Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/smBbD_hctTWw6vD2X7WH3wCxT5s.roa
File: smBbD_hctTWw6vD2X7WH3wCxT5s.roa (raw, json)
Hash identifier: jNPPq1hCke0/Is4dYsonxGGp7P/e/xYWNf7htHV+Tks=
Subject key identifier: B2:60:5B:0F:F8:5C:B5:35:B0:EA:F0:F6:5F:B5:87:DF:00:B1:4F:9B
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01898C2909293E3F7CB6016094A61D48F780
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/smBbD_hctTWw6vD2X7WH3wCxT5s.roa
Signing time: Tue 25 Jul 2023 08:27:26 +0000
ROA not before: Tue 25 Jul 2023 08:27:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39074
IP address blocks: 85.133.231.0/24 maxlen: 24
85.133.232.0/24 maxlen: 24
85.133.232.0/22 maxlen: 22
85.133.229.0/24 maxlen: 24
85.133.230.0/24 maxlen: 24
85.133.239.0/24 maxlen: 24
85.133.240.0/24 maxlen: 24
85.133.235.0/24 maxlen: 24
85.133.240.0/22 maxlen: 22
85.133.245.0/24 maxlen: 24
85.133.246.0/24 maxlen: 24
85.133.243.0/24 maxlen: 24
85.133.244.0/24 maxlen: 24
85.133.247.0/24 maxlen: 24
85.133.248.0/22 maxlen: 22
85.133.249.0/24 maxlen: 24
85.133.251.0/24 maxlen: 24
85.133.252.0/22 maxlen: 22
85.133.254.0/24 maxlen: 24
85.133.255.0/24 maxlen: 24
85.133.176.0/22 maxlen: 24
85.133.174.0/24 maxlen: 24
85.133.184.0/22 maxlen: 24
85.133.180.0/22 maxlen: 24
85.133.189.0/24 maxlen: 24
85.133.188.0/22 maxlen: 22
85.133.192.0/22 maxlen: 22
85.133.196.0/24 maxlen: 24
85.133.197.0/24 maxlen: 24
85.133.196.0/22 maxlen: 22
85.133.203.0/24 maxlen: 24
85.133.204.0/24 maxlen: 24
85.133.200.0/22 maxlen: 22
85.133.206.0/24 maxlen: 24
85.133.200.0/24 maxlen: 24
85.133.201.0/24 maxlen: 24
85.133.204.0/22 maxlen: 22
85.133.210.0/24 maxlen: 24
85.133.211.0/24 maxlen: 24
85.133.212.0/24 maxlen: 24
85.133.213.0/24 maxlen: 24
85.133.207.0/24 maxlen: 24
85.133.212.0/22 maxlen: 22
85.133.209.0/24 maxlen: 24
85.133.218.0/24 maxlen: 24
85.133.220.0/24 maxlen: 24
85.133.220.0/22 maxlen: 22
85.133.226.0/24 maxlen: 24
85.133.222.0/24 maxlen: 24
85.133.223.0/24 maxlen: 24
85.133.224.0/22 maxlen: 22
85.133.130.0/24 maxlen: 24
85.133.131.0/24 maxlen: 24
85.133.128.0/17 maxlen: 24
85.133.128.0/24 maxlen: 24
85.133.129.0/24 maxlen: 24
85.133.128.0/22 maxlen: 22
85.133.134.0/24 maxlen: 24
85.133.133.0/24 maxlen: 24
85.133.138.0/24 maxlen: 24
85.133.139.0/24 maxlen: 24
85.133.144.0/22 maxlen: 22
85.133.144.0/24 maxlen: 24
85.133.145.0/24 maxlen: 24
85.133.140.0/22 maxlen: 22
85.133.141.0/24 maxlen: 24
85.133.142.0/24 maxlen: 24
85.133.140.0/24 maxlen: 24
85.133.148.0/24 maxlen: 24
85.133.149.0/24 maxlen: 24
85.133.150.0/24 maxlen: 24
85.133.148.0/22 maxlen: 22
85.133.147.0/24 maxlen: 24
85.133.152.0/22 maxlen: 22
85.133.152.0/24 maxlen: 24
85.133.158.0/24 maxlen: 24
85.133.159.0/24 maxlen: 24
85.133.155.0/24 maxlen: 24
85.133.157.0/24 maxlen: 24
85.133.154.0/24 maxlen: 24
85.133.162.0/24 maxlen: 24
85.133.163.0/24 maxlen: 24
85.133.172.0/24 maxlen: 24
85.133.172.0/22 maxlen: 24
85.133.168.0/22 maxlen: 24
185.41.0.0/24 maxlen: 24
185.41.1.0/24 maxlen: 24
185.41.2.0/24 maxlen: 24
185.41.3.0/24 maxlen: 24
2a04:87c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 30 Jul 2023 09:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8c:29:09:29:3e:3f:7c:b6:01:60:94:a6:1d:48:f7:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jul 25 08:27:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2605b0ff85cb535b0eaf0f65fb587df00b14f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:8f:5d:1a:7e:bd:40:da:62:ae:7e:0e:53:60:
