Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/uIxlzp_o5ZedAukHHtR99o1O8vY.roa
File: uIxlzp_o5ZedAukHHtR99o1O8vY.roa (raw, json)
Hash identifier: +cRX3cXy38t4sUWoZLnqgvACGaPfW2QxffDKXvrpIO0=
Subject key identifier: B8:8C:65:CE:9F:E8:E5:97:9D:02:E9:07:1E:D4:7D:F6:8D:4E:F2:F6
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01895979A890B71FBDEE4C674C3A964E8155
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/uIxlzp_o5ZedAukHHtR99o1O8vY.roa
Signing time: Sat 15 Jul 2023 12:14:52 +0000
ROA not before: Sat 15 Jul 2023 12:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39074
IP address blocks: 85.133.231.0/24 maxlen: 24
85.133.232.0/24 maxlen: 24
85.133.233.0/24 maxlen: 24
85.133.228.0/24 maxlen: 24
85.133.232.0/22 maxlen: 22
85.133.229.0/24 maxlen: 24
85.133.230.0/24 maxlen: 24
85.133.227.0/24 maxlen: 24
85.133.239.0/24 maxlen: 24
85.133.240.0/24 maxlen: 24
85.133.235.0/24 maxlen: 24
85.133.240.0/22 maxlen: 22
85.133.237.0/24 maxlen: 24
85.133.245.0/24 maxlen: 24
85.133.246.0/24 maxlen: 24
85.133.242.0/24 maxlen: 24
85.133.243.0/24 maxlen: 24
85.133.244.0/24 maxlen: 24
85.133.241.0/24 maxlen: 24
85.133.247.0/24 maxlen: 24
85.133.253.0/24 maxlen: 24
85.133.248.0/22 maxlen: 22
85.133.249.0/24 maxlen: 24
85.133.250.0/24 maxlen: 24
85.133.251.0/24 maxlen: 24
85.133.252.0/22 maxlen: 22
85.133.254.0/24 maxlen: 24
85.133.255.0/24 maxlen: 24
85.133.179.0/24 maxlen: 24
85.133.176.0/22 maxlen: 24
85.133.178.0/24 maxlen: 24
85.133.174.0/24 maxlen: 24
85.133.184.0/22 maxlen: 24
85.133.180.0/22 maxlen: 24
85.133.189.0/24 maxlen: 24
85.133.188.0/22 maxlen: 22
85.133.192.0/22 maxlen: 22
85.133.196.0/24 maxlen: 24
85.133.197.0/24 maxlen: 24
85.133.199.0/24 maxlen: 24
85.133.196.0/22 maxlen: 22
85.133.203.0/24 maxlen: 24
85.133.204.0/24 maxlen: 24
85.133.205.0/24 maxlen: 24
85.133.200.0/22 maxlen: 22
85.133.206.0/24 maxlen: 24
85.133.200.0/24 maxlen: 24
85.133.201.0/24 maxlen: 24
85.133.204.0/22 maxlen: 22
85.133.210.0/24 maxlen: 24
85.133.211.0/24 maxlen: 24
85.133.212.0/24 maxlen: 24
85.133.213.0/24 maxlen: 24
85.133.207.0/24 maxlen: 24
85.133.212.0/22 maxlen: 22
85.133.208.0/24 maxlen: 24
85.133.209.0/24 maxlen: 24
85.133.217.0/24 maxlen: 24
85.133.218.0/24 maxlen: 24
85.133.219.0/24 maxlen: 24
85.133.215.0/24 maxlen: 24
85.133.216.0/24 maxlen: 24
85.133.220.0/24 maxlen: 24
85.133.220.0/22 maxlen: 22
85.133.226.0/24 maxlen: 24
85.133.221.0/24 maxlen: 24
85.133.223.0/24 maxlen: 24
85.133.224.0/22 maxlen: 22
85.133.130.0/24 maxlen: 24
