Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/jyDbLJqoJdJaMULV6SyAP8cOaDY.roa
File: jyDbLJqoJdJaMULV6SyAP8cOaDY.roa (raw, json)
Hash identifier: tMeHGGtMdoKYKCfyPjrrqwbXDT51l8pHlg9+HzsHabM=
Subject key identifier: 8F:20:DB:2C:9A:A8:25:D2:5A:31:42:D5:E9:2C:80:3F:C7:0E:68:36
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0185727108991E206E5E66172206A2091397
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/jyDbLJqoJdJaMULV6SyAP8cOaDY.roa
Signing time: Mon 02 Jan 2023 12:24:48 +0000
ROA not before: Mon 02 Jan 2023 12:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138687
IP address blocks: 85.133.218.0/24 maxlen: 24
85.133.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Mar 2023 10:17:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:08:99:1e:20:6e:5e:66:17:22:06:a2:09:13:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jan 2 12:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f20db2c9aa825d25a3142d5e92c803fc70e6836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8e:7b:08:63:33:ef:af:bb:d0:fe:bd:97:68:
50:2d:be:a8:de:dd:37:65:6e:9a:54:78:0c:2e:ad:
41:c7:82:57:32:f6:92:63:30:44:87:a5:c3:fa:2e:
04:68:69:c2:1e:fc:be:1f:4e:3b:84:30:fe:88:b5:
f2:09:20:bd:f4:55:47:fe:0b:bd:ca:1d:e3:91:ed:
68:be:71:4d:eb:03:a1:8e:a4:cf:c8:79:52:9b:ad:
02:d8:f8:3d:cf:f8:c1:5b:30:98:86:99:7b:b7:48:
05:2e:48:b9:cc:b6:ff:4d:da:fa:71:2e:7e:a9:ba:
dc:84:f0:01:6a:43:fc:ce:f0:ad:07:9b:7a:6d:36:
bd:19:d6:8b:79:7f:ab:ee:80:99:77:84:c5:a4:ac:
54:f0:3e:63:d5:f2:d0:6b:da:ae:0a:40:27:8d:45:
ba:e1:5e:f4:f5:0e:6b:54:d2:f2:14:b3:e2:24:21:
34:c7:9d:84:58:7d:f6:25:bf:9d:16:06:72:39:59:
9f:7d:ab:c8:f8:3c:67:68:69:fd:aa:aa:d3:b7:a4:
7c:56:f6:63:14:73:6e:fa:5b:95:69:3d:94:86:5c:
8b:60:49:ea:bf:f1:62:cd:97:84:49:29:f7:63:f3:
b1:9d:a5:6b:4b:07:56:b3:0f:cb:41:4e:dd:00:50:
35:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:20:DB:2C:9A:A8:25:D2:5A:31:42:D5:E9:2C:80:3F:C7:0E:68:36
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/jyDbLJqoJdJaMULV6SyAP8cOaDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.136.0/24
85.133.218.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:56:25:e7:00:c6:fe:3e:f8:2d:bc:16:77:21:4a:32:9e:f0:
f5:08:24:3f:4c:07:4e:d5:73:88:36:2b:9a:ae:86:58:ec:2f:
07:c4:ce:96:ed:2a:76:38:14:1c:41:c6:df:75:3f:42:bf:13:
ae:03:fd:26:76:aa:16:14:52:e7:3c:a9:27:fd:ae:e6:44:10:
b8:3c:60:24:c8:fb:5b:8d:38:23:b7:24:94:5b:4d:3f:f0:17:
f5:cd:36:84:d8:cc:7d:c2:47:46:02:7c:99:00:42:77:b1:aa:
c9:a5:42:98:af:bc:b7:f1:c9:62:f5:65:ba:e7:7c:21:36:ba:
84:d6:c4:b1:3f:a1:57:a7:80:7a:34:1c:b1:3b:89:1e:df:33:
67:a4:48:9d:a7:6a:94:66:d8:61:8e:c6:f2:54:fe:53:64:3c:
1f:e2:0a:31:40:14:4b:9f:b4:58:e0:63:da:55:86:ef:72:27:
c8:a7:b9:de:ed:2b:46:8d:4c:2a:7f:04:58:76:1d:0f:d2:a2:
3e:1f:72:76:03:5b:56:02:bb:23:92:db:03:5b:e1:de:66:ed:
1b:4e:1c:ed:03:b5:ea:4d:2d:7f:6d:75:c8:10:54:fd:8d:da:
32:31:f9:0e:ea:86:c4:2d:b3:2e:35:e5:68:b8:43:0b:cb:3d:
86:1d:be:33
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVycQiZHiBuXmYXIgaiCROXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMwMTAyMTIyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZjIwZGIyYzlhYTgyNWQyNWEzMTQyZDVlOTJjODAzZmM3MGU2ODM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwo57CGMz76+70P69l2hQLb6o3t03
ZW6aVHgMLq1Bx4JXMvaSYzBEh6XD+i4EaGnCHvy+H047hDD+iLXyCSC99FVH/gu9
yh3jke1ovnFN6wOhjqTPyHlSm60C2Pg9z/jBWzCYhpl7t0gFLki5zLb/Tdr6cS5+
qbrchPABakP8zvCtB5t6bTa9GdaLeX+r7oCZd4TFpKxU8D5j1fLQa9quCkAnjUW6
4V709Q5rVNLyFLPiJCE0x52EWH32Jb+dFgZyOVmffavI+DxnaGn9qqrTt6R8VvZj
FHNu+luVaT2UhlyLYEnqv/FizZeESSn3Y/OxnaVrSwdWsw/LQU7dAFA1QwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFI8g2yyaqCXSWjFC1eksgD/HDmg2MB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvanlEYkxKcW9KZEphTVVMVjZTeUFQOGNPYURZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVYWIAwQA
VYXaMA0GCSqGSIb3DQEBCwUAA4IBAQCfViXnAMb+PvgtvBZ3IUoynvD1CCQ/TAdO
1XOINiuaroZY7C8HxM6W7Sp2OBQcQcbfdT9CvxOuA/0mdqoWFFLnPKkn/a7mRBC4
PGAkyPtbjTgjtySUW00/8Bf1zTaE2Mx9wkdGAnyZAEJ3sarJpUKYr7y38cli9WW6
53whNrqE1sSxP6FXp4B6NByxO4ke3zNnpEidp2qUZthhjsbyVP5TZDwf4goxQBRL
n7RY4GPaVYbvcifIp7ne7StGjUwqfwRYdh0P0qI+H3J2A1tWArsjktsDW+HeZu0b
ThztA7XqTS1/bXXIEFT9jdoyMfkO6obELbMuNeVouEMLyz2GHb4z
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:02 2024 by rpki-client on console-ams.rpki-client.org