:33:57:23:
75:07:50:b4:b6:24:30:cd:13:95:ae:81:22:5b:78:
ee:dd:6f:e9:9e:c7:e6:05:cb:dd:cf:a0:80:86:9e:
7d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A4:FB:05:87:82:16:06:F4:F1:5D:24:86:5B:54:6C:7C:76:CD:3D
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/fKT7BYeCFgb08V0khltUbHx2zT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.151.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:fa:fb:72:ff:d1:cb:2c:66:a2:cd:36:0a:e5:fd:40:3f:81:
bd:84:50:86:e5:77:fb:c6:80:49:74:f0:51:95:7d:58:78:30:
15:d0:f9:dc:66:b2:99:db:7c:80:9b:45:5a:6d:09:1b:24:b6:
ac:2c:fa:34:b2:41:cc:21:48:72:9d:8f:f9:4e:e3:e8:c3:56:
12:24:8d:fd:15:24:f3:07:a9:59:dd:00:84:db:28:92:11:0d:
a9:3f:ab:6e:51:3a:51:da:a9:8d:f6:b7:c8:6d:f3:55:b1:fd:
fa:3d:89:09:b7:b0:68:08:1b:8c:b9:cd:53:70:08:8c:9f:d3:
f4:76:3b:ac:e6:0c:da:9d:5f:1a:7d:b0:99:bf:d0:a8:1f:34:
bf:47:63:69:57:fa:9e:da:ca:63:7d:ba:0d:1c:8f:68:e8:01:
f9:5d:2c:57:53:57:1c:72:0f:14:78:ea:31:92:b6:de:e0:9f:
46:cc:07:6d:b9:1c:1c:be:e1:2b:88:f1:a8:3d:fe:f6:8a:df:
7d:83:6f:55:2f:33:66:db:71:27:1a:1b:de:38:0b:15:ca:62:
0f:f3:09:c1:0a:e7:b1:27:13:2f:da:c2:8a:4e:55:0f:89:53:
31:88:dd:2f:0b:88:61:77:c5:7e:d0:42:c5:d3:6c:d6:26:0a:
ab:7f:cf:e4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlZeadiA0jsHS1e42djbPzjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMwNzE1MTIxNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Y2E0ZmIwNTg3ODIxNjA2ZjRmMTVkMjQ4NjViNTQ2YzdjNzZjZDNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2iCj8pqocSByfnZotirJrKhDYyy2
jBCa3OmAwsonz4uPOse1K1zbiab45hqBxCfmzHJLruEZAWCYeGCgyauvrIIEUaSH
FO6yU7ybNApPSxf3eS1TZ/0+wKadRqsaVX9CNcj4tSS4Bx4Vg0VWp1TP3pjWhMA/
FzFiE16uF5ff7N4B5kWxyMm0/M3tJzjXM7N2NnMVrtf8gCqC8mX1O7iuih4cdZXq
QUF08xuvElfBfWcD17dOECLwrAy7snTdIlRUmD3X0wk/u7kXkLL/mRHPiCuV9POK
6kFaTeQNw68zVyN1B1C0tiQwzROVroEiW3ju3W/pnsfmBcvdz6CAhp59fQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHyk+wWHghYG9PFdJIZbVGx8ds09MB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvZktUN0JZZUNGZ2IwOFYwa2hsdFViSHgyelQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVYWXMA0G
CSqGSIb3DQEBCwUAA4IBAQB++vty/9HLLGaizTYK5f1AP4G9hFCG5Xf7xoBJdPBR
lX1YeDAV0PncZrKZ23yAm0VabQkbJLasLPo0skHMIUhynY/5TuPow1YSJI39FSTz
B6lZ3QCE2yiSEQ2pP6tuUTpR2qmN9rfIbfNVsf36PYkJt7BoCBuMuc1TcAiMn9P0
djus5gzanV8afbCZv9CoHzS/R2NpV/qe2spjfboNHI9o6AH5XSxXU1cccg8UeOox
krbe4J9GzAdtuRwcvuEriPGoPf72it99g29VLzNm23EnGhveOAsVymIP8wnBCuex
JxMv2sKKTlUPiVMxiN0vC4hhd8V+0ELF02zWJgqrf8/k
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:02 2024 by rpki-client on console-ams.rpki-client.org