Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/l7qm1Vh2ZuQNWnakBdaxJfhVMqg.roa
File: l7qm1Vh2ZuQNWnakBdaxJfhVMqg.roa (raw, json)
Hash identifier: Yw7DddMl92sH1MMdfoPp2bk10HhA4U75wXMFAvvGa5M=
Subject key identifier: 97:BA:A6:D5:58:76:66:E4:0D:5A:76:A4:05:D6:B1:25:F8:55:32:A8
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0185D3344AD07A9B5ECA7BDE7FBA9FA73D45
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/l7qm1Vh2ZuQNWnakBdaxJfhVMqg.roa
Signing time: Sat 21 Jan 2023 07:21:37 +0000
ROA not before: Sat 21 Jan 2023 07:21:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 85.133.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 09:40:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d3:34:4a:d0:7a:9b:5e:ca:7b:de:7f:ba:9f:a7:3d:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jan 21 07:21:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97baa6d5587666e40d5a76a405d6b125f85532a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:df:83:d6:fc:ea:8a:fe:79:7e:21:0a:8a:25:
a3:29:18:4d:8e:cc:9a:14:24:d8:d6:99:ec:2f:4e:
d1:c4:37:5a:5c:4c:1e:60:61:6c:de:83:cb:c6:5c:
ad:74:71:b9:b5:a0:21:05:9c:44:6d:07:ae:eb:36:
8b:8b:8f:68:2e:29:89:d5:71:ec:c7:6c:6f:05:81:
c5:49:00:4c:06:fb:95:a6:49:1f:27:c6:24:14:83:
41:d0:95:76:4d:91:0f:fd:3e:13:44:47:53:d2:f5:
fb:96:d7:2c:0d:8f:35:1a:85:0b:ac:58:49:e1:9c:
4a:76:8a:cd:7c:75:aa:bb:ff:cb:09:93:ce:68:f8:
4e:7d:58:a8:37:75:59:fc:b9:1f:75:1a:56:fd:7d:
aa:fe:23:df:ce:3b:dc:3a:70:46:cc:bf:76:ec:03:
02:eb:9e:4f:20:fe:32:bc:34:52:2d:c8:c6:23:0f:
f7:85:cc:68:00:02:b0:78:5c:7d:fa:fb:7c:78:45:
44:50:10:32:6f:64:12:47:a6:59:1b:6c:3f:a2:60:
dc:b1:10:ff:15:84:51:c7:32:b7:ce:99:62:13:68:
fd:db:72:27:93:09:82:cf:ca:f2:8c:28:41:d1:15:
0e:53:08:ae:59:d3:d0:86:10:7e:c0:3b:eb:9d:48:
6e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:BA:A6:D5:58:76:66:E4:0D:5A:76:A4:05:D6:B1:25:F8:55:32:A8
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/l7qm1Vh2ZuQNWnakBdaxJfhVMqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.146.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:ce:81:04:1c:92:a4:1b:4e:89:fa:28:69:fd:5f:08:7f:92:
7a:49:3e:17:f2:5f:b5:53:20:9f:33:27:78:00:7e:8a:39:11:
a0:7b:06:87:53:48:4e:fa:71:c1:6e:3c:d1:ec:41:b6:9f:8c:
b9:50:d9:0d:6f:13:5c:b2:14:ff:bb:c9:20:35:30:7d:dc:a3:
57:5b:38:84:a6:99:f7:b8:e4:82:0b:4d:af:4b:11:66:86:ec:
84:02:15:63:28:b5:4a:8c:73:e1:e4:ad:c6:ce:42:18:8e:d2:
d5:94:c7:64:8f:1b:f5:97:aa:08:a6:54:96:59:f8:99:f1:5c:
96:cf:5b:a7:99:bc:c2:fd:a9:88:ac:44:77:1e:35:62:db:f3:
aa:20:51:6f:7e:c6:15:d1:0a:bf:cb:62:a1:ff:ce:73:c4:33:
72:d2:a3:16:be:25:0d:0f:62:b4:0b:48:a2:60:d6:39:20:58:
e2:29:ec:6d:80:a2:b6:22:e6:47:9e:ce:71:78:98:08:91:2e:
85:76:11:19:9d:ce:b5:0e:87:8b:3c:d0:66:24:9f:06:da:6d:
79:2f:4b:b6:b9:9e:e1:67:20:e9:ee:f5:a0:a3:f1:1f:1d:dc:
a1:32:01:d2:ab:66:8c:14:6e:24:13:0b:b0:e9:b0:79:7c:3b:
10:54:a6:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXTNErQepteynvef7qfpz1FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMwMTIxMDcyMTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5N2JhYTZkNTU4NzY2NmU0MGQ1YTc2YTQwNWQ2YjEyNWY4NTUzMmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9+D1vzqiv55fiEKiiWjKRhNjsya
FCTY1pnsL07RxDdaXEweYGFs3oPLxlytdHG5taAhBZxEbQeu6zaLi49oLimJ1XHs
x2xvBYHFSQBMBvuVpkkfJ8YkFINB0JV2TZEP/T4TREdT0vX7ltcsDY81GoULrFhJ
4ZxKdorNfHWqu//LCZPOaPhOfVioN3VZ/LkfdRpW/X2q/iPfzjvcOnBGzL927AMC
655PIP4yvDRSLcjGIw/3hcxoAAKweFx9+vt8eEVEUBAyb2QSR6ZZG2w/omDcsRD/
FYRRxzK3zpliE2j923InkwmCz8ryjChB0RUOUwiuWdPQhhB+wDvrnUhudwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJe6ptVYdmbkDVp2pAXWsSX4VTKoMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvbDdxbTFWaDJadVFOV25ha0JkYXhKZmhWTXFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVYWSMA0G
CSqGSIb3DQEBCwUAA4IBAQCtzoEEHJKkG06J+ihp/V8If5J6ST4X8l+1UyCfMyd4
AH6KORGgewaHU0hO+nHBbjzR7EG2n4y5UNkNbxNcshT/u8kgNTB93KNXWziEppn3
uOSCC02vSxFmhuyEAhVjKLVKjHPh5K3GzkIYjtLVlMdkjxv1l6oIplSWWfiZ8VyW
z1unmbzC/amIrER3HjVi2/OqIFFvfsYV0Qq/y2Kh/85zxDNy0qMWviUND2K0C0ii
YNY5IFjiKextgKK2IuZHns5xeJgIkS6FdhEZnc61DoeLPNBmJJ8G2m15L0u2uZ7h
ZyDp7vWgo/EfHdyhMgHSq2aMFG4kEwuw6bB5fDsQVKb+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org