Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/9iSx8bvYtzZuo0aRBD6QJ-_A3Dw.roa
File: 9iSx8bvYtzZuo0aRBD6QJ-_A3Dw.roa (raw, json)
Hash identifier: E/jM/jDmL/kuWR+zxz20Pusb1DHcTKlQ3/Shh3auLOo=
Subject key identifier: F6:24:B1:F1:BB:D8:B7:36:6E:A3:46:91:04:3E:90:27:EF:C0:DC:3C
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 018917430F47CDEB00594E10D9559E7A9E70
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/9iSx8bvYtzZuo0aRBD6QJ-_A3Dw.roa
Signing time: Sun 02 Jul 2023 15:40:18 +0000
ROA not before: Sun 02 Jul 2023 15:40:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208486
IP address blocks: 85.239.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Aug 2023 17:27:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:17:43:0f:47:cd:eb:00:59:4e:10:d9:55:9e:7a:9e:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Jul 2 15:40:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f624b1f1bbd8b7366ea34691043e9027efc0dc3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:17:61:36:00:90:b9:24:c3:ef:81:fd:c2:de:
30:29:1a:aa:ae:b8:a3:2f:d1:c8:fa:7a:12:f7:f6:
3c:c0:fb:88:63:66:d0:d0:1c:9c:cb:58:64:cc:f2:
2a:d8:29:18:5a:08:17:38:3a:6f:5e:a9:52:3c:55:
fa:a7:dc:0b:01:a0:8c:01:dc:f0:3d:1d:43:f7:46:
ba:00:3a:4e:06:b8:11:62:5d:9f:6c:6c:c4:21:83:
bb:c5:40:7c:63:50:c0:c8:d4:73:6b:6c:26:e9:19:
ce:1a:91:cf:58:01:7a:09:ea:ce:87:90:55:1e:cc:
9a:9e:ec:23:71:8a:a1:2d:db:26:d5:74:42:ec:af:
46:04:ce:fa:f0:8f:4a:80:eb:61:39:02:39:20:9e:
e8:1e:84:11:19:3f:6f:28:dd:41:56:cf:f3:94:e4:
6c:3d:0b:80:a8:4e:4f:29:90:8b:f2:ee:62:82:32:
da:15:10:f3:67:e6:39:27:b7:17:56:92:bf:6f:01:
f5:5d:c0:d3:36:4e:48:11:d3:8b:e5:ff:54:88:c9:
19:74:88:7a:79:05:c0:aa:61:9b:78:02:66:2b:fb:
24:8c:2f:3a:ac:9c:39:94:80:fa:80:89:c5:e9:35:
a4:4b:84:f6:f8:90:57:3a:1e:37:09:b9:24:69:90:
25:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:24:B1:F1:BB:D8:B7:36:6E:A3:46:91:04:3E:90:27:EF:C0:DC:3C
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/9iSx8bvYtzZuo0aRBD6QJ-_A3Dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:31:44:a2:fe:92:df:66:8c:54:21:90:96:6a:ab:c0:be:f8:
9d:2b:d9:74:7c:91:f1:c7:d7:64:43:75:9c:67:c6:94:f6:16:
43:e2:25:78:f0:97:1f:76:c7:57:63:c0:ef:0a:40:52:36:96:
4c:8a:4a:2f:2c:82:5f:53:19:f1:6d:69:38:3d:1a:03:9a:a4:
8e:3a:9c:5c:27:ea:13:64:b1:62:e3:cc:8a:e4:37:eb:e4:e8:
f8:a8:6c:74:9c:28:3a:cd:56:f6:2b:fc:93:57:19:dd:94:cb:
77:e2:c8:92:f8:a1:c1:39:95:fc:04:6c:eb:10:05:5a:8b:97:
6d:cf:cd:36:20:96:33:77:ca:57:88:ad:9f:58:88:93:5a:92:
86:a4:6e:b2:43:1b:67:e9:f9:11:fc:46:69:ae:c7:13:6c:a9:
0d:7f:f0:0e:26:a5:91:12:d1:bd:2b:7a:e6:ad:06:db:00:c1:
96:e9:f6:db:ee:72:a6:10:58:11:78:36:a6:b0:6d:85:eb:14:
6c:d7:0c:b9:51:c7:8f:a0:ac:b9:fe:d2:71:70:3a:5e:c2:21:
c9:21:79:1b:f5:44:a0:96:9f:07:20:8a:79:99:ad:db:10:8d:
e2:3f:20:54:98:d7:64:50:32:6d:7c:5a:62:1e:85:b7:26:08:
45:dc:dd:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:53 2024 by rpki-client on console-fra.rpki-client.org