Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/7ZW9lxybQFws3Ry7vQD8CAq-XWg.roa
File: 7ZW9lxybQFws3Ry7vQD8CAq-XWg.roa (raw, json)
Hash identifier: 5l8+6JvyojKSY8y26IooCm/2vFJcfw61m1pcAoIvM6o=
Subject key identifier: ED:95:BD:97:1C:9B:40:5C:2C:DD:1C:BB:BD:00:FC:08:0A:BE:5D:68
Certificate issuer: /CN=24051080400940ff47c807dd6742becbb4edf22d
Certificate serial: 01856BB7FB621CCD24EF1E69AF9B60DC6010
Authority key identifier: 24:05:10:80:40:09:40:FF:47:C8:07:DD:67:42:BE:CB:B4:ED:F2:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/7ZW9lxybQFws3Ry7vQD8CAq-XWg.roa
Signing time: Sun 01 Jan 2023 05:04:57 +0000
ROA not before: Sun 01 Jan 2023 05:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21388
IP address blocks: 85.119.55.0/24 maxlen: 24
85.119.53.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:b7:fb:62:1c:cd:24:ef:1e:69:af:9b:60:dc:60:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24051080400940ff47c807dd6742becbb4edf22d
Validity
Not Before: Jan 1 05:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed95bd971c9b405c2cdd1cbbbd00fc080abe5d68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e1:0e:4f:66:d5:e0:4e:8a:1e:95:aa:a8:e6:
7f:19:9f:97:63:0e:59:5e:0b:2b:f0:06:fd:08:5f:
ab:17:2a:0b:9b:f2:56:0b:1f:f1:e4:7d:93:12:c6:
66:5c:aa:e0:8e:dd:c8:21:bc:64:fa:0c:ae:50:bb:
e6:0d:d7:2d:5c:2a:3e:a4:9f:a9:ba:e9:de:b4:4e:
78:f0:90:11:78:97:40:d0:bc:cd:5e:46:06:2d:15:
ca:80:66:50:d1:22:b5:56:a8:3e:da:a9:41:6d:23:
ff:67:d5:89:d5:ea:3b:41:e1:1c:b1:2e:4a:4f:4e:
bf:fa:a9:d4:bb:bb:d8:f3:18:21:f0:83:fa:1f:a1:
33:99:f5:a6:27:a7:d3:24:72:b4:94:98:84:03:fc:
20:fa:45:d9:4b:ae:a6:13:69:38:a0:f4:ad:31:1a:
7e:e9:2c:1b:6a:c6:5d:cb:ed:80:1a:62:f1:3e:cf:
0d:74:cc:7f:3e:8e:58:11:f0:1a:46:f5:73:a1:ba:
a9:f2:43:5e:48:6d:ec:8c:6f:f7:d1:d0:6e:44:a9:
31:4d:5c:56:25:5f:39:98:86:ac:94:ec:1b:e3:3e:
f7:9b:a7:1e:e0:1f:fa:30:68:bb:9e:97:dd:e9:8c:
ee:14:a9:38:81:b1:3f:d0:9e:56:ef:63:9e:08:c7:
67:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:95:BD:97:1C:9B:40:5C:2C:DD:1C:BB:BD:00:FC:08:0A:BE:5D:68
X509v3 Authority Key Identifier:
keyid:24:05:10:80:40:09:40:FF:47:C8:07:DD:67:42:BE:CB:B4:ED:F2:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/7ZW9lxybQFws3Ry7vQD8CAq-XWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.119.53.0/24
85.119.55.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:ad:3a:1f:ed:49:e5:c8:95:28:3a:1c:2e:79:13:51:4e:93:
71:e9:64:c0:db:8d:eb:25:b1:13:48:cb:bf:61:cc:ba:23:4e:
8d:89:90:90:80:8a:90:0d:41:8d:e7:ba:fd:8a:7d:6d:dd:44:
d7:8a:ff:48:47:39:97:3a:29:bd:0a:0e:2c:c5:fa:8d:8c:6d:
1b:e2:38:9c:2e:15:84:ea:56:43:9b:7e:1b:d9:9e:4d:50:ef:
bf:7e:24:f0:17:4b:24:81:1d:90:0d:ff:e1:d2:d8:b4:57:6f:
31:ef:51:1a:c7:08:6f:3b:0b:0c:74:23:03:62:40:3e:0a:e3:
6f:2d:c5:78:97:fc:e9:74:96:16:e4:64:25:ca:ec:16:e7:88:
53:e9:35:18:87:3f:ac:fb:16:71:b0:47:30:33:a6:68:4f:3c:
33:6e:c3:4d:12:68:6d:d7:2a:0d:b9:10:37:8f:cb:57:b6:8b:
39:46:0b:34:82:89:42:14:2e:3f:83:12:f8:6c:9b:cc:2b:86:
95:7b:ac:22:8f:b4:89:2c:b6:ed:8f:c0:bf:f0:da:5a:bf:14:
44:49:84:60:66:96:e8:a1:0c:c7:6d:0e:75:70:ac:3d:c5:fa:
40:a7:1e:c0:68:4b:37:0d:1b:0f:a8:fc:c1:ff:d7:09:68:f0:
71:82:87:46
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVrt/tiHM0k7x5pr5tg3GAQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0MDUxMDgwNDAwOTQwZmY0N2M4MDdkZDY3NDJiZWNiYjRl
ZGYyMmQwHhcNMjMwMTAxMDUwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDk1YmQ5NzFjOWI0MDVjMmNkZDFjYmJiZDAwZmMwODBhYmU1ZDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOEOT2bV4E6KHpWqqOZ/GZ+XYw5Z
Xgsr8Ab9CF+rFyoLm/JWCx/x5H2TEsZmXKrgjt3IIbxk+gyuULvmDdctXCo+pJ+p
uunetE548JAReJdA0LzNXkYGLRXKgGZQ0SK1Vqg+2qlBbSP/Z9WJ1eo7QeEcsS5K
T06/+qnUu7vY8xgh8IP6H6EzmfWmJ6fTJHK0lJiEA/wg+kXZS66mE2k4oPStMRp+
6SwbasZdy+2AGmLxPs8NdMx/Po5YEfAaRvVzobqp8kNeSG3sjG/30dBuRKkxTVxW
JV85mIaslOwb4z73m6ce4B/6MGi7npfd6YzuFKk4gbE/0J5W72OeCMdnJwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFO2VvZccm0BcLN0cu70A/AgKvl1oMB8GA1UdIwQY
MBaAFCQFEIBACUD/R8gH3WdCvsu07fItMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkFVUWdFQUpRUDlIeUFmZFowSy15N1R0OGkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8wYmY1ZTktZDkxMC00MDM3LThkMzct
NWQzOWQ1MDE4Zjc4LzEvN1pXOWx4eWJRRndzM1J5N3ZRRDhDQXEtWFdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC8wYmY1ZTktZDkxMC00MDM3LThkMzctNWQzOWQ1MDE4Zjc4
LzEvSkFVUWdFQUpRUDlIeUFmZFowSy15N1R0OGkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVXc1AwQA
VXc3MA0GCSqGSIb3DQEBCwUAA4IBAQCMrTof7UnlyJUoOhwueRNRTpNx6WTA243r
JbETSMu/Ycy6I06NiZCQgIqQDUGN57r9in1t3UTXiv9IRzmXOim9Cg4sxfqNjG0b
4jicLhWE6lZDm34b2Z5NUO+/fiTwF0skgR2QDf/h0ti0V28x71EaxwhvOwsMdCMD
YkA+CuNvLcV4l/zpdJYW5GQlyuwW54hT6TUYhz+s+xZxsEcwM6ZoTzwzbsNNEmht
1yoNuRA3j8tXtos5Rgs0golCFC4/gxL4bJvMK4aVe6wij7SJLLbtj8C/8NpavxRE
SYRgZpbooQzHbQ51cKw9xfpApx7AaEs3DRsPqPzB/9cJaPBxgodG
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:53 2024 by rpki-client on console.sobornost.net