Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/DhjUkzVuDYnTyZo0dbRd7GC9ubU.roa
File: DhjUkzVuDYnTyZo0dbRd7GC9ubU.roa (raw, json)
Hash identifier: r6JQkMYWU6LS9IIfIV7kzzHc7Psxy8AcKG01c/sh02U=
Subject key identifier: 0E:18:D4:93:35:6E:0D:89:D3:C9:9A:34:75:B4:5D:EC:60:BD:B9:B5
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018572CC99048323DBD0473C24922979A902
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/DhjUkzVuDYnTyZo0dbRd7GC9ubU.roa
Signing time: Mon 02 Jan 2023 14:04:49 +0000
ROA not before: Mon 02 Jan 2023 14:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 85.203.52.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:99:04:83:23:db:d0:47:3c:24:92:29:79:a9:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 2 14:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e18d493356e0d89d3c99a3475b45dec60bdb9b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:08:dc:9a:d7:fe:6a:de:f5:0f:38:8e:f0:fe:
42:4f:8a:67:f5:d4:52:39:4b:9d:12:50:74:cc:d0:
ec:58:7a:52:4b:ce:c2:e9:a8:fe:d1:00:ee:a9:ad:
67:f6:c7:99:5b:18:62:1d:27:a1:3d:ce:ea:ce:f0:
7f:88:03:0c:a8:c3:1a:5c:80:eb:90:d2:1d:3a:f4:
f3:99:f4:a1:50:e7:66:4e:c6:9c:41:0a:4e:ba:58:
70:4d:82:ce:3a:d7:89:71:0c:78:84:29:34:3b:f1:
2d:4e:a9:70:35:2f:6f:08:a1:69:48:a7:46:e7:86:
8c:dd:67:a3:a2:f9:33:16:4f:a4:ca:e2:7e:0f:f4:
ff:c9:4c:3f:45:14:c0:85:f2:98:82:fd:d4:69:bd:
62:4b:06:43:17:69:30:9e:db:ad:a3:eb:36:3b:8d:
e7:3c:d6:c3:2e:70:f8:2a:0c:22:45:9d:cf:fd:85:
2f:6e:30:11:5d:5f:af:1d:b8:ad:f3:52:0f:47:c8:
5d:00:6d:47:af:94:ad:3a:8c:b3:15:ff:9f:b2:b9:
35:14:6f:ad:a9:9a:98:6e:e0:72:28:87:82:95:1f:
8c:c4:4c:15:9a:6f:e4:45:87:07:cd:73:b8:23:e9:
76:c9:a3:f2:fa:8c:d8:85:01:0f:73:92:a8:a2:dc:
07:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:18:D4:93:35:6E:0D:89:D3:C9:9A:34:75:B4:5D:EC:60:BD:B9:B5
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/DhjUkzVuDYnTyZo0dbRd7GC9ubU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.52.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:ca:b0:e4:da:0d:de:8f:cf:1a:7d:e6:bd:c6:27:df:95:a6:
a1:c4:d8:12:1e:63:7c:53:42:42:49:df:e4:88:48:29:02:65:
49:9a:65:76:fd:4e:57:8d:9a:c4:02:43:ca:fe:db:eb:6e:31:
6c:84:aa:77:a6:97:0b:23:9a:14:af:15:ef:8e:c9:93:5b:21:
1b:af:aa:65:b6:00:0e:81:d4:1e:5f:34:8d:56:ed:0a:db:98:
27:c9:17:ac:8f:59:cd:27:b2:00:4e:5a:ce:35:99:ae:8d:e8:
26:d6:3a:51:cd:53:a2:29:9e:6a:64:25:82:75:d3:21:95:8c:
b8:93:56:ed:b5:1d:66:1c:23:16:04:2e:48:76:03:be:d4:73:
41:8c:1d:d4:db:36:df:ae:35:89:fc:f6:f0:81:09:10:ba:14:
3f:e4:95:b9:f5:61:16:3f:f2:1e:6b:d8:72:91:e1:8f:76:58:
0f:63:1d:79:33:51:25:ec:51:6a:3b:48:4a:d0:52:f4:9e:c8:
05:3d:db:43:4f:ab:e7:79:10:a1:49:30:6d:18:a8:42:ba:97:
d0:a6:57:32:08:94:da:4e:bc:8c:3c:fb:5c:3d:bb:65:e4:d7:
22:b7:4f:d2:89:d0:e2:43:2b:80:a1:af:39:9c:bb:a0:97:2f:
e3:ec:80:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org