85.133.131.0/24 maxlen: 24
85.133.128.0/17 maxlen: 24
85.133.128.0/24 maxlen: 24
85.133.129.0/24 maxlen: 24
85.133.128.0/22 maxlen: 22
85.133.134.0/24 maxlen: 24
85.133.136.0/22 maxlen: 22
85.133.133.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
85.133.138.0/24 maxlen: 24
85.133.139.0/24 maxlen: 24
85.133.144.0/22 maxlen: 22
85.133.144.0/24 maxlen: 24
85.133.145.0/24 maxlen: 24
85.133.140.0/22 maxlen: 22
85.133.141.0/24 maxlen: 24
85.133.142.0/24 maxlen: 24
85.133.143.0/24 maxlen: 24
85.133.140.0/24 maxlen: 24
85.133.148.0/24 maxlen: 24
85.133.149.0/24 maxlen: 24
85.133.150.0/24 maxlen: 24
85.133.146.0/24 maxlen: 24
85.133.148.0/22 maxlen: 22
85.133.147.0/24 maxlen: 24
85.133.152.0/22 maxlen: 22
85.133.152.0/24 maxlen: 24
85.133.158.0/24 maxlen: 24
85.133.159.0/24 maxlen: 24
85.133.155.0/24 maxlen: 24
85.133.156.0/24 maxlen: 24
85.133.157.0/24 maxlen: 24
85.133.153.0/24 maxlen: 24
85.133.154.0/24 maxlen: 24
85.133.162.0/24 maxlen: 24
85.133.163.0/24 maxlen: 24
85.133.164.0/22 maxlen: 24
85.133.160.0/24 maxlen: 24
85.133.161.0/24 maxlen: 24
85.133.165.0/24 maxlen: 24
85.133.172.0/24 maxlen: 24
85.133.172.0/22 maxlen: 24
85.133.168.0/22 maxlen: 24
185.41.0.0/24 maxlen: 24
185.41.1.0/24 maxlen: 24
185.41.2.0/24 maxlen: 24
185.41.3.0/24 maxlen: 24
2a04:87c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 18 Jul 2023 20:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:59:79:a8:90:b7:1f:bd:ee:4c:67:4c:3a:96:4e:81:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jul 15 12:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b88c65ce9fe8e5979d02e9071ed47df68d4ef2f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:79:66:fe:68:88:08:d4:06:ce:d0:9a:2b:94:
d6:65:af:00:f9:a6:54:2a:9f:81:e8:f0:cb:22:cc:
5a:1a:93:a6:03:27:49:b8:13:63:ae:38:95:35:f3:
c3:b2:a0:9e:af:01:fa:be:1c:76:8d:60:28:e2:c2:
c0:37:c4:9e:d3:c0:63:92:d3:64:c7:a7:ed:5f:58:
1f:6f:b5:47:71:b3:f4:93:59:d2:6e:bf:0e:93:e9:
2f:27:28:75:c2:90:d4:d9:6c:89:df:09:a7:b7:02:
1d:df:a5:b0:1c:f5:46:02:a1:40:d6:53:86:f6:0d:
0c:fb:c1:09:40:53:2e:7b:8b:de:40:2a:b5:75:8e:
91:91:19:07:85:23:43:64:3b:1f:6f:35:aa:a4:65:
21:95:a6:9a:2e:a6:1e:a2:67:90:14:68:cc:6f:54:
8d:58:2a:6d:cc:e6:a1:9d:6c:4b:2a:b7:7d:c1:7a:
df:68:fd:da:a8:a1:a7:2a:bb:7c:d8:fe:60:0a:3a:
a8:c6:10:8d:96:0f:97:5c:c1:59:c8:1e:4f:13:cd:
d5:e6:85:e1:64:91:2c:de:55:de:df:dd:99:fd:aa:
a6:5d:6b:3b:4e:3a:8d:e2:d5:97:6c:a8:3a:54:fb:
45:3e:f6:b3:1e:63:9b:c2:d9:6f:ec:87:32:96:26:
