Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Fpc1V4Xwi-r8t0sFXk31Z5yWhbY.roa
File: Fpc1V4Xwi-r8t0sFXk31Z5yWhbY.roa (raw, json)
Hash identifier: j1m1AapYE9zYDXplpgBGvK+y4b1nrRgIGq+YBOKHf6w=
Subject key identifier: 16:97:35:57:85:F0:8B:EA:FC:B7:4B:05:5E:4D:F5:67:9C:96:85:B6
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 01941D77D0C448A7621D70459187F0276D13
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Fpc1V4Xwi-r8t0sFXk31Z5yWhbY.roa
Signing time: Tue 31 Dec 2024 16:06:18 +0000
ROA not before: Tue 31 Dec 2024 16:06:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214024
IP address blocks: 85.115.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1d:77:d0:c4:48:a7:62:1d:70:45:91:87:f0:27:6d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Dec 31 16:06:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1697355785f08beafcb74b055e4df5679c9685b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:00:7f:1b:b4:b8:0a:b9:00:83:cc:c5:03:d0:
2e:3d:e0:98:b7:fa:a5:ef:29:32:75:a8:4e:97:b9:
ff:82:5e:d3:f9:81:3f:33:77:64:af:79:59:6b:5d:
e5:74:f9:2d:0e:2b:3e:47:6e:5f:0b:5c:8a:35:2b:
99:cb:72:04:73:9e:f3:a1:16:04:9e:b5:db:0a:1e:
5e:74:a5:96:38:31:18:d3:91:5f:fc:00:a5:d4:8f:
15:a5:58:eb:ad:c9:33:96:b8:20:7a:53:ac:35:26:
2c:27:ce:9c:d6:35:35:38:74:d7:99:bd:2a:f1:a9:
a9:ec:5f:4f:cd:06:84:f0:4a:1a:10:6b:26:ed:5a:
ad:49:4a:7f:1a:17:b9:7f:4c:c0:d4:59:b2:cd:2e:
9b:ce:0b:f0:93:8f:a9:b6:77:26:14:f7:ba:9f:f1:
5b:ae:f8:90:f6:37:0c:4b:2f:97:4d:e2:9e:41:d8:
91:42:61:3d:ad:4c:9e:57:eb:5e:91:fd:82:73:bd:
48:c4:4c:69:4c:23:ad:69:99:5f:51:23:87:95:61:
9b:fd:73:98:9c:cc:0a:24:c6:34:45:4e:b6:5c:1e:
48:d6:04:d0:55:6e:81:c7:b6:4d:37:e8:6c:10:0a:
43:69:b6:63:47:50:85:14:b4:d6:d1:c2:c8:b4:e6:
87:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:97:35:57:85:F0:8B:EA:FC:B7:4B:05:5E:4D:F5:67:9C:96:85:B6
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Fpc1V4Xwi-r8t0sFXk31Z5yWhbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.211.0/24
Signature Algorithm: sha256WithRSAEncryption
61:56:ad:6c:aa:f5:98:f5:b1:f6:84:97:ad:4a:eb:86:8e:10:
76:2e:6f:74:a2:95:db:b8:b6:ea:c5:2f:cd:f9:05:d8:45:02:
3a:f1:bf:64:b1:39:35:ed:dd:a7:5b:41:c9:4f:ed:84:8f:95:
ec:9d:fc:1d:c4:16:73:c7:e8:d1:2d:7e:9b:38:45:61:fd:27:
c8:03:df:5d:0e:0e:62:52:39:3c:9d:95:08:df:e7:61:13:61:
57:82:cc:b4:1e:de:cd:13:24:9f:43:38:53:3d:9d:e7:3a:67:
1b:44:27:b0:76:3e:51:c8:e5:cb:04:be:96:8e:04:af:fd:ba:
10:e2:30:7f:ed:eb:05:b5:6a:f9:21:36:2a:72:51:71:75:1c:
35:a8:7a:43:43:df:95:c7:87:50:83:d4:27:25:3e:c0:02:83:
11:47:4c:05:61:5d:59:77:91:a6:81:3d:6a:85:5f:b3:0e:31:
e7:17:e0:76:b2:bc:8f:c8:bd:85:3c:58:9b:14:88:6d:6f:38:
69:2d:a5:8e:51:c9:73:21:1a:72:d8:72:c5:03:4b:ec:fd:b9:
15:5f:fb:f2:95:e8:41:6c:39:9f:04:61:bb:b0:c9:57:b8:33:
a6:39:87:00:63:51:09:ba:30:e8:a9:0f:36:fa:c0:2a:03:e1:
44:31:e7:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQdd9DESKdiHXBFkYfwJ20TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjQxMjMxMTYwNjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjk3MzU1Nzg1ZjA4YmVhZmNiNzRiMDU1ZTRkZjU2NzljOTY4NWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQB/G7S4CrkAg8zFA9AuPeCYt/ql
7ykydahOl7n/gl7T+YE/M3dkr3lZa13ldPktDis+R25fC1yKNSuZy3IEc57zoRYE
nrXbCh5edKWWODEY05Ff/ACl1I8VpVjrrckzlrggelOsNSYsJ86c1jU1OHTXmb0q
8amp7F9PzQaE8EoaEGsm7VqtSUp/Ghe5f0zA1FmyzS6bzgvwk4+ptncmFPe6n/Fb
rviQ9jcMSy+XTeKeQdiRQmE9rUyeV+tekf2Cc71IxExpTCOtaZlfUSOHlWGb/XOY
nMwKJMY0RU62XB5I1gTQVW6Bx7ZNN+hsEApDabZjR1CFFLTW0cLItOaHwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBaXNVeF8Ivq/LdLBV5N9WecloW2MB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvRnBjMVY0WHdpLXI4dDBzRlhrMzFaNXlXaGJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVXPTMA0G
CSqGSIb3DQEBCwUAA4IBAQBhVq1sqvWY9bH2hJetSuuGjhB2Lm90opXbuLbqxS/N
+QXYRQI68b9ksTk17d2nW0HJT+2Ej5XsnfwdxBZzx+jRLX6bOEVh/SfIA99dDg5i
Ujk8nZUI3+dhE2FXgsy0Ht7NEySfQzhTPZ3nOmcbRCewdj5RyOXLBL6WjgSv/boQ
4jB/7esFtWr5ITYqclFxdRw1qHpDQ9+Vx4dQg9QnJT7AAoMRR0wFYV1Zd5GmgT1q
hV+zDjHnF+B2sryPyL2FPFibFIhtbzhpLaWOUclzIRpy2HLFA0vs/bkVX/vylehB
bDmfBGG7sMlXuDOmOYcAY1EJujDoqQ82+sAqA+FEMedP
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:22:43 2025 by rpki-client