Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/rr1D6khZAk1iWBR8G7h9m97J--E.roa
File: rr1D6khZAk1iWBR8G7h9m97J--E.roa (raw, json)
Hash identifier: PBoJrA5pW5IpcFctKorHIUg4K/ymDOCAISBgOXO/SgA=
Subject key identifier: AE:BD:43:EA:48:59:02:4D:62:58:14:7C:1B:B8:7D:9B:DE:C9:FB:E1
Certificate issuer: /CN=74d34abbe9afba280432c2ab83898c7b950df7ac
Certificate serial: 0185735F099B3B402C3D8D56D14833C5A323
Authority key identifier: 74:D3:4A:BB:E9:AF:BA:28:04:32:C2:AB:83:89:8C:7B:95:0D:F7:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNNKu-mvuigEMsKrg4mMe5UN96w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/rr1D6khZAk1iWBR8G7h9m97J--E.roa
Signing time: Mon 02 Jan 2023 16:44:46 +0000
ROA not before: Mon 02 Jan 2023 16:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201895
IP address blocks: 85.117.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:5f:09:9b:3b:40:2c:3d:8d:56:d1:48:33:c5:a3:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d34abbe9afba280432c2ab83898c7b950df7ac
Validity
Not Before: Jan 2 16:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aebd43ea4859024d6258147c1bb87d9bdec9fbe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e2:6d:25:38:4b:f9:5d:ab:39:48:ff:50:8e:
cf:59:c1:27:4d:78:72:c2:ae:1d:ca:38:6e:34:9a:
99:ff:d2:3b:fd:97:47:d0:43:e9:31:a4:d1:a0:44:
9b:17:0e:63:93:75:8d:e9:ce:77:a5:89:c2:b7:95:
69:dd:ad:a8:03:be:23:89:38:a0:1f:b3:ee:02:76:
5c:80:14:6f:62:76:fd:e2:0e:41:6c:4b:75:67:f1:
dc:1d:f6:98:03:1f:8d:30:49:73:52:32:28:cd:9c:
f4:14:7e:94:73:91:c3:8b:cd:78:6f:c4:4a:98:70:
ac:86:9e:ea:0f:f8:db:1b:97:62:b1:a5:55:f9:12:
29:7b:ff:c5:f2:32:ff:dd:e8:89:b5:67:58:72:21:
82:51:8b:0d:60:3b:a9:03:87:0c:b1:16:f2:dd:d2:
3b:ba:f2:33:de:3b:c6:26:7a:45:0a:74:ea:a3:12:
58:39:1f:74:9f:53:b3:12:1c:c7:15:60:14:8e:98:
c1:d5:37:7d:f4:70:06:fb:4f:78:1a:fe:56:7a:38:
a8:4f:f6:31:03:b3:9c:b4:1d:61:9a:6b:3f:82:a0:
88:30:54:22:fc:44:82:8e:5c:be:7c:e3:50:1f:96:
df:c6:81:fc:46:f6:23:3b:98:b7:43:ef:62:dc:09:
c3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:BD:43:EA:48:59:02:4D:62:58:14:7C:1B:B8:7D:9B:DE:C9:FB:E1
X509v3 Authority Key Identifier:
keyid:74:D3:4A:BB:E9:AF:BA:28:04:32:C2:AB:83:89:8C:7B:95:0D:F7:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNNKu-mvuigEMsKrg4mMe5UN96w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/rr1D6khZAk1iWBR8G7h9m97J--E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/dNNKu-mvuigEMsKrg4mMe5UN96w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.228.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:2c:b4:94:bf:f3:0b:7a:2b:8a:93:d8:4d:33:11:ad:a4:79:
58:47:ef:b8:9e:82:c3:d3:9e:60:d4:39:cb:64:d1:ae:3f:f9:
dc:cf:bc:ce:93:9f:eb:30:e2:d5:cf:d2:10:7f:2d:c3:24:36:
89:5e:37:ba:8f:42:14:6a:7e:a6:71:4c:e6:ac:2e:29:4d:1e:
24:39:b1:50:08:5f:71:99:c4:81:55:19:6f:5c:71:08:f0:6a:
24:0a:62:f3:d0:4e:1d:ff:05:fe:38:b0:41:de:c7:02:17:92:
0a:7e:51:16:48:c3:39:4e:b2:aa:7f:99:de:34:1d:cf:4d:94:
f3:de:40:88:c4:49:6b:ca:5e:25:69:f3:90:fa:92:71:e0:61:
f8:31:84:0d:6b:28:09:09:a5:01:24:c3:e4:b8:4a:ab:e5:a9:
a9:ed:96:e1:52:f8:e5:4e:5e:f7:d1:50:54:b0:63:5f:a5:bf:
68:0b:19:af:f4:ff:c1:31:58:6f:00:1f:e9:f0:4c:14:df:f3:
71:ba:36:5d:36:eb:88:b5:89:d8:15:9d:fd:a9:0c:90:ff:7d:
8e:72:5a:03:2c:52:7c:08:af:79:37:fc:c1:94:6f:a2:36:71:
83:bd:fd:2c:20:f9:5c:9e:4a:7a:af:82:b0:3e:bf:3d:f9:6e:
a4:b1:15:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:58 2024 by rpki-client on console-ams.rpki-client.org