Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/hHUcMtBTrqRYix2P1lFL-sk6dFs.roa
File: hHUcMtBTrqRYix2P1lFL-sk6dFs.roa (raw, json)
Hash identifier: 2gQZBltOY7QPaBzVwCmLVIWNF7yx4UP0EleRq9e6Ybo=
Subject key identifier: 84:75:1C:32:D0:53:AE:A4:58:8B:1D:8F:D6:51:4B:FA:C9:3A:74:5B
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 019197924BD0208448D9CA517317F04C6E0C
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/hHUcMtBTrqRYix2P1lFL-sk6dFs.roa
Signing time: Wed 28 Aug 2024 06:00:32 +0000
ROA not before: Wed 28 Aug 2024 06:00:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 85.115.208.0/23 maxlen: 24
213.145.68.0/23 maxlen: 23
213.145.68.0/24 maxlen: 24
213.145.70.0/23 maxlen: 23
213.145.72.0/21 maxlen: 24
213.145.84.0/23 maxlen: 23
213.145.86.0/23 maxlen: 23
213.145.86.0/24 maxlen: 24
213.145.88.0/21 maxlen: 24
213.145.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 05:19:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:97:92:4b:d0:20:84:48:d9:ca:51:73:17:f0:4c:6e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Aug 28 06:00:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84751c32d053aea4588b1d8fd6514bfac93a745b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:08:d6:eb:ec:57:6a:bd:8d:55:32:c7:f1:b3:
a0:33:d7:35:cc:3d:b6:4f:c0:52:60:30:a6:18:cf:
11:d7:0c:ad:67:ba:4b:18:52:37:16:aa:91:2c:6d:
5b:a9:3f:95:2f:4f:f7:66:09:3b:38:f2:ea:22:7c:
26:1e:7f:36:0d:06:b9:34:05:f7:1c:62:d1:08:86:
11:f5:ad:38:2e:7f:95:11:b0:20:9a:e2:47:03:9c:
0e:ec:c7:51:c9:26:d6:35:44:62:1a:da:c4:2a:06:
19:20:43:f9:bd:f2:8e:b2:79:74:8a:09:f5:7c:e4:
9e:53:b1:b2:9f:19:09:12:ee:0e:da:7c:b7:0a:00:
9a:1a:ba:f3:d2:be:47:2f:3e:e6:a0:6b:4c:52:43:
5e:f4:01:51:95:bd:3b:98:ac:ab:fe:eb:d9:a7:0f:
92:f7:d6:16:fd:b8:2c:7a:73:fb:aa:86:3e:d2:12:
66:61:3b:34:9b:be:ea:a7:db:10:fa:64:12:63:e5:
ed:ec:28:2a:05:c9:cb:ec:58:63:7c:5e:bc:19:70:
8e:fc:40:c3:d8:60:30:82:6e:be:a6:80:76:ec:01:
d6:f5:41:6b:1e:7c:ed:d3:16:7b:e8:9a:58:ff:f8:
6d:89:c3:3a:19:8c:e8:0d:0a:a4:3b:7e:ce:94:64:
56:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:75:1C:32:D0:53:AE:A4:58:8B:1D:8F:D6:51:4B:FA:C9:3A:74:5B
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/hHUcMtBTrqRYix2P1lFL-sk6dFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/23
213.145.68.0-213.145.79.255
213.145.84.0-213.145.95.255
Signature Algorithm: sha256WithRSAEncryption
97:86:46:fd:6c:42:02:ee:b7:1d:77:15:ec:54:54:e6:04:23:
1d:ee:35:f7:16:e6:c7:31:17:15:d4:41:5e:49:8c:a4:0c:52:
e0:ab:2d:f4:c3:e0:3a:25:14:ae:cb:43:1d:89:39:c2:62:70:
df:a8:ad:2e:5e:b3:a7:ac:68:3c:c5:20:b8:1f:61:99:d0:2b:
e2:85:9f:18:1e:5c:7f:7f:f1:ed:a7:ac:73:a9:28:76:b6:67:
31:e0:e0:0c:95:0c:88:3e:99:8d:e2:4b:63:5a:1d:bd:f6:78:
75:af:a0:8d:66:13:ef:4c:e2:ed:fa:31:1d:a5:de:1e:e1:07:
5e:4d:ec:ee:02:a9:d7:c2:1a:16:39:88:b0:c3:c9:5b:ae:98:
18:0f:ad:c8:a4:69:e0:ad:86:be:99:4b:bc:9c:ee:dc:d3:d4:
46:82:3b:b2:17:d0:95:23:af:c2:b6:8c:15:bd:4b:72:06:df:
36:c4:5f:a9:a4:69:3d:44:35:f0:e6:f5:2f:2c:00:29:46:5f:
a5:a6:76:22:f3:09:e7:7f:41:87:0c:12:45:63:10:fd:89:71:
95:e3:d1:7e:17:75:d9:3f:7a:e2:b6:0d:7e:78:ab:6d:fa:73:
a0:d8:92:08:a9:05:fa:c5:76:d0:32:43:4e:e9:fe:08:3c:9b:
ce:0d:9d:9b
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZGXkkvQIIRI2cpRcxfwTG4MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjQwODI4MDYwMDMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDc1MWMzMmQwNTNhZWE0NTg4YjFkOGZkNjUxNGJmYWM5M2E3NDViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAjW6+xXar2NVTLH8bOgM9c1zD22
T8BSYDCmGM8R1wytZ7pLGFI3FqqRLG1bqT+VL0/3Zgk7OPLqInwmHn82DQa5NAX3
HGLRCIYR9a04Ln+VEbAgmuJHA5wO7MdRySbWNURiGtrEKgYZIEP5vfKOsnl0ign1
fOSeU7GynxkJEu4O2ny3CgCaGrrz0r5HLz7moGtMUkNe9AFRlb07mKyr/uvZpw+S
99YW/bgsenP7qoY+0hJmYTs0m77qp9sQ+mQSY+Xt7CgqBcnL7FhjfF68GXCO/EDD
2GAwgm6+poB27AHW9UFrHnzt0xZ76JpY//hticM6GYzoDQqkO37OlGRWbwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFIR1HDLQU66kWIsdj9ZRS/rJOnRbMB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvaEhVY010QlRycVJZaXgyUDFsRkwtc2s2ZEZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiAwQBVXPQMAwD
BALVkUQDBATVkUAwDAMEAtWRVAMEBdWRQDANBgkqhkiG9w0BAQsFAAOCAQEAl4ZG
/WxCAu63HXcV7FRU5gQjHe419xbmxzEXFdRBXkmMpAxS4Kst9MPgOiUUrstDHYk5
wmJw36itLl6zp6xoPMUguB9hmdAr4oWfGB5cf3/x7aesc6kodrZnMeDgDJUMiD6Z
jeJLY1odvfZ4da+gjWYT70zi7foxHaXeHuEHXk3s7gKp18IaFjmIsMPJW66YGA+t
yKRp4K2GvplLvJzu3NPURoI7shfQlSOvwraMFb1LcgbfNsRfqaRpPUQ18Ob1LywA
KUZfpaZ2IvMJ539BhwwSRWMQ/YlxlePRfhd12T964rYNfnirbfpzoNiSCKkF+sV2
0DJDTun+CDybzg2dmw==
-----END CERTIFICATE-----
Generated at Fri Aug 30 07:31:20 2024 by rpki-client on console-fra.rpki-client.org