Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/ZIuBw_6OIzm_QikjS3AGVzhPXrI.roa
File: ZIuBw_6OIzm_QikjS3AGVzhPXrI.roa (raw, json)
Hash identifier: Q4ummcqaKu+BwBrcJmPf3hlR8aTdXAWXGvdyEQCFdGU=
Subject key identifier: 64:8B:81:C3:FE:8E:23:39:BF:42:29:23:4B:70:06:57:38:4F:5E:B2
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 01928B4D9BCE888865DDFF6659F94F055948
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/ZIuBw_6OIzm_QikjS3AGVzhPXrI.roa
Signing time: Mon 14 Oct 2024 13:52:52 +0000
ROA not before: Mon 14 Oct 2024 13:52:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 85.115.208.0/23 maxlen: 24
213.145.68.0/23 maxlen: 23
213.145.70.0/23 maxlen: 24
213.145.72.0/21 maxlen: 24
213.145.82.0/23 maxlen: 24
213.145.84.0/23 maxlen: 23
213.145.86.0/23 maxlen: 23
213.145.88.0/21 maxlen: 24
213.145.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Oct 2024 05:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8b:4d:9b:ce:88:88:65:dd:ff:66:59:f9:4f:05:59:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Oct 14 13:52:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=648b81c3fe8e2339bf4229234b700657384f5eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3e:7e:17:64:ab:90:4d:c6:18:20:64:c8:ae:
68:08:fb:f8:d9:02:a3:b8:0e:00:5a:b3:2d:ab:c3:
2b:5f:e8:ed:5e:f2:5b:17:ea:16:e3:04:c1:d4:d2:
01:fc:c1:5f:b2:7a:48:fc:d0:f3:91:39:8b:3f:92:
aa:42:a6:23:f3:d3:7e:4c:e7:7a:15:7f:1a:43:05:
3e:98:ac:b3:ba:70:6e:ef:39:3f:3b:ba:ce:cb:98:
bb:8d:73:5b:48:eb:af:c0:13:82:36:90:04:b3:b3:
a9:97:4e:12:66:44:da:cb:49:39:6c:38:36:db:1f:
29:3d:05:89:ec:78:d3:6c:4b:f3:01:0d:64:b0:71:
a5:d3:d6:19:50:8c:4e:bc:65:46:8b:8f:e7:d3:8d:
82:fd:93:e6:53:48:00:ce:eb:f8:6d:41:73:86:c8:
18:1d:01:59:d2:17:e3:cc:5b:89:ad:ea:ca:b8:13:
5a:56:1c:29:fe:1d:8c:cf:30:0d:48:70:05:65:35:
00:10:dd:60:31:90:47:89:70:41:9d:91:c7:0f:50:
4a:fc:37:06:7c:0e:ab:f0:3a:b1:4c:23:a2:15:61:
d3:6f:4d:64:f2:b2:ab:f0:7d:3f:98:40:f1:6a:85:
93:98:e4:b6:2b:21:0d:76:2e:ce:b0:18:c2:bf:e9:
70:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:8B:81:C3:FE:8E:23:39:BF:42:29:23:4B:70:06:57:38:4F:5E:B2
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/ZIuBw_6OIzm_QikjS3AGVzhPXrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/23
213.145.68.0-213.145.79.255
213.145.82.0-213.145.95.255
Signature Algorithm: sha256WithRSAEncryption
34:78:e5:20:29:4b:32:d6:3d:be:69:07:5b:f4:20:86:7b:11:
0d:a1:d9:22:26:41:41:96:c2:e5:6e:a3:c9:1e:f7:7c:d4:31:
77:85:55:0b:11:86:83:9f:21:9d:3c:22:60:ef:57:05:c4:1a:
05:62:fe:4f:fa:78:4e:d1:a6:bf:e5:ee:c7:49:09:cc:d8:33:
c8:e1:a7:b5:d1:65:cc:51:fb:64:50:a5:6f:a6:ff:f0:25:12:
a7:44:a3:21:a8:16:87:b5:fe:89:9c:7c:1e:8c:c1:a4:9d:89:
14:82:b6:42:f4:fc:d4:96:d0:9a:57:af:07:32:99:23:fe:93:
ce:34:89:43:09:e0:79:e3:6e:5d:ca:96:8f:00:95:cf:0b:55:
e4:c3:2c:14:19:db:2e:67:52:f6:d5:af:ab:68:f2:6c:86:e4:
79:42:c8:1b:db:7f:0e:d4:c3:1f:b3:2b:76:81:9d:2f:43:ee:
cf:bc:44:e6:3f:e6:3b:69:8d:4c:b0:2a:46:a5:5c:f5:18:88:
0b:f8:b2:77:74:68:9c:87:68:32:f2:7a:a8:ce:e6:41:56:c0:
a3:97:66:bf:a0:ee:57:48:e7:62:79:e0:81:0e:dc:98:ae:de:
f9:f3:d0:69:a6:fb:34:15:cf:d5:6c:05:8e:d9:97:69:14:00:
31:d1:57:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 25 06:02:24 2024 by rpki-client on console-fra.rpki-client.org