a5:22:85:43:81:63:74:27:0b:c1:6d:e7:16:e2:01:
60:1c:d5:c8:e3:95:8c:e6:23:2d:46:f9:d6:7f:b8:
c6:6e:2f:43:e5:57:4d:d6:c1:a2:ce:0d:0d:a1:a2:
a2:24:9a:8c:28:bf:13:04:a1:bd:fe:c2:31:00:73:
9c:8f:33:06:17:d7:fc:69:28:27:29:c5:96:5b:d4:
eb:b8:42:f2:b7:5a:a9:46:64:39:93:3e:3d:58:af:
27:36:8b:45:85:56:ea:c7:4a:67:cf:6d:25:a4:c7:
04:71:d4:63:c4:3f:0c:76:a4:d9:ff:11:af:e5:08:
c9:97:f7:c4:43:0e:9d:1e:88:97:e2:0b:1a:9f:ad:
be:f0:fe:4c:a1:cd:2b:b2:5c:a0:7d:e8:dc:c6:ed:
a8:30:8b:20:65:4b:2a:31:1d:e0:73:a3:38:ae:81:
7b:7a:70:d6:1f:f0:e0:ea:7f:76:26:28:e0:82:96:
b8:12:ff:04:9d:b2:36:32:49:cb:ba:22:b1:d2:15:
69:db:7f:41:fb:33:0e:35:be:5e:03:51:e9:91:b1:
69:fa:52:b9:ee:70:7c:36:65:1f:cd:4a:b4:0e:0b:
f1:02:bc:7f:8c:27:9d:d0:22:b9:d3:fa:03:c0:49:
f5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:60:5B:0F:F8:5C:B5:35:B0:EA:F0:F6:5F:B5:87:DF:00:B1:4F:9B
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/smBbD_hctTWw6vD2X7WH3wCxT5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.128.0/17
185.41.0.0/22
IPv6:
2a04:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
5e:61:30:40:35:c6:b2:5a:7a:b2:f3:e0:1b:3a:fb:0a:9b:86:
2a:de:54:a7:a3:c1:87:59:37:6c:79:b1:6d:3d:c9:8b:07:84:
70:16:83:5a:fb:6f:fe:a8:50:af:ad:d6:f7:e7:21:ea:97:b0:
13:01:af:a2:32:23:3a:c1:11:8f:ba:7f:40:37:6e:6b:0c:43:
51:3f:85:e4:11:68:21:b5:b9:38:9f:53:96:d9:d0:d5:1c:d8:
46:20:9c:88:a4:fc:39:d0:3f:53:9b:a5:e3:3d:6a:1a:a7:be:
41:d4:79:f8:32:da:4d:68:ba:4e:99:0a:5e:46:98:99:3b:19:
42:a6:7a:4d:54:2f:71:12:81:8a:ae:cb:76:8b:91:71:e2:da:
c4:6f:ae:08:a2:27:2e:9b:85:5f:fc:fd:76:9e:ed:0b:6b:81:
26:2f:54:b1:d1:5c:18:d0:8f:bc:90:c6:0b:dd:ed:cf:64:5c:
e7:d5:39:72:70:62:4b:ec:70:67:b1:01:ec:d7:c5:c5:4f:b5:
1d:93:e9:a7:bf:1e:fc:96:82:0d:98:c3:4c:03:14:ce:8b:09:
f3:a4:18:66:74:d0:d4:f6:3f:3a:b2:10:0b:28:c8:4a:62:b7:
72:0f:a7:85:a1:16:71:e1:75:8a:e8:70:c4:c0:48:a5:6d:ea:
c0:09:b5:32
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYmMKQkpPj98tgFglKYdSPeAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMwNzI1MDgyNzI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjYwNWIwZmY4NWNiNTM1YjBlYWYwZjY1ZmI1ODdkZjAwYjE0ZjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAio9dGn69QNpirn4OU2ClIoVDgWN0
JwvBbecW4gFgHNXI45WM5iMtRvnWf7jGbi9D5VdN1sGizg0NoaKiJJqMKL8TBKG9
/sIxAHOcjzMGF9f8aSgnKcWWW9TruELyt1qpRmQ5kz49WK8nNotFhVbqx0pnz20l
pMcEcdRjxD8MdqTZ/xGv5QjJl/fEQw6dHoiX4gsan62+8P5Moc0rslygfejcxu2o
MIsgZUsqMR3gc6M4roF7enDWH/Dg6n92Jijggpa4Ev8EnbI2MknLuiKx0hVp239B
+zMONb5eA1HpkbFp+lK57nB8NmUfzUq0DgvxArx/jCed0CK50/oDwEn1HwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFLJgWw/4XLU1sOrw9l+1h98AsU+bMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvc21CYkRfaGN0VFd3NnZEMlg3V0gzd0N4VDVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQHVYWAAwQC
uSkAMA0EAgACMAcDBQMqBIfAMA0GCSqGSIb3DQEBCwUAA4IBAQBeYTBANcayWnqy
8+AbOvsKm4Yq3lSno8GHWTdsebFtPcmLB4RwFoNa+2/+qFCvrdb35yHql7ATAa+i
MiM6wRGPun9AN25rDENRP4XkEWghtbk4n1OW2dDVHNhGIJyIpPw50D9Tm6XjPWoa
p75B1Hn4MtpNaLpOmQpeRpiZOxlCpnpNVC9xEoGKrst2i5Fx4trEb64Ioicum4Vf
/P12nu0La4EmL1Sx0VwY0I+8kMYL3e3PZFzn1TlycGJL7HBnsQHs18XFT7Udk+mn
vx78loINmMNMAxTOiwnzpBhmdNDU9j86shALKMhKYrdyD6eFoRZx4XWK6HDEwEil
berACbUy
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org