Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/sQWoER2eboTzERkMDcdsRsyoRLs.roa
File: sQWoER2eboTzERkMDcdsRsyoRLs.roa (raw, json)
Hash identifier: e1/O+/htPOFlQlSSPm7bJ20LTV93kvS7kcRZXg/XBTI=
Subject key identifier: B1:05:A8:11:1D:9E:6E:84:F3:11:19:0C:0D:C7:6C:46:CC:A8:44:BB
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018B8AD76E4EBEB7D0B3C8C61DD198E7C64C
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/sQWoER2eboTzERkMDcdsRsyoRLs.roa
Signing time: Wed 01 Nov 2023 12:24:16 +0000
ROA not before: Wed 01 Nov 2023 12:24:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 85.133.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Nov 2023 12:35:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8a:d7:6e:4e:be:b7:d0:b3:c8:c6:1d:d1:98:e7:c6:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Nov 1 12:24:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b105a8111d9e6e84f311190c0dc76c46cca844bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8e:99:f9:73:03:83:34:b1:36:c8:b0:c0:57:
46:1a:15:12:8a:99:05:9f:64:63:33:35:50:2a:b7:
f8:87:b3:7d:93:43:1d:3d:82:92:9a:a0:34:2b:71:
ed:45:9a:7e:ef:4d:8a:78:a1:a2:91:96:c7:36:9f:
70:25:4a:1c:6b:59:ab:1f:b0:69:b7:63:be:4b:ba:
96:36:79:00:de:bb:c8:90:72:62:cd:98:48:30:1d:
dc:37:d9:0a:82:e6:15:c7:e3:08:0a:85:80:73:af:
96:e2:cd:f7:e6:cb:f7:f6:49:9a:f6:b6:fb:15:da:
6b:2e:d3:16:9c:67:46:27:3a:6d:de:51:a1:8a:42:
64:1f:e9:56:53:8e:84:f5:22:7b:be:ae:ee:86:f9:
2c:3d:4b:0e:b4:11:a4:1f:82:f5:27:7a:01:3c:d5:
f2:80:87:89:3c:1f:e0:bc:0e:c9:63:8b:19:a6:b7:
ce:37:3d:85:32:ff:8f:18:c7:79:1d:ba:58:33:dd:
76:1f:c4:c6:82:4b:e4:5c:fe:ea:79:8c:48:c7:3a:
d9:f2:7f:da:fa:98:d4:f4:78:7e:a2:ba:f3:c7:87:
ec:79:d2:50:57:6c:74:54:48:9d:92:b6:ea:c2:9f:
26:81:f3:82:b6:41:c9:b0:e8:1e:f4:60:63:c1:e8:
ea:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:05:A8:11:1D:9E:6E:84:F3:11:19:0C:0D:C7:6C:46:CC:A8:44:BB
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/sQWoER2eboTzERkMDcdsRsyoRLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.146.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:33:6b:7a:28:7a:4c:32:b7:be:2a:26:78:01:91:ce:ed:f3:
70:83:65:ec:42:41:10:5e:f7:f2:67:39:64:73:70:7c:cc:bc:
55:5a:56:b6:5d:ea:de:87:e5:1c:35:94:5a:0d:43:49:b7:f5:
b3:9a:a7:89:82:a1:e8:f9:1a:b9:52:49:c6:7d:22:0a:02:ef:
19:e7:37:a7:a4:6d:96:b1:01:5d:ad:de:0a:19:18:f1:aa:0f:
62:44:bb:b2:c7:be:c5:39:df:46:50:89:bb:3b:44:f6:04:91:
51:44:a7:9d:99:dc:ab:05:28:05:62:52:5f:a6:11:10:73:3e:
41:0c:40:b1:d2:6d:e9:cd:3d:ee:dd:9f:79:0e:12:cd:9e:dc:
1c:67:7a:64:03:33:18:bc:af:e9:0c:5e:db:32:6d:dd:3a:de:
a4:0b:2f:8a:3a:09:66:8a:bc:a4:47:dd:74:55:27:72:7c:c7:
8c:a8:c8:d3:26:3c:55:ec:ec:7a:6d:c6:a8:7a:95:b7:78:b1:
61:2c:af:07:c9:3f:72:f5:6b:4b:be:b8:d6:24:3c:c7:09:ee:
37:fd:5e:e5:72:93:30:75:3e:da:27:ad:61:61:6f:fa:be:16:
72:a1:6e:89:33:d8:6b:aa:ab:8b:a5:ba:d6:17:73:2f:85:e2:
b4:c6:90:e7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuK125OvrfQs8jGHdGY58ZMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMxMTAxMTIyNDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTA1YTgxMTFkOWU2ZTg0ZjMxMTE5MGMwZGM3NmM0NmNjYTg0NGJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy46Z+XMDgzSxNsiwwFdGGhUSipkF
n2RjMzVQKrf4h7N9k0MdPYKSmqA0K3HtRZp+702KeKGikZbHNp9wJUoca1mrH7Bp
t2O+S7qWNnkA3rvIkHJizZhIMB3cN9kKguYVx+MICoWAc6+W4s335sv39kma9rb7
FdprLtMWnGdGJzpt3lGhikJkH+lWU46E9SJ7vq7uhvksPUsOtBGkH4L1J3oBPNXy
gIeJPB/gvA7JY4sZprfONz2FMv+PGMd5HbpYM912H8TGgkvkXP7qeYxIxzrZ8n/a
+pjU9Hh+orrzx4fsedJQV2x0VEidkrbqwp8mgfOCtkHJsOge9GBjwejqOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLEFqBEdnm6E8xEZDA3HbEbMqES7MB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvc1FXb0VSMmVib1R6RVJrTURjZHNSc3lvUkxzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVYWSMA0G
CSqGSIb3DQEBCwUAA4IBAQAeM2t6KHpMMre+KiZ4AZHO7fNwg2XsQkEQXvfyZzlk
c3B8zLxVWla2Xereh+UcNZRaDUNJt/WzmqeJgqHo+Rq5UknGfSIKAu8Z5zenpG2W
sQFdrd4KGRjxqg9iRLuyx77FOd9GUIm7O0T2BJFRRKedmdyrBSgFYlJfphEQcz5B
DECx0m3pzT3u3Z95DhLNntwcZ3pkAzMYvK/pDF7bMm3dOt6kCy+KOglmirykR910
VSdyfMeMqMjTJjxV7Ox6bcaoepW3eLFhLK8HyT9y9WtLvrjWJDzHCe43/V7lcpMw
dT7aJ61hYW/6vhZyoW6JM9hrqquLpbrWF3MvheK0xpDn
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:02 2024 by rpki-client on console-ams.rpki-client.org