Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/2xzCl8-ZP8rRY7HEwGjgpEsFDQU.roa
File: 2xzCl8-ZP8rRY7HEwGjgpEsFDQU.roa (raw, json)
Hash identifier: +EgRtiDAtWA1A68hWi6MKjSSyMsa9PEINiy0IR/RkWk=
Subject key identifier: DB:1C:C2:97:CF:99:3F:CA:D1:63:B1:C4:C0:68:E0:A4:4B:05:0D:05
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0191C5E8A1325371FF729339116F2E530AF0
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/2xzCl8-ZP8rRY7HEwGjgpEsFDQU.roa
Signing time: Fri 06 Sep 2024 05:57:22 +0000
ROA not before: Fri 06 Sep 2024 05:57:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 85.115.208.0/23 maxlen: 24
213.145.68.0/23 maxlen: 23
213.145.72.0/21 maxlen: 24
213.145.82.0/23 maxlen: 24
213.145.84.0/23 maxlen: 23
213.145.84.0/24 maxlen: 24
213.145.86.0/23 maxlen: 23
213.145.86.0/24 maxlen: 24
213.145.88.0/21 maxlen: 24
213.145.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Sep 2024 05:42:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c5:e8:a1:32:53:71:ff:72:93:39:11:6f:2e:53:0a:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Sep 6 05:57:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db1cc297cf993fcad163b1c4c068e0a44b050d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0a:c5:16:53:3e:af:fe:ab:ec:32:90:dc:86:
7b:6c:57:dc:ea:05:b8:06:d8:2d:78:07:72:e6:d5:
a5:80:55:c2:2d:63:32:da:d5:2f:a9:4d:6a:cb:c5:
49:5c:a4:86:84:69:9f:26:66:cb:90:05:97:57:4f:
5b:61:8b:5e:57:c3:cb:85:81:e5:3e:3f:ba:60:69:
47:20:72:48:80:f9:7e:eb:a5:e3:0e:f8:1e:c1:76:
52:ae:fe:58:c0:e7:8f:e8:29:4d:ef:26:bf:b6:bc:
d5:88:61:b8:ef:e6:e9:99:a8:bc:e1:1f:c5:c4:b8:
c5:de:f9:68:99:6d:84:2f:f6:b7:d5:e5:46:1c:43:
36:75:28:08:1c:be:a6:08:04:4d:44:c6:a5:8f:91:
82:1d:d2:c3:a9:b6:4a:8a:6c:97:62:92:d7:57:bf:
0d:1e:04:15:42:97:44:01:00:1c:01:3c:7a:66:12:
84:e0:93:3e:db:ce:41:e4:08:e0:c7:4f:35:81:a3:
47:9f:65:8a:d3:33:3e:ea:77:27:7a:cf:e1:1b:3c:
8d:86:8f:54:aa:70:05:32:a5:c6:6c:24:81:cc:06:
e6:ed:41:29:44:dd:8d:9b:4b:54:41:7c:d6:6c:57:
38:df:3f:8d:67:75:18:42:c8:19:58:05:69:6f:b3:
11:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1C:C2:97:CF:99:3F:CA:D1:63:B1:C4:C0:68:E0:A4:4B:05:0D:05
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/2xzCl8-ZP8rRY7HEwGjgpEsFDQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/23
213.145.68.0/23
213.145.72.0/21
213.145.82.0-213.145.95.255
Signature Algorithm: sha256WithRSAEncryption
42:26:1b:7b:56:b1:d4:c1:51:9f:2f:8e:b2:2e:a9:ea:5d:c9:
de:84:2d:b0:06:87:3d:8c:c2:3c:64:09:56:d6:fa:16:54:0d:
c4:a1:58:55:db:4b:99:3a:67:4e:fc:34:3b:af:71:f5:59:d9:
45:e7:9d:23:23:64:9b:fe:be:c1:9a:91:43:17:d1:84:2e:e3:
44:ca:ca:40:18:03:99:54:ff:b7:ab:fe:3b:bc:ab:61:3a:1a:
8b:e6:9c:ef:56:08:aa:07:15:88:55:f1:23:bb:d0:1f:4c:60:
44:2a:37:36:5c:93:53:fe:92:2c:53:38:53:45:e7:82:27:c6:
ee:62:f9:55:37:79:64:d3:87:3f:ab:e7:fb:4c:6b:95:b8:9b:
dd:95:81:08:01:22:13:19:8a:49:f3:2b:d4:e3:9d:4c:57:c9:
8a:79:82:51:5f:1b:7e:a4:c9:a7:85:7e:be:67:44:d2:c9:f4:
13:c0:3e:aa:8b:c2:4e:cf:84:e6:7f:21:ce:04:69:5a:1f:af:
bc:c8:34:5f:01:ae:79:60:4c:5d:bc:05:87:87:79:bc:e8:09:
38:4e:4c:b2:60:46:4f:0e:7b:2f:93:0f:8d:02:15:96:9a:51:
51:6a:bf:72:1d:e3:80:72:53:03:fd:0f:5a:36:73:e6:9a:a0:
2e:44:3a:68
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAZHF6KEyU3H/cpM5EW8uUwrwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjQwOTA2MDU1NzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjFjYzI5N2NmOTkzZmNhZDE2M2IxYzRjMDY4ZTBhNDRiMDUwZDA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2grFFlM+r/6r7DKQ3IZ7bFfc6gW4
BtgteAdy5tWlgFXCLWMy2tUvqU1qy8VJXKSGhGmfJmbLkAWXV09bYYteV8PLhYHl
Pj+6YGlHIHJIgPl+66XjDvgewXZSrv5YwOeP6ClN7ya/trzViGG47+bpmai84R/F
xLjF3vlomW2EL/a31eVGHEM2dSgIHL6mCARNRMalj5GCHdLDqbZKimyXYpLXV78N
HgQVQpdEAQAcATx6ZhKE4JM+285B5Ajgx081gaNHn2WK0zM+6ncnes/hGzyNho9U
qnAFMqXGbCSBzAbm7UEpRN2Nm0tUQXzWbFc43z+NZ3UYQsgZWAVpb7MR7wIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFNscwpfPmT/K0WOxxMBo4KRLBQ0FMB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvMnh6Q2w4LVpQOHJSWTdIRXdHamdwRXNGRFFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQBVXPQAwQB
1ZFEAwQD1ZFIMAwDBAHVkVIDBAXVkUAwDQYJKoZIhvcNAQELBQADggEBAEImG3tW
sdTBUZ8vjrIuqepdyd6ELbAGhz2MwjxkCVbW+hZUDcShWFXbS5k6Z078NDuvcfVZ
2UXnnSMjZJv+vsGakUMX0YQu40TKykAYA5lU/7er/ju8q2E6GovmnO9WCKoHFYhV
8SO70B9MYEQqNzZck1P+kixTOFNF54Inxu5i+VU3eWTThz+r5/tMa5W4m92VgQgB
IhMZiknzK9TjnUxXyYp5glFfG36kyaeFfr5nRNLJ9BPAPqqLwk7PhOZ/Ic4EaVof
r7zINF8BrnlgTF28BYeHebzoCThOTLJgRk8Oey+TD40CFZaaUVFqv3Id44ByUwP9
D1o2c+aaoC5EOmg=
-----END CERTIFICATE-----
Generated at Sun Sep 8 07:48:40 2024 by rpki-client on console-ams.rpki-client.org