Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/mNo5FujF8lwVMk6KgVA8PamJwtU.roa
File: mNo5FujF8lwVMk6KgVA8PamJwtU.roa (raw, json)
Hash identifier: DQQG2b/8oybkVbKeFVdzl2SK9fi09x0V4dt18+oGYcA=
Subject key identifier: 98:DA:39:16:E8:C5:F2:5C:15:32:4E:8A:81:50:3C:3D:A9:89:C2:D5
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018B1F0B4BB5D83A79E9D82D4C500E6D73C8
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/mNo5FujF8lwVMk6KgVA8PamJwtU.roa
Signing time: Wed 11 Oct 2023 14:01:55 +0000
ROA not before: Wed 11 Oct 2023 14:01:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54252
IP address blocks: 85.115.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Oct 2023 13:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1f:0b:4b:b5:d8:3a:79:e9:d8:2d:4c:50:0e:6d:73:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Oct 11 14:01:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98da3916e8c5f25c15324e8a81503c3da989c2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:16:b9:57:dd:09:b2:fd:b1:c3:84:50:22:d6:
6f:0d:ec:93:f9:83:4a:51:81:20:09:0b:2d:68:8c:
2f:00:90:45:6f:dd:27:b8:96:3c:ed:ac:43:be:30:
f8:8e:bc:64:7a:01:3b:3a:f1:89:c5:9d:7f:c9:9b:
69:f7:00:88:61:e2:9f:8e:1d:e6:05:57:51:25:f2:
a1:6e:fc:e7:03:7c:60:ef:88:0d:83:06:dd:a2:95:
28:19:22:40:24:ac:c3:19:de:08:aa:93:f0:72:5a:
7a:0f:5c:d1:d5:bc:c5:c3:0c:bf:d3:7e:6e:31:ac:
7a:78:d4:3c:a3:ac:3a:8c:6c:77:31:ce:19:26:0b:
4b:69:d7:b0:7f:f8:ca:80:7f:99:4c:01:32:68:63:
8c:33:b1:96:24:68:53:9a:ef:a8:7f:53:7f:19:5a:
3e:9f:91:17:04:7b:48:4b:f6:03:90:4d:42:cb:ed:
10:52:3e:8c:ef:07:66:3c:07:ac:84:45:9e:31:3f:
6f:be:2e:22:7b:be:b3:7f:c9:ca:2f:68:9d:82:97:
c1:c8:ab:15:02:d3:b7:88:09:12:b6:19:32:21:61:
dd:39:2b:e9:d5:98:cc:53:67:e9:8a:ce:8e:7b:b7:
b3:40:93:75:60:b3:84:c0:91:60:c3:cc:af:00:8d:
7a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:DA:39:16:E8:C5:F2:5C:15:32:4E:8A:81:50:3C:3D:A9:89:C2:D5
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/mNo5FujF8lwVMk6KgVA8PamJwtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/24
Signature Algorithm: sha256WithRSAEncryption
98:7c:26:14:90:b7:33:6a:b5:24:d1:89:36:a6:d0:d3:2d:57:
e0:7d:3d:fa:9e:c3:5f:21:3b:d9:6b:a8:7d:7d:01:d7:7f:74:
23:63:09:7c:7e:1f:3a:87:88:8d:8a:69:23:2c:7c:39:26:ff:
12:f1:af:aa:ea:ce:2f:8a:aa:9d:d8:c6:a4:28:08:a5:a1:92:
e6:f7:d8:ff:d9:48:ab:a6:63:68:7e:1b:30:cf:09:87:dc:6c:
61:a0:d9:ad:8e:9d:26:1c:09:52:3a:3b:37:39:d1:9b:01:74:
28:a5:b7:9d:0f:b0:0f:f5:fb:ad:1a:18:bd:66:20:1c:6b:57:
d4:2f:bc:8f:eb:0e:80:df:ae:fa:78:a6:a3:db:18:20:a7:70:
09:f8:6d:89:ca:c7:64:94:df:47:6b:c4:b3:16:7f:49:c1:d4:
71:c1:9b:7d:2e:6c:be:c5:09:48:1d:f1:60:2b:f7:a3:ff:e1:
76:52:39:a8:86:34:5b:8a:80:cc:35:54:12:11:01:a9:d4:3a:
a9:5a:67:a6:aa:77:4e:10:ea:00:31:9c:07:a5:ae:9a:5f:1f:
cc:06:d6:f3:af:42:0b:3c:26:3e:d4:0f:04:f8:38:b4:e0:36:
8d:65:82:7f:70:fd:00:26:03:6b:d0:29:ef:8a:e3:81:a2:35:
52:cc:50:d5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsfC0u12Dp56dgtTFAObXPIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjMxMDExMTQwMTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OGRhMzkxNmU4YzVmMjVjMTUzMjRlOGE4MTUwM2MzZGE5ODljMmQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxa5V90Jsv2xw4RQItZvDeyT+YNK
UYEgCQstaIwvAJBFb90nuJY87axDvjD4jrxkegE7OvGJxZ1/yZtp9wCIYeKfjh3m
BVdRJfKhbvznA3xg74gNgwbdopUoGSJAJKzDGd4IqpPwclp6D1zR1bzFwwy/035u
Max6eNQ8o6w6jGx3Mc4ZJgtLadewf/jKgH+ZTAEyaGOMM7GWJGhTmu+of1N/GVo+
n5EXBHtIS/YDkE1Cy+0QUj6M7wdmPAeshEWeMT9vvi4ie76zf8nKL2idgpfByKsV
AtO3iAkSthkyIWHdOSvp1ZjMU2fpis6Oe7ezQJN1YLOEwJFgw8yvAI164QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJjaORboxfJcFTJOioFQPD2picLVMB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvbU5vNUZ1akY4bHdWTWs2S2dWQThQYW1Kd3RVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVXPQMA0G
CSqGSIb3DQEBCwUAA4IBAQCYfCYUkLczarUk0Yk2ptDTLVfgfT36nsNfITvZa6h9
fQHXf3QjYwl8fh86h4iNimkjLHw5Jv8S8a+q6s4viqqd2MakKAiloZLm99j/2Uir
pmNofhswzwmH3GxhoNmtjp0mHAlSOjs3OdGbAXQopbedD7AP9futGhi9ZiAca1fU
L7yP6w6A3676eKaj2xggp3AJ+G2JysdklN9Ha8SzFn9JwdRxwZt9Lmy+xQlIHfFg
K/ej/+F2UjmohjRbioDMNVQSEQGp1DqpWmemqndOEOoAMZwHpa6aXx/MBtbzr0IL
PCY+1A8E+Di04DaNZYJ/cP0AJgNr0CnviuOBojVSzFDV
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org