Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/NoF2rUu_i93xPPcC73qPmRe7-KA.roa
File: NoF2rUu_i93xPPcC73qPmRe7-KA.roa (raw, json)
Hash identifier: ERBGMLA1eZpPRcnqf8bux5iPP5J7d4D6NpzMtoAUP+w=
Subject key identifier: 36:81:76:AD:4B:BF:8B:DD:F1:3C:F7:02:EF:7A:8F:99:17:BB:F8:A0
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0191B993E3C22C48047F993FA0A15F4FBEEB
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/NoF2rUu_i93xPPcC73qPmRe7-KA.roa
Signing time: Tue 03 Sep 2024 20:29:22 +0000
ROA not before: Tue 03 Sep 2024 20:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 85.115.208.0/23 maxlen: 24
213.145.68.0/23 maxlen: 23
213.145.70.0/23 maxlen: 23
213.145.72.0/21 maxlen: 24
213.145.82.0/23 maxlen: 24
213.145.84.0/23 maxlen: 23
213.145.86.0/23 maxlen: 23
213.145.86.0/24 maxlen: 24
213.145.88.0/21 maxlen: 24
213.145.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 06:12:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b9:93:e3:c2:2c:48:04:7f:99:3f:a0:a1:5f:4f:be:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Sep 3 20:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=368176ad4bbf8bddf13cf702ef7a8f9917bbf8a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8e:5a:57:1b:ca:e6:c0:de:d6:e3:08:75:97:
d1:d6:10:34:37:00:e0:95:65:17:38:8d:d2:cc:06:
43:b4:d6:3f:16:d4:4d:71:26:5d:cd:94:f3:c0:f6:
28:f8:91:04:66:cd:80:5d:59:73:73:af:7e:07:52:
2c:a4:a0:07:01:bb:fa:d5:3d:f3:76:fe:a9:f7:17:
53:14:df:f1:9f:4b:06:b2:74:78:a1:bd:e2:42:aa:
f5:8c:bf:2f:c2:d4:ec:bd:8a:e9:b4:a1:22:6c:1d:
94:f5:34:3b:a1:f0:f4:1a:70:61:dc:14:7a:eb:af:
9f:77:8d:a4:22:4a:3e:5a:f2:2b:11:04:76:42:6c:
13:a8:d8:35:35:aa:7a:a8:5f:1f:78:fc:90:40:2a:
a7:0a:99:f0:73:32:22:b0:a7:35:12:90:db:c3:09:
a7:15:72:6f:b9:fe:5d:30:2e:4b:ed:1a:52:be:d4:
fe:7d:65:52:56:6e:01:f9:e2:15:4a:db:ef:44:ea:
35:18:59:5b:94:31:49:2d:38:1f:b4:a9:e7:e4:31:
de:b9:2c:46:77:f2:15:b5:96:c2:48:6b:cc:8c:10:
c5:c4:cd:5d:84:ed:96:35:db:52:dd:5a:f5:ff:2c:
aa:8a:da:ec:28:33:f0:a2:6b:bf:a1:df:44:cc:4b:
20:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:81:76:AD:4B:BF:8B:DD:F1:3C:F7:02:EF:7A:8F:99:17:BB:F8:A0
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/NoF2rUu_i93xPPcC73qPmRe7-KA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/23
213.145.68.0-213.145.79.255
213.145.82.0-213.145.95.255
Signature Algorithm: sha256WithRSAEncryption
5a:2d:f4:2c:ed:a7:94:0e:db:39:76:aa:e2:00:d1:a7:2e:95:
e2:3e:22:6d:ce:33:60:01:1f:61:bb:99:10:60:37:b0:db:47:
3b:01:fc:9e:89:7a:63:20:73:b0:24:6e:1d:6b:3e:90:81:40:
8b:a1:dc:6b:05:9d:bf:9f:04:2d:8a:87:c7:3d:23:3c:9a:de:
90:57:50:6a:f2:d6:71:a0:d4:45:2a:0f:09:d6:eb:bd:d7:1e:
89:9a:f0:99:10:f3:60:ce:25:1b:62:39:21:10:01:80:53:72:
1f:61:47:cb:52:b0:8f:1a:e2:36:56:0b:f3:7a:eb:f4:37:79:
2a:fe:84:ed:ea:50:81:11:2c:ed:9b:70:24:65:8c:2d:96:e4:
15:20:0d:ec:41:26:ba:85:6f:9f:09:a9:dc:35:f3:35:7d:91:
d8:fc:56:48:7a:39:3c:5e:0c:5e:c2:09:2f:5b:86:ca:2c:6e:
3f:34:af:9d:f1:31:59:39:ce:4f:e9:c3:5c:09:db:11:86:f2:
86:9c:45:f8:20:fa:d2:fc:25:47:c8:06:8e:6a:51:e1:91:5c:
b4:3c:06:20:4c:74:9c:73:dd:9e:7f:6b:d2:90:e3:1e:11:9c:
9c:95:d8:3f:42:5f:05:be:18:a4:4c:57:47:5d:8b:77:12:9c:
1d:33:e1:39
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZG5k+PCLEgEf5k/oKFfT77rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjQwOTAzMjAyOTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjgxNzZhZDRiYmY4YmRkZjEzY2Y3MDJlZjdhOGY5OTE3YmJmOGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAso5aVxvK5sDe1uMIdZfR1hA0NwDg
lWUXOI3SzAZDtNY/FtRNcSZdzZTzwPYo+JEEZs2AXVlzc69+B1IspKAHAbv61T3z
dv6p9xdTFN/xn0sGsnR4ob3iQqr1jL8vwtTsvYrptKEibB2U9TQ7ofD0GnBh3BR6
66+fd42kIko+WvIrEQR2QmwTqNg1Nap6qF8fePyQQCqnCpnwczIisKc1EpDbwwmn
FXJvuf5dMC5L7RpSvtT+fWVSVm4B+eIVStvvROo1GFlblDFJLTgftKnn5DHeuSxG
d/IVtZbCSGvMjBDFxM1dhO2WNdtS3Vr1/yyqitrsKDPwomu/od9EzEsguwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFDaBdq1Lv4vd8Tz3Au96j5kXu/igMB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvTm9GMnJVdV9pOTN4UFBjQzczcVBtUmU3LUtBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiAwQBVXPQMAwD
BALVkUQDBATVkUAwDAMEAdWRUgMEBdWRQDANBgkqhkiG9w0BAQsFAAOCAQEAWi30
LO2nlA7bOXaq4gDRpy6V4j4ibc4zYAEfYbuZEGA3sNtHOwH8nol6YyBzsCRuHWs+
kIFAi6HcawWdv58ELYqHxz0jPJrekFdQavLWcaDURSoPCdbrvdceiZrwmRDzYM4l
G2I5IRABgFNyH2FHy1KwjxriNlYL83rr9Dd5Kv6E7epQgREs7ZtwJGWMLZbkFSAN
7EEmuoVvnwmp3DXzNX2R2PxWSHo5PF4MXsIJL1uGyixuPzSvnfExWTnOT+nDXAnb
EYbyhpxF+CD60vwlR8gGjmpR4ZFctDwGIEx0nHPdnn9r0pDjHhGcnJXYP0JfBb4Y
pExXR12LdxKcHTPhOQ==
-----END CERTIFICATE-----
Generated at Wed Sep 4 07:35:30 2024 by rpki-client on console-fra.rpki-client.org