5c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:8C:65:CE:9F:E8:E5:97:9D:02:E9:07:1E:D4:7D:F6:8D:4E:F2:F6
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/uIxlzp_o5ZedAukHHtR99o1O8vY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.128.0/17
185.41.0.0/22
IPv6:
2a04:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
8e:78:72:b6:56:fe:12:62:8a:d3:d5:1e:78:5c:91:4c:a5:c7:
32:dc:a2:d1:a6:d2:6d:e5:ca:ea:93:56:54:c2:ab:33:a9:d8:
ad:53:6f:8c:21:3f:b5:36:1f:57:77:eb:07:77:db:17:3b:d8:
4f:64:11:d2:27:45:6e:82:3c:5b:3e:d2:73:4a:a7:96:b0:0d:
2c:0e:58:62:7d:d8:2c:0c:fa:ed:f3:39:30:da:b7:ae:9f:9a:
a7:2f:50:8a:8a:59:64:ee:df:71:55:c9:9f:06:87:68:06:6c:
b9:88:eb:9b:0a:d0:d0:eb:47:f2:fc:59:9b:46:49:d0:3b:a8:
e7:8f:5e:52:24:b8:95:17:1c:a8:b7:e6:21:2f:cb:27:b3:82:
f3:e2:1b:d3:ee:6d:64:65:fe:27:af:e6:c3:c7:16:7e:03:e8:
50:8e:d0:15:ab:24:62:9e:f8:2f:c5:20:31:f1:f0:17:23:0c:
f9:ab:21:c5:0c:d1:16:c1:e2:39:78:69:6d:0f:78:cb:c7:2f:
57:f6:93:7c:f9:9a:98:06:8c:12:eb:e9:ba:2b:c3:0e:65:f6:
10:ce:cc:78:02:7c:47:5a:e4:93:b2:27:16:58:c0:0e:a5:62:
c6:fe:e0:75:87:27:06:a7:ec:0f:b4:c3:cd:74:de:29:a3:9b:
31:ee:56:09
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYlZeaiQtx+97kxnTDqWToFVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMwNzE1MTIxNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODhjNjVjZTlmZThlNTk3OWQwMmU5MDcxZWQ0N2RmNjhkNGVmMmY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhnlm/miICNQGztCaK5TWZa8A+aZU
Kp+B6PDLIsxaGpOmAydJuBNjrjiVNfPDsqCerwH6vhx2jWAo4sLAN8Se08BjktNk
x6ftX1gfb7VHcbP0k1nSbr8Ok+kvJyh1wpDU2WyJ3wmntwId36WwHPVGAqFA1lOG
9g0M+8EJQFMue4veQCq1dY6RkRkHhSNDZDsfbzWqpGUhlaaaLqYeomeQFGjMb1SN
WCptzOahnWxLKrd9wXrfaP3aqKGnKrt82P5gCjqoxhCNlg+XXMFZyB5PE83V5oXh
ZJEs3lXe392Z/aqmXWs7TjqN4tWXbKg6VPtFPvazHmObwtlv7IcyliZcOwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFLiMZc6f6OWXnQLpBx7UffaNTvL2MB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvdUl4bHpwX281WmVkQXVrSEh0Ujk5bzFPOHZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQHVYWAAwQC
uSkAMA0EAgACMAcDBQMqBIfAMA0GCSqGSIb3DQEBCwUAA4IBAQCOeHK2Vv4SYorT
1R54XJFMpccy3KLRptJt5crqk1ZUwqszqditU2+MIT+1Nh9Xd+sHd9sXO9hPZBHS
J0VugjxbPtJzSqeWsA0sDlhifdgsDPrt8zkw2reun5qnL1CKillk7t9xVcmfBodo
Bmy5iOubCtDQ60fy/FmbRknQO6jnj15SJLiVFxyot+YhL8sns4Lz4hvT7m1kZf4n
r+bDxxZ+A+hQjtAVqyRinvgvxSAx8fAXIwz5qyHFDNEWweI5eGltD3jLxy9X9pN8
+ZqYBowS6+m6K8MOZfYQzsx4AnxHWuSTsicWWMAOpWLG/uB1hycGp+wPtMPNdN4p
o5sx7lYJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:02 2024 by rpki-client on console-ams.rpki-client.org